[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Rogue Network Link Detection

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Rogue Network Link Detection
From: DanB-FD <dan-fd@xxxxxxxxx>
Date: Tue, 06 Dec 2005 09:43:53 +0000

Hi,

H D Moore wrote:

I found an old document and some crappy perl code on my system, figured someone might find it interesting:

I wouldn't say crappy.

Indeed this is quite a handy little tool. I quickly discovered that I can now spoof traffic using our 3rd parties Data Center servers for approx 15 different IPs. (I also discovered that ALL of our VoIP phones can be used as a gateway out... Not necessararly for spoofing but to circumvent firewall rules in place for the Data subnets...)

Also allows me to double check that the changes they made to our managed firewalls are in effect at each site.

Cheers,
DanBUK

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Rogue Network Link Detection
  - From: H D Moore

Prev by Date: Re: [Full-disclosure] IT security professionals in demand in 2006
Next by Date: Re: [Full-disclosure] Bug with .php extension?
Previous by thread: [Full-disclosure] Rogue Network Link Detection
Next by thread: RE: [Full-disclosure] Rogue Network Link Detection
Index(es):
- Date
- Thread