Home page logo

pen-test logo Penetration Testing mailing list archives

Re: [PEN-TEST] NT CLI FTP Client Passive Mode?
From: The Cyberiad <cyberiad () CYBERUS CA>
Date: Fri, 17 Nov 2000 16:03:48 -0500

Can you TFTP back out to your attack server to
pull down your survey tools ? Assuming you have
a command line to the target server, make it easy and
PKZIP (with the CLI version of PKZIP) your survey
tools and convert them to an exe on your attack box. Then
you only have to TFTP the one file to the target server
and run it to unzip your survey kit.


----- Original Message -----
From: Jay D. Dyson <jdyson () TREACHERY NET>
Sent: Friday, November 17, 2000 6:37 AM
Subject: [PEN-TEST] NT CLI FTP Client Passive Mode?


Hi folks,

I'm doing my thing here in testing a client's security and I've
managed a few intrusions thus far.  However, one thing has me stymied: I'm
looking to transfer a few files over to the client's server so I can start
testing the intranet.  Normally I'd exploit a deficiency with the PUT to
the server, but that's been fixed.  Thus, I'm trying to FTP from the
system I'm in.

The system I'm in is behind a firewall with restrictions on
outbound FTP, so I've been trying to get the WinNT standard-issue CLI FTP
client to grok passive mode.  No joy.  I've done the perfunctory
GoogleSearch(tm) and it seems there's a lot of folks who have run up
against this, but no-one with any solutions.  I'm hoping someone here has
overcome this stumbling block and can provide some insights.

Thanks much in advance.  I'm off to sleep now...

- -Jay

   (                                                             ______
   ))   .-- "There's always time for a good cup of coffee." --.   >===<--.
 C|~~| (>------- Jay D. Dyson --- jdyson () treachery net -------<) |   = |-'
  `--'  `- I'm not surrounded, I just have more targets now. -'  `-----'

Version: 2.6.2


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]