How long did you study and what books did you use? Did you use any simulation exam?

When we will get the part 3?

That was a good interview.

Yes, I have some users that can not use port 25 for email using Outlook. (If I am not wrong is in this case Comcast).

I agree with you about think out of the box and not just rely on credentials, but sometimes you use the credentials just to obtain some knowledge.

During this time that I am learning reading books, forums, articles and videos (a lot of practice), I wonder where will I go? Try to go by myself (I have exp with my small business in the past) or try to go work for a company, get more exp and go independent, etc, etc, etc

Jajajajaaj, this is a good morning for me.

Great.

I finally got the book today, this is kind the book that I was lloking for, explaind you step by sted everything to get the basic knowledge. It just not focus on tools, also inlcude the methods.

Good, book

Yes, I was using onlu smbnt, I will try only smb and I will see.

This tool is excelent, I found two very easy password using diccionary attack with Hydra in linux. How do you audit the password in general?

I run two times Hydra agains a domain controller using BT4 and the word list that there is there and I got a password but the password is wrong. I used the option smbnt.

Ther first time I run by accident not the username just the last name and I got a password, I looked for in the domain controller login with the last name only and there is not that kind of user logon.

So I run for second time with the right username and after 15 hours I got the password but is wrong too.

Do I have to change the option to smb only or what?

Thanks

If I was you I would secure one exam and later concentrate in the second, I agree with some people that if you know the materia, etc, etc, etc. But you have to think that maybe something could be wrong.

So, if sec+ is easy, just sitdown for that en after that concentrate with the CEH, I know you are short with your time, but pass one, otherwise if something is wrong your stress will sky rock.

This is my 2cents.

Congrats

Yes, It's only happend when I am doing brute force attack in ssh.

I am trying to manage to go in using ftp server.

I can create a directory but for any reason when I try:


ftp 192.168.1.101
USSER anonymous
PASS my-email@domain.com


put 192.168.1.101 /tmp/ssh /incoming/test

I alwasy get the error 553 Could not create file

This is making me nut. So I will keep trying, I am looking for a some information how to take advantage using ftp to get into the server

I am attacking a live cd. I did:

nmap -n -sV 192.168.1.101

I got many ports including

22. SSH

So I found some names in the ftp server that could be usernames, so I begin to attack Hydra with BackTrack Version 2. So I am waiting what I can get, during that time I run again

nmap -n -sV 192.168.1.101 and now I got

22 tcpwrapped

The OS is slax.

This is new for me, I checked with my google.com friend and found something that this ssh is running something like iptables or ip security. Can please somebody confirme that?

Thanks.

I have the version CUPS 1.1 so has to work.

Awesec: it is true to learn moething easy but sometimes you get something that you want to try and you wonder how you can do it and this happend today, I am not worry to kill my lab I can build it back again. Fox ex. Ketchup told me that the file that I tried to work is a C code, so after that I went to my google friend and found out how to compile in C and works and also I tried others C exploits in my target.

I am learning a lot trying to brake this host and also I already added other skill to my list to learn that is C and pearl.

I did:

gcc -o cups cups.c

./cups 192.168.1.101 631

and

./cups 192.168.1.101 80

And did not work, I did not get shell

I tried a DoS that I found in milw0rm.com to crash the service in port 631 and try to run cups exploit in port 80 and viceverse and did not work,

I am sure that I will get the shell in someway in the port 631.

I am trying to check also Apache 2.2.4 exploits but I only found DoS.

Do you crash some services to get access through another service, is that commond? I do not know if that works but I am trying