Penetration Testing mailing list archives
RE: IIS 5.0 with Integrated Window Authentication
From: "Jason Coombs" <jasonc () science org>
Date: Wed, 6 Nov 2002 12:21:46 -1000
it might be easier for you to code your own scanner real quick using Microsoft .NET -- the class library provides several very simple network communications classes that do what you want. Jason Coombs jasonc () science org -----Original Message----- From: Haroon Meer [mailto:haroon () sensepost com] Sent: Wednesday, November 06, 2002 10:44 AM To: cc_mofo () hushmail com Cc: pen-test () securityfocus com; webappsec () securityfocus com Subject: Re: IIS 5.0 with Integrated Window Authentication hi. use APS (NTLM Authorization Proxy Server) (http://freshmeat.net/projects/ntlmaps/?topic_id=20%2C87%2C250%2C43%2C151) to handle the auth, and ur scanner of choice behind it.. ====================================================================== Haroon Meer MH SensePost Information Security +27 83786 6637 PGP : http://www.sensepost.com/pgp/haroon.txt haroon () sensepost com ====================================================================== On Wed, 6 Nov 2002 cc_mofo () hushmail com wrote:
I'm doing a security review and penetration test of a site running on IIS
with Integrated Windows Authentication. Anyone know of an IIS Scanner that can do an IWA exchange before scanning?
The SPIKE proxy looks promising, but it appears the NTLM support is not
quite "there" yet for this purpose. The goofy three-message exchange that sets up the NTLM security doesn't seem to make it through the proxy, which leads me to believe that any tool that will work for this must have intentionally added support for IWA.
Get your free encrypted email at https://www.hushmail.com ------------ Output from gpg ------------ gpg: Signature made Wed Nov 6 22:15:16 2002 SAST using DSA key ID
21BE2B65
gpg: Can't check signature: public key not found
---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
Current thread:
- IIS 5.0 with Integrated Window Authentication cc_mofo (Nov 07)
- Re: IIS 5.0 with Integrated Window Authentication Kevin Spett (Nov 07)
- Re: IIS 5.0 with Integrated Window Authentication Sebastian Flothow (Nov 08)
- Re: IIS 5.0 with Integrated Window Authentication Dave Aitel (Nov 07)
- Re: IIS 5.0 with Integrated Window Authentication sunzi (Nov 07)
- Re: IIS 5.0 with Integrated Window Authentication Haroon Meer (Nov 08)
- RE: IIS 5.0 with Integrated Window Authentication Jason Coombs (Nov 08)
- Re: IIS 5.0 with Integrated Window Authentication Dave Aitel (Nov 07)
- Re: [Spike] Re: IIS 5.0 with Integrated Window Authentication Dave Aitel (Nov 07)
- RE: IIS 5.0 with Integrated Window Authentication Jason Coombs (Nov 08)
- <Possible follow-ups>
- Re: IIS 5.0 with Integrated Window Authentication cc_mofo (Nov 09)
- RE: IIS 5.0 with Integrated Window Authentication Michael Howard (Nov 09)
- Re: IIS 5.0 with Integrated Window Authentication cc_mofo (Nov 12)