Sunny and partly cloudy, 91 degrees. Pen-Test is going well for day one, we have a complete map of their network, a list of web servers, and a list of HTTPS servers... All in all not a bad start, but as Greg likes to put it: "We don't own a box yet". I am hopeful for Day 2. I have three good looking targets picked out: all have IISSamples installed on their web servers, there is a vulnerability for this that should allow me to browse files on the machine.

Plans for tomorrow: scan the other address spaces for web servers to hack. Launch serious port scans on interests already identified and run Nessus against them. Brute force cisco networking equipment via telnet. Look at resources we can access via shares

Relaxed at the beach during diner; very nice night.



I reviewed some of the work I did today! I incorrectly calculated my box total... after going through and organizing nbtdump results, I realized that I own 7 boxes after day one, and I have a log on to an 8th!!!

 

Add to My Yahoo!

Add to Google

Subscribe with Bloglines

Austin Gilbert/Male/26-30. Lives in United States/Oklahoma/Tulsa/Midtown, speaks English. Spends 40% of daytime online. Uses a Fast (128k-512k) connection. And likes computer science/photography.
This is my blogchalk: United States, Oklahoma, Tulsa, Midtown, English, Austin Gilbert, Male, 26-30, computer science, photography.

Florida: Day One
2003/06/16