Add in check for uptime since March 14th 2017, which could indicate the system is vulnerable to MS17-010

Add in check for uptime since March 14th 2017, which could indicate the system is vulnerable to MS17-010 (EternalBlue/dismay style exploit)
2025-08-21 05:43:35 -07:00 · 2017-06-28 14:09:05 -05:00 · 2017-06-28 14:09:05 -05:00 · 5859c31e8e
commit 5859c31e8e
parent 38219e249e
1 changed files with 8 additions and 4 deletions
--- a/tools/FindSMB2UPTime.py
+++ b/tools/FindSMB2UPTime.py
@ -33,9 +33,13 @@ def GetBootTime(data):
 def IsDCVuln(t):
    Date = datetime.datetime(2014, 11, 17, 0, 30)
    if t[0] < Date:
-       print "DC is up since:", t[1]
-       print "This DC is vulnerable to MS14-068"
-    print "DC is up since:", t[1]
+       print "System is up since:", t[1]
+       print "This system may be vulnerable to MS14-068"
+    Date = datetime.datetime(2017, 03, 14, 0, 30)
+    if t[0] < Date:
+       print "System is up since:", t[1]
+       print "This system may be vulnerable to MS17-010"
+     print "DC is up since:", t[1]


 def run(host):
@ -63,6 +67,6 @@ def run(host):

 if __name__ == "__main__":
    if len(sys.argv)<=1:
-        sys.exit('Usage: python '+sys.argv[0]+' DC-IP-address')
+        sys.exit('Usage: python '+sys.argv[0]+' System-IP-address')
    host = sys.argv[1],445
    run(host)