Microsoft Creates Free Utility for Detecting Network Sniffers -- Redmond Channel Partner

Microsoft Creates Free Utility for Detecting Network Sniffers

By Scott Bekker
February 03, 2005

Microsoft on Wednesday posted a free security tool in the Microsoft Download Center to help administrators root out unauthorized network sniffers running on Windows computers.

The tool is called Promqry 1.0 and comes in a command line version (promqrycmd.exe) and a version with a graphical UI (promqryUI.exe). The command line version is a 113 KB download, and the graphical version is a 255-KB file.

"Promqry can accurately determine if a modern (Windows 2000 and later) managed Windows system has network interfaces in promiscuous mode. If a system has network interfaces in promiscuous mode, it may indicate the presence of a network sniffer running on the system," Microsoft says in the overview of the tool on its download page. "Promqry cannot detect standalone sniffers or sniffers running on non-Windows operating systems."

A full description of the tool will be available under the Knowledge Base Article number 892853, but the page hadn't been posted Thursday morning.

Network sniffers are frequently installed when systems are compromised by a Trojan horse. Attackers can use the sniffers to capture usernames, passwords and other sensitive information as it crosses the network.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Printable Format

Partner Resources

Hot Topics

More Resources

Microsoft Creates Free Utility for Detecting Network Sniffers

The 2018 Microsoft Product Roadmap

2018 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Microsoft Names 2018 Partners of the Year

Acumatica Lands $25 Million Round To Fund Cloud ERP Expansion Plans

Microsoft Warns Orgs Away from Windows 10's 'Long-Term Servicing' Branch

Free Partner Guide PDFs from RCP's editors

FREE WHITE PAPERS FROM OUR SPONSORS

Sponsored Links