Hosting Provided By

RE: penetration test in a Windows 2000/NT network

From: Ballowe, Charles <CBallowe(at)usg.com>
Date: Wed May 14 2003 - 17:11:27 EDT

This sounds like a test from within the company. As it seems that you will have physical access to facilities etc, would it be possible for you to install something like a hardware key logger on a network administrators workstation?

If someone has physical access to the LAN, I don't see why they couldn't place devices on peoples systems. It may violate the rules for this particular pen-test, but is something to think about. I see that you've specified that physical access to Win2k systems is possible, and are interested in not modifying the administrator account -- hardware keyloggers seem like an ideal solution.

What about wireless sniffers? Does the target use any wireless networking at their facility?

> -----Original Message-----
http://www.angebot.arcor.net/cgi-bin/angebot.cgi?key=b13e92247022

Wireless LAN Policies for Security & Management - NEW White Paper *** Just like wired networks, wireless LANs require network security policies that are enforced to protect WLANs from known vulnerabilities and threats. Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

To get your FREE white paper visit us at: http://www.securityfocus.com/AirDefense-pen-test

Received on Wed May 14 17:20:44 2003

This message: [ Message body ]
Next message: Romes, Randall J.: "RE: penetration test in a Windows 2000/NT network"
Maybe in reply to: heron heron: "penetration test in a Windows 2000/NT network"
In reply to Chris Beek: "Re: penetration test in a Windows 2000/NT network"
Reply: Romes, Randall J.: "RE: penetration test in a Windows 2000/NT network"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:36 EDT