Penetration Testing mailing list archives

Re: Citrix Remote Desktop

From: Jonathan Cran <jcran () 0x0e org>
Date: Wed, 2 Jun 2010 11:51:45 -0500


Is there something else that I can do about such enviroment?


i'll spare the lmgtfy link, but check the google first pls -->
http://www.insomniasec.com/publications/Hacking_Citrix.ppt

also, patrick's MSF modules have come in handy in the past:

   msf > search citrix

   gather/citrix_published_applications  normal  Citrix MetaFrame ICA
Published Applications Scanner
   gather/citrix_published_bruteforce    normal  Citrix MetaFrame ICA
Published Applications Bruteforcer


good luck.

jcran

--
Jonathan Cran
jcran () 0x0e org
515.890.0070

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

Current thread:

Citrix Remote Desktop The Dead (Jun 02)
- Re: Citrix Remote Desktop Jonathan Cran (Jun 02)
- Re: Citrix Remote Desktop SD List (Jun 02)
- Message not available
  - Re: Citrix Remote Desktop The Dead (Jun 02)
- RE: Citrix Remote Desktop Nicholas J. Fanelli (Jun 02)
- Message not available
  - Re: Citrix Remote Desktop The Dead (Jun 02)
- Re: Citrix Remote Desktop Daniel Clemens (Jun 03)