PorkBind v1.2 : 13 DNS security flaws scanner (including DNS Poisoning)

In: Configurations checks , PorkBind , Vulnerability Scanner

31 July 2008

PorkBind is a multi-threaded nameserver scanner that can recursively query nameservers of subdomains for version strings. (i.e. sub.host.dom’s nameservers then host.dom’s nameservers) After acquiring the version strings it tests them against version numbers from CERT advisories and reports back to the user. Zone transfer capability is also tested for

This little test software checks for vulnerabilities defined into the default porkbind.conf. As well as Cache poisoning, NXT bug, Malformed SIG overflow, Crypto weaks and many others.

The vulnerabilities detected are described into advisories repository. The newest covered Cache poisoning is the alert TA08-190B (otherwise the famous CVE-2008-1447)

We recommand this utility because it checks for 13 critical DNS flaws.

Here is the internal links to vulnerabilities along with their CVSS v2.0 scores and OVAL checks (when available).

Post scriptum

Download

Compliance Mandates

Vulnerability Scanner :
PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2

Configurations checks	10 May 2010 : WebTest 1.2.1 - Testing Web Application with Python 1 May 2010 : Lansweeper v4.0 released 1 May 2010 : Sysinternal AccessChk v5.0 released 1 May 2010 : Spiceworks v4.7 build 50667 released 28 April 2010 : NSIA (Network System Integrity Analysis) v0.8.99 released
PorkBind	17 August 2008 : PorkBind updated to 1.3. 31 July 2008 : PorkBind v1.2 : 13 DNS security flaws scanner (including DNS Poisoning)
Vulnerability Scanner	12 May 2010 : Complemento v0.7.6 - Collection of Tools 10 May 2010 : SQLNinja v0.2.5 released! 26 April 2010 : Acunetix WVS v6.5 build 20100419 released 22 April 2010 : OpenSCAP v0.5.9 released 20 April 2010 : Sandcat v4.0 released