Application	:	AUSTIN
Platform	:	PalmOS
Version		:	1.0.1
Date		:	2003.08.06
Author		:	Paul Clip (pclip at atstake dot com)
Copyright	:	(c)2003 @stake Inc



[Introduction]

	AUSTIN is a security scanner running on PalmOS. Entirely self-contained,
	it has the following features:
		
		- TCP and UDP scanning, with optional banner grabbing
		- URL scanning
		- Scheduled scans (periodic automated scans)
		- Interactive mode for manual TCP testing
		- AUSTIN preferences, the URL vulnerability database, and
		  all scan results are written in Pilot-DB format for ease of 
		  processing
		- Distributed under GPL



[Requirements]

	A network-capable PalmOS PDA running OS 3.5 and up.
	Approximately 300KB of RAM should be available.



[Installation]

	Hotsync the following files to your PDA:
	
		- AUSTIN.prc		(the AUSTIN executable)
		- AUSTINrsrc.prc	(AUSTIN resource file)
		- AUSTIN_NetLib.prc	(AUSTIN network library)
		- PToolboxLib761.prc	(Incredibly useful Pocket-C library, see below)
		- db.prc		(the Pilot-DB database application)
		- AUSTIN_PrefsDB.pdb	(AUSTIN preferences Pilot-DB database)
		- AUSTIN_VulnDB.pdb	(AUSTIN URL Vulnerability Pilot-DB database)



[User Guide]

	When executed, AUSTIN will start in scan mode. This allows the user to specify
	the parameters with which to scan:

		- Hosts: one or host to scan can be entered, separated by commas.
			 IP address ranges are also supported, e.g. 1.2-5.6.7-100
		- Ports: one or ports to scan, separated by commas.
			 Port ranges are also supported, e.g. 22,25,80,110,135-139
			 If no ports are specified, AUSTIN will read them from the 
			 selected ports in the Preferences database.
		- Scan Type:
			 - TCP: TCP full connect scan
			 - UDP: UDP scan
		- Options:
			 - If "Banner Grab" is checked, then AUSTIN will send the banner
			   defined in the Preferences database to every (open) port
			 - If "URL Scan" is checked, AUSTIN will first check for the presence
			   of the HTTP protocol on every open port and, if found, will
			   proceed with a URL scan of that port
			 - If "Scheduled Scan" is checked, then AUSTIN will start periodically
			   scanning the hosts, as defined in the Preferences database
			 - The "NASL Scan" option is not currently implemented
		- Database icon: launches pilot-db
		- Scan! button: starts the scan, progress info is displayed in the status field
		
	Each scan's results are written to a Pilot-DB database created for that particular scan.
	The results can then be converted into CSV files using Pilot-DB tools. See
	http://pilot-db.sourceforge.net/ for more details.

	Interactive mode may be selected from the "Mode" menu. This allows the user to connect
	directly to a host & port via TCP:

		- Host:		Specify one hostname or IP address
		- Port:  	Specify one port number
		- Input: 	Anything you wish to send to the host
		- Output:	Contains data received from the host and informational messages
		- Connect:	Connect to the host
		- Disconnect:	Disconnect from the host
		- Send:		Transmit the data in the Input field to the host
		- Clear:	Delete all text in the output field



[Presentation]

	I've included an abbreviated version of the presentation I gave at DEFCON 
	http://www.defcon.org/ about AUSTIN. It is located in the pres/ directory.



[Source Code]

	The complete source code to AUSTIN is available in the source/ directory and is
	distributed under a GPL license.
	
		- PocketC is needed to compile the main source files. Ideally, you'll
		  want to use the PDE (PocketC Desktop Environment) to speed development.
		  For more information, visit: http://www.orbworks.com/pcpalm/index.html
		  
		- AUSTIN's network library is written in C and was compiled with PRC-Tools.
		  See the following sites for more information:
		  http://prc-tools.sourceforge.net/
		  http://www.palmos.com/dev/tools/sdk/
		
		- AUSTIN's resource file (i.e. the file that describes the GUI and icons
		  used by AUSTIN) was compiled with PilRC, available at:
		  http://www.ardiri.com/index.php?redir=palm&cat=pilrc
		
		- AUSTIN's database files were converted from CSV to Pilot-DB files using
		  csv2pdb.exe, available from http://pilot-db.sourceforge.net/



[Included Software]

	There are two software components included with AUSTIN that I did not write:
	
		- Pocket Toolbox: an amazingly versatile PocketC library written by Joe Stadolnik.
				  Version 7.61 is included with this distribution.
				  For more info visit:
				  http://www.geocities.com/retro_01775/PToolboxLib.htm

		- Pilot-DB:	  a GPL'ed database for the Palm and a very useful program.
				  Version 1.0.4 is included with this distribution.
				  For more info visit:
				  http://pilot-db.sourceforge.net/



[Support & Comments]

	AUSTIN is a free tool and no formal support is provided. However, feel free to e-mail
	me with any questions or comments you may have.	



[Thanks]

	AUSTIN would probably never have seen the light of day with two ingredients for 
	which I am very grateful:
	
		- Joe Stadolnik's Pocket Toolbox Lib without which PocketC programs wouldn't
		  be able to hold their own against software written in "real" C
		  
		- My friends and colleagues at @stake for knowledge and inspiration



[Version History]

	v1.0.1	-	Fixed network library bug, improved net timeout, added Stop! button
	v1.0	-	Initial release
