Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: Pentesting Openmail Web login
From: Brent Wolfram <brent.wolfram () gmail com>
Date: Wed, 23 May 2007 21:51:10 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


It is not clear what you are asking for, but I will guess you are
looking for a tool to perform brute-force attack against an html form
based login screen.  If that is the case, take a look at Brutus or
C-Force.  THC-Hydra apparently does form based as well, but never tried
it for that.


s-williams () nyc rr com wrote:
Anyone have a good tool in mine?
------Original Message------
To: listbounce () securityfocus com
To: pen-test () securityfocus com
Sent: May 23, 2007 12:01 PM
Subject: Pentesting Openmail Web login

I am task with testing user accounts on our mail system. We currently have two systems Exchange, and OpenMail for 
Linux which is on the DMZ. We are interested in finding out how easy it might be for someone to guess the password of 
one or our users account.

And if the are sucessful what can the do on the linux box, with that username and password.

We have a main site with a link to the webmail system from there, ifi want to test this which tool might be the best 
for doing this since its a link and not the main page?

Thanks in advance

"A wise man ask questions, a fool is afraid of knowledge"  

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iD8DBQFGVO+OUyOxvUG0pAsRAixLAKCeozYgD9uzVfQ9XD+L5ozWswb/6QCfeRGh
JRFzjOFQX6itEj0edsT8yhE=
=ejNI
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]