From jkb@meddler.com Fri Jan  5 16:45:53 2001
Date: Thu, 4 Jan 2001 12:47:12 -0600 (CST)
From: Kent Brown <jkb@meddler.com>
To: project@honeynet.org
Subject: January Scan of the Month


Question 1
	They are attempting to determine if there is an exploitable web
	server running.

Question 2
	Whats unique about the tool is it checks what server type and
	version is running prior to testing for vulnerabilities to help
	deter false positives.  Something else unique about this tool, but
	but not shown in the scan is the tool uses mime encoding for the
	URL instead of plain text to help deter detection from IDS.

Question 3
	Whisker is the tool being used...


-Kent