Penetration Testing mailing list archives

Re: [PEN-TEST] Firewalking

From: honoriak <EGC () ARGEN NET>
Date: Tue, 6 Mar 2001 23:22:10 +0100

Pepijn Vissers wrote:

Hi all,

What would be the best way to determine what kind of firewall is running on
a server? Especially one that does not give out any banners.
TCP-fingerprinting is not possible because there are no obvious open ports.

Any comments on this would be welcome,


visit http://www.es2.net/research/firewalk , this is an interesting project
and there you'll be able to see a good paper about it :), it's quite difficult
to explain the tecnique in a mail (you'll use traceroute to know how is the
firewall but with variations)

                -honoriak

[HeliSec inc.]



---
Pepijn Vissers

Current thread:

[PEN-TEST] Firewalking Pepijn Vissers (Mar 06)
- Re: [PEN-TEST] Firewalking Tom Vandepoel (Mar 06)
- Re: [PEN-TEST] Firewalking Enno Rey (Mar 06)
  - Re: [PEN-TEST] Firewalking Alberto Román (Mar 07)
- Re: [PEN-TEST] Firewalking honoriak (Mar 06)
- Re: [PEN-TEST] Firewalking Ivan Buetler (Mar 07)
- Re: [PEN-TEST] Firewalking Jan Muenther (Mar 07)
  - [PEN-TEST] RES: [PEN-TEST] Firewalking Cristiano Lincoln Mattos (Mar 07)
- <Possible follow-ups>
- Re: [PEN-TEST] Firewalking Woch, Wojciech (Mar 08)