Re: Apple pentesting

From: Mike (secfocus@mikesbytes.com)
Date: Wed Apr 06 2005 - 14:56:20 EDT

• Next message: Javier Blanque: "Re: Apple pentesting"
• Previous message: Todd Towles: "RE: Apple pentesting"
• In reply to: Julian Totzek: "Apple pentesting"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

At 4/5/2005 08:51 AM, Julian Totzek wrote:

>I have to do a pentest in a environment where mac's should be located. Never
>tested MacOS somebody have some tips for me? They normally should only be
>clients no servers.
>Do you know of special tools to test them, or is it possible to test them
>with progs like nesuss?

Metasploit (http://www.metasploit.com) has exploits for three different
MacOS vulnerabilities:

AppleFileServer LoginExt PathName Overflow
         http://www.metasploit.com/projects/Framework/exploits.html#afp_loginext
Arkeia Backup Client Type 77 Overflow (Mac OS X)
         http://www.metasploit.com/projects/Framework/exploits.html#arkeia_type77_macos
Samba trans2open Overflow (Mac OS X)
         http://www.metasploit.com/projects/Framework/exploits.html#samba_trans2open_osx

Any pen testing tools you use for BSD systems should work fairly well
against MacOS X machines.

• Next message: Javier Blanque: "Re: Apple pentesting"
• Previous message: Todd Towles: "RE: Apple pentesting"
• In reply to: Julian Totzek: "Apple pentesting"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:19 EDT