Penetration Testing mailing list archives
Re: auditing VSE/DOS
From: v b <r0cketgrl () yahoo com>
Date: Thu, 10 Nov 2005 06:20:52 -0800 (PST)
Christian -- Mr. Google is your friend. Plug VSE Audit programs into Google and you will receive multiple hits. I found the following most specific to DOS/VSE to get you started: http://tinyurl.com/dea9r Also try the other links at www.auditnet.org I am sure I have some VSE/MVS specific tools in my archives. Contact me off-line if you would like. Regards, Valerie --- Christian Kopacsi <ckopacsi () cmhcm org> wrote:
Anyone have a checklist, best practice guide or any tools for auditing VSE/DOS? Christian Kopacsi -----Original Message----- From: Hugo Vinicius Garcia Razera [mailto:hviniciusg () gmail com] Sent: Tuesday, November 08, 2005 12:27 PM To: Tomasz Nidecki Cc: pen-test () securityfocus com Subject: Re: e-mail address mining tool? I agree whit every thing u said Tomas, but from the point off view off a penetration testing it would be a very nice way to get what users are valid on that domain. assuming that the only service available is external mail for the users, witch is the case I'm working right know. Now comes the question, if i develop such tool, and the spamers get the hands on it i will kill my self :), i don't want no more sper..... pills mails or... well i think u know what i mean. An interesting way off gathering the emails(users) could be if u get a "mailer daemon reply" of an invalid user, so if u don't get anything, there is the probability that the account is valid. any comments any one. Greetings Hugo Vinicius Garcia Razera On 11/7/05, Tomasz Nidecki <tonid () hakin9 org> wrote:-----BEGIN PGP SIGNED MESSAGE----- Hash: MD5 Sunday, November 6, 2005, 6:36:48 PM, Eyal wrote:I'm not aware of any tool which can test emailsagainst an address file.The most efficient approach to achieve thisfunctionality is to write asimple script which sends the SMTP VRFY commandfor each entry in an addressfile.Note that some mail servers do not support thiscommand in order to thwartspammers.Hi, everyone. Well, to be exact, almost no servers support thiscommand nowadays.qmail definitely doesn't. AFAIK, Postfix doesn'teither, at least itdidn't the last time I checked. Neither did Exim.Only Sendmail, inits standard config, responds to the VRFY command.I don't know aboutcommercial, Windows mailservers, but I found theVRFY commandsupported in very few cases. Therefore I would notbase anything onits output. Also, testing the existence of the user is rarelydone on the level ofmail envelope. Therefore, you cannot expect themailserver to eitherreply right after sending the RCPT TO command thatthe user doesn'texist or reply in such away after DATA is sent.The only thing you canexpect, is that if the user address is invalid,you will receive amailer daemon reply to the MAIL FROM address. But... This is also not certain. Some mailserversuse a defaultaccount for a given domain, eg. qmail, which Ispecialise in. If sucha setup is made, all mail to inexistant users in agiven domain isdirected to a chosen existant account. Thereforeyou will not receiveany answer from the mailserver, if a bad e-mailaddress is given inRCPT TO, since mail will be delivered to anexisting user.Therefore, there is no tool and there will be nosuch tool. Which isgood, because if there was, spammers would have amuch easier lifemaking databases of existing users, so they cansell them later on.Cheers, - -- Tomasz Nidecki, Sekr. Redakcji / Managing Editor hakin9 magazine http://www.hakin9.org mailto:tonid () hakin9 org jid:tonid () tonid net Do you know what "hacker" means? http://www.catb.org/~esr/faqs/hacker-howto.html Czy wiesz, co znaczy slowo "haker"? http://www.jtz.org.pl/Inne/hacker-howto-pl.html -----BEGIN PGP SIGNATURE----- Version: 2.6
iQCVAwUAQ28M6ER7PdagQ735AQE90gP9EXVRDGUNNQdWgSCHDeYItm7AuZzj0JYF
ExOhwTC/863ATjCC18b3lGD+qCKvC3ud4q213HqFOUkEGEraWboxVziQluwbnWqz
zjdlxfdj0JHPEP5aqTwS2JE34CvCXqMoN+tVVALD/RvcqqCYQr8jzNn+Q9uzePc2
x2FsceCmFSs= =m5Ng -----END PGP SIGNATURE-----
------------------------------------------------------------------------------
Audit your website security with Acunetix WebVulnerability Scanner:Hackers are concentrating their efforts onattacking applications on yourwebsite. Up to 75% of cyber attacks are launchedon shopping carts, forms,login pages, dynamic content etc. Firewalls, SSLand locked-down servers arefutile against web application hacking. Check yourwebsite for vulnerabilitiesto SQL injection, Cross site scripting and otherweb attacks before hackers do!Download Trial at:http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks
=== message truncated === __________________________________ Yahoo! FareChase: Search multiple travel sites in one click. http://farechase.yahoo.com ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- auditing VSE/DOS Christian Kopacsi (Nov 09)
- Re: auditing VSE/DOS v b (Nov 10)