Penetration Testing mailing list archives
Re: Multiple Spoofed HTTP Requests
From: Marco Ivaldi <raptor () 0xdeadbeef info>
Date: Mon, 5 Sep 2005 14:28:39 +0200 (CEST)
Hey,
Theoretically it is possible, practically it is unlikly to find a device that is vulnerable.
Just in case you find a vulnerable device with incremental ISNs (seen on some VxWorks-based appliances i've recently tested), you may want to craft your own HTTP spoofer starting from this proggie: http://wayreth.eu.org/gomma_pane.c Cheers, -- Marco Ivaldi Antifork Research, Inc. http://0xdeadbeef.info/ 3B05 C9C5 A2DE C3D7 4233 0394 EF85 2008 DBFD B707 ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- Multiple Spoofed HTTP Requests kuffya (Sep 02)
- RE: Multiple Spoofed HTTP Requests Omar A. Herrera (Sep 03)
- Re: Multiple Spoofed HTTP Requests Jayson Anderson (Sep 03)
- RE: Multiple Spoofed HTTP Requests Kyle Starkey (Sep 03)
- Re: Multiple Spoofed HTTP Requests Kaj Huisman (Sep 03)
- <Possible follow-ups>
- RE: Multiple Spoofed HTTP Requests Payton, Zack (Sep 03)
- Re: Multiple Spoofed HTTP Requests Marco Ivaldi (Sep 05)
- Whitespace in passwords bryan allott (Sep 06)
- Re: Whitespace in passwords Bruce K. Marshall (Sep 07)
- Re: Whitespace in passwords Anurag Joshi (Sep 11)
- Re: Whitespace in passwords Bruce K. Marshall (Sep 12)
- Whitespace in passwords bryan allott (Sep 06)