:::eSS - ech0 security scanner:::

1:- What is ess?
2:- Installing and using ess
3:- Some infos of ess
4:- Known issues
5:- Greets



1:::What is ess?:::
Ess is a remote security scanner for linux that scans remote nodes for
known security flaws. It does some of the simple probing technics
automatically like banner grabbing, OS guessin', and it includes a
multithread TCP portscanner.

[HISTORY]
0.8.6 beta----------------------------------------------
 -User no longer need to enter their IP address in ess.conf
  for syn portscanning.
 -Improved the speed of ftpd probing.
 -Added ftp file/directory listing feature.
 -Added TCP/IP fingerprinting OS guessing feature
  (need syn portscan enabled in ess.conf).
 -Scan results will still be logged after user closes it with
  ctrl+c
0.8.5 beta----------------------------------------------
 In version 0.8.5 beta, ess would probe
 ftpd/telnetd/smtpd/named/fingerd/httpd/pop2d/pop3d/rpc
 service/imapd/rlogind/rshd/Xwindows/wingate logserver.
--------------------------------------------------------



2:::Installing and using ess:::
As usual..
./configure
make
binary ess would be created

First of all, open up ess configuration file (ess.conf) and modify
to your need.

./ess hostname/IP file_to_log
	or
./ess host_list file_to_log

The entry in the host_list should be seperated by space or a newline.



3:::Some infos of ess:::
-By default, ess would do a portscan to identify enabled services before
 probing the daemon. The portscanner only scans for known ports found in
 the file "portlist" included.
-Banner grabbed from daemons is usually compared in check4bug.c
-In cgi scan, ess would probe for known CGIs found in cgi.conf
-In TCP/IP fingerprinting OS guessing, the Window size/TTL/TOS/FRAG 
 would be used to guess what OS remote host is running, more info in
 file "fingerprint".
-Most of the other options can be changed in ess.conf



4:::Known issues:::
*Ess only compiles well on linux, do a typescript of ./configure and make
 and send to cks@ech0.de if you are having problem building ess.

*Ess might exit with segmentation fault while scanning on a huge hostlist.

*Ess might exit with segmentation fault while resolving the IP address of
 localhost. To address this issue, the local hostname and IP address must
 be added into /etc/hosts

*Syn portscanning would report every ports found on scanning localhost.

*Ess might stop responding while syn portscanning some host over the internet.
 To address this issue, insert the network interface in ess.conf.

-Report any bugs to cks@ech0.de



5:::Greets:::
>From all of us at ech0 Security - CKS, daw0rm, deepcase, gicmo, HyPE

Special thanks to - thok, fdisk and night for their great help in coding.
                  - ch1pz taking great effort in testing and suggesting.

Greets to: The Rulerz, masterT, H3X, ananke, wilkins, edi, stanly, knieal
	   luxus, flowrun, theWOrm, BHZ, GaTeCraSh, NiMaND, CommPort5
           boun, hury, Dug Song, NtWak0, datawar, xline, ouiji, kilrid
           thn, insect, funkysh , TTToaster, rfp, Maria, Caro ,manxx
           everyone in #slackware Galaxynet and others (u know who u r :)
Group Greets: l0pht, ADM, Teso, w00w00, THC, UCF, el8, deep, Ussr Labs
              Legion2000, b0f, goat
