[Snort-users] Re: ask about hack program to go through the firewall

Donofrio, Lewis donofrio at ...1052...
Fri Sep 20 09:44:05 EDT 2002


You might just want to use a browser (higher than lynx, unless someone
knows how to do java in text mode <G>) and go to www.grc.com seek out
his "Port Probe" applet, that ought to generate some logs?
______________________________________________________________________ 
Lewis	Donofrio at ...1052...	College of Literature, Science, & Arts 
1007 East Huron, Room 201,	BetaID:243340	Cell: (734) 323-8776
Ann Arbor,MI 48104-1690	www.umich.edu/~donofrio	 Fax: (734) 647-8333 


> -----Original Message-----
> From: Error79 at ...348... [mailto:Error79 at ...348...] 
> Sent: Friday, September 20, 2002 11:35 AM
> To: snort-users at lists.sourceforge.net
> Subject: [Snort-users] Re: ask about hack program to go 
> through the firewall
> 
> 
> Hy 
> 
> You will have a little problem scanning your own Network from 
> the inside in case you did set up your "home network" in 
> snort.conf right.
> 
> Ask somebody else from outside your network to scan your 
> Server. For example with nmap. Most firewalls pass packets 
> with FIN Flags.
> 
> If you use nmap, try one of these options
> 
> "nmap -sS -O -vv your_IP"  (includes XMAS Scan)
> "nmap -sF -vv your_IP"  (FIN Scan)
> 
> (If you are using a Windows PC try "nmapnt")
> 
> After that you should see some entry's in your alert log!!!
> 
> 
> 
> -------------------------------------------------------
> This sf.net email is sponsored by:ThinkGeek
> Welcome to geek heaven.
> http://thinkgeek.com/sf 
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe: 
> https://lists.sourceforge.net/lists/listinfo/s> nort-users
> 
> Snort-users list archive: 
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
> 




More information about the Snort-users mailing list