Re: Pen Testing Tippingpoint

From: Zed Qyves (zqyves.spamtrap@gmail.com)
Date: Mon Jun 11 2007 - 06:59:28 EDT

• Next message: Clemens, Dan: "RE: Pen Testing Tippingpoint"
• Previous message: Harold Castro: "Pentesting Old unsupported Firewall Appliances"
• In reply to: TStark: "Pen Testing Tippingpoint"
• Next in thread: Jeremiah Brott: "RE: Pen Testing Tippingpoint"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello,
Disclaimer: I've never set foot close to such a device.
Only think I could find...
http://www.securityfocus.com/bid/23644
However keep in mind that in the world of vulnerabilities theaforementioned is considered dated (25/04/2007).
You can get some general ideas on how such devices are built fromDennis Cox's presentation at CanSecWest06 "Insiders View: NetworkSecurity Devices".
If I were you I would start playing with its protocol "dissectors"first, via fuzzing a server(s), and see what I can get out of that.
Also I would look for deployment vulnerabilities such as defaultusernames and passwords (if such exists), secure protocols inmanagement interfaces, SSLv2 vs SSLv3, SNMPv3 vs SNMPv(1|2), etc...
What is your goal(s) in this pen-test? Crashing it, delaying theprocessing of packets and hence letting an attack slip in,compromising the device administration?
Good luck.
ZQ

On 6/10/07, TStark <stark.ironman@gmail.com> wrote:> Hello,>> I am planning on pen testing a Tippingpoint appliance, I think it's a> 200e, I'm looking for some suggestions on what to use to pen test this> thing.> I haven't found a Nessus plug in to help test this appliance, I'd bet> there is one out there somewhere.>> Any information to help me test/penetrate Tippingpoint would be very> helpful, I'd like to make sure we test this thing well before we shell> out that kind of dough.>> TIA!>> Tony>> ------------------------------------------------------------------------> This List Sponsored by: Cenzic>> Are you using SPI, Watchfire or WhiteHat?> Consider getting clear vision with Cenzic> See HOW Now with our 20/20 program!>> http://www.cenzic.com/c/2020> ------------------------------------------------------------------------>>

-- ---------------------------------------------------------------------Κρέωνἐν τῇδ᾽ ἔφασκε γῇ· τὸ δὲ ζητούμενονἁλωτόν, ἐκφεύγειν δὲ τἀμελούμενον.Οιδίπους Τύρρανος [110]---------------------------------------------------------------------CreonIn this our land, so said he, those who seek Shall find; unsought, welose it utterly.Oedipus Rex [110]---------------------------------------------------------------------

• Next message: Clemens, Dan: "RE: Pen Testing Tippingpoint"
• Previous message: Harold Castro: "Pentesting Old unsupported Firewall Appliances"
• In reply to: TStark: "Pen Testing Tippingpoint"
• Next in thread: Jeremiah Brott: "RE: Pen Testing Tippingpoint"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:52 EDT