FW: Pen test, tcp/1404 found - advice needed

From: Craig Wright (cwright@bdosyd.com.au)
Date: Thu Sep 15 2005 - 18:24:47 EDT


Stuff Google - just look up the source

http://www.iana.org/assignments/port-numbers
http://www.iana.org/assignments/
http://www.iana.org/numbers.html
Etc...

Maybe an RFC
http://www.ietf.org/rfc/rfc0791.txt

Craig

-----Original Message-----
From: Luke Eckley [mailto:luke@xifos.org]
Sent: 15 September 2005 5:27
To: Sekurity Wizard; pen-test@securityfocus.com
Subject: Re: Pen test, tcp/1404 found - advice needed

Sekurity Wizard wrote:
> Hey folks,
> Found tcp/1494 open to a server during a pen test, black-box
style.
> Are there any interesting tools that may be available to extract
> information from the server on the receiving end?

The easiest thing to do is telnet (or use netcat) to the port to see if
it responds with a version or any other information.

Also if you know the OS, then just google for that port and narrow down
your results by OS.

Luke

------------------------------------------------------------------------
------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on
your website. Up to 75% of cyber attacks are launched on shopping carts,
forms, login pages, dynamic content etc. Firewalls, SSL and locked-down
servers are futile against web application hacking. Check your website
for vulnerabilities to SQL injection, Cross site scripting and other web
attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
------------------------------------------------------------------------
-------

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:55 EDT