RE: Pen-Testing Windows from Solaris

["Bojan Zdrnja" <Bojan.Zdrnja () LSS hr>]

Among tools that other people suggested, you can install Nessus on that
machine and run tests on target machines.
You'll need nmap for that as well.

Installation *can* be tricky, you can find some info on the following URL
(it's for Solaris 7, but you can find it useful):

http://www.sunhelpdesk.com/users/john/nessus.htm

Best regards,

Bojan Zdrnja

> -----Original Message-----
> From: peter.king [mailto:peter.king () ziplip com] 
> Sent: Tuesday, 13 May 2003 3:10 a.m.
> To: pen-test () securityfocus com
> Cc: peter.king () ziplip com
> Subject: Pen-Testing Windows from Solaris
>
>
>
>
> Hi
>
> I have recently been given the task of Pen-Testing several 
> large Windows networks, running a variety of versions of windows.
>
> Unfortunatly the only platform I will have to conduct the 
> tests will be a Sparc Solaris 2.6 box. I will have command 
> line access only to this box.
>
> I envisage the main problems with the boxes to be poor 
> passwords, open shares, IIS, and MS SQL.
>
> Given these limits what command line tools would people 
> suggest as the best ones to use that will run under Solaris 
> 2.6? I have my own ideas for several of them but would 
> appreaciate any extra input.
>
> Cheers,
>
> Peter
>
> --------------------------------------------------------------
> -------------
> Did you know that you have VNC running on your network?
> Your hacker does.
> Plug your security holes.
> Download a free 15-day trial of VAM:
> http://www.securityfocus.com/StillSecure-pen-test
> --------------------------------------------------------------
> --------------


---------------------------------------------------------------------------
Did you know that you have VNC running on your network?
Your hacker does.
Plug your security holes.
Download a free 15-day trial of VAM:
http://www.securityfocus.com/StillSecure-pen-test
----------------------------------------------------------------------------