Re: Boot floppy

pen-test

Re: Boot floppy

To:	"Pen-Testing" <pen-test@securityfocus.com>
Subject:	Re: Boot floppy
From:	"Morning Wood" <se_cur_ity@hotmail.com>
Date:	Fri, 13 Apr 2007 12:03:46 -0700
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
References:	<041220071218.25916.461E23970001F7550000653C21602806510A900E0B0C0B@att.net> <5dd3856e0704120847r7343bf5cv1472e0ed509a4b09@mail.gmail.com>
Resent-date:	Fri, 13 Apr 2007 17:59:42 -0600 (MDT)
Resent-from:	pen-test-return-1078483951@securityfocus.com
Resent-message-id:	<20070413235942.1223F238904@outgoing3.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com

here is where an ARP / MITM attack, combined with DNS
redirection to a browser exploit comes in handy. He does
use your companies network doesnt he? With this technique
you can also spy on his traffic, user / pass combos etc.

As far as getting a trojan on... less than 10 seconds are required
if hosted on a website, simply open browser, type url, select "open"
close browser, walk away.

As an employer, you control your network, and may spy at will.

Consider also going to his residence and scan for wireless...

seems odd your jumping through alot of hoops here...
M. Wood


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: Boot floppy, (continued) RE: Boot floppy, Pretorius, Wynand (ZA - Johannesburg) Re: Boot floppy, Sat Jagat Singh Re: Boot floppy, Danyelle Gragsone Re: Boot floppy, Jamie Riden Re: Boot floppy, Juergen Fiedler RE: Boot floppy, Wiedemann, Adrian RE: Boot floppy, Mifa Re: Boot floppy, Michael Munt RE: Boot floppy, Sat Jagat Singh Re: Boot floppy, Shreyas Zare Re: Boot floppy, Morning Wood <= Re: Boot floppy, Packet Man Re: Boot floppy, barcajax Re: Boot floppy, Thor (Hammer of God) Re: Boot floppy, Tremaine Lea Re: Boot floppy, Morning Wood RE: Boot floppy, Michele Jordan

Previous by Date:	Re: Paros alternative, Frederic Charpentier
Next by Date:	Re: SAP Pen-testing - complexity - first ideas, Carl Jongsma
Previous by Thread:	Re: Boot floppy, Shreyas Zare
Next by Thread:	Re: Boot floppy, Packet Man
Indexes:	[Date] [Thread] [Top] [All Lists]