Home page logo

pen-test logo Penetration Testing mailing list archives

Re: RE: Changing Source Port during Penetration Testing?
From: "Jamie Riden" <jamesr () europe com>
Date: Wed, 8 Nov 2006 11:45:20 +1300

On 7 Nov 2006 13:43:14 -0000, emptybeerkann () gmail com
<emptybeerkann () gmail com> wrote:
You are right. Most firewalls are stateful now, but what if the organization isn't using a firewall? What if they are 
using a router or some other device instead? This technique once again becomes a viable option.

I would guess the more usual scenario is to have a stateful firewall
on the perimeter, plus maybe some ACLs applied on internal routers.
Still, you're right - trying a few different source ports may help,
and it doesn't hurt to try.

Jamie Riden, CISSP / jamesr () europe com / jamie.riden () gmail com
NZ Honeynet project - http://www.nz-honeynet.org/

This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]