OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
Re: [Full-disclosure] .NET REMOTING on port 31337

full-disclosurehushmail.com
Date: Fri Sep 28 2007 - 14:20:13 CDT


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

dunno how do you plan on figuring out what is running there

On Fri, 28 Sep 2007 15:07:34 -0400 Simon Smith <simonsnosoft.com>
wrote:
>Phew... thought you were serious for a moment...
>
>I mean... what more could there be aside from nmap. ;]
>
>full-disclosurehushmail.com wrote:
>> No just kidding lol a lot of people here seem to make money in
>this
>> business.
>>
>> On Fri, 28 Sep 2007 15:01:01 -0400 Simon Smith
><simonsnosoft.com>
>> wrote:
>>> No way...
>>
>>> are you serious?
>>
>>> ;P
>>
>>> full-disclosurehushmail.com wrote:
>>>> Sounds like you will need to learn how to use debugging and
>>> other
>>>> reverse engineering tools dude. Security gets a little more
>>>> complicated post-nmap.
>>>>
>>>>
>>>>
>>>> On Fri, 28 Sep 2007 14:21:52 -0400 Simon Smith
>>> <simonsnosoft.com>
>>>> wrote:
>>>>> Got output... and it was... no idea what it was... can't
>paste
>>> it
>>>>> due to
>>>>> confidentiality though.
>>>>> Fabrizio wrote:
>>>>>> .NET Remoting is "a generic system for different
>applications
>>> to
>>>>> use to
>>>>>> communicate with one another." It's part of the .NET
>>> framework,
>>>>>> obviously. (not trying to be a smart ass)
>>>>>>
>>>>>> I'm gonna take a wild guess and say it's not a good
>>> thing......
>>>>>> Connect to it, and see if you get any output, if you haven't
>>>>> already
>>>>>> done so.
>>>>>>
>>>>>> Fabrizio
>>>>>>
>>>>>>
>>>>>>
>>>>>> On 9/28/07, * Simon Smith* <simonsnosoft.com
>>>>>> <mailto:simonsnosoft.com>> wrote:
>>>>>>
>>>>>>
>>>>>> Has anyone ever heard of .NET REMOTING running on port
>31337?
>>> If
>>>>> so,
>>>>>> have you ever seen it "legitimate"?
>>>>>>
>>>>>>
>>>>> _______________________________________________
>>>>> Full-Disclosure - We believe in it.
>>>>> Charter: http://lists.grok.org.uk/full-disclosure-
>charter.html
>>>>> <http://lists.grok.org.uk/full-disclosure-charter.html>
>>>>> Hosted and sponsored by Secunia - http://secunia.com/
>>>>
>>>>
>>>>>> -------------------------------------------------------------
>--
>>> --
>>>>> -------
>>>>>> _______________________________________________
>>>>>> Full-Disclosure - We believe in it.
>>>>>> Charter: http://lists.grok.org.uk/full-disclosure-
>charter.html
>>>>>> Hosted and sponsored by Secunia - http://secunia.com/
>>>>> --
>>>>> - simon
>>>>> ----------------------
>>>>> http://www.snosoft.com
>>> --
>>> Click here to find great prices on contact lenses. Save now.
>>>
>http://tagline.hushmail.com/fc/Ioyw6h4ea3DsXjSV0BsP1YTozy3Px8JSHxZE
>
>>> v9UYiKIbvmBMS8cN5D/
>>
>>
>>
>>
>>> --
>>
>>> - simon
>>
>>> ----------------------
>>> http://www.snosoft.com
>
>--
>Click here for free information on exciting leadership programs.
>http://tagline.hushmail.com/fc/Ioyw6h4dDEsHl9DycYqbZ3GrueBGQ2n3jOJL
>u8VBwDe3bXvscFUYtv/
>
>
>
>
>--
>
>- simon
>
>----------------------
>http://www.snosoft.com
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Charset: UTF8
Version: Hush 2.5

wpwEAQECAAYFAkb9U+0ACgkQ+dWaEhErNvTN/gP+OAbBwOn6HOkYPVvt6KLuKVgBDfPb
8wrnTokE1nbLmWcDjhPK74czzUraavWa8HGAIAF3JhhkvOO8M1VtrqNxbqij4DbYzXgQ
+TSbmOD2KPd2d8FKk2pqdNBjyx6cgIdwhqOYbJ98J7qd15cDhPde8BMpaSDTUW2nHiIA
UaXHYWQ=
=6LI4
-----END PGP SIGNATURE-----

--
Click here for self-employed health insurance. Compare quotes!
http://tagline.hushmail.com/fc/Ioyw6h4dO2Z8cZsdkRcrJPaDqHHJS0ocJrdGZVPi0BpPmlOko6JrPy/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/