Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Is autoscan-network compromized?


  • Please log in to reply
5 replies to this topic

#1 ToddAndMargo

ToddAndMargo

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:06:14 PM

Posted 01 December 2014 - 01:29 PM

Hi All,

I love this utility for finding rogue devices, access points bridges, etc. on networks.  It finds everything, including stuff not on your "network".  By "network" I mean if your network is 192.168.111.0/24 and you have a wireless bridge on 192.168.222.0/24, Autoscan-network will locate it.  (Nmap's open proxy scan will not locate devices on other networks.)

Auto-scan Network:
http://autoscan-network.com/
 
But their web site look so compromised that I am starting to wonder if their software is too.  I have run it through Virus Total and it was clean.  Their forums are full of spam.  Their captcha on the registration utility does not show.  And their majordomo and webmaster eMail address are "not found".  Anyone know if this software is safe (not compromised)?
 
I occatinally need to check networks for all attached devices.
 
Nmap's open proxy scan will only locate devices your "network" (e.g. 192.168.111.0/24) but not devices on other networks (e.g. 192.168.222.0/24) attached to your infrastructure.  "ubnt" and "overlook-fing" have the same issue.
 
Auto-scan Network: http://autoscan-network.com/ does a great job of finding all attached devices, but it may be compromised (its web site seems like it have been hacked) and it has issue with Windows 7 and Frankenstein (Windows 8).
 
Anyone have a favorite device locator utility? Be nice if it ran in both Windows and Linux, but I will take a Windows only utility if that is all that is available.
 
Many thanks,
-T
Mod Edit:  Merged topics - Hamluis.
 

Edited by hamluis, 01 December 2014 - 02:54 PM.


BC AdBot (Login to Remove)

 


#2 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,717 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:14 AM

Posted 02 December 2014 - 01:34 PM

Did you check the digital signature?


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#3 ToddAndMargo

ToddAndMargo
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:06:14 PM

Posted 02 December 2014 - 05:13 PM

Did you check the digital signature?

 

No.   Couldn't find one.

https://sourceforge.net/projects/autoscan/files/AutoScan/autoscan-network%201.50/


Do you know a better piece of software for this?



#4 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,717 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:14 AM

Posted 04 December 2014 - 03:00 AM

These sourcedorge files are from Jan 2010. When did you start to think their website was compromised?

Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#5 ToddAndMargo

ToddAndMargo
  • Topic Starter

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Local time:06:14 PM

Posted 04 December 2014 - 01:52 PM

These sourcedorge files are from Jan 2010. When did you start to think their website was compromised?

 

Last weeks when I went to sign up for the forum and found the captcha missing and the forums stuffed full of spam, plus the webmaster and majordomo accounts "not found".



#6 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,717 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:14 AM

Posted 05 December 2014 - 09:54 AM

I think that from your description, the website was compromised but since the files are hosted on Sourceforge and have not changed since 2010, that the files on SOurceforge are not compromised.

Of course, this is assuming that the website was legit when they started.


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users