Home page logo

pen-test logo Penetration Testing mailing list archives

Re: Evil autorun CD - ideas ? downloadable exploits anywhere ?
From: "Chris Kuethe" <chris.kuethe () gmail com>
Date: Wed, 2 May 2007 21:04:26 -0600

On 5/2/07, Shenk, Jerry A <jshenk () decommunications com> wrote:
Now, rooting every box that runs the CD...that would be even more
interesting...but, if it's part of a pen-test, I'm not sure where the
problem would be...a user taking the CD home would definitely be
interesting...might be a little tough to keep that in scope.  Maybe put
a warning label on it not to remove it from the building;)

If you're already grabbing net info, do a basic check to see if you're
running on the authorized corporate net.

if not, just autoeject the cd... or if it's a rewritable cd, try to
erase the cd.


GDB has a 'break' feature; why doesn't it have 'fix' too?

This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]