|
Posted by on January 3, 2006, 9:25 pm
If you were Registered and logged in, you could reply and use other advanced thread options
Sorry if this post is off topic.
I recently conducted a war dial as part a security audit of
modems connected to our companies telephone lines.
While I was able to identify most of the systems found there
are a few I need help with. It has been suggested that these
may be some kind of alarm system.
If anyone recognises any of these or can give me any idea what
they are, I'd be very grateful. Specific software/vendor/model
details would be great.
Thanks in advance
1)
The first simply asks for a password, it allows 4 tries,
Each character typed echoes a '#', including the newline.
===== BEGIN LOG =====
CONNECT 2400
PASSWORD> #####
PASSWORD> ######
PASSWORD> #####
PASSWORD> ######
NO CARRIER
===== END LOG =====
The passwords tried in the example are root, guest, test and
admin.
2)
The second system is a simple ']' password prompt. You get
hree attempts until you are disconnected with what appears to
be a error code, or possibly a serial number.
===== BEGIN LOG =====
CONNECT 2400
]
]
]
0000004E0DD4
+++
===== END LOG =====
3)
The third system asks for a passcode and echos '*' for every
character entered, including the new line.
===== BEGIN LOG =====
CONNECT 28800
Enter PassCode ******
Access Denied
Enter PassCode *****
Access Denied
Enter PassCode ****
NO CARRIER
===== END LOG =====
The passwords tried in the example are guest,test and admin.
|
|
Posted by Paul Gillingwater on January 4, 2006, 7:52 am
If you were Registered and logged in, you could reply and use other advanced thread options
Sorry I don't recognize those specific prompts, but may I ask:
1) If you work for the company, why not just visit the extension and
see what is connected? Or is this a "zero knowledge" audit?
2) Another approach would be to find out what companies are likely to
have supplied such equipment, and work backwards by referring to
technical manuals from items supplied by those companies, e.g., a good
guess might be a PBX -- so start searching PBX manuals from common
suppliers in your area.
3) A third approach would be to add a tap to the line, then publish the
number and see what the "black hats" can teach you about exploiting any
known weaknesses.
I'd better add a smiley to item (3) or my CISSP might be revoked... :-)
--
cheers
Paul Gillingwater
|
| Similar Threads | Posted | | 33. WHEN do have an alarm system???? | June 19, 2005, 9:45 am |
| 42. If you like to purchase an alarm system..... | June 22, 2005, 6:12 am |
| How to Takeover Any Alarm System | July 12, 2007, 10:58 am |
| 29. By programming your alarm system can you damage..? | June 14, 2005, 10:10 am |
| Any info on a PA400 alarm system? | July 13, 2005, 11:26 pm |
| 2. Discover Wireless Alarm System.. > | September 23, 2005, 3:00 am |
| DSC British Gas Home Security system | December 20, 2005, 8:35 am |
| Discover Wireless Alarm System.. > | February 16, 2006, 4:56 am |
| Brinks Home Security System | July 25, 2007, 10:38 pm |
| 32. WIRELESS alarm system CAN BE DISTURBED EASILY | June 17, 2005, 5:55 am |
|
XML site map