jetlib.sec » Penetration Testing » Re: What's Next? Attack of Internal IP Disclosure

Feeds

133326 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

Penetration Testing

• May 24, 2011
• 

  Re: What's Next? Attack of Internal IP Disclosure

  Posted: May 24th, 2011, 11:24pm PDT

  Tags:   

  Posted by Nikhil Wagholikar on May 24

  Hi Zaki,
  
  There is no direct implication/risk of internal IP Address disclosure.
  However, you can use this knowledge for further hacking. For example,
  if you are able to exploit a vulnerability remotely and get a reverse
  command shell, you can then attempt to further penetrate the internal
  network, since you now know the internal IP Address of system and
  hence the internal IP Addressing scheme.
  
  All the best!
  
  ---
  Nikhil Wagholikar...