Funny you should mention that Mick. John Sawyer over at Dark Reading just posted an article about this topic. Microsoft Software restrictions?
http://bit.ly/abuPiw Solidcore is a real nice FIM / Process monitor tool (that McAfee owns now) -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Michael Douglas Sent: Friday, March 19, 2010 10:20 PM To: PaulDotCom Security Weekly Mailing List Subject: [Pauldotcom] File checker tool? I'm having a google fail moment... Is there a tool that will examine the md5/sha1 checksums of files and report if they're on a blacklist? Does such a thing exist for Windows Domains in enterprise sized environments? For instance, say you want to stop someone from installing autocad (no idea why I picked this... just first non-malware software example that popped in my head) on a workstation. You wouldn't use AV to prevent it from being installed... What tool would be the way to go about doing this? SMS/WSUS/whatever it's called now mainly uses filename as the ID right? Thanks for helping a *nix guy learn his way in a Windows world - Mick "Help me Obi-Wan Kenobi, you're my only hope" _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
