Re: Pen-Testing Novell Products

["SD List" <list () security-database com>]

 Hi Terry,

This is a good idea. I'll try to find out papers, methods and tools for
this purpose. I think a mindmap framework could be a way to do it.

You can even add it as a node to Pentesting Framework (see
www.vulnerabilityassessment.co.uk). I've just added AS/400 auditing node.

 Regards

 Nabil OUCHN
 Security-Database.com

> > Hi everyone how are you ? I'm trying to put together a collaborative
> > safety guide together on Pen-testing / Countermeasuring Novell Products.
> >
> > Does anyone have any useful tips other than the ones that no longer
> > work in the Hacking exposed books. Even in the CEH class we don't
> > touch on NetWare or Suse Linux.
> >
> > Looking to Pen-Test
> > -GroupWise
> > -NetWare 6.5
> > -ZenWorks
> > -Open Enterprise Server (Suse Linux 9&10)
> > -BorderManager
> > -Web apps such as iManager / iMonitor
> >
> >
> > Any help would be appreciated.
> >
> > PS :  Please feel free to send me any Pen-Testing reports you may have
> > done at tcutler () novell com.
> >
> > You can remove who the company is and their IP address from the report
> > if you wish, I'm just after how you got in and how to countermeasure.
> >
> >
> > --
> > ./Terry Cutler
> > Master CNE , CDE, CLP, Certified Ethical Hacker
> >
> > ------------------------------------------------------------------------
> > This List Sponsored by: Cenzic
> >
> > Are you using SPI, Watchfire or WhiteHat?
> > Consider getting clear vision with Cenzic
> > See HOW Now with our 20/20 program!
> >
> > http://www.cenzic.com/c/2020
> > ------------------------------------------------------------------------



------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------