Penetration Testing mailing list archives

RE: Terminal Services

From: "Mark Woan" <m.woan () eris qinetiq com>
Date: Wed, 16 Mar 2005 08:44:03 -0000

http://www.hammerofgod.com/download/TSEnum.zip - Finds "hidden" Terminal
Services
http://www.hammerofgod.com/download/probets.zip - Finds "hidden" Terminal
Services
http://www.hammerofgod.com/download/tsgrinder-2.03.zip - Login Brute Forcer

-----Original Message-----
From: AEHeald [mailto:arianheald () bellsouth net] 
Sent: 10 March 2005 22:13
To: pen-test () securityfocus com
Subject: Terminal Services

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Greetings, group!

I am de-lurking to inquire if anyone has some pointers on Microsoft Terminal
Services.  I'm testing a client who allows 3389 into their terminal server
for the Remote Desktop Client.

Other than the Bad Thing of allowing inbound traffic onto their LAN, I'm
trying to hunt down ways to enter all the way in.  I have seen TSCrack
referenced, but the program is nowhere to be found.

Any suggestions gratefully received.

Eigen

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>

iQA/AwUBQjDGeQGhZ4M3hyK+EQIh2QCg8y1LWs/oc4B303gBM5CLAD0BG4QAoJ+A
QyWBGr7piv9nmNmHjFIUuRVi
=xKXQ
-----END PGP SIGNATURE-----

Current thread:

Re: PHP Directory Transversal, (continued)
- Re: PHP Directory Transversal Felikz (Mar 10)
  - Re: PHP Directory Transversal Andres Molinetti (Mar 10)
- Re: PHP Directory Transversal David M. Zendzian (Mar 10)
- Re: PHP Directory Transversal Cedric Foll (Mar 10)
- RE: PHP Directory Transversal Ravish (Mar 10)
  - Terminal Services AEHeald (Mar 11)
    - Re: Terminal Services Kinnell (Mar 11)
    - RE: Terminal Services Jerry Shenk (Mar 11)
    - Re: Terminal Services John the Kiwi (Mar 11)
    - RE: Terminal Services Ola (Mar 14)
    - RE: Terminal Services Mark Woan (Mar 16)
- Re: PHP Directory Transversal John GALLET (Mar 14)