Re: [Full-disclosure] .NET REMOTING on port 31337

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

educate me dude i bet i'll win this one.

are your techniques more advanced than the anvil ids suite?

On Fri, 28 Sep 2007 15:22:23 -0400 Simon Smith <simon@xxxxxxxxxxx>
wrote:
I do... but I don't have time to explain it to you... its
complicated...
post-nmap stuff...

full-disclosure@xxxxxxxxxxxx wrote:
dunno how do you plan on figuring out what is running there

On Fri, 28 Sep 2007 15:07:34 -0400 Simon Smith
<simon@xxxxxxxxxxx>
wrote:
Phew... thought you were serious for a moment...

I mean... what more could there be aside from nmap. ;]

full-disclosure@xxxxxxxxxxxx wrote:
No just kidding lol a lot of people here seem to make money in
this
business.

On Fri, 28 Sep 2007 15:01:01 -0400 Simon Smith
<simon@xxxxxxxxxxx>
wrote:
No way...
are you serious?
;P
full-disclosure@xxxxxxxxxxxx wrote:
Sounds like you will need to learn how to use debugging and
other
reverse engineering tools dude. Security gets a little more
complicated post-nmap.



On Fri, 28 Sep 2007 14:21:52 -0400 Simon Smith
<simon@xxxxxxxxxxx>
wrote:
Got output... and it was... no idea what it was... can't
paste
it
due to
confidentiality though.
Fabrizio wrote:
.NET Remoting is "a generic system for different
applications
to
use to
communicate with one another." It's part of the .NET
framework,
obviously. (not trying to be a smart ass)

I'm gonna take a wild guess and say it's not a good
thing......
Connect to it, and see if you get any output, if you
haven't
already
done so.

Fabrizio



On 9/28/07, * Simon Smith* <simon@xxxxxxxxxxx
<mailto:simon@xxxxxxxxxxx>> wrote:


Has anyone ever heard of .NET REMOTING running on port
31337?
If
so,
have you ever seen it "legitimate"?


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-
charter.html
<http://lists.grok.org.uk/full-disclosure-charter.html>
Hosted and sponsored by Secunia - http://secunia.com/

-----------------------------------------------------------
--
--
--
-------
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-
charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--
- simon
----------------------
http://www.snosoft.com
--
Click here to find great prices on contact lenses. Save now.


http://tagline.hushmail.com/fc/Ioyw6h4ea3DsXjSV0BsP1YTozy3Px8JSHxZE


v9UYiKIbvmBMS8cN5D/



--
- simon
----------------------
http://www.snosoft.com
--
Click here for free information on exciting leadership
programs.

http://tagline.hushmail.com/fc/Ioyw6h4dDEsHl9DycYqbZ3GrueBGQ2n3jOJL

u8VBwDe3bXvscFUYtv/




--

- simon

----------------------
http://www.snosoft.com

--
Click for free information on accounting careers, $150 hour
potential.
http://tagline.hushmail.com/fc/Ioyw6h4dCaQzqlFuxiHhBM76jQM7p3uFLDVT
jtv7Yywb9ixgu0UUOR/




--

- simon

----------------------
http://www.snosoft.com
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Charset: UTF8
Version: Hush 2.5

wpwEAQECAAYFAkb9VtcACgkQ+dWaEhErNvST/wP9G/KUVOpzBN3DKj2m2PhLhMpmfrpx
Sjn++ClgZu2/RwuBED0j++gr7/PG9+4GLIWzISy5EFm7k0wNekybRL9SIQU2ykm/UmHL
GNmIUZrn4ixKY6TwUZySxckbr7/DvWm3DbMoMxhW+59znCt0K6j7tOqRRH7GK1WL771o
k7qTpVQ=
=lq1z
-----END PGP SIGNATURE-----

--
Click for free info on rehab treatments for drug & alcohol dependency.
http://tagline.hushmail.com/fc/Ioyw6h4eH4jFJBW5F3eoMDpIsx5VtmTRuiq9ijHWjgfvEZhX9EgFDq/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Relevant Pages