Everhart,Glenn From: Phil Waterbury [pwaterbury@ICSA.NET] Sent: Monday, March 30, 1998 1:31 PM To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM Subject: New tool set released Just a heads up. In case you see a port scanner / nbtstat groping your boxes ;-) Rhino9 Releases OGRE The "Satan" Of The NT World Never since the release of "Satan", a famous unix security auditing tool, has such a piece of software gained so much respect from computer security professionals. OGRE, the new NT auditing tool released by rhino9, is destine to become the "Satan" of the NT world. Ogre is a remote network auditing tool intended for use by NT network administrators. Ogre performs a variety of tests upon the target network, primarily searching for known exploitable vulnerabilities in certain 95 and NT software installations. Ogre currently performs the following tests: Determines which hosts are active on the network. Scans those hosts to determine available remote services. Gathers statistical information on netbios. (nbtstat) Displays publically viewable network shares. (net view) Checks for the existence of Microsoft Frontpage Server Extensions. Checks for the IIS Admin HTML administration page. Checks for the Index Server default sample documents. http://www.antionline.com/SpecialReports/Ogre/ Phil Phil Waterbury International Computer Security Association Network Security Lab Analyst PGP Key fingerprint=4989 E90D 3FAB BD37 7E42 450F 7BFC F7E8 4EB9 3F8F PGP Key @ ftp://ftp.icsa.net/pub/keys/pwaterbury.asc