Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: [PEN-TEST] Firewalking

Re: [PEN-TEST] Firewalking

From: Ivan Buetler <ivan.buetler_at_CSNC.CH>
Date: Wed, 7 Mar 2001 08:10:07 +0100

Pepijn,

application level firealls will handle your request. you might connect to an
ip adress within the dmz, but talking to the firewall. i recognized this
behaviour for pix firewall or raptor.

try nmap -sO in nmap 2.54 to identify supported protocols

search for banners you haven't seen before in search engines. mostly one of
the open ports gives you information about firewalls

regards

Ivan

-----Original Message-----
From: Penetration Testers [mailto:PEN-TEST_at_SECURITYFOCUS.COM]On Behalf
Of Pepijn Vissers
Sent: Tuesday, March 06, 2001 10:26 AM
To: PEN-TEST_at_SECURITYFOCUS.COM
Subject: [PEN-TEST] Firewalking

Hi all,

What would be the best way to determine what kind of firewall is running on
a server? Especially one that does not give out any banners.
TCP-fingerprinting is not possible because there are no obvious open ports.

Any comments on this would be welcome, 

---
Pepijn Vissers
Received on Mar 07 2001
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos