RE: attack on a computer behind a nat.

["Alex Eden" <Alex.Eden () senet-int com>]

Hypothetically it is possible, even though difficult in reality.

Try to scan it with nmap first using "-g" switch - let's say firewall is not
very good at maintaining sessions, and you can fool it into thinking that
your traffic is response to that desktop's DNS query, or response to
desktop's http request....

Once you able to scan, think of a way to send your payload/exploit using same
approach.

Eventually you will need a reverse shell.


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of Michael Kitange
Sent: Tuesday, September 09, 2008 2:08 AM
To: pen-test () securityfocus com
Subject: attack on a computer behind a nat.

hi, list.
is there any way to send an attack to a computer behind a nat box?
possibly modify a packet header, i know the ip that the computer is
using behind the nat. any help is appreciated.

-- 
Sent from Gmail for mobile | mobile.google.com

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------