Penetration Testing: Re: Pen test, tcp/1404 found

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Penetration Testing mailing list archives

Re: Pen test, tcp/1404 found - advice needed

From: Andre Ludwig <andre.ludwig () gmail com>
Date: Fri, 16 Sep 2005 13:26:31 -0400

All,

I am an idiot, mesa madea miztake! 

Seems that it was port 1494 (citrix) that seKurity wizard was
confounded by.  NOT 1404 like i had gone on about.

Mr seKurity Wizard next time try searching for the port number on the
following list of known services and ports.

http://www.iana.org/assignments/port-numbers

If it isn't on there then my suggestion still remains a viable option. 

Dr3

If you are looking for that l33t "0-day of reckoning" spell i spoke of
i cant not share such elite magic with you, or my wizard would surely
turn me into some hideous creature.

On 9/16/05, Nicolas RUFF <nicolas.ruff () gmail com> wrote:

      Found tcp/1494 open to a server during a pen test, black-box
style.  Are there any interesting tools that may be available to extract
information from the server on the receiving end?


Hello,

Is it TCP/1404 or TCP/1494 ?

TCP/1494 is the well-known Citrix ICA port, I suggest you download a
free client to begin with :
http://www.citrix.com/site/SS/downloads/downloads.asp?dID=2755

Regards,
- Nicolas RUFF
Security researcher @ EADS-CCR

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------


------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

By Date By Thread

Current thread:

Pen test, tcp/1404 found - advice needed Sekurity Wizard (Sep 14)
- Re: Pen test, tcp/1404 found - advice needed Ivan . (Sep 15)
- Re: Pen test, tcp/1404 found - advice needed Luke Eckley (Sep 15)
  - Re: Pen test, tcp/1404 found - advice needed Andre Ludwig (Sep 16)
- Re: Pen test, tcp/1404 found - advice needed Nicolas RUFF (Sep 16)
  - Re: Pen test, tcp/1404 found - advice needed Andre Ludwig (Sep 16)
- <Possible follow-ups>
- Re: Pen test, tcp/1404 found - advice needed mike king (Sep 15)
- RE: Pen test, tcp/1404 found - advice needed Sekurity Wizard (Sep 16)
- RE: Pen test, tcp/1404 found - advice needed Sekurity Wizard (Sep 16)
- RE: Pen test, tcp/1404 found - advice needed DUBRAWSKY, IDO (CALLISMA) (Sep 16)
- FW: Pen test, tcp/1404 found - advice needed Craig Wright (Sep 16)