News

Microsoft Creates Free Utility for Detecting Network Sniffers

Microsoft on Wednesday posted a free security tool in the Microsoft Download Center to help administrators root out unauthorized network sniffers running on Windows computers.

The tool is called Promqry 1.0 and comes in a command line version (promqrycmd.exe) and a version with a graphical UI (promqryUI.exe). The command line version is a 113 KB download, and the graphical version is a 255-KB file.

"Promqry can accurately determine if a modern (Windows 2000 and later) managed Windows system has network interfaces in promiscuous mode. If a system has network interfaces in promiscuous mode, it may indicate the presence of a network sniffer running on the system," Microsoft says in the overview of the tool on its download page. "Promqry cannot detect standalone sniffers or sniffers running on non-Windows operating systems."

A full description of the tool will be available under the Knowledge Base Article number 892853, but the page hadn't been posted Thursday morning.

Network sniffers are frequently installed when systems are compromised by a Trojan horse. Attackers can use the sniffers to capture usernames, passwords and other sensitive information as it crosses the network.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • How To Replace an Aging Domain Controller

    If the hardware behind your domain controllers has become outdated, here's a step-by-step guide to performing a hardware refresh.

  • Azure Backup for SQL Server 2008 Available at Preview Stage

    Microsoft added the option of using the Azure Backup service to provide recovery support for SQL Server 2008 and SQL Server 2008 R2 when those workloads are hosted on Azure virtual machines.

  • Microsoft Suggests Disabling Old Protocols with Exchange Server 2019

    Exchange Server 2019 with Cumulative Update 2 (CU2) can help organizations rid themselves of old authentication protocols, which constitute a potential security risk.

  • Microsoft Previews New Edge Browser on Windows 7 and Windows 8.1

    Microsoft announced this week that it has released previews of its Chromium-based Microsoft Edge Web browsers for use on Windows 7, Windows 8 and Windows 8.1 systems.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.