Security Basics mailing list archives
RE: scanning NATed network question
From: "Amin Tora" <atora () EPLUS com>
Date: Wed, 19 May 2004 11:47:11 -0400
The only analysis I've seen so far is using cronos for OS fingerprinting
based on syn/ack responses from target during a syn scan - where the
time interval for each syn/ack response from the target is used to
identify the OS.
Syn->
<-- syn/ack
<-- syn/ack
<-- syn/ack
<-- syn/ack
<-- syn/ack...etc.
And this is only possible when the firewall allows the initial syn to
the internal host....
Amin Tora, CISSP, CHSP
Security Consultant
ePlus Technology Inc.
13595 Dulles Technology Drive
Herndon, VA 20171
office: 703-793-1330
cell: 703-675-0738
web: http://www.eplustechnology.com
email: atora-at-eplus.com
**NOTICE**
------------------------------------------
THE INFORMATION CONTAINED IN THIS ELECTRONIC TRANSMISSION AND ANY
ATTACHMENTS HERETO IS CONSIDERED PROPRIETARY AND CONFIDENTIAL.
DISTRIBUTION OF THIS MATERIAL TO ANYONE OTHER THAN THE ADDRESSED IS
PROHIBITED. ANY DISCLOSURE, COPYING, DISTRIBUTION OR USE OF THE CONTENTS
OF THIS TRANSMISSION OR ANY ATTACHMENTS HERETO FOR ANY REASON OTHER THAN
THEIR INTENDED PURPOSE IS PROHIBITED. IF YOU HAVE RECEIVED THIS
TRANSMISSION IN ERROR, PLEASE CONTACT THE SENDER.
------------------------------------------
-----Original Message-----
From: cluster () earthlink net [mailto:cluster () earthlink net]
Sent: Monday, May 17, 2004 9:52 PM
To: Bob Radvanovsky
Cc: lepka () ukr net; security-basics () securityfocus com
Subject: Re: scanning NATed network question
i though you'd like a link to the download, so here it is:
http://download.gna.org/cronos/
Bob Radvanovsky wrote:
Yesh, there is, but is difficult to find. Look for a patched version of NMAP called "Cronos", which will enable you to traverse a NAT'ed
firewall.
;) Cheers. Bob Radvanovsky [/unixworks] "knowledge squared is information shared." rsradvan(at)unixworks(dot)net ----- Original Message ----- From: <lepka () ukr net> To: <security-basics () securityfocus com> Sent: Saturday, May 15, 2004 12:55 AM Subject: scanning NATed network questionIs it posible to scan a NATed network using nmap or other tool? Thanks, Scyth ---------------------------------------------------------------------- -----Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
off any course! All of our class sizes are guaranteed to be 10 students orlessto facilitate one-on-one interaction with one of our expert
instructors.
Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master theskillsof an Ethical Hacker to better assess the security of your
organization.
Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ---------------------------------------------------------------------- ------ ---------------------------------------------------------------------- ----- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the
security of your organization.
Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ---------------------------------------------------------------------- ------
------------------------------------------------------------------------ --- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ------------------------------------------------------------------------ ---- --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
Current thread:
- scanning NATed network question lepka (May 17)
- Re: scanning NATed network question Bob Radvanovsky (May 17)
- Re: scanning NATed network question cluster () earthlink net (May 18)
- RE: scanning NATed network question patrick (May 19)
- <Possible follow-ups>
- RE: scanning NATed network question Amin Tora (May 18)
- RE: scanning NATed network question Amin Tora (May 19)
- Re: scanning NATed network question Bob Radvanovsky (May 17)