|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: intel96 (intel96
bellsouth.net)
Date: Thu May 14 2009 - 14:17:15 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Something simple:
You could script something that calls systeminfo.exe.
http://technet.microsoft.com/en-us/library/bb491007.aspx
Something more advance:
You could write something in C# that queries the registry for missing
patches?
The registry key on my system that contains this information is:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Updates\Windows XP
marcelo carvalho wrote:
>
> Do y try null section Netbios with MBSA Analayzer?
> --------------------------------------------------
> From: "Mike Drugov" <DRUGOVMnychhc.org>
> Sent: Thursday, April 30, 2009 1:01 PM
> To: <pen-testsecurityfocus.com>
> Subject: Windows Patch Auditing & "File and Print Sharing" disabled
>
>> Hello list,
>>
>> I need some advise
>>
>> I'm trying to scan a Windows Network where all end nodes except
>> Domain Controller have "File & Print Sharing" disabled.
>>
>> What I'm trying to get a list of Microsoft Updates that are missing.
>>
>>
>> So far I tried Nessus & Foundstone and none of them are able to
>> provide a report with missing patches.(I'm able to get a report from
>> Domain Controller)
>>
>> Nessus support stated that "File & Print Sharing" is required for
>> patch auditing
>>
>>
>> What is my other options?
>>
>> Thanks
>>
>>
>> -----------------------------------------
>> Visit www.nyc.gov/hhc
>>
>> CONFIDENTIALITY NOTICE: The information in this E-Mail may be
>> confidential and may be legally privileged. It is intended solely
>> for the addressee(s). If you are not the intended recipient, any
>> disclosure, copying, distribution or any action taken or omitted to
>> be taken in reliance on this e-mail, is prohibited and may be
>> unlawful. If you have received this E-Mail message in error, notify
>> the sender by reply E-Mail and delete the message.
>>
>> ------------------------------------------------------------------------
>> This list is sponsored by: InfoSec Institute
>>
>> Tired of using other people's tools? Why not learn how to write your
>> own exploits?
>> InfoSec Institute's Advanced Ethical Hacking class teaches you how to
>> write stack and heap buffer overflow exploits for Windows and Linux.
>> Gain your Certified Expert Penetration Tester (CEPT) cert as well.
>>
>> http://www.infosecinstitute.com/courses/advanced_ethical_hacking_training.html
>>
>> ------------------------------------------------------------------------
>>
>>
>
> ------------------------------------------------------------------------
> This list is sponsored by: Information Assurance Certification Review
> Board
>
> Prove to peers and potential employers without a doubt that you can
> actually do a proper penetration test. IACRB CPT and CEPT certs
> require a full practical examination in order to become certified.
> http://www.iacertification.org
> ------------------------------------------------------------------------
>
>
------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
http://www.iacertification.org
------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]