Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Hacking to Xp box

From: "Enrique A. Sanchez Montellano" <enrique.sanchez () hypersec co uk>
Date: Sun, 04 Sep 2005 11:30:03 -0500

Easy fix, go for the domain, intereact with it and add a GPO, make it run as
administrador for domain and wait for him to just login into domain again,
to hijack SP2 is easy fix, just createthread into an already running program
(like iexplorer) and just overwrite the thread Works like a charm.

Just create a directory if you don't want to be THAT annoying or even kill
the firewall with mocosoft.com little program to lower the firewall
completely

Enrique A. Sanchez Montellano
FreeLance Consultant
http://www.ng-con.com / http://www.hypersec.co.uk

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: