From: Moonen, Ralph (Moonen.Ralph@kpmg.nl)
Date: Thu Jan 12 2006 - 05:30:30 EST
Most dial-in servers store the caller-ID info in the MIB. If SNMP is
enabled and you know the community string, it is possible to read the
MIB and get both the IP address and phone number of a user. But any
provider who has a nanoclue will not open up SNMP to the world. Oh, and
accessing the MIB without authorisation is of course probably illegal.
Ralph Moonen, CISSP
Manager KPMG Information Risk Management
Amstelveen, The Netherlands
P: +31.20.6568305 F: +31.20.6568388
-----Original Message-----
From: IanC @ TracingEmails [mailto:Forensics@tracingemails.com]
Sent: donderdag 12 januari 2006 1:16
To: pen-test@securityfocus.com
Subject: RE: Correlating an IP address with a phone number
--- Virus checked / op virussen gecontroleerd ---
A field I specialize in is Internet Investigations and there are ways of
ascertaining the details of a 'computer' [sic] user, of an IP address
but the ONLY way to really achieve this 100% is by subpoena.
Other methods entail hours of either Internet Investigations or Pretext
calling.
It's possible though,, 80-90% of the time. To ascertain the city that
the IP is used in so you can narrow down 'suspects' as an example.
Obviously its real easy to get the IP NetBlock and know who the ISP is.
Best Regards - IanC
Forensics@TracingEmails.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Data Recovery/Computer Forensics
http://www.TracingEmails.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Director & Team Member/MissingKIN
Dedicated to locating Missing & Abducted Children.
http://www.MissingKIN.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> -----Original Message-----
> From: kuffya@gmail.com [mailto:kuffya@gmail.com]
> Sent: Wednesday, January 11, 2006 6:02 AM
> To: pen-test@securityfocus.com
> Subject: Correlating an IP address with a phone number
>
> Greetings,
>
> Is there a way to correlate an IP address with a phone number? Or a
> range of IP addresses with a range of phone numbers?
> Brief googling mentioned the existance of a database of some sort that
> every country keeps, responsible of just that.
> Any comments welcome.
>
> Many Thanks
> S.
------------------------------------------------------------------------
------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on
your website. Up to 75% of cyber attacks are launched on shopping carts,
forms, login pages, dynamic content etc. Firewalls, SSL and locked-down
servers are futile against web application hacking. Check your website
for vulnerabilities to SQL injection, Cross site scripting and other web
attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
------------------------------------------------------------------------
-------
--------------------------------------------------------------------------------------------------------------------------------------------
De informatie verzonden met dit e-mailbericht (en bijlagen) is uitsluitend bestemd voor de geadresseerde(n) en zij die van de geadresseerde(n) toestemming hebben dit bericht te lezen. Gebruik door anderen dan geadresseerde(n) is verboden. De informatie in dit e-mailbericht (en de bijlagen) kan vertrouwelijk van aard zijn en kan binnen het bereik vallen van een geheimhoudingsplicht.
KPMG is niet aansprakelijk voor schade ten gevolge van het gebruik van elektronische middelen van communicatie, daaronder begrepen -maar niet beperkt tot- schade ten gevolge van niet aflevering of vertraging bij de aflevering van elektronische berichten, onderschepping of manipulatie van elektronische berichten door derden of door programmatuur/apparatuur gebruikt voor elektronische communicatie en overbrenging van virussen en andere kwaadaardige programmatuur.
Any information transmitted by means of this e-mail (and any of its attachments) is intended exclusively for the addressee or addressees and for those authorized by the addressee or addressees to read this message. Any use by a party other than the addressee or addressees is prohibited. The information contained in this e-mail (or any of its attachments) may be confidential in nature and fall under a duty of non-disclosure.
KPMG shall not be liable for damages resulting from the use of electronic means of communication, including -but not limited to- damages resulting from failure or delay in delivery of electronic communications, interception or manipulation of electronic communications by third parties or by computer programs used for electronic communications and transmission of viruses and other malicious code.
--------------------------------------------------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:22 EDT