|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: trusted solaris pen testing
From: Jack (list-recv
crepinc.com)
Date: Sun Dec 05 2004 - 10:32:01 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
There are two possibilities: either find out the trusted hosts, and take
their IP (DoS that box first) or go for the spoofing idea.
Spoofing is hard, especially on a switched network. I currently don't
know of any pre-written source that does this well. (I'm currently in
the process of writing my own). So, if you would like to undertake this,
you will probably need to write your own code.
Remember, if spoofing an IP on a switched network you will need ARP
spoofing in order to get the recieved packets.
Have fun,
-Jack C ("crEp")
http://www.crepinc.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]