Penetration Testing mailing list archives
Re: lotus notes default objects(.nsf files) and actions
From: Nikhil Wagholikar <visitnikhil () gmail com>
Date: Tue, 31 Mar 2009 11:01:30 +0530
Hi Lister, Lot of automated vulnerability scanners have this feature of detecting not only default Lotus Domino files, but also of other softwares such as Apache, IIS etc. Nikto being one of them!! --- Nikhil Wagholikar Practice Lead | Security Assessment & Digital Forensics Network Intelligence (I) Pvt. Ltd. [NII Consulting] Web: http://www.niiconsulting.com/ Comprehensive Information Security Training http://www.niiconsulting.com/services/education/Training%20Calendar.html 2009/3/31 <lister () lihim org>
In reading through the Blackhat presentation called 'Falling Dominos' there is mention of default .nsf databases and actions (slide 50). Is there a resource that provides the default list of .nsf databases? I am also interested in any default actions/methods. Not sure if any automated scanners have built-in support for checking default lotus notes databases and actions/methods. ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute No time or budget for traveling to a training course in this fiscal year? Check out the online penetration testing courses available at InfoSec Institute. More than a boring "talking head", train in our virtual labs for a total hands-on training experience. Get the certs you need as well: CEH, CPT, CEPT, ECSA, LPT. http://www.infosecinstitute.com/request_online_training.html ------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute No time or budget for traveling to a training course in this fiscal year? Check out the online penetration testing courses available at InfoSec Institute. More than a boring "talking head", train in our virtual labs for a total hands-on training experience. Get the certs you need as well: CEH, CPT, CEPT, ECSA, LPT. http://www.infosecinstitute.com/request_online_training.html ------------------------------------------------------------------------
Current thread:
- Re: lotus notes default objects(.nsf files) and actions Marco Ivaldi (Apr 03)
- <Possible follow-ups>
- Re: lotus notes default objects(.nsf files) and actions Nikhil Wagholikar (Apr 03)