RE: Penetration test of 1 IP address

From: Matt Bowles (bowles.matt@gmail.com)
Date: Wed Feb 08 2006 - 23:33:05 EST

• Next message: Bob Radvanovsky: "RE: Penetration test of 1 IP address"
• Previous message: Justin Ferguson: "Re: Qualys"
• In reply to: Dave: "Re: Penetration test of 1 IP address"
• Next in thread: Christine Kronberg: "Re: Penetration test of 1 IP address"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

If you don't have any knowledge of what type of webserver they are running,
you can try using your browser to look for error messages from their
webserver. Often times the errors will give you clues as to what type of
http server they are running such as apache or a Windows Box running IIS. I
would also use google to find out any information you can find on their
company, domain name, ip address, etc. Using google to search for file
types can also provide information

Good Hunting,

-Matt

-----Original Message-----
From: Dave [mailto:dlaud.flux@gmail.com]
Sent: Wednesday, February 08, 2006 6:19 PM
To: Edmond Chow
Cc: 'Michael Gargiullo'; pen-test@securityfocus.com
Subject: Re: Penetration test of 1 IP address

>To all:
>
>I have been asked to perform a security audit of 1 IP address for client.
>They have given me the 1 IP address and a clue (webblaze).
>
>If I enter the IP address and then /webblaze, I am taken to a login
>page (user name and password requested).
>
>What tools would you recommend that I use for this assignment?
>
>
nmap and nessus will tell you more about the IP and what other services are
running that you might be able to exploit. If they just want you to test the
strength of the webpage login then possibly using Brutus will reveal weak
passwords etc... although this is generally a bad idea.
Right off hand, I cant look now, but webblaze may be a publicly available
script...download it and check the source for any possible coding errors
that could be exploited.

>Thanks for your help.
>
>Regards,
>
>
>Edmond
>
>
good luck and take it easy,
dave

----------------------------------------------------------------------------

--
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for
vulnerabilities to SQL injection, Cross site scripting and other web attacks
before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
----------------------------------------------------------------------------
---
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Next message: Bob Radvanovsky: "RE: Penetration test of 1 IP address"
• Previous message: Justin Ferguson: "Re: Qualys"
• In reply to: Dave: "Re: Penetration test of 1 IP address"
• Next in thread: Christine Kronberg: "Re: Penetration test of 1 IP address"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:28 EDT