Re: Penetration test of 1 IP address

From: Bob Radvanovsky (rsradvan@unixworks.net)
Date: Thu Feb 09 2006 - 12:38:00 EST

• Next message: Kyle Quest: "RE: sql injection: url or form based?"
• Previous message: Edmond Chow: "RE: Penetration test of 1 IP address"
• Maybe in reply to: Dave: "Re: Penetration test of 1 IP address"
• Next in thread: Daniel Grzelak: "RE: Penetration test of 1 IP address"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

You left out Pete's group, OSSTMM, too. They've got merit in their methodologies, too.

-rad

----- Original Message -----
From: Anonymous [mailto:nospaming@free.fr]
To: Edmond Chow [mailto:echow@videotron.ca]
Cc: pen-test@securityfocus.com
Subject: Re: Penetration test of 1 IP address

> Have a look at http://www.oissg.org/content/view/71/71/
>
> M@x
>
>
>
>
> Edmond Chow wrote:
> >
> > To all:
> >
> > I have been asked to perform a security audit of 1 IP address for client.
> > They have given me the 1 IP address and a clue (webblaze).
> >
> > If I enter the IP address and then /webblaze, I am taken to a login page
> > (user name and password requested).
> >
> > What tools would you recommend that I use for this assignment?
> >
> > Thanks for your help.
> >
> > Regards,
> >
> >
> > Edmond
> >
> >
> >
> ------------------------------------------------------------------------------
> > Audit your website security with Acunetix Web Vulnerability Scanner:
> >
> > Hackers are concentrating their efforts on attacking applications on your
> > website. Up to 75% of cyber attacks are launched on shopping carts, forms,
>
> > login pages, dynamic content etc. Firewalls, SSL and locked-down servers
> are
> > futile against web application hacking. Check your website for
> vulnerabilities
> > to SQL injection, Cross site scripting and other web attacks before
> hackers do!
> > Download Trial at:
> >
> > http://www.securityfocus.com/sponsor/pen-test_050831
> >
> -------------------------------------------------------------------------------
> >
> >
> >
> >
>
> ------------------------------------------------------------------------------
> Audit your website security with Acunetix Web Vulnerability Scanner:
>
> Hackers are concentrating their efforts on attacking applications on your
> website. Up to 75% of cyber attacks are launched on shopping carts, forms,
> login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
>
> futile against web application hacking. Check your website for
> vulnerabilities
> to SQL injection, Cross site scripting and other web attacks before hackers
> do!
> Download Trial at:
>
> http://www.securityfocus.com/sponsor/pen-test_050831
> -------------------------------------------------------------------------------
>
>

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Next message: Kyle Quest: "RE: sql injection: url or form based?"
• Previous message: Edmond Chow: "RE: Penetration test of 1 IP address"
• Maybe in reply to: Dave: "Re: Penetration test of 1 IP address"
• Next in thread: Daniel Grzelak: "RE: Penetration test of 1 IP address"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:29 EDT