|

Computer Security

»

»

Firewall Discussions

»

Firewall (securityfocus.com)

Bypassing ISA SERVER 2004

View: New views

6 Messages — Rating Filter: Alert me

	Bypassing ISA SERVER 2004 by Danux :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Hi experts, I am doing a pent-test to a client and i would like to know if there are techniques in order to bypass ISA Server 2004. Do you know a tutorial, howto or something like that? Thanks in Advance. -- Danux, CISSP Chief Information Security Officer Macula Security Consulting Group www.macula-group.com
	Re: Bypassing ISA SERVER 2004 by Jan Heisterkamp :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Thats interesting CISO and CISSP and needs a tutorial for ISA 2004 =-O 1. Look for ISA Server 2004 Vulns 2. Try to exploit them or better contract a Pen-Tester. Best Regards Jan Danux schrieb: > Hi experts, > > I am doing a pent-test to a client and i would like to know if there > are techniques in order to bypass ISA Server 2004. > > Do you know a tutorial, howto or something like that? > > Thanks in Advance. >
	Re: Bypassing ISA SERVER 2004 by Ronald MacDonald :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Quick tutorial - probably not much use to you but anyway, it's there: http://www.rmacd.com/downloads/howto/bypass-isa-firewall-https.php Ronald. On 05/07/07, Danux <danuxx@...> wrote: Hi experts, I am doing a pent-test to a client and i would like to know if there are techniques in order to bypass ISA Server 2004. Do you know a tutorial, howto or something like that? Thanks in Advance. -- Danux, CISSP Chief Information Security Officer Macula Security Consulting Group www.macula-group.com -- Ronald MacDonald http://www.rmacd.com/ 0777 235 1655
	Re: Bypassing ISA SERVER 2004 by Doug Schlachta :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Jan, It is attitudes like that, that impede co-operation in or professional field. A question was asked, attitude not required. Regards Douglas Schlachta CISSP, SSCP, MCSE-Security, MCSE, CFOT Senior Security Professional ----- Original Message ---- From: Jan Heisterkamp <janheisterkamp@...> To: Danux <danuxx@...> Cc: firewalls@...; Security Basics <security-basics@...> Sent: Thursday, July 5, 2007 2:59:25 PM Subject: Re: Bypassing ISA SERVER 2004 Thats interesting CISO and CISSP and needs a tutorial for ISA 2004 =-O 1. Look for ISA Server 2004 Vulns 2. Try to exploit them or better contract a Pen-Tester. Best Regards Jan Danux schrieb: > Hi experts, > > I am doing a pent-test to a client and i would like to know if there > are techniques in order to bypass ISA Server 2004. > > Do you know a tutorial, howto or something like that? > > Thanks in Advance. >
	Re: Bypassing ISA SERVER 2004 by Jan Heisterkamp :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Hi Doug, a question was asked and I answered! With or without attitudes the answer remains the same: 1. Look for ISA Server 2004 Vulns 2. Try to exploit them or better contract a Pen-Tester. I would do the same, If I feel not experienced enough. I think its's a question of quality of work and as well of honesty. Maybe you like to think on it before moaning around. Best Regards Jan. Doug Schlachta schrieb: Jan, It is attitudes like that, that impede co-operation in or professional field. A question was asked, attitude not required. Regards Douglas Schlachta CISSP, SSCP, MCSE-Security, MCSE, CFOT Senior Security Professional ----- Original Message ---- From: Jan Heisterkamp janheisterkamp@... To: Danux danuxx@... Cc: firewalls@...; Security Basics security-basics@... Sent: Thursday, July 5, 2007 2:59:25 PM Subject: Re: Bypassing ISA SERVER 2004 Thats interesting CISO and CISSP and needs a tutorial for ISA 2004 =-O 1. Look for ISA Server 2004 Vulns 2. Try to exploit them or better contract a Pen-Tester. Best Regards Jan Danux schrieb: Hi experts, I am doing a pent-test to a client and i would like to know if there are techniques in order to bypass ISA Server 2004. Do you know a tutorial, howto or something like that? Thanks in Advance.
	Re: Bypassing ISA SERVER 2004 by Doug Schlachta :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Some parts of this message have been removed. Learn more about Nabble's security policy. Jan, Yes your answer is correct, but I would do it in a professional format. NO attitude is need in a business or security environment. No moaning is present only pointing out in a factual matter that help is available in this forum and please check all ego's at the door. Maybe thought is need before ego is applied? End of Line. Regards Douglas Schlachta CISSP, SSCP, MCSE;Security, MCSE, CFOT Senior Security Professional ----- Original Message ---- From: Jan Heisterkamp <janheisterkamp@...> To: Doug Schlachta <iccnt@...> Cc: firewalls@...; Security Basics <security-basics@...>; Danux <danuxx@...> Sent: Friday, July 6, 2007 10:17:00 AM Subject: Re: Bypassing ISA SERVER 2004 Hi Doug, a question was asked and I answered! With or without attitudes the answer remains the same: 1. Look for ISA Server 2004 Vulns 2. Try to exploit them or better contract a Pen-Tester. I would do the same, If I feel not experienced enough. I think its's a question of quality of work and as well of honesty. Maybe you like to think on it before moaning around. Best Regards Jan. Doug Schlachta schrieb: Jan, It is attitudes like that, that impede co-operation in or professional field. A question was asked, attitude not required. Regards Douglas Schlachta CISSP, SSCP, MCSE-Security, MCSE, CFOT Senior Security Professional ----- Original Message ---- From: Jan Heisterkamp janheisterkamp@... To: Danux danuxx@... Cc: firewalls@...; Security Basics security-basics@... Sent: Thursday, July 5, 2007 2:59:25 PM Subject: Re: Bypassing ISA SERVER 2004 Thats interesting CISO and CISSP and needs a tutorial for ISA 2004 =-O 1. Look for ISA Server 2004 Vulns 2. Try to exploit them or better contract a Pen-Tester. Best Regards Jan Danux schrieb: Hi experts, I am doing a pent-test to a client and i would like to know if there are techniques in order to bypass ISA Server 2004. Do you know a tutorial, howto or something like that? Thanks in Advance.