Electronic Books

*Note: There are literally thousands of open shares existing on the Internet, and thousands
of those are left unprotected unintentionally. One of the biggest reasons
for this is that the owner is not educated in the area of security and is dependent
upon his or her ISP or even the router ???out-of-the-box??? for their security needs.
Scanning
187
Lab 40: Locate Wingate Proxy Servers
Locate Wingate Proxy Servers: WGateScan/ADM Gates
Prerequisites: Wingate Proxy Server target
Countermeasures: Deny Wingate Proxy Servers, Bastion servers/
workstations
Description: The Wingate Proxy Server application is designed to act as
a proxy for users on a LAN. This proxy provides Network Address
Translation (NAT), which is a level of security as the internal IP
addresses are not routable on the Internet. Any traffic going to the
Internet has the external IP address of the Wingate server. Remember
that all Linux commands are case sensitive.
Because of this level of anonymity attackers look for vulnerable Wingate
Proxy Servers from which to launch their attacks and on which to store their
tools. One of the first items an attacker will perform once the Wingate server
has been compromised is to turn off any logging to help cover his or her
tracks. Remember: No Logs = No Evidence.
Procedure: Enter the target IP range, target information, and application
options; then scan.
Open the WGateScan application.
188
Practical Hacking Techniques and Countermeasures
Enter the target hostname or IP address.


Pages:
72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96