PaulDotCom mailing list archives
Re: [GPWN-list] Avoiding IPS Detection
From: Tim Tomes <tjt1980 () gmail com>
Date: Tue, 21 May 2013 09:44:10 -0400
OK, let me provide a little more detail. You've done reconnaissance, and there wasn't enough information to make precise targetted attacks. You need to probe the network (i.e. nmap scans) to find available services. You can't go to your local coffee shop or use a service like anonymizer because they are detecting and blocking too aggressively to experience the benefits of either. Your only choice is avoidance. I know some of you are saying, "just phish". That's not in scope here. You're doing it old school. On Tue, May 21, 2013 at 9:25 AM, David Young <korang () gmail com> wrote:
I would be interested in this too. I have found I can bypass AV without issue. But the Network Threat Protection stops my reverse connection On May 21, 2013 7:52 AM, "Tim Tomes" <tjt1980 () gmail com> wrote:I'm compiling a list of preferred methods for probing networks while avoiding IDS/IPS detection. Any and all input is appreciated. Thanks. -- Tim Tomes @lanmaster53 http://lanmaster53.com/ _______________________________________________ gpwn-list mailing list gpwn-list () lists sans org https://lists.sans.org/mailman/listinfo/gpwn-list
-- Tim Tomes @lanmaster53 http://lanmaster53.com/ _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- Avoiding IPS Detection Tim Tomes (May 21)
- Re: [GPWN-list] Avoiding IPS Detection Jamil Ben Alluch (May 21)
- Message not available
- Re: [GPWN-list] Avoiding IPS Detection Tim Tomes (May 21)
- Re: Avoiding IPS Detection Dan King (May 21)
- Re: Avoiding IPS Detection Wicked Clown (May 22)