Re: TCP:80, TCP:1433 squelda 1.0 probe

From: Joe Stewart (jstewartat_private)
Date: Mon Dec 02 2002 - 05:53:24 PST

Next message: Rafael Coninck Teigao: "[Fwd: XSS on ICQ leading to password compromise]"

Previous message: Rob Shein: "RE: New scanner?"
Next in thread: John Sage: "Re: TCP:80, TCP:1433 squelda 1.0 probe"
Reply: John Sage: "Re: TCP:80, TCP:1433 squelda 1.0 probe"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Friday 29 November 2002 12:35 am, John Sage wrote:
> Seen this exact tool once before, back in August, reference:
>
> http://cert.uni-stuttgart.de/archive/intrusions/2002/08/msg00200.html

The brute-force MSSQL attacks in this probe with the "squelda" reference
were generated by sqldict: http://ntsecurity.nu/toolbox/sqldict/

-Joe

-- 
   Joe Stewart  <jstewartat_private>
  Senior Information Security Analyst 
-----------------------------------------
 "24x7 Enterprise Security Monitoring"
LURHQ Corporation  http://www.lurhq.com/


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Rafael Coninck Teigao: "[Fwd: XSS on ICQ leading to password compromise]"
Previous message: Rob Shein: "RE: New scanner?"
Next in thread: John Sage: "Re: TCP:80, TCP:1433 squelda 1.0 probe"
Reply: John Sage: "Re: TCP:80, TCP:1433 squelda 1.0 probe"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Dec 02 2002 - 15:29:14 PST