This program retrieves version information for the nameservers of a domain and produces a report that describes possible vulnerabilities of each.
Vulnerability information is configurable through a configuration file; the default is porkbind.conf. Each nameserver is tested for recursive queries and zone transfers. The code is parallelized with libpthread.
Changes for v1.3
- Wrote in-a-bind shell script that scans random domain names from DMOZ
- Implemented recursive query testing
- Changed porkbind.conf to use CVE numbers in addition to CERT alerts
- Modified text displayed on stdout to make it more parsable
- Licensed with GNU Lesser General Public License
- Fixed timeout/concurrency/memory corruption bugs
- Fixed improper comparison of alpha/beta version numbering bug
- Added typecasts to silence compiler warnings
The tool now scans for 14 flaws and reports CVE numbers & CERT.
You can download PorkBind v1.3 here:
Or read more here.
- Rowhammer – DDR3 Exploit – What You Need To Know
- Santoku Linux – Mobile Forensics, Malware Analysis, and App Security Testing LiveCD
- Google Expands Pwnium Year Round With Infinite Bounty
- Angry IP Scanner – Cross Platform Port Scanner
- Domain Stealing or How to Hijack a Domain
- OAPScan – Oracle Application Server Scanner
Most Read in Exploits/Vulnerabilities:
- Learn to use Metasploit – Tutorials, Docs & Videos - 229,609 views
- AJAX: Is your application secure enough? - 119,413 views
- eEye Launches 0-Day Exploit Tracker - 85,201 views