Has anyone tried NetCat 1.10 against W2K3?
Results 1 to 4 of 4

Thread: Has anyone tried NetCat 1.10 against W2K3?

  1. #1
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,883

    Has anyone tried NetCat 1.10 against W2K3?

    Yeah, I need to write some footprint "triggers" for a little project of mine so I decided to see what IIS 6.0 does when you do the following:

    TheHorse13@Slack9:/home# telnet win2k3 80

    ......
    GET /HTTP/1.0
    <enter>
    <enter>

    The output was surprising. Instead of the typical header with 404 errors, etc., I received the HTML 4.1 tag and some other useless info.

    I thought, well, let's see what netcat has to say.

    TheHorse13@Slack9:/home#nc -vv win2k3 80
    <enter>
    win2k3 [IP address] 80 (http) open: unknown socket error
    Same output as telnet - a bunch of HTML version tags and other useless HTML.

    Now, I know that NMAP will identify this without a problem but I wanted to see if others have received similar results against a W2K3 server running IIS6.0

    --TH13

    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  2. #2
    Just Another Geek
    Join Date
    Jul 2002
    Location
    Rotterdam, Netherlands
    Posts
    3,403
    What exactly is your question? Are you suprised about the HTML?
    Oliver's Law:
    Experience is something you don't get until just after you need it.

  3. #3
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,883
    I'm surprised that I did not see the expected output such as the following:

    HTTP/1.1 400 Bad Request
    Server: Microsoft-IIS/5.0
    etc....
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  4. #4
    Jaded Network Admin nebulus200's Avatar
    Join Date
    Jun 2002
    Posts
    1,356
    Did you try modifying your request to use HTTP/1.1 ? It looks like the server is setup to only accept 1.1...
    Try:

    nc win2k3 80
    GET / HTTP/1.1
    Hostname: win2k3
    <enter>
    <enter>

    /nebulus
    There is only one constant, one universal, it is the only real truth: causality. Action. Reaction. Cause and effect...There is no escape from it, we are forever slaves to it. Our only hope, our only peace is to understand it, to understand the 'why'. 'Why' is what separates us from them, you from me. 'Why' is the only real social power, without it you are powerless.

    (Merovingian - Matrix Reloaded)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •