Penetration Testing mailing list archives

Re: Strange response from network

From: shashrai () emirates net ae
Date: Thu, 16 Sep 2004 17:09:58 +0400

please read my original post ... i have written that amap (from thc ...
unless you are talking about "another" amap) was not able to identify
the service. And i have also written that the nma[ results were using
-sV switch for service identification.

shashank

----- Original Message -----
From: Frederic Charpentier <fcharpentier () xmcopartners com>
Date: Thursday, September 16, 2004 1:03 pm
Subject: Re: Strange response from network

hi, you can use "thc amap" to detect what is the running protocol 
on 
this port.
if a FTP is running on port 22, it will detect it as FTP not SSH.
Nmap may also detect detect it with -sV switch.

Fred .

b) is it possible to determine the IP of the 7th HOP.



Regarding the port number, my guess is that port 2443 is the

2nd SSL

server 2 + 443 (443 = SSL). Nmap simply uses the common ports

database > to guess what service generally resides at the open 
port it found. For

instance, if I ran my FTP server on port 22, nmap would detect

it as an

SSH server. I think there is a switch to have it grab the

banner for

you, but I have not used this feature.


-- 
_______________________________________
Frédéric Charpentier - Xmco Partners
Consultant Sécurité / Test d'intrusion

tel  : 33 1 53 45 28 63
web  : http://www.xmcopartners.com
16 place Vendome 75001 PARIS

Attachment: shashrai.vcf
Description: Card for <shashrai@emirates.net.ae>

------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------

Current thread:

Strange response from network Shashank Rai (Sep 15)
- Re: Strange response from network Ben Timby (Sep 15)
  - Re: Strange response from network David Coppa (Sep 16)
- Re: Strange response from network Mambo Dsouza (Sep 16)
- Re: Strange response from network Martin Mačok (Sep 16)
- <Possible follow-ups>
- Re: Strange response from network shashrai (Sep 16)
- Re: Strange response from network shashrai (Sep 16)