Penetration Testing mailing list archives

RE: Pen-Testing Windows from Solaris

From: "Dieter Sarrazyn" <dsr () ascure com>
Date: Tue, 13 May 2003 18:33:54 +0200

Hi,

My experience with installing nessus (and nmap) on solaris is that
you'll have to compile almost everything from the source tarballs
instead of installing the packages (from sunfreeware).

I installed successfully nessus on Solaris 8.

Greetz,
Dieter

-----Original Message-----
From: Bojan Zdrnja [mailto:Bojan.Zdrnja () LSS hr] 
Sent: dinsdag 13 mei 2003 9:32
To: 'peter.king'; pen-test () securityfocus com
Subject: RE: Pen-Testing Windows from Solaris

Among tools that other people suggested, you can install 
Nessus on that machine and run tests on target machines. 
You'll need nmap for that as well.

Installation *can* be tricky, you can find some info on the 
following URL (it's for Solaris 7, but you can find it useful):

http://www.sunhelpdesk.com/users/john/nessus.htm

Best regards,

Bojan Zdrnja

-----Original Message-----
From: peter.king [mailto:peter.king () ziplip com]
Sent: Tuesday, 13 May 2003 3:10 a.m.
To: pen-test () securityfocus com
Cc: peter.king () ziplip com
Subject: Pen-Testing Windows from Solaris

Hi

I have recently been given the task of Pen-Testing several
large Windows networks, running a variety of versions of windows.

Unfortunatly the only platform I will have to conduct the
tests will be a Sparc Solaris 2.6 box. I will have command 
line access only to this box.

I envisage the main problems with the boxes to be poor
passwords, open shares, IIS, and MS SQL.

Given these limits what command line tools would people
suggest as the best ones to use that will run under Solaris 
2.6? I have my own ideas for several of them but would 
appreaciate any extra input.

Cheers,

Peter

--------------------------------------------------------------
-------------
Did you know that you have VNC running on your network?
Your hacker does.
Plug your security holes.
Download a free 15-day trial of VAM: 
http://www.securityfocus.com/StillSecure-pen-test
--------------------------------------------------------------
--------------



--------------------------------------------------------------
-------------
Did you know that you have VNC running on your network?
Your hacker does.
Plug your security holes.
Download a free 15-day trial of VAM: 
http://www.securityfocus.com/StillSecure-pen-> test


--------------------------------------------------------------
--------------


---------------------------------------------------------------------------
Did you know that you have VNC running on your network?
Your hacker does.
Plug your security holes.
Download a free 15-day trial of VAM:
http://www.securityfocus.com/StillSecure-pen-test
----------------------------------------------------------------------------

Current thread:

Pen-Testing Windows from Solaris peter.king (May 12)
- RE: Pen-Testing Windows from Solaris Aleksander P. Czarnowski (May 12)
- RE: Pen-Testing Windows from Solaris Bojan Zdrnja (May 13)
- <Possible follow-ups>
- RE: Pen-Testing Windows from Solaris Ballowe, Charles (May 12)
- RE: Pen-Testing Windows from Solaris Herwig . Thyssens (May 13)
- RE: Pen-Testing Windows from Solaris Dieter Sarrazyn (May 13)
- RE: Pen-Testing Windows from Solaris juan . losada (May 13)