Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Full Disclosure: NetWorker impersonator

NetWorker impersonator

From: coderman <coderman_at_gmail.com>
Date: Sat, 10 May 2008 13:02:24 -0700

i recall seeing a tool to impersonate various network clients via ARP
and DNS injection on a LAN. i cannot seem to find this tool
anywhere...

due to the deficiencies of Legato/EMC NetWorker authentication, a
directory of clients could be obtained without authentication via the
networker server(s), and then impersonation of the desired client host
would allow retrieval of any desired files. my thanks in advance for
a mirror or pointer.

additionally, if anyone is aware of undocumented parameters for
nsrexecd to direct the bound IP/interface this would be helpful. i'd
rather not rely on filter rules.

best regards,

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Received on May 10 2008

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]