15 September 2008 | 6,637 views

PorkBind v1.3 – Nameserver (DNS) Security Scanner

Want to Learn Penetration Testing

This program retrieves version information for the nameservers of a domain and produces a report that describes possible vulnerabilities of each.

Vulnerability information is configurable through a configuration file; the default is porkbind.conf. Each nameserver is tested for recursive queries and zone transfers. The code is parallelized with libpthread.

Changes for v1.3

  • Wrote in-a-bind shell script that scans random domain names from DMOZ
  • Implemented recursive query testing
  • Changed porkbind.conf to use CVE numbers in addition to CERT alerts
  • Modified text displayed on stdout to make it more parsable
  • Licensed with GNU Lesser General Public License
  • Fixed timeout/concurrency/memory corruption bugs
  • Fixed improper comparison of alpha/beta version numbering bug
  • Added typecasts to silence compiler warnings

The tool now scans for 14 flaws and reports CVE numbers & CERT.

You can download PorkBind v1.3 here:

porkbind-1.3.tar.gz

Or read more here.

Post to Twitter Post to Facebook Post to Google Buzz Post to Delicious Post to Digg Post to Reddit Post to StumbleUpon


Tags: , , , , , , , ,


# Posted in: Exploits/Vulnerabilities, Hacking Tools, Network Hacking | * Comments Off


Recent in Exploits/Vulnerabilities:
- No BEAST Fix From Microsoft In December Patch Tuesday – But They Fixed Duqu Bug
- Apple Bans Security Researcher Charlie Miller For Exposing iOS Exploit
- Rec Studio 4 – Reverse Engineering Compiler & Decompiler

Related Posts:
- Angry IP Scanner – Cross Platform Port Scanner
- OAPScan – Oracle Application Server Scanner
- AttackAPI 0.5 – JavaScript Security Tools

Most Read in Exploits/Vulnerabilities:
- Learn to use Metasploit – Tutorials, Docs & Videos - 190,504 views
- AJAX: Is your application secure enough? - 115,526 views
- eEye Launches 0-Day Exploit Tracker - 80,781 views

Advertise on Darknet


Comments are closed.