Results 1 to 2 of 2

Thread: Open port (legal, pentesting) exploitation?

  1. #1
    Just burned his ISO
    Join Date
    May 2011
    Posts
    1

    Default Open port (legal, pentesting) exploitation?

    Yo.
    Normally I just program (code languages from PHP to C to ruby, just all around), but some guy on what I know as a skiddie website (HF, lol..if you go there they don't even know how internet works) asked people to pentest his site - ofc I found no vuln's other than some open ports he can't control (111, 755, 756, and 2049), but I figured this would be a good opportunity to learn for future reference in pentesting (No, I don't plan to break any laws. Let me make that clear.)

    So, I understand 111 is SunRPC, and 2049 is obviously NFS. 755 and 756, I don't recognize and neither does nmap or anything else. So, my question is, what are some possible exploitations of unused, open ports? Should he be worried?

    Thanks!

  2. #2
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default Re: Open port (legal, pentesting) exploitation?

    I highly doubt you have a written contract with your "skiddie friends". Further we won't be helping you in the process. Your best bet is to leave their network(s) alone before you run afoul of the law, and or the AUP/TOS of the networks between the two of you.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

Similar Threads

  1. open port or closed ??
    By ahmed75909 in forum BackTrack 5 Beginners Section
    Replies: 3
    Last Post: 05-17-2011, 03:09 PM
  2. Pentesting with no open ports?
    By newbie in forum Beginners Forum
    Replies: 10
    Last Post: 02-07-2010, 12:26 AM
  3. Pentesting Ethics: Should I do it/ Is it legal?
    By Archangel-Amael in forum Experts Forum
    Replies: 4
    Last Post: 01-24-2010, 12:41 AM
  4. port scan to find systems without a certain port open?
    By humbleman in forum OLD Newbie Area
    Replies: 3
    Last Post: 07-30-2009, 04:14 PM
  5. what to do after open port
    By Razak in forum OLD Pentesting
    Replies: 4
    Last Post: 04-12-2008, 02:52 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •