Penetration Testing mailing list archives

FW: Pen test, tcp/1404 found - advice needed

From: "Craig Wright" <cwright () bdosyd com au>
Date: Fri, 16 Sep 2005 08:24:47 +1000


Stuff Google - just look up the source

http://www.iana.org/assignments/port-numbers
http://www.iana.org/assignments/
http://www.iana.org/numbers.html
Etc...

Maybe an RFC
http://www.ietf.org/rfc/rfc0791.txt

Craig

-----Original Message-----
From: Luke Eckley [mailto:luke () xifos org]
Sent: 15 September 2005 5:27
To: Sekurity Wizard; pen-test () securityfocus com
Subject: Re: Pen test, tcp/1404 found - advice needed

Sekurity Wizard wrote:

Hey folks,
      Found tcp/1494 open to a server during a pen test, black-box

style.

Are there any interesting tools that may be available to extract 
information from the server on the receiving end?


The easiest thing to do is telnet (or use netcat) to the port to see if
it responds with a version or any other information.

Also if you know the OS, then just google for that port and narrow down
your results by OS.

Luke

------------------------------------------------------------------------
------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on
your website. Up to 75% of cyber attacks are launched on shopping carts,
forms, login pages, dynamic content etc. Firewalls, SSL and locked-down
servers are futile against web application hacking. Check your website
for vulnerabilities to SQL injection, Cross site scripting and other web
attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
------------------------------------------------------------------------
-------


------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Current thread:

Pen test, tcp/1404 found - advice needed Sekurity Wizard (Sep 14)
- Re: Pen test, tcp/1404 found - advice needed Ivan . (Sep 15)
- Re: Pen test, tcp/1404 found - advice needed Luke Eckley (Sep 15)
  - Re: Pen test, tcp/1404 found - advice needed Andre Ludwig (Sep 16)
- Re: Pen test, tcp/1404 found - advice needed Nicolas RUFF (Sep 16)
  - Re: Pen test, tcp/1404 found - advice needed Andre Ludwig (Sep 16)
- <Possible follow-ups>
- Re: Pen test, tcp/1404 found - advice needed mike king (Sep 15)
- RE: Pen test, tcp/1404 found - advice needed Sekurity Wizard (Sep 16)
- RE: Pen test, tcp/1404 found - advice needed Sekurity Wizard (Sep 16)
- RE: Pen test, tcp/1404 found - advice needed DUBRAWSKY, IDO (CALLISMA) (Sep 16)
- FW: Pen test, tcp/1404 found - advice needed Craig Wright (Sep 16)
- RE: Pen test, tcp/1404 found - advice needed MacEwen, Jeffrey B. (Sep 16)
- RE: Pen test, tcp/1404 found - advice needed DUBRAWSKY, IDO (CALLISMA) (Sep 16)
- Re: Pen test, tcp/1404 found - advice needed Sekurity Shaman (Sep 16)
- RE: Pen test, tcp/1404 found - advice needed Craig Wright (Sep 18)