Network Security: Detailed info on Re: NASL Script for plugin ID 10330

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Nessus-Users

[Top] [All Lists]

Re: NASL Script for plugin ID 10330

from [George A. Theall] Network Security

[Permanent Link]

Subject:	Re: NASL Script for plugin ID 10330
Date:	Fri, 21 Sep 2007 14:53:22 -0400

On 09/21/07 08:36, Joel Elwell wrote:

I'll have to run another scan, and watch all the services as the scan leads 
up to the DoS,
 however the proprietary app (can't name it, sorry) is what pegs the CPU at 
99%.
Here's the services/ports based on NMAP scan.


And do you know which port corresponds to that app?

Some things you might try:

1) What happens if you don't test for any SSL services?

2) How does the app react to a simple HTTP GET request (ie, "GET / 
HTTP/1.0\r\n\r\n") sent manually?

3) Capture packets to the affected port to see what's being sent as CPU 
usage spikes.


George
-- 
theall@tenablesecurity.com
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
NASL Script for plugin ID 10330, Joel Elwell Re: NASL Script for plugin ID 10330, George A. Theall Re: NASL Script for plugin ID 10330, Michel Arboi Re: NASL Script for plugin ID 10330, Joel Elwell Re: NASL Script for plugin ID 10330, George A. Theall Re: NASL Script for plugin ID 10330, Joel Elwell Re: NASL Script for plugin ID 10330, George A. Theall <=

Previous by Date:	Re: Discrepancies regarding feeding nmap data to Nessus 3.2 beta (3.1.4), George A. Theall
Next by Date:	Trouble getting Nessus to launch, Wayne Kidd
Previous by Thread:	Re: NASL Script for plugin ID 10330, Joel Elwell
Next by Thread:	RE: [Fwd: Check for passwordless accounts?], Mehul
Indexes:	[Date] [Thread] [Top] [All Lists]