RE: Pen-Testing Windows from Solaris

From: Bojan Zdrnja (Bojan.Zdrnja_at_LSS.hr)
Date: 05/13/03

Next message: Herwig.Thyssens_at_ey.be: "RE: Pen-Testing Windows from Solaris"

Previous message: SecuredSite: "Re: Auto-Run CD - Disabling Screensavers"
In reply to: peter.king: "Pen-Testing Windows from Solaris"
Next in thread: Herwig.Thyssens_at_ey.be: "RE: Pen-Testing Windows from Solaris"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: "'peter.king'" <peter.king@ziplip.com>, <pen-test@securityfocus.com>
Date: Tue, 13 May 2003 19:32:10 +1200

Among tools that other people suggested, you can install Nessus on that
machine and run tests on target machines.
You'll need nmap for that as well.

Installation *can* be tricky, you can find some info on the following URL
(it's for Solaris 7, but you can find it useful):

http://www.sunhelpdesk.com/users/john/nessus.htm

Best regards,

Bojan Zdrnja

> -----Original Message-----
> From: peter.king [mailto:peter.king@ziplip.com]
> Sent: Tuesday, 13 May 2003 3:10 a.m.
> To: pen-test@securityfocus.com
> Cc: peter.king@ziplip.com
> Subject: Pen-Testing Windows from Solaris
>
>
>
>
> Hi
>
> I have recently been given the task of Pen-Testing several
> large Windows networks, running a variety of versions of windows.
>
> Unfortunatly the only platform I will have to conduct the
> tests will be a Sparc Solaris 2.6 box. I will have command
> line access only to this box.
>
> I envisage the main problems with the boxes to be poor
> passwords, open shares, IIS, and MS SQL.
>
> Given these limits what command line tools would people
> suggest as the best ones to use that will run under Solaris
> 2.6? I have my own ideas for several of them but would
> appreaciate any extra input.
>
> Cheers,
>
> Peter
>
> --------------------------------------------------------------
> -------------
> Did you know that you have VNC running on your network?
> Your hacker does.
> Plug your security holes.
> Download a free 15-day trial of VAM:
> http://www.securityfocus.com/StillSecure-pen-test
> --------------------------------------------------------------
> --------------
>
>

---------------------------------------------------------------------------
Did you know that you have VNC running on your network?
Your hacker does.
Plug your security holes.
Download a free 15-day trial of VAM:
http://www.securityfocus.com/StillSecure-pen-test
----------------------------------------------------------------------------

Next message: Herwig.Thyssens_at_ey.be: "RE: Pen-Testing Windows from Solaris"

Previous message: SecuredSite: "Re: Auto-Run CD - Disabling Screensavers"
In reply to: peter.king: "Pen-Testing Windows from Solaris"
Next in thread: Herwig.Thyssens_at_ey.be: "RE: Pen-Testing Windows from Solaris"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]