Penetration Testing mailing list archives

Re: LAN pen test

From: anonymouse () anonymous com
Date: 5 Dec 2006 13:46:00 -0000

Just because a machine is current on windows updates doesn't mean that it's not vulnerable.  Is it just a workstation 
or is it some type of server?  What other applications are installed on the machine, and are they vulnerable?  What 
about the other devices on the LAN (such as the router, is it patched)?  What is your method of reconnaissance and 
enumeration?  It also depends on what type of attack youre attempting (application layer, network layer?).  You cant 
rely on a security scanner to do all of your work.

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

Current thread:

LAN pen test mifa (Dec 05)
- Re: LAN pen test Jerome Athias (Dec 05)
  - Re: LAN pen test Krugger (Dec 07)
  - RE: LAN pen test Clemens, Dan (Dec 07)
- Re: LAN pen test Cleiton Martins (Dec 05)
- Re: LAN pen test killy (Dec 07)
- Re: LAN pen test Bruno Cesar Moreira de Souza (Dec 07)
- Re: LAN pen test Pete Herzog (Dec 10)
  - Re: LAN pen test Christine Kronberg (Dec 11)
- <Possible follow-ups>
- Re: LAN pen test anonymouse (Dec 05)
- Re: LAN pen test Bruno Cesar Moreira de Souza (Dec 07)
  - RE: LAN pen test Nelson Brito (Dec 10)
  - Re: LAN pen test Krugger (Dec 10)
    - Re: LAN pen test Nick (Dec 11)
- RE: LAN pen test mifa (Dec 16)