Private networks
Results 1 to 10 of 10

Thread: Private networks

  1. #1
    Senior Member
    Join Date
    Dec 2003
    Posts
    317

    Private networks

    i was reading this article: http://www.livepublishing.co.uk/pcex...g.shtml?page=1
    and it doesnt really make sense to me. particularly the parts like this:
    Let's port scan Victim Corpís network using ScanPort, (www.dataset.fr/eng/scanport.html) which is a simple port scanner that allows you to specify a range of machines to scan. From the results, we can see that port 25 is open on machine 192.168.1.8, which ScanPort suggests is probably the companyís email server.
    isnt it impossible to do a port scan to that ip and actually get a computer inside their network? it also says some stuff about finding the network's range of ip addresses using traceroute, which i dont think would work either... is this just a poorly written guide or what?

  2. #2
    HeadShot Master N1nja Cybr1d's Avatar
    Join Date
    Jul 2003
    Location
    Boston, MA
    Posts
    1,840
    not poorly...well yeah a little poorly but most likely its written for basic users trying to get into the security world?

    Today you have scanners such as Retina and Shadow Security Scanner which will tell you what ports are open, what programs are using them, and any vulnerabilities with the computer/server you are scanning. He does refer to NMAP and all...but his article is still informative IMHO.

  3. #3
    Senior Member
    Join Date
    Dec 2003
    Posts
    317
    yeah, but you cant scan private addresses on a network unless you're on the network right?

  4. #4
    HeadShot Master N1nja Cybr1d's Avatar
    Join Date
    Jul 2003
    Location
    Boston, MA
    Posts
    1,840
    depends on how deep you get in. I.E. I dont see why you wouldn't be able to install a backdoor in a vulnerable PC inside the network, and have the trojan scan the network from the inside and contact you with its findings. Someone more experienced could give a better reasoning to this.

  5. #5
    Senior Member
    Join Date
    Dec 2003
    Posts
    317
    so, they couldnt do it without a trojan?

  6. #6
    AO Ancient: Team Leader
    Join Date
    Oct 2002
    Posts
    5,197
    you cannot _directly_ access an address designated private, (192.168.x.x, 10.x.x.x or 72.16,(is it), x.x), because the routers on the public network are not allowed to route them. The only way to access them is to gain a foothold on the publicly addressed machine(s) inside the network and then make contact from there or have the privately addressed machine "shovel" a connection to the attacker through a NAT type device and then issue your commands backwards......
    Don\'t SYN us.... We\'ll SYN you.....
    \"A nation that draws too broad a difference between its scholars and its warriors will have its thinking done by cowards, and its fighting done by fools.\" - Thucydides

  7. #7
    Junior Member
    Join Date
    Sep 2003
    Posts
    28
    The writer was most likely using that IP as an example not actually suggesting it's possible to portscan such a IP range from the net.
    [glowpurple]www.openbsd.org - Unix for the practical paranoid[/glowpurple]

  8. #8
    Senior Member
    Join Date
    Jan 2003
    Posts
    3,914
    Originally posted here by Tiger Shark
    you cannot _directly_ access an address designated private, (192.168.x.x, 10.x.x.x or 72.16,(is it), x.x),
    Hey Hey,

    it's actually 172 for everyone (i'm assuming that was a typo) and it's not as commonly used aas 192.168. and 10. however the entire range for those private IPs is 172.16.0.0 - 172.31.0.0 (CIDR: 172.16.0.0/12)

    It's funny when you look at it... They just kept adding 4.... to the CIDR mask

    10.0.0.0/8 (originally a Class A Address)
    172.16.0.0/12 (originally a Class B Address)
    192.168.0.0/16 (originally a Class C Address)

    PS. Sorry for pulling ya'll off topic a bit.

    Peace,
    HT
    IT Blog: .:Computer Defense:.
    PnCHd (Pronounced Pinched): Acronym - Point 'n Click Hacked. As in: "That website was pinched" or "The skiddie pinched my computer because I forgot to patch".

  9. #9
    AO Ancient: Team Leader
    Join Date
    Oct 2002
    Posts
    5,197
    HT: Yeah... I have only ever used the 192.168. and 10. subnets before and at my advancing age I can never remember for the life of me the third subnet....
    Don\'t SYN us.... We\'ll SYN you.....
    \"A nation that draws too broad a difference between its scholars and its warriors will have its thinking done by cowards, and its fighting done by fools.\" - Thucydides

  10. #10
    Senior Member
    Join Date
    Dec 2003
    Posts
    317
    ok, thanx... i was beginning to confuse myself again

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •