Networking

HP Data Protector <6.20 vulnerability

Published January 18, 2012 | By phillips321

Ok so on a job I found a service running on TCP port 5555 on a few servers. A little probing with netcat allowed me to identify the service(all of the output below is from my own testbed, hence the local 192.168.x.x IPs):

1234root@bt:~# nc 192.168.0.18 5555 break HP Data Protector A.06.11: INET, internal build 243, built on 25 August 2009, 13:08 root@bt:~#

This version is flagged as vulnerable as… Continue reading →

Posted in Networking, Uncategorized | Tagged 6.11, 6.20, Data, HP, Protector | 3 Comments

Pivoting through a meterpreter session

Published June 20, 2011 | By phillips321

So you’ve owned a box and now you want to exploit others using the first as a pivot. First thing to do is background your current meterpreter session:

1234567meterpreter > background msf exploit(multi_handler) > sessions -l Active sessions =============== Id Type Information … Continue reading →

Posted in Networking | Tagged metasploit, meterpreter, pivot, portforward, portfwd, route, sessions | Leave a comment

Cisco PIX firewall config that needs understanding?

Published May 25, 2011 | By phillips321

So, you’ve been given a cisco config from a pix firewall using

1'show run'

and you’ve looked through it and it seems a ballache to understand. We know we could use nipper but you either have to pay a wedge for the professional version of suffer with the free version.

After a little googling I found a few tools to help along the way. fwbuilder looks good but doesn’t… Continue reading →

Posted in Linux, Networking, Uncategorized | Tagged axa, cisco, fwbuilder, fwconfigparser, ios, pis, routerdefense | 2 Comments

Setting up networking from the command line

Published May 25, 2011 | By phillips321

So I’m often getting asked how to set up simple networking from the command line.

This drives me nuts a simple google would get the answers!

But, now I can just point people here and save wasting my time.

STATIC The following presumes you are on a 192.168.1.n class C network with the gateway as 192.168.1.1

Linux

12345ifconfig eth0 192.168.1.100 netmask 255.255.255.0 up route add default gw 192.168.1.1 echo "nameserver… Continue reading →

Posted in Linux, Networking | Tagged ifconfig, ipconfig, linux, networking | Leave a comment

Auto pentesting. Nmap, SSLscans, screenshots, amap!

Published May 20, 2011 | By phillips321

Here’s my automated scanning script. It’s got a few dependencies but will run with a number of threads and will output to a defined folder.

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281#!/bin/bash #__________________________________________________________ # Author: phillips321 forum.gnacktrack.co.uk # License: CC BY-SA 3.0 # Use: Update several applications # Released: www.gnacktrack.co.uk version=1.0 # Dependencies: # nmap # sslscan #… Continue reading →

Posted in Linux, Networking | Tagged nmap gt-nmap amap, screenshot, ssl, sslscan | Leave a comment

phillips321.co.uk

pen testing, security and linux

HP Data Protector <6.20 vulnerability

Pivoting through a meterpreter session

Cisco PIX firewall config that needs understanding?

Setting up networking from the command line

Auto pentesting. Nmap, SSLscans, screenshots, amap!

Recent Posts

Meta

Links