Security Basics mailing list archives
Re: Wardialing - Odd Results
From: Atom Powers <apowers () digipen edu>
Date: Fri, 22 Jul 2005 09:43:32 -0700
I've seen this if the data rate for the system you are dialing in to and the program you are using are not in synch. For instance, if the system you are dialing to is 9600bps and you have your hyperterminal set to 1500bps you will end up getting many duplicate bits, because you are sampling more frequently than you are recieving. The result is garbage like you show below even if the system you are dialing to is responding with ASCII characters.
Ron wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hey guys, Lately, we've been doing a Wardial on our network. We found some odd results that weren't identified by PhoneSweep. So I dialed in with HyperTerminal and got a lot of "garbage". I sent a series of "a"'s (I held down the a button for awhile) and more stuff showed up. I attached a capture of the session, just in case that helps. I think the "FF"'s near the top were what was being echoed back when I was holding "a". Is there some obvious setting to change? Or is there a better program to dial in with? I'm guessing that something is off, but I'm not familiar with using dialup modems. Thanks, Ron -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.9.15 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFC39AxfqSf2EkP4p4RAgvwAJ0U0blADvvCCyeF6jhrvkfe2KAXoACfXX+9 Kzu5Jfvl/E4Dp5yYmF2e8lk= =YjW9 -----END PGP SIGNATURE----------------------------------------------------------------------------- Šõ9äC`CBñ¨30Þ/qŒQ43°a÷àr@ç²ßp`âcC;;:èr£¢!cSx`D2²/ñ†»CÀ€000000Š¢" D ˆB¨ápC:§²wuðÊÃ1ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ»ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ»ÿÿÿÿÿÿÿÿ»ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿûÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ»ÿÿÿûÿÿÿûÿÿ»»ûÿÿÿœRˆ(+uÞ—At)?¦Šœ)¡îͱ\týÞáJ ¬ægüXQ‚µg½ŽV 7ÛB5Júò/£žð1�ýµF;PÕªˆò‡dþxW"¼1©¤4¿ÊémÒSf8|âÈhéÙr‡i8h1�N°õÜë¼)Z`üñ,œ‹þn¡ª_àÃud„z�"ŒÀÉ[Í…²KÀË ž7þþѯ/²…ìæ<;ñ5Egú áe×òV2äú‡¥ºQcÒ„Ñ“º,,ס6ŸÞ¾Kã¹[y?ÝÒˆ4wNU(ÝGùÒÇÔ—I���XF–FPÁ!~νOƒ~uæêf5ÿƒcuøÇÏœÞzà /Ä;|øÂÐSP£4¹Çò\X~+? ÖlŸ6•îDsŽà<+=„DK*Ú�°Ô¹HŠ}HJ�ÌöàDÔ+gðÝnäJùOD¾R"l4-–Ò� ô'QJÜCpj¸JV¯Iéí1áºð· ÁÃóÚ”í»YÓk¹…·büô1Ä}daé% ×Fsr€Ç\bÝüŠï¦´‡%)“�¡ O ŸG¡Ü É5[÷§ÿ’Ÿy¢Yg~;]ä»°Ðï×Bî)"´ßWIýX^œüÝ �Ê!9”טÒêô©}ì&>³æÊ?zt¥¾U]CTêîiçNqŽˆ‹Ï¿0/žû�ϯ|~1pwOŒPº”t5:öVÍš©¡zã)W0Ü{[öc?69ITÇÑ+<—«ï8î“?KX¸ù¢d‚vþù»§e¬q ›îuËOðÚèp…¢ Ùé»q\µ<¨;.5ÙS‚|,‰}+!Õ©²¯ÈùŒÍÏ{àýëëصõÞ®ZŒ¹ü´}Ð)¹|†¸Yà: 7·´ä×"ý6ÎX%\›Ã?¯ ðµW».±û|Ùibˆ]�H�æŒË,Œ«yâÙ-‡]™“`ÎmÆ)°9i‡îwÁ§Ž)ssÛßèõv[&²Ð-Ñ„ìt$¡*ºüg«F$ìS6|®%Ã7KÝ"™&t7úJùÙåÈÊ•K:ôÜ`ê;4É°5Ï—´ˆË+Úÿ�¡G1h%f±–c|ï ü6ÆWÎ6ð>€¦(Њˆ‡¶$i\ŠÁÕÞ…Ú,løî?˜i��¡klM÷FóÑ”€/OGj¿Ü(dûþøÜm\S£S‘Õ¡D7.Nˆ³o.ŠÚŽ~oF*;¦sYîò^U!.û üÂ,z ØŽ òFóä…"?Æ6Ú�ä®Uý+T1ÃÆÏèQúf°Æ:õ>zSB>©™pOߢ©ê¨á¦<DGJâIQ ,·r¥}~@ìêKi$öúàÐ&o8£dÙáà€¸´€) Ìê|ÀÔ¬ßÈÿe¹KÛ Ö¯ù}$Ñ‹�â†òó¨ÿ®bU'óÈmYvxîOþþ^–<Ž›êfÅÓ C´<¯¡zFú½Œ&ä¸Éú—¤~ˆôÝ_ÉÈy|l…²ø q� T('HòcCŒaI:¶‘ßgÓz¿<åƒDîÊLmí(ýò(çŽnÞ<2—ä+2<� ‹4äEÐAG.sDó»ú…x»õ] Mé5@’¸¹Dƒ:”"¦t†™êε0Ÿ?C†#À¶>›6Û9„ðÚ‘içû‹£„P¦aF“Æ»2Œl0…•ÊÒ\…騪~¼c±Qߪ—·ÅÅ¡§+QcÌZlC
Current thread:
- Wardialing - Odd Results Ron (Jul 21)
- Re: Wardialing - Odd Results security (Jul 22)
- Re: Wardialing - Odd Results Dave Aronson (Jul 26)
- Re: Wardialing - Odd Results Atom Powers (Jul 26)
- Re: Wardialing - Odd Results John R. Dennison (Jul 26)
- Re: Wardialing - Odd Results Champ Clark [Vistech] (Jul 29)
- Re: Wardialing - Odd Results Ron (Jul 29)
- Re: Wardialing - Odd Results John R. Dennison (Jul 26)
- <Possible follow-ups>
- Re: Re: Wardialing - Odd Results anonymousnz (Jul 26)
- Re: Re: Wardialing - Odd Results knieveltech (Jul 26)
- Re: Wardialing - Odd Results security (Jul 22)