Full Disclosure mailing list archives
RE: IIS hacking contest
From: "Marc Maiffret" <mmaiffret () eeye com>
Date: Thu, 7 Apr 2005 15:35:25 -0700
Has no one learned from these contests yet that they don't work, not even for reasons of being a false way to test security, but because the servers are never able to stay online for more than an hour because of denial of service attacks. The "funny" part is if the server gets DDoS'd then so will Windows IT Pro magazine whom is hosting the hack server (now at least) on the same subnet as their main website and with the same routes of course... Maybe they can product test some Arbor networks gear while they are at it :-) two for one. Then again we did break our last xbox, so hmmmm Signed, Marc Maiffret Chief Hacking Officer eEye Digital Security T.949.349.9062 F.949.349.9329 http://eEye.com/Blink - End-Point Vulnerability Prevention http://eEye.com/Retina - Network Security Scanner http://eEye.com/Iris - Network Traffic Analyzer http://eEye.com/SecureIIS - Stop known and unknown IIS vulnerabilities Important Notice: This email is confidential, may be legally privileged, and is for the intended recipient only. Access, disclosure, copying, distribution, or reliance on any of it by anyone else is prohibited and may be a criminal offense. Please delete if obtained in error and email confirmation to the sender. | -----Original Message----- | From: full-disclosure-bounces () lists grok org uk | [mailto:full-disclosure-bounces () lists grok org uk] On Behalf | Of Bryan Loveless | Sent: Thursday, April 07, 2005 1:17 PM | To: full-disclosure () lists grok org uk | Subject: [Full-disclosure] IIS hacking contest | | Here's your chance to shut up all those IIS people from | saying it is secure. | (Or prove them right) | There is a contest to hack IIS, and the winner gets an XBOX, | plus the pride of saying that they have hacked an | "impenetrable IIS environment." | | http://www.hackiis6.com/ | | --Bryan _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- IIS hacking contest Bryan Loveless (Apr 07)
- Re: IIS hacking contest Randall Perry (Apr 07)
- <Possible follow-ups>
- RE: IIS hacking contest Marc Maiffret (Apr 07)
- Re: IIS hacking contest H D Moore (Apr 07)
- Re: IIS hacking contest sHz (Apr 08)
- Re: IIS hacking contest n3td3v (Apr 08)
- Re: IIS hacking contest H D Moore (Apr 07)