Posted By

sublimino on 04/22/09


Tagged

conficker nmap


Versions (?)

nmap conficker detector


 / Published in: Other
 

URL: http://seclists.org/nmap-dev/2009/q2/0161.html

To scan you network quickly for Conficker infections before the next variant breaks this new techinque, we recommend this command:

nmap -p139,445 --script p2p-conficker,smb-os-discovery,smb-check-vulns --script-args checkconficker=1,safe=1 -T4 [target networks]

If you have time for a slower but more comprehensive scan, use this instead:

nmap --script p2p-conficker,smb-os-discovery,smb-check-vulns -p- --script-args checkall=1,safe=1 -T4 [target networks]

  1. nmap -p139,445 --script p2p-conficker,smb-os-discovery,smb-check-vulns --script-args checkconficker=1,safe=1 -T4 192.168.1.*

Report this snippet  

You need to login to post a comment.