Re: redirecting a remote printer output into an attacker's printer

From: Andrew Wheeler (prime_dreamer@yahoo.co.uk)
Date: Mon Jul 04 2005 - 15:46:09 EDT


Just a thought, I work with printers a lot and rather than ARP spoofing
most printers have a web interface to configure the machine.
As most printers I have seen still have the default password set.
If you change the IP address of the printer and add its old IP address
to your machine you would just need to get a program to capture the
print jobs copy, then resend them to the new IP address of the printer.

On Mon, 2005-07-04 at 17:56 +0000, h_e_z_i@yahoo.com wrote:
> Hello!
>
> As part of a black box pen-test which i'll try to conduct in the company I work with, I would like to attempt a redirection or sniffing a printer's output.
>
> My thoughts regarding the subject were to try and see if i'm able to arp spoof the printer and it's default gateway, and then to sniff the traffic. As a result of this, I wonderd if there is any free software which I could use to redirect the sniffed data into an other printer.
>
> Any help will be appreciated.
> Thanks,
> Nadav



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:31 EDT