XTStrike
02-07-2002, 05:23 AM
Ok, I dont know If I should post this but here goes.
I downloaded a program a couple of days ago, which we will call Program_A - it was a utility for scanning 254 hosts at a time for the NetBIOS port and reporting any open shares.
I would appreciate that this program remains anonymous!!
I scanned the subnet which is my neighbourhood cable service and found at least 7 PC's which had completely open shares, and connected with full access to the C: of peoples machines in my neighbourhood.
Being the person I am I simply left the machines alone as I was simply in it for the test.
It makes you realise that if I found out of the 254 machines, 7 machines that were unprotected, then do your calculations and you will soon notice that:
255*255*255*255 = 4,228,250,625 (not exactly that many but im doing a rough calculation)
so 254 machines = 7 totally open = 7/254 = 2.76%
So, 2.76% of the computers I scanned were completely open, now lets look at the whole world:
4,228,250,625 / 2.76% = 116,699,717
So, if we assumed all nodes on the internet were windows machines of home users, that would be over 116 million vulnerable machines.
Now accounting for unused IP's, other OS's, routers, switches, other devices, and generally non applicable IP's we can say maybe under 10% of those are open but think about it, thats still over 10 million machines just sitting there with completely open administrator passwords and open shares, just begging to be smacked with a trojan.
I downloaded a program a couple of days ago, which we will call Program_A - it was a utility for scanning 254 hosts at a time for the NetBIOS port and reporting any open shares.
I would appreciate that this program remains anonymous!!
I scanned the subnet which is my neighbourhood cable service and found at least 7 PC's which had completely open shares, and connected with full access to the C: of peoples machines in my neighbourhood.
Being the person I am I simply left the machines alone as I was simply in it for the test.
It makes you realise that if I found out of the 254 machines, 7 machines that were unprotected, then do your calculations and you will soon notice that:
255*255*255*255 = 4,228,250,625 (not exactly that many but im doing a rough calculation)
so 254 machines = 7 totally open = 7/254 = 2.76%
So, 2.76% of the computers I scanned were completely open, now lets look at the whole world:
4,228,250,625 / 2.76% = 116,699,717
So, if we assumed all nodes on the internet were windows machines of home users, that would be over 116 million vulnerable machines.
Now accounting for unused IP's, other OS's, routers, switches, other devices, and generally non applicable IP's we can say maybe under 10% of those are open but think about it, thats still over 10 million machines just sitting there with completely open administrator passwords and open shares, just begging to be smacked with a trojan.