Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Profiling a Networks Infrastructure

From: Muhammad Farooq-i-Azam <lists () chase org pk>
Date: Wed, 24 Jun 2009 12:42:56 +0500


On Mon, Jun 22, 2009 at 08:18:50AM -0700, pma111 wrote:
# 
# Is there a specific tool or procedure you use when you want to "profile" a
# specific network. Namely, I would like to see what options somebody could
# use to identify every internal Oracle Database / Database Server that
# resides on the Network. Could this be done without tools by some kind of

You may use portscan tools like nmap to scan a network and identify
hosts which are running particular services. 

$ man nmap

# command line instruction, or would it require software installing on the
# network. Or is it no way near as simplistic as this, and even a user sat
# inside the network would need access to network documentation / diagrams etc
# to identify a full list of all internal Oracle DB's / DB Servers. 
# 
# 



-- 
Muhammad Farooq-i-Azam

lists () chase org pk
http://www.chase.org.pk/

                                          {((((((
                                          /_  _  )
                                         ( .  .   )
                                          ( /   )
----------------------------------oOOo------------oOOo----------------
        THE LAST BUG
"But you're out of your mind,"              It still wasn't perfect,
They said with a shrug.                     As year followed year,
"The customer's happy;                      And strangers would comment,
What's one little bug?"                     "Is that guy still here?"
But he was determined.                      He died at the console,
The others went home.                       Of hunger and thirst.
He spread out the program,                  Next day he was buried,
Deserted, alone.                            Face down, nine-edge first.
The cleaning men came,                      And the last bug in sight,
The whole room was cluttered                An ant passing by,
With memory-dumps, punch cards.             Saluted his tombstone,
"I'm close," he muttered.                   And whispered, "Nice try."
The mumbling got louder,
Simple deduction,
"I've got it, it's right,
Just change one instruction."
----------------------------------------------------------------------

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: