email snmptool@sans.org an empty message.

They'll reply with a desc of the tool and send you the url for downloading.

Thanks. Already found some mis-configured devices. Nice. Greenies for you.

tks zigar. I'll run this tomorrow and see....

Is anyone else of the opinion that this SNMP vulnerability is a bit more serious than people are currently treating it?

When you think of all of the Routers, NT Boxes etc on a network that could possibly have SNMP enabled?

Nope. There is a reason it's called SIMPLE. You don't get secure until you implement V3. Then you get encryption and authentication.

P.S. If you're not exposed to the internet (no firewall) you won't have a problem. Just block all SNMP from outside. This problem has been around since forever. It's inherent in SNMP and it's been known about (at least by some people) for a long time.

Just keep your security tight and you shouldn't have a problem.

there's a reason people "intheknow" have changed the acronym from
Simple Network Management Protocol to

Security? Not My Problem.... :eek:

lol that sounds like bill's favorite motto ...