Structured Security Scanner

Recent leaks of NSA and CIA tools are being leveraged to help spread malware such as WannaCry and DoublePulsar; this may just be the tip of the iceberg. These powerful infections have crippled a broad spectrum of institutions: forcing government and financial closures, telecommunication shut-downs, and even hospitals to turn away patients.

StructureX has decided to do something about this and is publicly releasing the Structured Security Scanner, which is a tool that we developed internally to help keep our network (and the networks of our clients) safe from such infections. This tool will allow you to quickly and easily scan a specific host address or your entire network for potential vulnerabilities so that your IT group can triage critical areas of your business.:

Currently Supported Scanners

• EternalBlue - Scans for the vulnerability in Microsoft's implementation of a file sharing protocol CVE-2017-0144. Named after the original exploit EternalBlue believed to have leaked from the NSA. This scanner scans for the actual flaw in the SMBv1 protocol and it will detect if the DoublePulsar implant tool is already active on a system.
  Remediation: Install Microsoft Windows security update MS17-010.
  Credit: Thanks to team at TrustLook for their incredible work and research into the EternalBlue exploit and working on building tools to handle detecting it.

Release Notes

Structured Security Scanner v1.0.1 Release (5/22/2017)

• Added Default Network Address Detection

Structured Security Scanner v1.0.0 Release (5/19/2017)

• EternalBlue Vulnerability Detection Support
• Copy / Paste Support
• Scan Result Filtering

Known Issues

Some scanners may not perform properly on machines running older versions of Windows XP and Windows Small Business Server due to a long-running bug within Windows itself.