From: Larry Chin (casslin@sympatico.ca)
Date: Wed Feb 08 2006 - 10:48:23 EST
Could try http://www.accessdiver.com for starters.
Wikto (http://www.sensepost.com/research/wikto/) to scan the website
You could try nmap'ing the IP address, maybe a web server isn't the only
thing running there.
Just a couple of thoughts
-----Original Message-----
From: Edmond Chow [mailto:echow@videotron.ca]
Sent: Wednesday, February 08, 2006 1:45 AM
To: 'Michael Gargiullo'; pen-test@securityfocus.com
Cc: 'Edmond Chow'
Subject: RE: Penetration test of 1 IP address
To all:
I have been asked to perform a security audit of 1 IP address for client.
They have given me the 1 IP address and a clue (webblaze).
If I enter the IP address and then /webblaze, I am taken to a login page
(user name and password requested).
What tools would you recommend that I use for this assignment?
Thanks for your help.
Regards,
Edmond
----------------------------------------------------------------------------
-- Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 ---------------------------------------------------------------------------- --- ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:28 EDT