NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Pen-test> 2000-11

Subject: Re: [PEN-TEST] War Dialling
From: Michael Gough (MGoughFSCNET.COM)
Date: Thu Nov 16 2000 - 11:57:48 CST

Next message: Matthew Leeds: "Re: [PEN-TEST] War Dialling"
Previous message: mshines: "Re: [PEN-TEST] War Dialling - Limited Scope"
Maybe in reply to: Scott, Mick: "[PEN-TEST] War Dialling"
Next in thread: Matthew Leeds: "Re: [PEN-TEST] War Dialling"
Maybe reply: Michael Gough: "Re: [PEN-TEST] War Dialling"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I would warn you that the PBX list is not the real list you want. All companies have non PBX or DID lines - straight analog lines... All companies using a PBX have locations with needs for a non dial 9, prefix numbers so these are the ones you should concentrate on getting. Get the actual phone bills so you can validate the "actual" listing of numbers you really own. On our side I found twice as many modems on the analog lines as I found on the PBX lines. Also most PBX systems allow you to print the settings so you could just turn the ports off and see who complains and replace or secure the system that was connected to the port and update the PBX entries and your lists. Also make it a policy that all analog lines MUST go through the modem pool (if you have one) and the PBX 2nd choice and prohibit non-controlled analog lines.

>>> gleiboltATT.COM 11/16/00 09:37AM >>>
I've found that it is always best to go directly to the PBX switch
administrators to get the range of numbers that are valid. You can then use
ranges of a data file of valid numbers in tools like ToneLoc or THCscan.

Greg

-----Original Message-----
From: Scott, Mick [mailto:Mick_scottUK.IBM.COM]
Sent: Thursday, November 16, 2000 7:00 AM
To: PEN-TESTSECURITYFOCUS.COM
Subject: [PEN-TEST] War Dialling

Being a new member to this list I am not sure how much this topic has been
aired. How ever I wonder if anyone has any ideas, or pointers on how they
would eliminate irrelevant numbers on a war dialling exercise.

If acme.com, a global company, has a very wide range of numbers how is it
best to seek out the numbers that are relevant to the IT departments.
Obviously there is the social engineering approach, however I am interested
in any other ideas.

Apologies if this has been discussed B4

Regards,
Mick

text/plain attachment: EXT.htm_

Next message: Matthew Leeds: "Re: [PEN-TEST] War Dialling"
Previous message: mshines: "Re: [PEN-TEST] War Dialling - Limited Scope"
Maybe in reply to: Scott, Mick: "[PEN-TEST] War Dialling"
Next in thread: Matthew Leeds: "Re: [PEN-TEST] War Dialling"
Maybe reply: Michael Gough: "Re: [PEN-TEST] War Dialling"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]