Re: [Full-Disclosure] How to obtain hostname lists
From: Harlan Carvey (keydet89_at_yahoo.com)
Date: 09/28/04
- Previous message: fabio: "[Full-Disclosure] How to obtain hostname lists"
- In reply to: fabio: "[Full-Disclosure] How to obtain hostname lists"
- Next in thread: fabio: "Re: [Full-Disclosure] How to obtain hostname lists"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Full-Disclosure <full-disclosure@lists.netsys.com> Date: Tue, 28 Sep 2004 09:36:43 -0700 (PDT)
None of this is really magic, and is publicly
available via a variety of sources...
> I would like to know what techniques can Intruders
> use to obtain a lists
> of hostname and attack them with exploits code?
> For example, a huge list like:
> www.foo.com
> www.bar.com
Scanning, mostly. Also, DNS zone transfers, but many
times it's just plugging a class C or B address range
into a scanner and hitting enter.
> And so on. Also, they can have a lists with certain
> criteria in common
> (os, httpdver) and do a more selective attack. I
> want to know how they
> can obtain hostnames asnd create a huge database for
> potencial host victims?
Besides the usual scanning techniques, throw Googling
and searches via Netcraft for httpd's into the mix.
=====
------------------------------------------------------------------------
Harlan Carvey, CISSP
"Windows Forensics and Incident Recovery"
http://www.windows-ir.com
http://groups.yahoo.com/group/windowsir/
------------------------------------------------------------------------
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Previous message: fabio: "[Full-Disclosure] How to obtain hostname lists"
- In reply to: fabio: "[Full-Disclosure] How to obtain hostname lists"
- Next in thread: fabio: "Re: [Full-Disclosure] How to obtain hostname lists"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
