Home page logo
/

nmap-dev logo Nmap Development mailing list archives

Own Idea for SOC. Please Comment.
From: PALASH JHABAK <palash.jhabak () gmail com>
Date: Wed, 4 Apr 2012 19:59:33 +0530

I do not know how relevant it will be for the present SOC but I have this
idea for a while and I want a feedback on the same.

I live in a University Campus with about 8k residents. Peer to Peer sharing
within the campus Network is very common and the software like DC++ are one
of the commonly used software. Often people (knowingly or unknowingly )
share their important and vulnerable data over those peer-to-peer share
software. I have seen people sharing all of the Windows installation folder
(C:/), and not only this they tend to share the hidden folders too. In the
free time I search for users who have shared their "AppData" folder on DC++
and surprisingly I find many such users. I download the "AppData" folder,
go to the mozilla ( profile folder ) or in chrome ( User Data ), replace
them with the corresponding folders in my Mozilla or Chrome folders and
guess what ? I can see all of their saved passwords, the website they use
and any and every data which their browser had saved.

I think the above is a very important issue and I want to create a tool
which automatically, in a LAN network, searches for I.P ( and hence users )
who have shared those vulnerable folders.

I dont know if it matches nmap's goal with current SOC but a feedback would
be helpful.

Thanks

Palash Jhabak
Senior Undergraduate
Department of Electrical Engineering,
IIT Bombay, Mumbai.
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault