Page 3 of 3 FirstFirst 123
Results 21 to 27 of 27

Thread: Firewall penetration testing

  1. #21
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default Re: Firewall penetration testing

    skidmarq has a good suggestion. HPING can be pretty handy for doing some sort of firewalk type testing, you can even setup some pretty simple shell scripts to call hping and increment or decrement parameters to automate the process of mapping out the ruleset (or at least try to in some circumstances).
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  2. #22
    Junior Member roybatty's Avatar
    Join Date
    Jan 2010
    Location
    Tannhauser Gate
    Posts
    55

    Default Re: Firewall penetration testing

    Ok, then. Let's bend the spoon. Traceroute will help you test firewalls, as well as firewalk. If you are really into it, learn how to use scapy (superb tool).
    I've seen things you people wouldn't believe.

  3. #23
    Senior Member Thorn's Avatar
    Join Date
    Jan 2010
    Location
    The Green Dome
    Posts
    1,509

    Default Re: Firewall penetration testing

    Quote Originally Posted by WolverineOD View Post
    ... were not all seasoned Pentesting Experts.
    Then why are you here?

    Quote Originally Posted by WolverineOD View Post
    Id like to add that he has been pointed in the right direction, but this forum could still do to be a bit more friendly. Otherwise people wont be sticking around for long.
    I see it as just the opposite. Personally, I'd like to this place to be less friendly to the new users, and promote strictly professional use.

    <rant>
    Unfortunately, this place is flooded with skriddies who want to "break da neighbor's WEP" and have "school assignments" to do things they clearly haven't been taught in school, and these same subjects come up again and again in posts. Yet there are very few real support posts among the actual pros, like "I'm running into an privilege escalation issue with a client's Uber2000 v2.1 server. The usual wheel changes don't work, and I'm getting an 'Error 900' which is undocumented. Did 2.1 change something that we haven't seen yet?"

    Allowing these beginner posts chases away the pros. I'm finding that I'm posting here less and less as time goes on, because of it. In fact, there are a number of professionals here I know that haven't posted in months, who could answer these questions in their sleep, yet they rarely participate here anymore. Why? Well, it could be that they're just busy working, but I suspect that many are just sick and tired of seeing the repeated skriddie posts.
    <rant/>
    Thorn
    Stop the TSA now! Boycott the airlines.

  4. #24
    Developer
    Join Date
    Mar 2007
    Posts
    6,124

    Default Re: Firewall penetration testing

    I'll have to agree with thorn once again. I have gotten to the point where I will answer questions about backtrack directly and its installation and configuration but beyond that I am tired of answering the same thing over and over again.

  5. #25
    Moderator fancy's Avatar
    Join Date
    Jan 2010
    Posts
    204

    Default Re: Firewall penetration testing

    I strictly agree with Thorn too - in all details.
    This used to be a forum for professionals - we are not here to educate or teach somebody especially we do not spoonfeed people with information which google will reveal in seconds. And this has nothing to do with arrogance or how some would say, feeling superior !

  6. #26
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default Re: Firewall penetration testing

    I'm sure this is obvious but...
    Code:
    /me agrees with Thorn, purehte, and fancy!
    Quote Originally Posted by roybatty View Post
    Ok, then. Let's bend the spoon. Traceroute will help you test firewalls, as well as firewalk. If you are really into it, learn how to use scapy (superb tool).
    There is no spoon!

    I'll raise you TCPTraceroute
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  7. #27
    Very good friend of the forum Gitsnik's Avatar
    Join Date
    Jan 2010
    Location
    The Crystal Wind
    Posts
    851

    Default Re: Firewall penetration testing

    Quote Originally Posted by thorin View Post
    I'll raise you TCPTraceroute
    I'll see you and raise you lft for really getting into protocol work.

    I would like to point out that this thread seems to be degenerating into a "why senior members suck" but from the senior members perspective Not that I don't agree!

    Personally, one recommends learning a good deal about every protocol on the stack. I can probably still recall every field in the TCP header (including RFC3514 ) based on all the reading and rereading I did, and the playing with stateful, non-stateful, protocol, application layer etc. work that I did waaaay back when I was learning the majority of this.
    Still not underestimating the power...

    There is no such thing as bad information - There is truth in the data, so you sift it all, even the crap stuff.

Page 3 of 3 FirstFirst 123

Similar Threads

  1. O que é um Fuzzer em Penetration Testing (Pentesting)
    By firebits in forum Tutoriais e Howtos
    Replies: 0
    Last Post: 03-28-2010, 06:41 PM
  2. Penetration Testing Environment.
    By chasebadkids in forum OLD Pentesting
    Replies: 8
    Last Post: 01-31-2010, 03:46 AM
  3. Penetration testing
    By jjxoni in forum OLD Newbie Area
    Replies: 6
    Last Post: 01-31-2009, 04:42 PM
  4. Timed out in penetration testing
    By mindf in forum OLD Newbie Area
    Replies: 5
    Last Post: 08-13-2008, 11:11 AM
  5. testing a firewall
    By xatar in forum OLD Pentesting
    Replies: 17
    Last Post: 02-05-2008, 08:55 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •