Paglo RogueScanner

Release Notes: This release adds a gsoapWinInet plugin for the Win32 GUI. Proxy settings are taken from the system-wide settings on Windows. The fingerprint database has been updated with over 600 new device types.

Release Notes: Many scanning and classification improvements. Support has been added for parsing routes under from IOS CLI. Support has been added for dumping Cisco device CDP cache via both SNMP and CLI (IOS and CatOS). Support has been added for sniffing CDP broadcasts off the wire. CDP information is now submitted to the classification server and used for classification. FTP (21/TCP) has been added to the list of ports that are probed if open.

Release Notes: Improvements in probing to make it more accurate, including the addition of DHCP-based fingerprinting. More robust communication with switches. Many bugfixes and lowered memory consumption after running for many days.

Release Notes: Promiscuous mode scans are less disruptive. A random IP isn't picked until after an ARP scan of the local network has completed and steps are taken to ensure that the IP chosen isn't in use. A bug where telnet scans were discarding the first character of the banner has been fixed. The "proxy_host" config option now takes hostnames or IP addresses.

Release Notes: Support was added for connecting to the classification server via an HTTP proxy and for HTTP proxies that require authentication. The "bw_limit" config file option was added, which allows average outgoing bandwidth to be limited. The "ignore_hosts" config file option was added, which is a comma separated list of IP addresses, MAC addresses, or hostnames to ignore when scanning. These devices will be classified solely by MAC address.