Scanning for SNMP vulnerabilities

Sysadmins' corner

Fri 15 Feb 2002 // 11:47 UTC

SANS has released a scanning tool called SNMPing which will find SNMP daemons running on a TCP/IP network. It defaults to port 161, but you can enter the port of your choice.

The good news is that it's small and effective. The bad news is that it only runs on WinNT/2K.

You can use TCP dump to log your attempts. You'll find that some devices can be protected with hard-to-guess community names, and that others can't, so get the straight dope on all your devices.

In order to send bulletins about upgrades and bugs to users of the tool, SANS prefers that you e-mail them here to get it. It's automated and takes only a minute to get a reply. We'll just go ahead and not mirror the file, since that actually makes good sense.

Keep in mind that the blackhats undoubtedly have this tool and are happily scanning networks as I type. So use it, see?

That is all. ®

More about

TIP US OFF

Send us news

Topics

Special Features

Vendor Voice

Resources

On-Prem

Scanning for SNMP vulnerabilities

Sysadmins' corner

More about

TIP US OFF

Other stories you might like

Qt Ubuntu 24.04 betas show that there's room to innovate

AI energy draw from Chicago datacenters to rise ninefold

WhatsApp, Threads, more banished from Apple App Store in China

Reducing the cloud security overhead

Unintended acceleration leads to recall of every Cybertruck produced so far

A quarter of 5-7 year olds now use smartphones, says regulator

Cybercriminals threaten to leak all 5 million records from stolen database of high-risk individuals

Germany cuffs alleged Russian spies over plot to bomb industrial and military targets

Wing Commander III changed how the copy hotkey works in Windows 95

Some smart meters won't be smart at all once 2/3G networks mothballed

Your trainee just took down our business and has no idea how or why

UK unions publish AI bill to protect workers from 'risks and harms' of tech

About Us

Our Websites

Your Privacy