Re: OWA 2003 looking users

From: Chris Reining (creining@packetfu.org)
Date: Tue Aug 09 2005 - 00:22:37 EDT

• Next message: James Riden: "Re: Nmap/netwag problem."
• Previous message: ricci@cs.ust.hk: "How to penetrate location with Terminal Services and TSWeb?"
• In reply to: Mark Sec: "OWA 2003 looking users"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Mark,
Try this perl script to dump the names:

http://www.foofus.net/jmk/tools/getOWAnames.pl

Chris

On Mon, Aug 08, 2005 at 01:38:00AM -0700, Mark Sec wrote:
> Again Alo folks: :-)
>
> Now i have a OWA 2003 server to test, i know there is a lot many
> diferents ways to hack the server, well now i found a "mortal" account
> to see more accounts into the server with the follow method:
>
> -> Click to the "address book",
> -> type into the box "Display name" whatever letter u want like a,b,c etc,
> -> click to button "Find" and see the result,
> -> them to select the name and click "Properties..." to see the
> "user@" properties,
>
> but this method is very "bored" to looking more accounts and sometimes
> i dont see the users with the simbol "@" to identify the user to do
> brute force.
>
> + Now, does anyone have a tools, scripts to do this work more easy ?
> + Does anyone know a brute force tools, tricks to hack over OWA 2003 server?
>
>
> thanks for all ur help
>
>
> -Mark
> ====
>
> ------------------------------------------------------------------------------
> FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't
>
> Learn the hacker's secrets that compromise wireless LANs. Secure your
> WLAN by understanding these threats, available hacking tools and proven
> countermeasures. Defend your WLAN against man-in-the-Middle attacks and
> session hijacking, denial-of-service, rogue access points, identity
> thefts and MAC spoofing. Request your complimentary white paper at:
>
> http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
> -------------------------------------------------------------------------------
>
>

------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------

• Next message: James Riden: "Re: Nmap/netwag problem."
• Previous message: ricci@cs.ust.hk: "How to penetrate location with Terminal Services and TSWeb?"
• In reply to: Mark Sec: "OWA 2003 looking users"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:43 EDT