Security Basics Mode:
(Page 8 of 1428)  < Prev  3 4 5 6 7 8 9 10 11 12 13  Next >
nmap Discover others question 2013-09-23
ToddAndMargo (ToddAndMargo zoho com)
Hi All,

Using NMap from the command line, I would like to
discover what all is attached to the Ethernet. This
run string seems to fulfill the request:

nmap -O -v 192.168.255.0/24

Question: what about devices that do not use this
network? Is this not a issue, as they couldn't communic

[ more ]  [ reply ]
db_nmap doesn't store all it's results into metasploit database 2013-09-22
Ð?авел ТомаÑ?евский (crooveck gmail com)
Hi all,
I just want to ask if it's a feature or just a bug.

When I perform my network scanning using db_nmap in msfconsole, it
says there is eg. 5 or 8 hosts up, but typing 'hosts' command in
msfconsole it returns only 2 or 3.
After doing some research, I've found that hosts that are not stored
(bu

[ more ]  [ reply ]
Re: nmap -p syntax question 2013-09-20
ToddAndMargo (ToddAndMargo zoho com)
On 09/18/2013 01:37 AM, Anshuman Mukherjee wrote:
> From the Nmap Man Page:
>
> The S you asked for must be
> â??SCTP (
> http://en.wikipedia.org/wiki/Stream_Control_Transmission_Protocolâ??
> â??)â??
>
> PORT SPECIFICATION AND SCAN ORDER
> In addition to all of the scan methods discussed p

[ more ]  [ reply ]
Re: RCP open! Yikes! What to do? 2013-09-19
Ansgar Wiechers (bugtraq planetcobalt net)
On 2013-09-19 Justin Bowen wrote:
> If you are certain you don't need RPC access (which many don't),
> simply drop a windows firewall (or a replacement you might have in
> place) entry in to block it. Port 139

Port 139 is the NetBIOS session service. The RPC port mapper is
listening on port 135/tcp

[ more ]  [ reply ]
Re: nmap port name question? 2013-09-18
ToddAndMargo (ToddAndMargo zoho com)
>> 2013/9/17 ToddAndMargo <ToddAndMargo (at) zoho (dot) com [email concealed]
>> <mailto:ToddAndMargo (at) zoho (dot) com [email concealed]>>
>>
>> Hi All,
>>
>> When nmap tells you a service associated with a
>> port, for example,
>>
>> 137/tcp closed netbios-ns reset
>>
>> does nmap get the name of the port from my /etc/services,

[ more ]  [ reply ]
RCP open! Yikes! What to do? 2013-09-18
ToddAndMargo (ToddAndMargo zoho com) (1 replies)
Hi All,

How do I close MSRPC (remote proceedure call) ports
Om Windows 7? These a Remote Procediure Call (RPC),
which to me means ports and services for bad guys to
use. Open RPC scare me.

The is Kaspersky End Point Security 10.1.0.867
with its firewall activated on Windows 7, 64 bit.

This

[ more ]  [ reply ]
Re: RCP open! Yikes! What to do? 2013-09-19
Ansgar Wiechers (bugtraq planetcobalt net)
Re: nmap port name question? 2013-09-18
ToddAndMargo (ToddAndMargo zoho com)
> <mailto:ToddAndMargo (at) zoho (dot) com [email concealed]>> wrote:
>> On Tue, Sep 17, 2013 at 3:01 PM, ToddAndMargo <ToddAndMargo (at) zoho (dot) com [email concealed]
>>
>>
>> Hi All,
>>
>> When nmap tells you a service associated with a
>> port, for example,
>>
>> 137/tcp closed netbios-ns reset
>>
>> does nmap get the name of

[ more ]  [ reply ]
Open VPN worries 2013-09-18
ToddAndMargo (ToddAndMargo zoho com) (2 replies)
Hi All,

I have several Open VPN server set up out there that don't require
password to log into. To handle this, the servers are set up such
your physically have to call the operator on the phone and have them
start the tunnel. They (or I) kill the tunnel when they log out.
The tunnel is always

[ more ]  [ reply ]
Re: Open VPN worries 2013-09-19
Pui Edylie (email edylie net)
Re: Open VPN worries 2013-09-19
Xinyun Zhou (me xyzhou com) (1 replies)
Re: Open VPN worries 2013-09-19
ToddAndMargo (ToddAndMargo zoho com)
Re: bandwidth question 2013-09-18
ToddAndMargo (ToddAndMargo zoho com)
> On Tue, Sep 17, 2013 at 2:03 PM, ToddAndMargo <ToddAndMargo (at) zoho (dot) com [email concealed]
> <mailto:ToddAndMargo (at) zoho (dot) com [email concealed]>> wrote:
>
> Hi Dennis,
>
> Thank you!
>
> -T
>
>
> On 09/16/2013 09:51 PM, Dennis Dumont wrote:
>
> Not an issue. Request versus response is still an orde

[ more ]  [ reply ]
nmap port name question? 2013-09-17
ToddAndMargo (ToddAndMargo zoho com) (1 replies)
Hi All,

When nmap tells you a service associated with a
port, for example,

137/tcp closed netbios-ns reset

does nmap get the name of the port from my /etc/services,
or is the name hard coded into nmap?

Many thansk,
-T

--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Computers are like air condit

[ more ]  [ reply ]
Re: nmap port name question? 2013-09-18
Austin Jorden (a jorden limestonenetworks com)
Open VPN for PEN testing 2013-09-17
ToddAndMargo (ToddAndMargo zoho com) (1 replies)
Hi All,

I have heard several folks say that they use Open VPN for human
penetration testing.
Reference:
https://www.pcisecuritystandards.org/pdfs/infosupp_11_3_penetration_test
ing.pdf

I apparently did not pay close enough attention. I figured that Open VPN
would get you past the firewall and th

[ more ]  [ reply ]
Re: Open VPN for PEN testing 2013-09-18
Luis Lezcano Airaldi (luislezcair gmail com)
Re: bandwidth question 2013-09-17
ToddAndMargo (ToddAndMargo zoho com)
Hi Dennis,

Thank you!

-T

On 09/16/2013 09:51 PM, Dennis Dumont wrote:
> Not an issue. Request versus response is still an order of magnitude
> difference.
> Dennis Dumont
> CCIE #12981
> C:440-227-7722
>
>
> Please consider the environment before printing this email.
>
> -------------------

[ more ]  [ reply ]
nmap smb-brute questions 2013-09-17
ToddAndMargo (ToddAndMargo zoho com) (1 replies)
Hi All,

In the following "#" is my command prompt for "root".

I have been testing a script called "smb-brute":
http://nmap.org/nsedoc/scripts/smb-brute.html

I have some confusion. On the web page, there are two
examples:

nmap --script smb-brute.nse -p445 <host>
sudo nmap -sU -s

[ more ]  [ reply ]
Re: nmap smb-brute questions 2013-09-17
Ansgar Wiechers (bugtraq planetcobalt net)
bandwidth question 2013-09-16
ToddAndMargo (ToddAndMargo zoho com)
Hi All,

A customer has asked me to do some human penetration
testing for PCI compliance. I am planning on doing a bunch
of probing with nmap to look for openings. I plan to log into
the customer's network with Open VPN over my DSL line.
(And Metasploit when I figure out how to use it too.)

Quest

[ more ]  [ reply ]
nmap -p syntax question 2013-09-17
ToddAndMargo (ToddAndMargo zoho com)
Hi All,

On the nmap command line, some questions about the "-p"
parameter:

1) what is the "-p S:xxx". What protocol is "S"?
By change is it ICMP?

2) when you omitt the "T:" and/or the "U:" does it check
both TCP and UDP. What about the mysterious "S" protocol?
Does it check that too

[ more ]  [ reply ]
OWASP Zed Attack Proxy 2.2.0 2013-09-11
psiinon (psiinon gmail com)
Hi folks,

ZAP 2.2.0 is now available from http://code.google.com/p/zaproxy/downloads/list

This includes support for scripts embedded in ZAP components like the
active and passive scanners as well as support for Zest - a new
security focused scripting language from the Mozilla security team.
It als

[ more ]  [ reply ]
[Onapsis Research Labs] New SAP Security In-Depth issue: "Preventing Cyber-Attacks Against SAP Solution Manager" 2013-09-04
Onapsis Research Labs (research onapsis com)
Dear colleague,

We are happy to announce a new issue of the Onapsis SAP Security In-Depth publication.

SAP Security In-Depth is a free publication led by the Onapsis Research Labs with the purpose of providing specialized
information about the current and future risks in this area, allowing all th

[ more ]  [ reply ]
Call for Paper/Event - nullcon Goa 2014 2013-09-04
nullcon (nullcon nullcon net)
Hello All,

V are V

On our fifth Anniversary we are super excited to officially open the
CFP (Call for PARTYcipation!). Yes, this is going to be the biggest
nullcon till now with lot of sub-events, CTFs, villages, workshops,
talks, parties.

Time to tickle your gray cells and submit your research.

[ more ]  [ reply ]
Malware Analysis vs. Analysing a 'dirty' OS 2013-08-31
Syn Ack (synackackack gmail com) (1 replies)
Hi All,

So some time back (year or 2 ago at least) I bought a copy of Win
Server 2008 R2 from a computer mall/market type thing in Beijing,
China. Can't remember exactly how much it cost, but it was
ridiculously cheap. Came on a blank CD type deal.

Some questions:

1) Surely will have nasties (mal

[ more ]  [ reply ]
Re: Malware Analysis vs. Analysing a 'dirty' OS 2013-09-16
Robert Larsen (robert the-playground dk)
Re: Huge hidden process and port in Linux server 2013-08-20
John Forristel (jforristel auctiva com) (1 replies)
You could try looking for the key and renaming it. Once that's done,
the program/script will error, putting an entry in /var/log/syslog or
/var/log/messages. If this is an Ubuntu distro, you can also look at
/var/log/auth.log and see what or who is logging in. Any decent
hacker is going to cover

[ more ]  [ reply ]
Re: Huge hidden process and port in Linux server 2013-08-21
Ali Kapucu (alikapucu gmail com)
(Page 8 of 1428)  < Prev  3 4 5 6 7 8 9 10 11 12 13  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus