|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Vitaly Osipov (witt
iol.ie)Date: Wed Jul 03 2002 - 15:19:25 CDT
One more tool that supposedly allows to see all IE traffic -
http://securityfriday.com/ToolDownload/IEen/ieen_doc.html
looks like IE already has some kind of a Netbus inside (called DCOM) :) A
quote:
"IE'en remotely controls Internet Explorer using DCOM.
Microsoft stated, "The Distributed Component Object Model (DCOM) is a
protocol that enables software components to communicate directly over a
network in a reliable, secure, and efficient manner." DCOM is installed on
most Windows machines by default and runs without noticed by the users. If
one knew the account name and the password of a remote machine, one can
remotely control the software component on it using DCOM. For example,
Internet Explorer is one of the software components that can be controlled.
IE'en remotely controls Internet Explorer using DCOM.
Summary of IE'en Functionalities:
a.. Remotely connects to or activates Internet Explorer
b.. Captures data sent and received using Internet Explorer
c.. Even on SSL encrypted websites (e.g. Hotmail), IE'en can capture user
ID and password in plain text.
d.. Change the web page on the remote IE window. "
Regards,
Vitaly.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]