One Article Review
| Source |  w00tsec |
|---|---|
| Identifiant | 8300166 |
| Date de publication | 2014-08-22 01:56:46 (vue: 2023-01-11 16:56:00) |
| Titre | Scan the Internet & Screenshot All the Things |
| Texte | During Defcon 22, @ErrataRob, @paulm and @Viss (mass)scanned the Internet and presented some Tips, Tricks and Results. Lots of people confronted @Viss after he posted some VNC screenshots on his Twitter timeline. He posted a follow-up article on his blog and Kashmir Hill, from Forbes, wrote an article about the exposed VNC services.Internet scanning isn't new anymore and people are still surprised with these results. For this post, I'll share some techniques I commonly use to map and screenshot several Internet services during pentest engagements. All this could easily be adapted for other protocols and services, so let's start to Screenshot All the Things. VNCThe easiest way to snapshot these services is to use preexisting tools and script/mod them according to your needs. In order to take screenshots from VNC, I generally use noVNC (an HTML5 VNC client) and a command line utility to capture the WebKit's rendering of a web page.The process is pretty straightforward:1 - Clone the noVNC project from github:git clone git://github.com/kanaka/noVNC2 - Start the mini-webserver and specify the location of the VNC server you want to screenshot:./noVNC/utils/launch.sh --vnc 192.168.1.142:5900 3 - Take a webpage screenshot from command line using CutyCapt, for example:cutycapt --url="http://127.0.0.1:6080/vnc_auto.html" --javascript=on --out=vnc.png --delay=3000 4 - Profit!!!Now all you have to do is masscan the target for ports 5900-5910 (used by VNC), save the results on a text file and create a simple script to take the screenshots. You can also try vncsnapshot, used by @paulm during his Toorcon 2013 talk.RDPMy tool of choice for taking snapshots of RDP ser |
| Envoyé | Oui |
| Condensat | eyewitness pauldotcom taking /lib/lsb/init /novnc/utils/launch /sparkgateway 1&server=192 1/rdpdirect 142:59003 168 189&width=800&height=600&color=16 192 1:6080/vnc 2013 295 5900 5910 6004 800 @erratarob @paulm @viss about accessing according adapted admin after all also always and and captures anymore application are article attackers authentication for auto available better blog and can capture change changing choice client clone com/kanaka/novnc2 command commercial commonly commons compile computing configure confronted connects could covering create curtains cutycapt daemon data:rdp debian default defcon delay=30004 demo derivatives different domains download during easiest easily edit enabling engagements environment example:cutycapt example:phantomjs excuse exposed extract file find fingerprint follow for forbes from function functions gateway=127 gathering generally generate get getting git://github github:git gocr going good have here here and hill his home html html5 http http://127 idea image images important including info install internet isn j2se javascript=on jdk kashmir leave let level library like line linux live local location lots manual map map/identify mass masscan may mini much native need needs nessus network new nmap nothing novnc now nse ocr tools one:1 operating order other out=vnc output outputhttpthere outputtesseract page password passwords pentest people perspective phantomjs plugin png port ports post posted posts practice preexisting presented pretty procedure process profit project protocols provides querystring quite rdp rdpmy references: remote rendering reporters results safe said save scan scanned scanning screenshot screenshot: screenshotgocr screenshots script script/mod security segment server service services set settings several share similar simple snapshot snapshots solution some source spark sparkgateway specify start still straightforward:1 surprised systems take taking talk tar target tech techniques tesseract test text that the the java their them there these things this timeline tips tool toolconclusioni tools toorcon topic triage tricks try twitter url url= use used useful users using utility utils variable version very view vnc vncsnapshot vncthe want way web webkit webpage webserver weekly windows with without wordlists wrote you your |
| Tags | Tool |
| Stories | |
| Notes | ★★★★ |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.