|
Penetration Testing
mailing list archives
Re[2]: Identifying whether 2 IPs are from the same server
From: Thierry Zoller <Thierry () Zoller lu>
Date: Mon, 28 Nov 2005 17:25:56 +0100
Dear Max Max,
I am doing a Penetration Testing for 2 IP addresses.
My findings till now for both the servers are exactly
same. I strongly feel that both the IPs belong to the
same machine. May be a scenario where two NICs are on
the same machine with two Public IPs. I ran HPING to
match their IP IDs but it shows different series for
both of them.
IP ID
ISN
Window Size
ToS
TTL
and many more
--
http://secdev.zoller.lu
Thierry Zoller
Fingerprint : 5D84 BFDC CD36 A951 2C45 2E57 28B3 75DD 0AC6 F1C7
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
 By Date 
By Thread
Current thread:
- Re: Identifying whether 2 IPs are from the same server, (continued)
|
Intro
