Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: sniffing X traffic.

Re: sniffing X traffic.

From: Anders Thulin <Anders.X.Thulin_at_telia.se>
Date: Mon, 13 Aug 2001 08:00:07 +0200

Power Steve wrote:

> Anyone know if you can meaningfully sniff Exceed ( I guess it's the same as
> X) traffic? Im being a bit lame, my personal test lab is down atm, and I
> cant find anything on the net re sniffing and interpreting X traffic.

  X sends painting commands from the client to the server (the screen),
and mouse and keyboard events the other way (mainly).

  If you can listen in on a keyboard event stream, you may certainly find
passwords in there. I've seen at least one intrusion vulnerability
assessment program do just that (but which one was it?) Indeed,
if you can sniff a full X stream (both ways), I suspect you can come
very close to 'replay' whats going on on the screen (like XWatchWin),
including 'non-echoing' key presses.

  I'm not up-to-date about X protection mechanisms, though: I don't
know if there is such a thing as encrypted X traffic. 

-- 
Anders Thulin     Anders.X.Thulin_at_telia.se     040-661 50 63
Telia ProSoft AB, Carlsgatan 6, SE-201 20 Malmö, Sweden
----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
Received on Aug 13 2001
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos