Penetration Testing mailing list archives

Find out the subnetting of a company

From: il.prof () virgilio it
Date: Thu, 15 Jul 2004 10:17:02 +0200

During an internal black-box penetration test, from a subnet of a company
(with or without DHCP), how do you find out the structure of the other subnets
of network? In particular, how do you determine/discover the subnetting
of the IP space of a company?

An example:

- IP network of the company XYZ: 10.0.0.0/8 (I use a private class to avoid
the use of a real address space)
- I?m in the subnet 10.0.0.0/24

How do you find out the structure of other subnets that are part of the
network 10.0.0.0/8?

Il Prof.

Current thread:

Find out the subnetting of a company il . prof (Jul 19)
- Re: Find out the subnetting of a company Miles Stevenson (Jul 20)
  - Re: Find out the subnetting of a company J.A. Terranson (Jul 20)
    - Re: Find out the subnetting of a company Miles Stevenson (Jul 20)
  - Re: Find out the subnetting of a company Andy Cuff (Jul 21)
- RE: Find out the subnetting of a company easternerd (Jul 21)
- Re: Find out the subnetting of a company Tim (Jul 21)
- <Possible follow-ups>
- RE: Find out the subnetting of a company Dieter Sarrazyn (Jul 20)
  - Re: Find out the subnetting of a company Volker Tanger (Jul 21)
  - RE: Find out the subnetting of a company Rob J Meijer (Jul 21)
- Re: Find out the subnetting of a company David M. Zendzian (Jul 21)

(Thread continues...)