Penetration Testing mailing list archives
Re: Host discovery
From: Oliver Kindernay <oliver.kindernay () gmail com>
Date: Tue, 23 Feb 2010 22:46:57 +0100
Again, IPs are registered on ISP in small companies, but thanks 2010/2/23 Adam Mooz <adam.mooz () gmail com>:
You could try searching the whois database for the companies name. If you register a static IP, or block of static IP's, they'll have to register with ICANN and provide some information. ----------------------------------------------------------------- Adam Mooz Adam.Mooz () gmail com http://www.AdamMooz.com On 2010-02-23, at 9:34 AM, Oliver Kindernay wrote:Yes but when company use webhosting's mail server this won't work. 2010/2/23 Andrew MacPherson <andrewmohawk () gmail com>:You could always look at simply sending a bounce mail, ie, mailing thisaddressdoesntexist () organisation com, and then review the headers, often mail servers will leak information especially if they are serving to an internal environment. -AM On Tue, Feb 23, 2010 at 1:27 AM, Oliver Kindernay <oliver.kindernay () gmail com> wrote:Hi, Let's imagine this situation. Some small company has internal network with some servers directly connected to the internet. Company's web is on the webhosintg. How can attacker now identify company's systems? I thought about something like sending email to employee with link to website which will log an ip address and hope employee will click on that link in work. But what are some more passive methods for this? ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Host discovery Oliver Kindernay (Feb 22)
- Message not available
- Re: Host discovery Oliver Kindernay (Feb 23)
- Re: Host discovery Pete Herzog (Feb 25)
- Re: Host discovery Adam Mooz (Feb 25)
- Re: Host discovery Oliver Kindernay (Feb 25)
- Re: Host discovery Oliver Kindernay (Feb 23)
- Message not available
- <Possible follow-ups>
- RE: Host discovery Ron Yount (Feb 23)
- Re: Host discovery chr1x (Feb 25)
- Re: Host discovery Oliver Kindernay (Feb 25)
- Re: Host discovery chr1x (Feb 25)
- Re: Host discovery Marco Ivaldi (Feb 25)
- Re: Host discovery chr1x (Feb 25)
- Re: Host discovery Oliver Kindernay (Feb 25)
- Re: Host discovery YGN Ethical Hacker Group (Feb 25)