Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: locate windows workstation if you know the username

From: "Brendan Dolan-Gavitt" <mooyix () gmail com>
Date: Wed, 30 Aug 2006 14:05:00 -0400
Came across this tip:
http://www.jsifaq.com/SF/Tips/Tip.aspx?id=0771

Basically, see what machine pops up in your cache after you get a response.

Another way to do this would be to just sniff the traffic and see what
machine replies after you send out your message.

-Brendan

On 8/30/06, offset <offset () ubersecurity org> wrote:

Greetings fellow pen-testers,

Looking for ideas on tracking down a windows workstation if you know the username.

I know that if I run     net send username ""     I can tell that the user is online without the message box popping up on 
their machine (usually), but I'd like to know which workstation a particular user is at for a targeted arp spoofing attack 
against a client.

-off

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------




------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: