by vacuum@technotronic.com
& mike@datanerds.net
Winfingerprint 2 is a console based Win32 discovery tool.
It is written in VC++ 6, and is currently in the process of being developed.
Usage: winfingerprint [-host \\COMPUTERNAME] [-all -groups -mass -null -output -
registry -services -shares -users -sessions -time -eventlog -transports -help]
-all Enumerates NetBIOS Shares, Users, Groups, Transports, Date & Time, and Services
-groups Enumerates Groups
-mass Scan entire 'Network Neighborhood'
-null Establishes Null Session
-registry Registry Querying
-services Enumerates Services
-transports Enumerates Transports
-sessions Enumerates Sessions
-transports Enumerates Transports
-time Date & Time
-eventlog Event Log
-shares Enumerates Shares
-users Enumerates Users
-output Output filename 'e.g. myscan.html'
-help Shows Usage
Current Features:
- Determine OS using SMB Queries
-PDC (Primary Domain Controlller)
-BDC (Backup Domain Controller)
-NT MEMBER SERVER
-NT WORKSTATION
-SQL SERVER
-NOVELL NETWARE SERVER
-WINDOWS FOR WORKGROUPS
-WINDOWS 9X
- Enumerate Servers
- Enumerate Shares including Administrative ($)
- Enumerate Global Groups
- Enumerate Users
- Displays Active Services
- Ability to Scan Network Neighborhood
- Ability to establish NULL IPC$ session with host
- Ability to Query Registry (currently determines Service Pack Level) Applied HOTFIXES
- Output Results to HTML
- Returns Date and Time from target computer
- Enumerate Transports
- Enumerates Sessions
- Basic Event Log support
Contributers:
vacuum Lead Development
Mike Development
hoglund@ieway.comideas, bugfixes, rootkit.com
napster@napster.com
Jason_Jordan@omron.com, bug fixes, optimizations, gui frontend
sfaust@hartco.com, improved mass scan routine, working on integrated gui
Winfingerprint 2 can also be found in CVS at rootkit.com. If you would
like to contribute, get WinCVS.
ChangeLog