Penetration Testing mailing list archives
Re: [PEN-TEST] Deeper Penetration
From: "Chris St. Clair" <chris_stclair () HOTMAIL COM>
Date: Wed, 15 Nov 2000 20:15:34 GMT
VNC. Problem is, the system is firewalled and I can't get the server >to download any tools. Suggestions anyone.
Does the firewall do any packet inspection at all? Is the web server being fed by a reverse-proxy? Is the web server using both 80 and 443? If you answered no to all of the above, park a netcat listener on 443 and grab a shell first. Does the firewall allow the web server to make any outbound connections at all? If not, craft some html on the web server to allow file uploading. I was in a situation similar to this, but ended up not having to craft the html because I could get the web server to (t)ftp outbound and suck files up. Good luck. _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com.
Current thread:
- [PEN-TEST] Deeper Penetration thylacine (Nov 16)
- Re: [PEN-TEST] Deeper Penetration Ryan Russell (Nov 16)
- <Possible follow-ups>
- Re: [PEN-TEST] Deeper Penetration Miller Scott Contr 30CS/FTI (Nov 16)
- Re: [PEN-TEST] Deeper Penetration Clem Colman (Nov 16)
- Re: [PEN-TEST] Deeper Penetration Riot (Nov 16)
- Re: [PEN-TEST] Deeper Penetration Clem Colman (Nov 16)
- Re: [PEN-TEST] Deeper Penetration Chris St. Clair (Nov 16)
- Re: [PEN-TEST] Deeper Penetration Oliver Petruzel (Nov 16)
- Re: [PEN-TEST] Deeper Penetration Oliver Petruzel (Nov 16)
- Re: [PEN-TEST] Deeper Penetration J. Oquendo (Nov 17)
- Re: [PEN-TEST] Deeper Penetration Beauregard, Claude Q (Nov 17)
- Re: [PEN-TEST] Deeper Penetration Clem Colman (Nov 17)