Hello Guys
I know it has been a long time but I'm no good at blogging I admit it :p
in this Blog post I'm going to speak about two Security auditing experiences I have done in the last two months and made me believe that we have a huge lack of security culture in Algeria
I know it has been a long time but I'm no good at blogging I admit it :p
in this Blog post I'm going to speak about two Security auditing experiences I have done in the last two months and made me believe that we have a huge lack of security culture in Algeria
- Hotel -X- auditing :
The first experience was at a fine Hotel located in my home town
the auditing started from the wireless access point (a WEP password) it took me less than 15 min to get it (I'm sure all the neighbors are using the free internet access :p and believe me it was good :p)
after I connected to the local network I have launched a network scan using several tools
the result was a lot of machines IP addresses with several information about the OS and the services installed in each machine :D and here starts the fun part the most interesting ports found were :
SIP 5060/5061 (VoIP services)
TELNET 23 (the Wireless access point telnet service)
and a bunch of ftp,http,ssh ports for several machines (surveillance system,TV system,SIP web administration)
- the telnet access was a piece of cake direct anonymous login no password and than I used a bug in the frameware to get administrative access (and I'm in control of all the internet access and all the traffic goes through my machine)
- the SIP port : I had to run a brute force attack to identify the name and the version of the SIP service and the rest is a piece of cake the user and the password for the web control panel was left as in the default installation (and I go voice :D I can hear all the internal phone calls between the rooms and in the entire Hotel)
- and the last thing is :3 taking control over the TV system same as the SIP/VoIP the TV system was controlled through a web panel where the default user and password was used (I had the power to delete TV channels change the channel in any room of the Hotel and so more ...)
in the 2nd part of the blog post I will be talking about an audit I have done for a startup and it took me less than 2 days to infiltrate the whole startup
