Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Changing Source Port during Penetration Testing?

From: "Michael Scheidell" <scheidell () secnap net>
Date: Sun, 5 Nov 2006 08:02:22 -0500
-----Original Message-----
From: listbounce () securityfocus com 
[mailto:listbounce () securityfocus com] On Behalf Of 09sparky () gmail com
Sent: Saturday, November 04, 2006 11:58 AM
To: pen-test () securityfocus com
Subject: Changing Source Port during Penetration Testing?


Question for PenTester,
Do most of you attempt to change the source port during a 
standard external Penetration Test/Vulnerability Assessment 
as part of your standard practice?  

If so, how often do you find routers/firewalls that allow for 
instance port 80, 53, 25, etc allowing you to forward traffic?



A long time ago, in a galaxy far away, there lived 'port filtering'
firewalls.
These port filtering firewalls did not know about outgoing data (mostly
ftp and udp) and needed help.

'Wizards' configured these port filtering firewalls to allow anything
with TCP source port 20 back in, and anything with UDP source port 53
back in.

I seriously doubt you will find many of these old firewalls in our
current galaxy.

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: