RE: IIS 5.0 with Integrated Window Authentication

From: Jason Coombs (jasoncat_private)
Date: Wed Nov 06 2002 - 14:21:46 PST

Next message: Haroon Meer: "Re: IIS 5.0 with Integrated Window Authentication"

Previous message: Sebastian Flothow: "Re: IIS 5.0 with Integrated Window Authentication"
Next in thread: Dave Aitel: "Re: IIS 5.0 with Integrated Window Authentication"
Reply: Dave Aitel: "Re: IIS 5.0 with Integrated Window Authentication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

it might be easier for you to code your own scanner real quick using
Microsoft .NET -- the class library provides several very simple network
communications classes that do what you want.

Jason Coombs
jasoncat_private

-----Original Message-----
From: Haroon Meer [mailto:haroonat_private]
Sent: Wednesday, November 06, 2002 10:44 AM
To: cc_mofoat_private
Cc: pen-testat_private; webappsecat_private
Subject: Re: IIS 5.0 with Integrated Window Authentication


hi.

use APS (NTLM Authorization Proxy Server)
(http://freshmeat.net/projects/ntlmaps/?topic_id=20%2C87%2C250%2C43%2C151)
to handle the auth, and ur scanner of choice behind it..

======================================================================
Haroon Meer                                                         MH
SensePost Information Security                          +27 83786 6637
PGP : http://www.sensepost.com/pgp/haroon.txt     haroonat_private
======================================================================

On Wed, 6 Nov 2002 cc_mofoat_private wrote:

>
> I'm doing a security review and penetration test of a site running on IIS
with Integrated Windows Authentication.  Anyone know of an IIS Scanner that
can do an IWA exchange before scanning?
>
> The SPIKE proxy looks promising, but it appears the NTLM support is not
quite "there" yet for this purpose.  The goofy three-message exchange that
sets up the NTLM security doesn't seem to make it through the proxy, which
leads me to believe that any tool that will work for this must have
intentionally added support for IWA.
>
>
>
>
>
> Get your free encrypted email at https://www.hushmail.com
> ------------ Output from gpg ------------
> gpg: Signature made Wed Nov  6 22:15:16 2002 SAST using DSA key ID
21BE2B65
> gpg: Can't check signature: public key not found
>
>


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Next message: Haroon Meer: "Re: IIS 5.0 with Integrated Window Authentication"
Previous message: Sebastian Flothow: "Re: IIS 5.0 with Integrated Window Authentication"
Next in thread: Dave Aitel: "Re: IIS 5.0 with Integrated Window Authentication"
Reply: Dave Aitel: "Re: IIS 5.0 with Integrated Window Authentication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Nov 08 2002 - 17:35:43 PST