RogueScanner / News: Recent posts

RogueScanner 2.6.0 Released

RogueScanner is a network security tool for automatically discovering rogue wireless access points by scanning a wired network. In addition to finding access points, it will classify all discovered network devices.

Version 2.6.0 includes the following changes:
+ Changed branding from Network Chemistry to Paglo Labs.
+ Added gsoapWinInet plugin for WIN32 GUI. Proxy settings are taken from the
system-wide settings on Windows.... read more

Posted by Andrew Lockhart 2008-07-08

Under the hood of RogueScanner - Webinar

I will be presenting a free webinar on how RogueScanner finds and classifies devices and why it works better than previous device classification techniques.

The webinar will take place on Wednesday June 9 at 2PM EDT.

You can register to attend and find more information here:

http://www.iian.ibeam.com/events/netw001/22286/

Posted by Chris Waters 2007-04-30

RogueScanner 2.5.0 Released

RogueScanner is a network security tool for automatically discovering rogue wireless access points by scanning a wired network. In addition to finding access points, it will classify all discovered network devices.

Version 2.5.0 includes the following changes:
+ Added support for parsing routes under from IOS CLI.
+ Added support for dumping Cisco device CDP cache via both SNMP and CLI (IOS and
CatOS).
+ Added support for sniffing CDP broadcasts off the wire.
+ CDP information is now submitted to the classification server and used for
classification.
+ Added FTP (21/TCP) to ports that are probed if open.
+ Duplicate subnet ARP scans are prevented from running concurrently.
+ Service probes are prevented from taking longer than 30 seconds.
+ Addresses at the beginning and ending of a range are skipped in ping scans
if their last octets end in 0 or 255 respectively.
+ If an IP/netmask is specified in the configuration file, but the selected adapter
isn't configured with that IP/netmask, then fallback to using that adapter for
scanning with whatever IP/netmask it is configured with.
+ Fixed issue where the minimum length being used for a TCP datagram in a
bounds-check was too low.
+ Fixed a similar issue when dealing with ICMP port unreachable datagrams.

Posted by Chris Waters 2007-04-30

RogueScanner 1.2.1 Released

RogueScanner is a network security tool for automatically discovering rogue wireless access points by scanning a wired network. In addition to finding access points, it will classify all discovered network devices.

Version 1.2.1 includes the following changes:

+ Promicuous mode scans are prevented from using an IP corresponding to the sniffer
interface.
+ Promiscuous mode scans are aborted if a suitable IP cannot be found after 255 tries.
+ Fixed device lookup for promiscuous mode scans on WIN32 systems.... read more

Posted by Andrew Lockhart 2006-10-18

RogueScanner 1.2 Released

RogueScanner is a network security tool for automatically discovering rogue wireless access points by scanning a wired network. In addition to finding access points, it will classify all discovered network devices.

Version 1.2 includes the following changes:

+ Promiscuous mode scans are less disruptive. A random IP isn't picked until after
an ARP scan of the local network has completed and steps are taken to ensure
that the IP chosen isn't in use.
+ Fixed bug where telnet scans were discarding the first character of the banner.
+ "proxy_host" config option now takes a hostnames or IP addresses.

Posted by Chris Waters 2006-10-17

RogueScanner 1.0 released

RogueScanner is a network security tool for automatically discovering rogue wireless access points by scanning a wired network. In addition to finding access points, it will classify all discovered network devices.

This is the first public release of RogueScanner.

Posted by Chris Waters 2006-05-23