[42785] in North American Network Operators' Group
Nimda Scanner tool--finds infected/vulnerable hosts
daemon@ATHENA.MIT.EDU (Murphy, Brennan)
Fri Sep 21 15:02:31 2001
Message-ID: <B481990C9658D411BD3C009027D6F54402476F3D@SNC-5-87.nai.com>
From: "Murphy, Brennan" <Brennan_Murphy@NAI.com>
To: "'nanog@nanog.org'" <nanog@nanog.org>
Date: Fri, 21 Sep 2001 14:01:50 -0500
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Errors-To: owner-nanog-outgoing@merit.edu
Hope I'm not late in the game on this one. But I found a tool advertised as
able to scan for
machines that are either infected or vulnerable to infection from the Nimda
worm/virus.
http://www.eeye.com/html/Research/Tools/nimda.html
From the website:
"The Retina Nimda Scanner is a tool created by eEye Digital Security that is
able to scan up to 254 IP addresses at once and determine if any are
vulnerable to the "Nimda Worm". If a machine or server is found to be
vulnerable to the Nimda Worm, the Retina Nimda Scanner will flag the IP
address. "
Hope someone finds this useful. I have no affiliation with eEye.
-BM
