RE: Tool to find hidden web proxy server

From: Jeff Gercken (JeffG@kizan.com)
Date: Wed Sep 01 2004 - 16:00:03 EDT

• Next message: M. D.: "RE: Craking Serv-u passwords stored in .ini file."
• Previous message: Christine Kronberg: "Re: Tool to find hidden web proxy server"
• Maybe in reply to: vinay mangal: "Tool to find hidden web proxy server"
• Next in thread: Burnett, Robert: "RE: Tool to find hidden web proxy server"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Why not just look for the src of http request syn packets at your
network boundary.

Using tcpdump:
tcpdump -i eth0 -qnl 'tcp[13]==2' and port 80

The bpf expression 'tcp[13]==2' and port 80 is also a valid Ethereal
Capture filter statement if you're win32 inclined.

More help on BPF syntax at:
http://home.insight.rr.com/procana/index.html

-Jeff

-----Original Message-----
From: vinay mangal [mailto:vinay.mangal@eil.co.in]
Sent: Wednesday, September 01, 2004 7:27 AM
To: Pen
Subject: Tool to find hidden web proxy server

Dear all,

I am looking for a tool to find the hidden web proxy server in my local
network.

Any hint will be useful.

with regards
Vinay

------------------------------------------------------------------------
------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one
interaction
with one of our expert instructors. Check out our Advanced Hacking
course,
learn to write exploits and attack security infrastructure. Attend a
course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
------------------------------------------------------------------------
-------

------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------

• Next message: M. D.: "RE: Craking Serv-u passwords stored in .ini file."
• Previous message: Christine Kronberg: "Re: Tool to find hidden web proxy server"
• Maybe in reply to: vinay mangal: "Tool to find hidden web proxy server"
• Next in thread: Burnett, Robert: "RE: Tool to find hidden web proxy server"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:02 EDT