RE: FW: OPENSSL + NETCAT

From: agrego@campus.cem.itesm.mx
Date: 07/26/02


Date: Thu, 25 Jul 2002 18:46:09 -0600
From: agrego@campus.cem.itesm.mx
To: pen-test@securityfocus.com

You can use Stunnel (http://www.stunnel.org)
It will provide you with the appropriate SSL wraping.
Simply compile it, and from there, the sky is the limit...
Here are a couple of ideas:
1. You can brute forece logins (over the encrypted link, like you said nothing
but net)
2. You could use stuff like whisker and use it on top of the ssl wrapper.

Hope this helps.
AG

-- Original Message --

>In conducting a pen-test, I have run into a situation where I would like
>to transmit data (without using cryptcat) by using OpenSSL and Netcat
>through the firewall and past the IDS (nothing but net...heheh..). Any
>tips on how to "play catch" across the network using SSL and netcat on
>both the client and the server? Thanks for the help!
>
>Schematic ?
>[pc]----files(over ssl)---->[firewall]--->[IDS]---->files(over ssl)
>--->[external server]
> |
> [IDS]
> |
> [DMZ]
>
>Jeremy
>
>
>----------------------------------------------------------------------------
>This list is provided by the SecurityFocus Security Intelligence Alert
(SIA)
>Service. For more information on SecurityFocus' SIA service which
>automatically alerts you to the latest security vulnerabilities please
see:
>https://alerts.securityfocus.com/
>
>

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/



Relevant Pages

  • Re: faster scans? (nmap)
    ... one host using nmap for syn scans in burst mode with the ... >>>This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
    (Pen-Test)
  • Re: pen test help please asap
    ... > Machine A on client site makes a configurable encrypted OUTBOUND ... > This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)
  • Re: ettercap help
    ... Anyways have never tried Ettercap for VNC. ... > This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)
  • RE: CFM SQL injection
    ... You should better use union or alike get unauthorized data from the ... This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
    (Pen-Test)
  • Re: ettercap help
    ... > I can get it to sniff telnet, ftp, pop, smb, but no vnc. ... > This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
    (Pen-Test)