Re: anonymous Zonetransfer (AXFR) exploatation
- From: Radu Oprisan <radu@xxxxxxxxxxxxxxxx>
- Date: Tue, 18 Mar 2008 17:09:19 +0200
LordDoskias wrote:
The best thing that I can think if to use the information obtained from the zone transfer. Perhaps some "private" hosts will come up that you can look into? To my mind AXFR transfers should be considered as part of the reconnaissance stage of a pen-test.
Actually, they were, a long time ago.
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
- Follow-Ups:
- Re: anonymous Zonetransfer (AXFR) exploatation
- From: Jamie Riden
- Re: anonymous Zonetransfer (AXFR) exploatation
- From: Dave Howe
- Re: anonymous Zonetransfer (AXFR) exploatation
- From: Volker Tanger
- Re: anonymous Zonetransfer (AXFR) exploatation
- From: Jason Thompson
- Re: anonymous Zonetransfer (AXFR) exploatation
- References:
- anonymous Zonetransfer (AXFR) exploatation
- From: xx yy
- Re: anonymous Zonetransfer (AXFR) exploatation
- From: LordDoskias
- anonymous Zonetransfer (AXFR) exploatation
- Prev by Date: Re: Citrix application breakout - take care of Microsoft calculator
- Next by Date: Re: Looking for a fuzzer/source code analyzer on customer developed code
- Previous by thread: Re: anonymous Zonetransfer (AXFR) exploatation
- Next by thread: Re: anonymous Zonetransfer (AXFR) exploatation
- Index(es):
Relevant Pages
|
