News

Microsoft Creates Free Utility for Detecting Network Sniffers

Microsoft on Wednesday posted a free security tool in the Microsoft Download Center to help administrators root out unauthorized network sniffers running on Windows computers.

The tool is called Promqry 1.0 and comes in a command line version (promqrycmd.exe) and a version with a graphical UI (promqryUI.exe). The command line version is a 113 KB download, and the graphical version is a 255-KB file.

"Promqry can accurately determine if a modern (Windows 2000 and later) managed Windows system has network interfaces in promiscuous mode. If a system has network interfaces in promiscuous mode, it may indicate the presence of a network sniffer running on the system," Microsoft says in the overview of the tool on its download page. "Promqry cannot detect standalone sniffers or sniffers running on non-Windows operating systems."

A full description of the tool will be available under the Knowledge Base Article number 892853, but the page hadn't been posted Thursday morning.

Network sniffers are frequently installed when systems are compromised by a Trojan horse. Attackers can use the sniffers to capture usernames, passwords and other sensitive information as it crosses the network.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Microsoft Adds Modular Datacenter to Azure Space Efforts

    Microsoft this week introduced the Microsoft Azure Modular Datacenter as part of its overall Azure Space effort.

  • Microsoft and Partners Continue To Block Trickbot To Protect Elections

    Microsoft on Tuesday provided an update about its efforts, along with partners, to take down the Trickbot criminal network, which uses servers and devices to spread ransomware.

  • Microsoft Releases Windows 10 and Windows Server Versions 20H2

    Microsoft on Tuesday announced the "semiannual channel" release of Windows 10 version 20H2, otherwise known as the "October 2020 Update," and it also released Windows Server version 20H2.

  • How To Debug a PowerShell Script

    Here are three pointers for finding and fixing any bugs in your PowerShell script, no matter how long it is.

comments powered by Disqus