Scripts
| auth-spoof |
Checks for an identd (auth) server which is spoofing its replies. |
| http-malware-host |
Looks for signature of known server compromises. Currently, the only signature it looks for is the one discussed here: <http://blog.unmaskparasites.com/2009/09/11/dynamic-dns-and-botnet-of-zombie-web-servers/> |
| smtp-strangeport |
Checks if SMTP is running on a non-standard port. |




