Penetration Testing: Re: By passing surf control

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Penetration Testing mailing list archives

Re: By passing surf control

From: Charles Hamby <fixer () gci net>
Date: Wed, 25 Feb 2004 16:14:47 -0900

Have you tried checking to see if IP address obfuscation works?

In case anyone's not familair with this...

Using http://www.amazon.com as an example. If I wanted to go there butit was blocked, I would find out what the IP address of www.amazon.comis (say using ping).

In this case it happens to be 207.171.181.16. I would then convert eachoctet into hex individually. (207 is CF, 171 is AB, 181 is B5 and 16 is 10)Then I would put CFABB510 into my calculator (Windows calculator worksjust fine for this, by the way) and conver it to decimal again. I wouldcome up with 3484136720I would open up my web browser and put in http://3484136720 and up comesAmazon.com.


Charles Hamby

McNutt, Jacob wrote:

SSH tunneling/port forwarding to a proxy might work if they have access to it.  Also, we have a problem with AOL client 
browsers that can bypass Websense all together.

-----Original Message-----

From: Kudakwashe Chafa-Govha [mailto:KChafa-Govha () bankunitedfla com]Sent: Wednesday, February 25, 2004 3:04 PM

To: pen-test () securityfocus com
Subject: By passing surf control

Hello Group,

Does anyone have any information on how to by pass a web content filter? We use Surf Control to monitor and filter web 
content. However, I have one of my users who was able to by pass this. We tried using a proxy to by pass just for 
testing purposes but it did not work. I am still trying to figure out what other method he used to do so. If anyone has 
any information , it will be greatly appreciated.

Thanks

Kuda

**************************************************************************************************
The contents of this email and any attachments are confidential.
It is intended for the named recipient(s) only.

If you have received this email in error please notify the system manager or the sender immediately. Unless you are the intended recipient or his/her representative you are not authorized to, and must not, read, copy, distribute, use or retain this message or any part of it.**************************************************************************************************



---------------------------------------------------------------------------
----------------------------------------------------------------------------




---------------------------------------------------------------------------
----------------------------------------------------------------------------




---------------------------------------------------------------------------
----------------------------------------------------------------------------

By Date By Thread

Current thread:

By passing surf control Kudakwashe Chafa-Govha (Feb 25)
- Re: By passing surf control Dave Powell (Feb 26)
- <Possible follow-ups>
- RE: By passing surf control Lewis GySgt Richard C (Feb 25)
- RE: By passing surf control RMcElroy (Feb 25)
- RE: By passing surf control McNutt, Jacob (Feb 25)
  - Re: By passing surf control Charles Hamby (Feb 26)
    - Re: By passing surf control c3rb3r (Feb 27)
- Re: By passing surf control dotnetter (Feb 26)
- Re: By passing surf control nee cee (Feb 26)
- RE: By passing surf control McNutt, Jacob (Feb 27)
- Re: By passing surf control thomas adams (Feb 27)