jur1st posted an example script using nmap to detect vulnerable and infected workstations in regards to Conficker.
http://bitninja.org/conflicker_scan.txt
================= **Disclaimer** This is all pretty ugly, but should help those who find themselves in a pinch. This little guide comes with no warranties or guarantees effectiveness. ================= --------------- Pre-requisites --------------- This method has been tested using nmap version 5.85BETA5 on Mac OS X. This should work on any *nix system. Open the terminal and input the following commands:
