PaulDotCom mailing list archives

P2P Pentesting

From: bjudd at synercomm.com (Brian Judd)
Date: Thu, 8 Oct 2009 07:42:17 -0500

Back in show 154, there was a great presentation on using P2P to
discover information.  One of the guys made a comment about using P2P
during penetration testing and audits to discover information leakage.
I am wondering what P2P clients are capable of displaying the source IP
address of the client sharing files or more importantly, how I can do a
P2P search for any files coming from a particular source IP
address/range?

 

I have three class C blocks of public IP addresses that I would like to
determine whether any are being used to share files.  

 

Thanks.

 

Brian



This message (including any attachments) may contain confidential
information and is intended only for the individual to which it is
addressed. If you are not the intended recipient, please delete
this message and contact the sender. You are also hereby notified
that any review, disclosure, copying, or distribution of this
message, or the taking of any action based on it, is prohibited.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20091008/3a0c8a61/attachment.htm

Current thread:

P2P Pentesting Brian Judd (Oct 08)
- P2P Pentesting Larry Pesce (Oct 08)
- P2P Pentesting Michael Douglas (Oct 08)
  - P2P Pentesting Albert R. Campa (Oct 08)
- P2P Pentesting Ron Gula (Oct 08)
- <Possible follow-ups>
- P2P Pentesting Butturini, Russell (Oct 08)