Everything Penguin, Inc.
etPenguin.com

Helping to support the open source community.
Search this Site:

Local Sources
  • /pub

    • Linux OS
  • /pub/OS/Linux

    • Networking
  • /pub/Networking

    • Network Services
  • /pub/NetworkServices

    • Clustering
  • HA
  • DRM

    • Encryption
  • Keytool/OpenSSL
  • Java Samples

    • Development
  • Design
  • C/C++
  • Java
  • Perl
  • Shell
  • Web / J2EE

    • Storage
  • Filesystems
  • HPC
  • /pub/Storage

    • Not Linux ?
  • BSD
  • HP-UX
  • Solaris
  • VM
  • Windows
  • /pub/OS

    • Security
  • /pub/Security
    •  Parent Directory

    Penetration Testing
by Brett Lee
===============================

I'm not an expert in the field.  But I do know it's nice to copy your bag
of tricks over to the system you are testing.

For scratch space to copy and edit your files, try this:

for a in `find / -type d 2>/dev/null`; do
  [ -w $a ] && ( echo -n "Writeable: "; echo $a; )
done

If you happen to find a place, then see if you have `vi` available.
By default, `vi` creates temporary files in /var/tmp.  If /var/tmp is not
in your scratch space, you'll need to do something like this in order to
use `vi`:

shell$> echo "set directory=/writeable/directory" > /writeable/directory/.exrc

and then one of these:

Bash> export HOME=/writeable/directory
Bourne> HOME=/writeable/directory
Csh> setenv HOME /writeable/directory

See the files in this directory for some additional examples.

What if you have no directories that are writeable, well, you can look for
a file that is both writeable and executable.  Something like this may help:

for a in `find / -type f 2>/dev/null`; do if ( [ -x $a ] && [ -w $a ] ); then
echo $a; fi; done


Obviously, these are not script kiddie tools, but instead are for
beginners interested in simple 'white hat' testing.


    Files presented by CGIndex

    Other Sites

    RFC's
  • FAQ's
  • IETF
  • RFC Sourcebook

    • Linux
  • Linux- Intro
  • Bash - Intro
  • Bash - Advanced
  • Command Line
  • System Administration
  • Network Administration
  • Man Pages (& more)
  • More Guides
  • Red Hat Manuals
  • HOWTO's

    • Reference/Tutorials
  • C++ @ cppreference
  • C++ @ cplusplus
  • CSS @ echoecho
  • DNS @ Zytrax
  • HTML @ W3 Schools
  • Java @ Sun
  • LDAP @ Zytrax
  • Linux @ YoLinux
  • MySQL
  • NetFilter
  • Network Protocols
  • OpenLDAP
  • Quagga
  • Samba
  • Unix Programming


    • Sponsors:
  • BrettLee.com
  • TheFrontOffice.BIZ
  • ScubaNavigator.com
  • Nitrox.net

    • [ Statistics by AWStats ]

    [ Powered by Red Hat Linux ] [ Powered by Apache Server] [ Powered by MySQL ]

    In an effort to provide a service of value to the open source community, I've put together this website that containing many of my notes and references.

    This website is not authoritative and it is certainly not without errors; it is a work in progress.

    In addition to my contributions you will also find the work of others. Where the work is not mine, I have tried to indicate that, and to reference the source of the work: by citing the original author, retaining the authors' name and license wherever present, or by placing the work in a suitably named URL containg /external/ in the path. If you find any work here that should not be publically available, please send me a note and it will be removed.

    As for my contributions, you are free to use any of *MY* notes or code from this website unless specifically instructed otherwise.

    Brett Lee, Ph.D., President & CEO
    Everything Penguin, Inc.