So, I came across this new tool that scans for vulnerability on your network against EternalBlue (the exploited tool used as a framework for many, if not most, of the well-known Ransomwares around) called EternalBlues.exe developed by Elad Erez.
Here are some tips from Elad before running the tool:
- If you’re about to run it in your working environment, please update the IT/Security team in advance. You don’t want to cause (IDS/IPS/AV) false alarms
- If vulnerable systems were found – please take a Windows update asap
- For god sake, please disable SMBv1 already. Whether your systems are patched or not. This protocol was written over 3 decades ago…!
- If you would like to enjoy the tool but disallow sending anonymous statistics , disable access to Elad’s website
Download the tool here
About Elad Erez
He is the Director for Innovation for Imperva. Imperva is a cyber security company that offers Web Application, Data and Cloud Security line of products and leads the Gartner’s Magic Quadrant Report for 2016 for the criteria of Ability to Execute and Completeness of Vision for its line of Web Security Firewalls.