{"id":739,"date":"2008-03-07T03:59:23","date_gmt":"2008-03-07T03:59:23","guid":{"rendered":"https:\/\/www.darknet.org.uk\/2008\/03\/ferret-version-11-data-seepage-detection-tool\/"},"modified":"2015-09-09T19:39:35","modified_gmt":"2015-09-09T11:39:35","slug":"ferret-version-11-data-seepage-detection-tool","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2008\/03\/ferret-version-11-data-seepage-detection-tool\/","title":{"rendered":"Ferret Version 1.1 – Data Seepage Detection Tool"},"content":{"rendered":"
[ad]<\/p>\n
Ferret works on the concept of “data seepage”: bits of benign data that people willingly broadcast to the world (as opposed to “leakage”, which is data people want to hide from the world).<\/p>\n
Examples of data seepage are what happens when you power-on your computer. It will broadcast to the world the list of WiFi access-points you’ve got cached on your computer, the previous IP address you used (requested by DHCP), your NetBIOS name, your login ID, and a list of servers (via NetBIOS request) you want connections to.<\/p>\n
Even if you then establish a VPN connection to hide everything else, you’ve already broadcasted this information to everyone on the local network.<\/p>\n
The FERRET tool gathers this broadcasted information and correlates it. It demonstrates how much you expose to hackers.<\/p>\n
The latest version of the Data Seepage detection tool, Ferret, is available for download. It is still in a rough form but compiles cleanly on Linux and Windows. A number of bug fixes have been introduced as well as new functionality.<\/p>\n
You can download the Blackhat slides here:<\/p>\n
BH_DC_07_Data_seepage.ppt<\/a><\/p>\n Get Ferret 1.1 here:<\/p>\n