Njoy
http://planet.nana.co.il/one2tree/RPCScan2.exe

What is this a link too??? ..nothing?!>?

Try microsoft's KB2 scanner tool (@ http://support.microsoft.com) to be used in conjunction with r3l4x's GUI tool <available for DL in the DL section of GSO>....

ref:
"Microsoft ® KB824146 Scanner Version 1.00.0257
The purpose of kb2 is to audit Windows systems over the network
for KB824146 and KB823980patch compliance. kb2 allows
administrators to quickly scan enterprise networks for unpatched systems."

Works great for W2K and XP systems.

-HK

leftclick doesn't work (will show you an image),
try rightclick.

btw: nice scanner for windows (happy me i'm not vulnerable )

Ah...thank you Rippertje. I stand corrected that it is a valid link for Foundstone's tool.

Trust the source,
www.foundstone.com>>resources>>free tools>>scanners
RPC 2.03

Much more GUI than Microsoft's tool...but Foundstone's seems to only check for existence of the patch, not validation of install (as Microsoft's tool does).

Hmmm.....I'll have to research that. I am seeing some false omissions in Foundstone's tool for non-rebooted, but patch applied NT4 servers...Hmm.

Says the tool covers:
"Microsoft Windows NT 4.0
Microsoft Windows NT 4.0 Terminal Server Edition
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003"

Don't want to miss any potential systems!

-Hardcore

tnx timor but it old

I'm logged into the forum and everything but when i try to download something from GSO's download section i get permissioned denied....what's the deal?

Slapnuts....READ THE INFORMATION THE ADMINS PROVIDED......

In short, since it looks like you are still a "Trial Member", you won't be able to Download anything.

To remedy this, you will need to have at leat 50 Good Posts(you seem to be at 1)...and a valid email address.

So start getting involved!!!! Share the knowledge!!! Don't just be a Script Kiddie!!!!

-Hardcore

why scan for RPC2 when no working exploit is out??

ULI....

When you become a member (after 50 quality posts), you can go to the Download section.

Until then...try this for your RPC DCom results that show "unpatched". It's a tool, RPC Exploit GUI by r3L4x v2

Just make sure the systems are "unpatched". Has built in FTP function as well.

Try to take the time to understand the mechanics of this little util. Maybe you might be able to write something like this??....someday.

Until then, learn, ask more questions:
(since you can't DL from GSO yet)
http://www.astalavista.com/tools/auditing/...k/multiscanner/

-Hardcore

RPC Exploit GUI by r3L4x v2 is for dcom1 not dcom2 bug.
Uli: there is rpc2 out that is working...

@skydance

which one? =)

plz pm me :]

hmm i thought you could only crash the system and not drop into a shell... Does you version allow a drop into a dos shell?

nope, it will only add a user

admin user?

hmm, could you link me to this exploit please?

or perhaps to the thread in the download section (if there is one).

thanks.

if it can add a user why can't it do more?

post in downloads? woud like to check it out