Forums: Best Way To Find Iis Servers? - Forums

I've been thinking a few ways to try and find the best way to find iis servers (and hopefully put them in a text file) anyone know the best way?

Use DFind

Usage: DFind <Option> <Parameter>

<Option>:
 -p    <Port> <IP IP> [THREADS]......... Scan one port on iprange
 -p    <Port , Port> <IP IP> [THREADS].. Scan two ports on iprange
 -p    <Port Port> <IP> [THREADS]....... Scan a portrange on ip
 -ban  <Port Port> <IP> [THREADS]....... Scan portbanners on ip
 -cgi  <IP> [THREADS]................... Scan cgi hole
 +ipc  <IP IP> [THREADS]................ Scan IPC$ null on 139 & 445
 -ipc  <IP IP> [THREADS]................ Scan IPC$ null on 139
 -ipc2 <IP IP> [THREADS]................ Scan IPC$ null on 445
 -iis  <IP IP> [THREADS]................ Scan IIS webservers
 -msa  <IP IP> [THREADS]................ Scan MSADC on webservers
 -ccb  <IP IP> [THREADS]................ Scan CCBill WhereAmi
 -med  <IP IP> [THREADS]................ Scan WMedia on webservers
 -php  <IP IP> [THREADS]................ Scan phpBB on webservers
 -php2 <IP IP> [THREADS]................ Scan PHP-Nuke on webservers
 -fro  <IP IP> [THREADS]................ Scan frontpage host
 -rea  <IP IP> [THREADS]................ Scan RealServer component
 -htr  <IP IP> [THREADS]................ Scan +.htr hole
 -pri  <IP IP> [THREADS]................ Scan .printer host
 -uni  <IP IP> [THREADS]................ Scan unicode hole
 -idq  <IP IP> [THREADS]................ Scan .idq host
 -cod  <IP IP> [THREADS]................ Scan codered virus hole
 -ftp  <IP> [-admin] [THREADS].......... Scan file transfert protocol hole
 -ftp  <IP IP> [-admin] [THREADS]....... Scan file transfert protocol hole

 notes:    If no threads specified, 200 is default.
           Fill free to add any comments/bugs/idea at GSO.



        ======================================[Ver: 0.4]========
        =====DFind port/vuln/component command line scanner=====
        =====coded by class101==========[LiGHTNiNG 2004]========
        ===========greets=======================================
        =====Sunw original coder of SFind cmdline supertool=====
        ==========================================[1999]========

Get it Here: Dfind
The Thread about it:Thread About It

lol (filtered) im a retard, i even have that tool, rofl thanks man, /me kicks self in nuts :D

heh

Hehe, hope you didn't hurt yourself too bad!

There are a lot of tools out now wich scan for iis servers. just use scan100/500/1000, dfind, xscan they will all do the job !!

I had use FXScanner with a big Unicode list, and I had many results.
Try it! It w0rks very fine for me!
And you can use it on a remote machine,too!

t00sTr0nG

Quote

Just remember this is a security site. ;)