Besides using netcat for backdoors, I use it in scripts to do low and slow port scanning. Just put the command line in a loop to go through an IP address range looking for open services (sleep between probes) and its amazing how much info you can collect about a network and still stay below the threshold of IDS. Redirect input to the command line and you can grab web, telnet, ftp, etc...headers and depending on the info retreived, you can begin to OS finger print your targets. bs www.securityhorizon.com ----- Original Message ----- From: "Vo0d0o" <voodoooat_private> To: <pen-testat_private> Sent: Friday, August 24, 2001 2:29 AM Subject: Ideas on netcat To all netcat gurus, I hav been experimentin on netcat for a few days and searchin almost everyday on netcat for some possible uses ,but in vain. As far as I know, no site is giving some other uses of netcat pertaining to pen-testing ...other than the usual *README* file which I find too basic. I would be grateful if anybody could throw some light on uses of netcat in pen-testing. Thanx in advance. Cheers, Kartik. ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/ ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
This archive was generated by hypermail 2b30 : Wed Aug 29 2001 - 11:55:04 PDT