HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 52 guests online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow OSCP - Offensive Security Certified Professionalarrow Windows 2008 SP1 - Ways to exploit?
EH-Net
May 21, 2013, 11:23:23 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: 1 [2]   Go Down
« previous next »
  Print  
Author Topic: Windows 2008 SP1 - Ways to exploit?  (Read 5818 times)
0 Members and 1 Guest are viewing this topic.
sil
Hero Member
*****
Offline Offline

Posts: 549



View Profile WWW
« Reply #15 on: April 05, 2012, 11:19:44 AM »
Depends on what they're using for NAC. If its something stupid like MAC addresses, I may try to fire something on the wire to check for someone elses MAC if possible, spoof that, it all depends. To fiddle around and tamper with NAC, it all depends on what I'm doing, what they're using for NAC and so forth. I have PacketFence lying around on a VM machine and have fiddled with it a but have never had to attack this head on... I look for workarounds all the time though Wink Same applies for VLANs (VLAN hopping, trunkspotting (you read it here first from me Wink)
Logged
http://www.infiltrated.net/mgz/puppylecter.jpg
knwminus
Full Member
***
Offline Offline

Posts: 100



View Profile WWW
« Reply #16 on: April 05, 2012, 11:51:38 AM »
Quote from: sil on April 05, 2012, 11:19:44 AM
I have PacketFence lying around on a VM machine and have fiddled with it a but have never had to attack this head on... I look for workarounds all the time though Wink Same applies for VLANs (VLAN hopping, trunkspotting (you read it here first from me Wink)


Um, what?

I have always been curious about the number of companies that actually deploy NAC. I have never seen one in production.
Logged
A+ N+ CCNA CCNA:S CNSS 4011 Security+

Next Up: CCNP CCNP:S
lorddicranius
Sr. Member
****
Offline Offline

Posts: 447



View Profile WWW
« Reply #17 on: April 05, 2012, 11:58:31 AM »
Quote from: sil on April 05, 2012, 11:19:44 AM
...trunkspotting (you read it here first from me Wink)

Indeed.  Never heard the term before and Google only has one result for "trunkspotting vlan": this thread haha
Logged
GSEC, eCPPT, Sec+
sil
Hero Member
*****
Offline Offline

Posts: 549



View Profile WWW
« Reply #18 on: April 05, 2012, 03:47:07 PM »
Quote from: lorddicranius on April 05, 2012, 11:58:31 AM
Quote from: sil on April 05, 2012, 11:19:44 AM
...trunkspotting (you read it here first from me Wink)

Indeed.  Never heard the term before and Google only has one result for "trunkspotting vlan": this thread haha

I make crap up as I go along. VLANSPOTTING to me is the ability to determine the VLANs used in a network, and which machines in the network are trunked into other VLANs. Wink Those are the ones I like... Trunked VLAN access especially when there is no port security or filtering Wink
Logged
http://www.infiltrated.net/mgz/puppylecter.jpg
Pages: 1 [2]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.084 seconds with 24 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.