Penetration Testing mailing list archives

Re: I want the PT list back....

From: Pete Herzog <lists () isecom org>
Date: Wed, 12 Dec 2007 11:06:56 +0100

Hi Joe,

Well, you've done it now. The thought police are already on their way toyour domestic residence to impound your computers for auction. They'll gettop dollar too if they leave the "Kiss me I'm a hacker" sticker on it! ;)Actually, I need to get me one of those....

For wireless I pretty much just use Kisment/Aircrack-NG, but I'm really
interested in wicrawl. Anyone using it on pentests yet?

I have a comment on this. You wrote a way tanker full anyway so I want toleave the rest for the list members to chew on.

I put a lot of new wireless tests in OSSTMM 3 which include going beyondthe typical WiFi ranges for many reasons but mostly because some clientswant the information even if they aren't aren't prepared to deal with it.So we've been using hand held EMR/EMF testers looking for high-powereddevices, bugs and other rf transmitters, "illegal" or at least "restricted"frequency wifi communication signals from devices bought in Japan andChina, and anomalies which can cause wireless DoS or "human discomfort"(the medical researchers seem to be split on what constitutes EMR damage).

While I realize that some of this is not currently usable for penetrationand more in the lines of a security test I think it's only a matter oftime. I mean, look at how quickly sniffing traffic to wireless keyboardsand cordless telephone conversations has become part of pen tests. It'sjust a matter of time before other devices fall into this domain.

Anyway, I appreciated your rant this morning. Good on ya! Maybe I'llsubmit my rant here later- the one on Security 2.0 that I put on the ISECOMNews list yesterday.


-pete.
www.isecom.org

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

Current thread:

I want the PT list back.... Joseph McCray (Dec 12)
- Re: I want the PT list back.... Pete Herzog (Dec 13)
- Re: I want the PT list back.... Peter Wood (Dec 13)
  - Re: I want the PT list back.... Didi (Dec 17)
- RE: I want the PT list back.... Shenk, Jerry A (Dec 13)
  - RE: I want the PT list back.... Ken . Carty (Dec 13)
- Re: I want the PT list back.... Petr . Kazil (Dec 13)
- RE: I want the PT list back.... Erin Carroll (Dec 13)
- Re: I want the PT list back.... Andre Gironda (Dec 17)
- <Possible follow-ups>
- Re: I want the PT list back.... krymson (Dec 13)
- RE: I want the PT list back.... Bob Radvanovsky (Dec 14)