NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Pen-test> 2009-05

Re: Windows Patch Auditing & "File and Print Sharing" disabled

From: marcelo carvalho (marcelocarvalho09hotmail.com)
Date: Tue May 12 2009 - 12:57:21 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Do y try null section Netbios with MBSA Analayzer?
--------------------------------------------------
From: "Mike Drugov" <DRUGOVMnychhc.org>
Sent: Thursday, April 30, 2009 1:01 PM
To: <pen-testsecurityfocus.com>
Subject: Windows Patch Auditing & "File and Print Sharing" disabled

> Hello list,
>
> I need some advise
>
> I'm trying to scan a Windows Network where all end nodes except Domain
> Controller have "File & Print Sharing" disabled.
>
> What I'm trying to get a list of Microsoft Updates that are missing.
>
>
> So far I tried Nessus & Foundstone and none of them are able to provide a
> report with missing patches.(I'm able to get a report from Domain
> Controller)
>
> Nessus support stated that "File & Print Sharing" is required for patch
> auditing
>
>
> What is my other options?
>
> Thanks
>
>
> -----------------------------------------
> Visit www.nyc.gov/hhc
>
> CONFIDENTIALITY NOTICE: The information in this E-Mail may be
> confidential and may be legally privileged. It is intended solely
> for the addressee(s). If you are not the intended recipient, any
> disclosure, copying, distribution or any action taken or omitted to
> be taken in reliance on this e-mail, is prohibited and may be
> unlawful. If you have received this E-Mail message in error, notify
> the sender by reply E-Mail and delete the message.
>
> ------------------------------------------------------------------------
> This list is sponsored by: InfoSec Institute
>
> Tired of using other people's tools? Why not learn how to write your own
> exploits?
> InfoSec Institute's Advanced Ethical Hacking class teaches you how to
> write stack and heap buffer overflow exploits for Windows and Linux. Gain
> your Certified Expert Penetration Tester (CEPT) cert as well.
>
> http://www.infosecinstitute.com/courses/advanced_ethical_hacking_training.html
> ------------------------------------------------------------------------
>
>

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]