RE: Penetration test of 1 IP address

From: John Forristel (SunGard-Chico) (John.Forristel@sungardbi-tech.com)
Date: Thu Feb 09 2006 - 10:39:49 EST


WebBlaze is a way for lawyers to share documents. As Dave mentioned,
scan the machine with nmap, Nessus, and other tools. Be careful with
Brutus, you can lock out accounts very quickly and your information is
logged for all to see. WebBlaze is a webform, not a listening protocol,
so it may be that the software is using a local database to store login
information. Try gaining access without using WebBlaze.

Then look on the website for the company you are trying to penetrate.
Email addresses make for good login material.

Check to see if there is a default password for WebBlaze and try that.

My $1.32 (2 cents + inflation)

 
 
John Forristel
Network Security Analyst
SunGard Bi-Tech

"You don't have to lie to me, we aren't married."

-----Original Message-----
From: Dave [mailto:dlaud.flux@gmail.com]
Sent: Wednesday, February 08, 2006 5:19 PM
To: Edmond Chow
Cc: 'Michael Gargiullo'; pen-test@securityfocus.com
Subject: Re: Penetration test of 1 IP address

>To all:
>
>I have been asked to perform a security audit of 1 IP address for
client.
>They have given me the 1 IP address and a clue (webblaze).
>
>If I enter the IP address and then /webblaze, I am taken to a login
page
>(user name and password requested).
>
>What tools would you recommend that I use for this assignment?
>
>
nmap and nessus will tell you more about the IP and what other services
are running that you might be able to exploit. If they just want you to
test the strength of the webpage login then possibly using Brutus will
reveal weak passwords etc... although this is generally a bad idea.
Right off hand, I cant look now, but webblaze may be a publicly
available script...download it and check the source for any possible
coding errors that could be exploited.

>Thanks for your help.
>
>Regards,
>
>
>Edmond
>
>
good luck and take it easy,
dave

------------------------------------------------------------------------
------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on
your
website. Up to 75% of cyber attacks are launched on shopping carts,
forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers
are
futile against web application hacking. Check your website for
vulnerabilities
to SQL injection, Cross site scripting and other web attacks before
hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
------------------------------------------------------------------------
-------

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:28 EDT