FW: isensor

From: random (random@cryptosurf.com)
Date: Mon Sep 26 2005 - 11:17:24 EDT


The iSensor is a POS linux based IPS like device that uses IPFW and Snort.
Also in the past it was susceptible to the OpenSSL attack. Don't know if
that's been fixed or not. A DdoS should knock it of line. Plus it caches the
IDS data and only sends up to their NOC once every 5 mins.

Good luck and I be interested in hearing about your results.

-----Original Message-----
From: Christian Kopacsi [mailto:ckopacsi@cmhcm.org]
Sent: Friday, September 23, 2005 1:56 PM
To: pen-test@securityfocus.com
Subject: isensor

I will be performing a pen test for a client that uses SecureWorks isensor
appliance. Anyone dealt with that before. Any help would be greatly
appreciated

  
Christian Kopacsi
CISSP ISSPCS Security+ MCSA CCNA
CEH MCSE CNA Network+ CSSA CCA A+
Community Mental Health for Central Michigan
Information Systems
989-837-0728
ckopacsi (at) cmhcm (dot) org

"All that is necessary for the triumph of evil is that good men do nothing."
--- Edmund Burke

Disclaimer - This email and any files transmitted with it are confidential
and contain privileged or copyright information. You must not present this
message to another party without gaining permission from the sender. If you
are not the intended recipient you must not copy, distribute, or use this
email or the information contained in it for any purpose other than to
notify us. If you have received this message in error, please notify the
sender immediately, and delete this email from your system. We do not
guarantee that this material is free from viruses or any other defects,
although due care has been taken to minimize the risk.

----------------------------------------------------------------------------

--
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for
vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers
do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
----------------------------------------------------------------------------
---
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------


This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:00 EDT