Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: RE: sniffing X traffic.

RE: sniffing X traffic.

From: Lodin, Steven {GZ-Q~Mannheim} <STEVEN.LODIN_at_Roche.COM>
Date: Mon, 13 Aug 2001 17:35:35 +0200

> Anyone know if you can meaningfully sniff Exceed ( I guess
> it's the same as
> X) traffic? Im being a bit lame, my personal test lab is
> down atm, and I
> cant find anything on the net re sniffing and interpreting X traffic.

There is a program called xscan that does this. I have used this on Sol8 as well. Yes, you can see typed in passwords! From the readme.txt file:

XSCAN for unix.
Tested under SunOS 4.1.4 and Linux.

What does this do?

        This proggie scans hosts or subnets looking for unsecured X clients.
If it finds one it starts logging all keystrokes to that session. Very simple.

Usage:

        xscan <host> | <subnet> [[<host>] [<subnet>] ...]

Examples:

        Scan a single host:

                xscan wsx-nc1-14.ix.netcom.com

        Scan multiple hosts:

                xscan netcom6.netcom.com www.escape.com
...

Steve Lodin
Head of Global IT Security and Risk Management
Roche Diagnostics
(W) +49-621-759-5276
(M) +49-173-348-4974

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
Received on Aug 13 2001

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos