[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [WEB SECURITY] way to determine virtual hosts?

From: Justin Townsend <justin.townsend@xxxxxxxxxxxx>
Subject: RE: [WEB SECURITY] way to determine virtual hosts?
Date: Tue, 15 Apr 2008 10:57:18 -0500

>From the network, you can perform port scans for ports 5900 (microsoft virtual server) or 902 (vmware virtual server) to find virtual host systems in their default state.
On vmware, you can detect virtual machines that are sharing a physical NIC with the host system by their MAC, which starts with 00:0C:29. Microsoft's MAC should start with 00:03:FF, but I haven't personally verified this.
Note that all of this information can be changed by someone actively trying to hide.

Short answer: run nmap-it will label the ports accordingly, and label the MAC manufacturer if you're on the same segment.
Justin Townsend

I-Assure, LLC | Defense In Depth Solutions
justin.townsend@xxxxxxxxxxxx
________________________________________
From: Travis Altman [travisaltman@xxxxxxxxx]
Sent: Tuesday, April 15, 2008 5:11 AM
To: websecurity@xxxxxxxxxxxxx
Subject: [WEB SECURITY] way to determine virtual hosts?

i'm specifically looking for a way to do this on an INTERNAL network, any suggestions?

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives:
http://www.webappsec.org/lists/websecurity/

Subscribe via RSS:
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

References:
- [WEB SECURITY] way to determine virtual hosts?
  - From: Travis Altman

Prev by Date: Re: [WEB SECURITY] way to determine virtual hosts?
Next by Date: [WEB SECURITY] Web Application Security Awareness Day
Previous by thread: RE: [WEB SECURITY] Open Source Code Analysis Tools
Next by thread: Re: [WEB SECURITY] way to determine virtual hosts?
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site