Intel Security

CSniffer v1.0.0.3

We have discovered that one of the exploits of the Aurora vulnerability is exfiltration of intellectual property via source code management tools like Perforce. McAfee CSniffer is a free tool which will scan your infrastructure to discover if you have unencrypted Perforce passwords which could be stolen and used to penetrate your source code library. Download now.

This tool acts much like a standard Ethernet network sniffer. However, unlike a traditional packet sniffer it doesn't attempt to capture and decode all traffic but instead is geared toward discovering useful infrastructure and security-related data from the network, often from traffic not sent to or from the host system i.e. general broadcast network traffic. This data can reveal all manner of useful information, ranging from live systems on the network, hostnames, IPv6 systems, routers and name servers, user names and passwords.

Note that the tool is not comprehensive in the amount and range of information it gathers. Rather it goes to show that your network is constantly chattering away, unintentionally revealing vast amounts of useful information that could be utilized by an attacker. This tool highlights some of that data. This is the kind of information that was obtained by systems hit by the Aurora vulnerability (MS10-002) affecting Microsoft's Internet Explorer web browser including for example, obtaining credentials to source control systems leading to the theft of highly confidential intellectual property.

Download a detailed readme file from

Download this tool now