.

WarDialing

<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 570

Joined: Sat Apr 17, 2010 12:12 pm

Post Thu Nov 11, 2010 8:02 am

WarDialing

I have seen this in computer security books for years as a pentesting skill. I figured, that with how long its been around, and well known eventually it would be useless and done away with, that doesnt seem to be the case, as it is still in books of today. So my question is, is war dialing still a useful and viable technique?
sectestanalysis.blogspot.com/‎
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Thu Nov 11, 2010 11:11 am

Re: WarDialing

Yes. You'd be surprised at how many systems are still connected to modems. Three that I know of.

1) Certain agencies in the government only all data to be passed to them by dial-up. The stance is, it's more secure than sending it over the internet.

2) System managers that have monitoring systems set up to send pages via dial up fail backs.

(https://encrypted.google.com/search?hl= ... er+dial+up)

3) systems that have to send faxes, may not be set up to ignore incoming phone calls.

*edit: Adding 1 more I know of.

4) Telco's providing turnkey solutions, maintaining the circuits and the routers, still use dial up for out of band access.

I've either seen or have been told about all 4 of those in the last two years.
Last edited by rattis on Thu Nov 11, 2010 11:14 am, edited 1 time in total.
OSWP, Sec+
<<

ckirsch

Newbie
Newbie

Posts: 10

Joined: Mon Sep 27, 2010 8:25 am

Post Thu Nov 11, 2010 5:35 pm

Re: WarDialing

Have you checked out WarVox yet?
<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 570

Joined: Sat Apr 17, 2010 12:12 pm

Post Thu Nov 11, 2010 10:44 pm

Re: WarDialing

Never heard of it.

*Thanks chris.
sectestanalysis.blogspot.com/‎

Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 2 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software