This is probably far fetched but worth a try.
My company uses a VPN and here is what I would like to see or try.
When a user connects to the network via the vpn we assign a IP from a pool.
If HM could monitor that ip pool and when a ip is active (assigned) either do a port scan for known trojan ports or run a external trojan scanner on the connecting machine. If a open port is found then alert the admin that a compromised machine has connected through the VPN. I know there is the tcp connection monitor but to set it up for every IP possible in the pool would be over 100 monitors. I am just looking to be able to put a set of ips in the host field.
Port Scan
additional ports in list
Also would like to see more ports in the available ports to scan list. Have all known trojan ports available. Though I could probaly do this myself if I just look into it abit more.
I am a little confused. First I think you are talking about HostMonitor. But second post looks like you are talking about IP-Tools. Or you are using both applications?Also would like to see more ports in the available ports to scan list. Have all known trojan ports available. Though I could probaly do this myself if I just look into it abit more.
IP-Tools can scan any ports you need. Just click Options menu and setup list or range of ports to scan.
HostMonitor cannot scan ports at all. It can monitor some ports on some hosts, but you should specify that list. You may specify a range of IP addresses (e.g. 123.123.123.1 - 123.123.123.254), in this case HostMonitor will create a separate test for each of the addresses within that range.
Regards
Alex