Comments on: ASP Auditor v1.0 BETA http://michaeldaw.org/projects/asp-auditor Weekly humour Thu, 07 May 2009 20:09:50 +0000 http://wordpress.org/?v= hourly 1 By: Alexander’s Blog » Blog Archive » ASP Auditor Tool http://michaeldaw.org/projects/asp-auditor/comment-page-1#comment-26969 Alexander’s Blog » Blog Archive » ASP Auditor Tool Tue, 08 May 2007 02:16:22 +0000 http://michaeldaw.org/projects/asp-auditor/#comment-26969 [...] tool can be downloaded here. Samples of usages are available here.   [...] [...] tool can be downloaded here. Samples of usages are available here.   [...]

]]> By: hdm http://michaeldaw.org/projects/asp-auditor/comment-page-1#comment-15 hdm Wed, 13 Sep 2006 16:19:12 +0000 http://michaeldaw.org/projects/asp-auditor/#comment-15 You might be interested in my DNAScan tool (Dot Net Application Scanner). It uses some different tricks to leak version information, physical file paths, and so on. The tool is mostly unmaintained and most of the functionality will eventually make it into the Metasploit Framework. You can download the latest version of DNAScan from <a href="http://metasploit.com/users/hdm/tools/dnascan.pl.gz" rel="nofollow">http://metasploit.com/users/hdm/tools/dnascan.pl.gz</a> You might be interested in my DNAScan tool (Dot Net Application Scanner). It uses some different tricks to leak version information, physical file paths, and so on. The tool is mostly unmaintained and most of the functionality will eventually make it into the Metasploit Framework. You can download the latest version of DNAScan from http://metasploit.com/users/hdm/tools/dnascan.pl.gz

]]> By: al bundy http://michaeldaw.org/projects/asp-auditor/comment-page-1#comment-14 al bundy Wed, 13 Sep 2006 14:53:35 +0000 http://michaeldaw.org/projects/asp-auditor/#comment-14 Hey it's all good. Might be nice if this fingerprinting gets integrated with another tool. I don't know what people expecting for free. Hey it’s all good. Might be nice if this fingerprinting gets integrated with another tool. I don’t know what people expecting for free.

]]> By: david.kierznowski http://michaeldaw.org/projects/asp-auditor/comment-page-1#comment-13 david.kierznowski Wed, 13 Sep 2006 05:57:22 +0000 http://michaeldaw.org/projects/asp-auditor/#comment-13 Achtung, your telling me buddy! who the heck is this guy. :) Sirius_black, the last I looked httprint fingerprints the web server software being used, the idea behind this tool was to fingerprint the ASP.NET version. Achtung, your telling me buddy! who the heck is this guy. :)

Sirius_black, the last I looked httprint fingerprints the web server software being used, the idea behind this tool was to fingerprint the ASP.NET version.

]]> By: achtung http://michaeldaw.org/projects/asp-auditor/comment-page-1#comment-12 achtung Tue, 12 Sep 2006 20:00:56 +0000 http://michaeldaw.org/projects/asp-auditor/#comment-12 wow, this program really s0x :) You're better to learn how to program before you start releasing this crap ;) wow, this program really s0x :) You’re better to learn how to program before you start releasing this crap ;)

]]> By: sirius_black http://michaeldaw.org/projects/asp-auditor/comment-page-1#comment-11 sirius_black Tue, 12 Sep 2006 19:43:12 +0000 http://michaeldaw.org/projects/asp-auditor/#comment-11 httprint is a good web server fingerprinting tool : http://net-square.com/httprint/ But it's not an open source app httprint is a good web server fingerprinting tool :
http://net-square.com/httprint/

But it’s not an open source app

]]> By: David Kierznowski http://michaeldaw.org/projects/asp-auditor/comment-page-1#comment-10 David Kierznowski Tue, 12 Sep 2006 15:19:06 +0000 http://michaeldaw.org/projects/asp-auditor/#comment-10 When I initially began working on this tool I was hoping to find a number of techniques to fingerprint ASP.NET versions. Together with its configuration checks I planned to have a simple ASP.NET vulnerability assessment tool. Unfortunately, fingerprinting the specific version was not as easy as it first appeared. The ASP Auditor works and can be quite handy but please note it is more of a Frankenstein project then anything else. If anyone has any other ideas for version fingerprinting or any ideas at all they are most welcome. When I initially began working on this tool I was hoping to find a number of techniques to fingerprint ASP.NET versions. Together with its configuration checks I planned to have a simple ASP.NET vulnerability assessment tool. Unfortunately, fingerprinting the specific version was not as easy as it first appeared. The ASP Auditor works and can be quite handy but please note it is more of a Frankenstein project then anything else.

If anyone has any other ideas for version fingerprinting or any ideas at all they are most welcome.

]]>