Penetration Testing mailing list archives

RE: Pentesting Telephone-Systems

From: Nicolas Gregoire <ngregoire () exaprobe com>
Date: Thu, 08 Sep 2005 11:06:18 +0200

Le mardi 06 septembre 2005 à 15:05 -0400, Beauford, Jason a écrit :

This is actually how a lot of Phone system hacks are done - use of
default passwords.  I wonder if anyone has a compilation of SYSTEM -
DEFAULT PASSWORD combinations.  That would be a nifty little list.


Not specific to PABX or others phone systems, but often useful :

        http://www.phenoelit.de/dpl/

-- 
Nicolas Gregoire ----- Consultant en Sécurité des Systèmes d'Information
ngregoire () exaprobe com ------[ ExaProbe ]------ http://www.exaprobe.com/
PGP KeyID:CA61B44F  FingerPrint:1CC647FF1A55664BA2D2AFDACA6A21DACA61B44F


------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Current thread:

Pentesting Telephone-Systems sebastian . michel (Sep 06)
- Re: Pentesting Telephone-Systems Volker Tanger (Sep 07)
- <Possible follow-ups>
- RE: Pentesting Telephone-Systems Beauford, Jason (Sep 07)
  - RE: Pentesting Telephone-Systems Nicolas Gregoire (Sep 08)