Network Security

Contributions to Windows Security

Specific posts on Microsoft connect:

Contributions to Nmap

# Nmap Changelog ($Id: CHANGELOG 22117 2011-01-30 19:22:49Z david $); -*-text-*-

o Fixed some inconsistencies in nmap-os-db reported by Xavier Sudre
from netVigilance.
# Nmap Changelog ($Id: CHANGELOG 20342 2010-09-23 22:07:52Z david $); -*-text-*-

o Fixed some inconsistencies in nmap-os-db and a small memory leak that would happen where there was more than one round of OS detection. These were reported by Xavier Sudre from netVigilance, Inc.

See Nmap changelog: http://nmap.org/changelog.html

Collection of Perl scripts to test for Microsoft Security Issues

Security Bulletin MS04-007 / "ASN.1 Vulnerability Could Allow Code Execution (828028)"
  • detecting the vulnerability through HTTP
  • detecting the vulnerability through SMB
  • detecting the vulnerability through SMTP
Security Bulletin MS04-011 / "Security Update for Microsoft Windows (835732)"
  • detecting the vulnerability through HTTPS
  • detecting the vulnerability through LDAPS
  • detecting the vulnerability through LSA
  • detecting the vulnerability through SMTP
Security Bulletin MS04-022 / "Vulnerability in Task Scheduler Could Allow Code Execution (841873)"
  • detecting the vulnerability through NetBIOS