I got a bunch of hits on my web logs from "morepheus f*****g scanner". Anyone have any idea where i could download this from to see the results my server gave?
i did quite a few google searches and came up with jack nothing.
what sense does it make to edit the profanity in the title but not the post -- pureh@te
A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.
Went to the first one http://ekle.us/index.php/2007/05/upd...ucking_scanner
It looks like on the second link says that this is a user agent that looks for vulns in PHP based websites.
Also if you are wanting/needing a scanner you could use some of the tools in bt to see what your server gives.
... thanks for the help, but you guys are looking wayyyy too much into this.
i spelled it wrong in my post, i did the google searches correct.
I have read, and looked for a good 30min for the tool and just couldnt' find it. the one place i figured i would turn next is here, as someone here is bound to have heard of it, and have it.
I have scanned my server many times over with various tools, i just want to see waht this one gives. That way its also educational for me to know where it fits in my scale, comparing it to dfind, web inspect, nikto.
It turns out that Morfeus is a scanner that looks for vulnerabilities in PHP based web sites (as this one is). I guess it failed to find any vulnerabilities in my blogging software because I haven't noticed any problems,
It is simply a HTTP_USER_AGENT
Just like the one in your web browser of choice.
There in the link that I have posted twice is a solution on how to deal with it!
It is simply a "bot" acting like user agent to see what type of servers respond and what info they send back to the agent.
Have a look at any of the sites that shows your user agent type in your browser. In Konquerer it is settings | configure | security
This will show you what type of info your browser spits out to a probe
Also another useful tool that is in BT is httprint
This will show the same types of results and it can be run at multiple targets and on different ports.
There is even a tutorial on it here as well.
There are according to google 6000 results for this.
I would suggest that you continue with this search
However since it is relatively new there will probably not be a lot of info out.
(............ = 10 characters)