Penetration Testing mailing list archives
Re: Penetration test of 1 IP address
From: intel96 <intel96 () bellsouth net>
Date: Thu, 09 Feb 2006 11:33:38 -0500
Edmond, Before running any port scanner (e.g. nmap) or vulnerability scanner (e.g. nessus) do some basic research on the target environment/application using Google. Here is some research that I conducted with the information you provide: 1. The application WebBlaze is used to stored legal case information. The application is web-based, but ties into other applications by the vendor. Here is the web site for WebBlaze: http://www.summation.com/ 2. WebBlaze works on Microsoft 2000 Server or Microsoft 2003 Server based on the information at the vendor's website. You can telnet to port 80 (e.g. 10.1.1.4 80) to obtain the IIS version information. MS 2000 Server = IIS 5.0 / MS 2003 Server = IIS 6.0. 3. Here is a link to WebBlaze system requirements: http://info.summation.com/products/SP_webblaze_specs.htm 4. WebBlaze connects to a back-end application that can use MS SQLServer. 5. Since you know the client's company name you can use Google to find potential user names for the application. The password length is set at 20-characters, but check the HTML source code of the site that you are testing to verify. 6. The application does have an enforcement module that can lock-out accounts. The application can monitor account lock-out. You will not be able to brute force the login page if the administrator has the lock-out feature enabled. 7. You can check for test accounts (e.g. test/test, test/password, test/testpassword, testuser/testuser, testuser/password, testuser/testpassword). 8. Contact the vendor and obtain an install manual for the WebBlaze application which could provide you additional information about the target application. I hope that this information helps. Intel96 Edmond Chow wrote:
To all: I have been asked to perform a security audit of 1 IP address for client. They have given me the 1 IP address and a clue (webblaze). If I enter the IP address and then /webblaze, I am taken to a login page (user name and password requested). What tools would you recommend that I use for this assignment? Thanks for your help. Regards, Edmond ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- RE: Penetration test of 1 IP address, (continued)
- RE: Penetration test of 1 IP address Erin Carroll (Feb 10)
- Re: Penetration test of 1 IP address Christine Kronberg (Feb 09)
- Re: Penetration test of 1 IP address Buz Dale (Feb 09)
- Re: Penetration test of 1 IP address Ailton Caetano (Feb 09)
- Re: Penetration test of 1 IP address Ailton Caetano (Feb 09)
- RE: Penetration test of 1 IP address Daniel Grzelak (Feb 09)
- RE: Penetration test of 1 IP address Lyal Collins (Feb 09)
- Re: Penetration test of 1 IP address vasile revnic (Feb 09)
- Re: Penetration test of 1 IP address Anonymous (Feb 09)
- Re: Penetration test of 1 IP address Packet Man (Feb 09)
- Re: Penetration test of 1 IP address intel96 (Feb 09)
- Re: Penetration test of 1 IP address Ivan Arce (Feb 15)
- Re: Penetration test of 1 IP address Sugiowono (Feb 09)
- RE: Penetration test of 1 IP address Bob Radvanovsky (Feb 09)
- RE: Penetration test of 1 IP address Sels, Roger (Feb 09)
- RE: Penetration test of 1 IP address Anders Thulin (Feb 09)
- RE: Penetration test of 1 IP address Edmond Chow (Feb 09)
- RE: Penetration test of 1 IP address John Forristel (SunGard-Chico) (Feb 09)
- Re: Penetration test of 1 IP address Dave (Feb 09)
- RE: Penetration test of 1 IP address Clemens, Dan (Feb 09)
- RE: Penetration test of 1 IP address Edmond Chow (Feb 10)
(Thread continues...)