RE: Pen-Testing Windows from Solaris

From: juan.losada@telefonica-data.com
Date: Tue May 13 2003 - 12:32:49 EDT

• Next message: jaymz ringler: "Re: Auto-Run CD - Disabling ScreenSavers"
• Previous message: Dieter Sarrazyn: "RE: Pen-Testing Windows from Solaris"
• Maybe in reply to: peter.king: "Pen-Testing Windows from Solaris"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

     I think nessus for Solaris8 and Solaris9 (I don´t know for version 7) is
available in pkg format (easy and instant installation) at www.sunfreeware.com,
though you need to previously install additional packages (openssl, glib, gtk
and libgcc).

     There is also the last version of nmap in pkg format.

     Juanjo.

"Bojan Zdrnja" <Bojan.Zdrnja@LSS.hr> con fecha 13/05/2003 09.32.10

Por favor, responda a Bojan.Zdrnja@LSS.hr

Destinatarios: "'peter.king'" <peter.king@ziplip.com>,
        pen-test@securityfocus.com
CC: (cci: Juan Jose Losada Marcos/TDE)
Asunto: RE: Pen-Testing Windows from Solaris

Among tools that other people suggested, you can install Nessus on that
machine and run tests on target machines.
You'll need nmap for that as well.

Installation *can* be tricky, you can find some info on the following URL
(it's for Solaris 7, but you can find it useful):

http://www.sunhelpdesk.com/users/john/nessus.htm

Best regards,

Bojan Zdrnja

> -----Original Message-----
> From: peter.king [mailto:peter.king@ziplip.com]
> Sent: Tuesday, 13 May 2003 3:10 a.m.
> To: pen-test@securityfocus.com
> Cc: peter.king@ziplip.com
> Subject: Pen-Testing Windows from Solaris
>
>
>
>
> Hi
>
> I have recently been given the task of Pen-Testing several
> large Windows networks, running a variety of versions of windows.
>
> Unfortunatly the only platform I will have to conduct the
> tests will be a Sparc Solaris 2.6 box. I will have command
> line access only to this box.
>
> I envisage the main problems with the boxes to be poor
> passwords, open shares, IIS, and MS SQL.
>
> Given these limits what command line tools would people
> suggest as the best ones to use that will run under Solaris
> 2.6? I have my own ideas for several of them but would
> appreaciate any extra input.
>
> Cheers,
>
> Peter
>
> --------------------------------------------------------------
> -------------
> Did you know that you have VNC running on your network?
> Your hacker does.
> Plug your security holes.
> Download a free 15-day trial of VAM:
> http://www.securityfocus.com/StillSecure-pen-test
> --------------------------------------------------------------
> --------------
>
>

---------------------------------------------------------------------------
Did you know that you have VNC running on your network?
Your hacker does.
Plug your security holes.
Download a free 15-day trial of VAM:
http://www.securityfocus.com/StillSecure-pen-test
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Did you know that you have VNC running on your network?
Your hacker does.
Plug your security holes.
Download a free 15-day trial of VAM:
http://www.securityfocus.com/StillSecure-pen-test
----------------------------------------------------------------------------

• Next message: jaymz ringler: "Re: Auto-Run CD - Disabling ScreenSavers"
• Previous message: Dieter Sarrazyn: "RE: Pen-Testing Windows from Solaris"
• Maybe in reply to: peter.king: "Pen-Testing Windows from Solaris"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:33 EDT