Penetration Testing mailing list archives
Re: I want the PT list back....
From: Pete Herzog <lists () isecom org>
Date: Wed, 12 Dec 2007 11:06:56 +0100
Hi Joe,Well, you've done it now. The thought police are already on their way to your domestic residence to impound your computers for auction. They'll get top dollar too if they leave the "Kiss me I'm a hacker" sticker on it! ;) Actually, I need to get me one of those....
For wireless I pretty much just use Kisment/Aircrack-NG, but I'm really interested in wicrawl. Anyone using it on pentests yet?
I have a comment on this. You wrote a way tanker full anyway so I want to leave the rest for the list members to chew on.
I put a lot of new wireless tests in OSSTMM 3 which include going beyond the typical WiFi ranges for many reasons but mostly because some clients want the information even if they aren't aren't prepared to deal with it. So we've been using hand held EMR/EMF testers looking for high-powered devices, bugs and other rf transmitters, "illegal" or at least "restricted" frequency wifi communication signals from devices bought in Japan and China, and anomalies which can cause wireless DoS or "human discomfort" (the medical researchers seem to be split on what constitutes EMR damage).
While I realize that some of this is not currently usable for penetration and more in the lines of a security test I think it's only a matter of time. I mean, look at how quickly sniffing traffic to wireless keyboards and cordless telephone conversations has become part of pen tests. It's just a matter of time before other devices fall into this domain.
Anyway, I appreciated your rant this morning. Good on ya! Maybe I'll submit my rant here later- the one on Security 2.0 that I put on the ISECOM News list yesterday.
-pete. www.isecom.org ------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
Current thread:
- I want the PT list back.... Joseph McCray (Dec 12)
- Re: I want the PT list back.... Pete Herzog (Dec 13)
- Re: I want the PT list back.... Peter Wood (Dec 13)
- Re: I want the PT list back.... Didi (Dec 17)
- RE: I want the PT list back.... Shenk, Jerry A (Dec 13)
- RE: I want the PT list back.... Ken . Carty (Dec 13)
- Re: I want the PT list back.... Petr . Kazil (Dec 13)
- RE: I want the PT list back.... Erin Carroll (Dec 13)
- Re: I want the PT list back.... Andre Gironda (Dec 17)
- <Possible follow-ups>
- Re: I want the PT list back.... krymson (Dec 13)
- RE: I want the PT list back.... Bob Radvanovsky (Dec 14)