|
![]() |
|
Superbowl MVP
Join Date: Oct 2005
Location: OOOOOOOOOOOOOLATHE
Casino cash: $9910252
|
Hacking or Getting Around Proxy Servers At work?
this is in theory
Proxy server called "Blue Coat" - www.bluecoat.com - How would I go about getting around it? Now it seems just like an HTTP proxy as i can still run CMD and do an ftp command from the console. Email Ports are working and functional. How to get around the "Blue Coat" Last edited by SLAG; 09-01-2006 at 09:17 PM.. |
Posts: 11,177
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#16 |
'Tis my eye!
Join Date: Aug 2000
Location: Chiefsplanet
Casino cash: $10269900
|
I should also mention that in my experience doing consulting, most companies will issue a warning if you get caught wasting time on the Internet. However, deliberately bypassing network security controls will result in IMMEDIATE termination.
|
Posts: 100,022
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#17 |
'Tis my eye!
Join Date: Aug 2000
Location: Chiefsplanet
Casino cash: $10269900
|
I just checked out Circumventor and it may work.
You theoretically would be using your home computer as a proxy to access sites that your proxy at work won't allow. The only issue with this is that as soon as they see 600,000 log entries in the proxy log with a destination address of your broadband connection at home, they'll shut that down too. |
Posts: 100,022
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#18 | |
Playing for #1 Draft Pick
Join Date: Oct 2003
Location: Just West of Lambs land
Casino cash: $10004900
|
Quote:
Depends on how well you know what your doing, And can explain what your doing if caught. Hackers are promoted (for trying to break security) or fired..... Your choice....
__________________
sig test for this screwy schema |
|
Posts: 25,901
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#19 |
Superbowl MVP
Join Date: Oct 2005
Location: OOOOOOOOOOOOOLATHE
Casino cash: $9910252
|
my plan is to get a promotion if they fire me thats the risk im willing to take -- rdp-may work im not sure if its blocked or not i know ftp is open. circumventor may work but i doubt it -- could a change in the hosts file make any difference or not ?
|
Posts: 11,177
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#20 | |
Superbowl MVP
Join Date: Oct 2005
Location: OOOOOOOOOOOOOLATHE
Casino cash: $9910252
|
Quote:
Circumventor will not work.. my IP address is not on the Approved List at work...MY approved List is very short right now.. its suppose to be expanding.. and at that point some other proxy sites may work who knows.. what i need is to fool the Blue Coat into thinking one of those proxy sites is an Approved site such as www.usps.gov or www.ups.com I can only think of 3 other sites i have access to. |
|
Posts: 11,177
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#21 |
'Tis my eye!
Join Date: Aug 2000
Location: Chiefsplanet
Casino cash: $10269900
|
changing the hosts file won't do shit...
Is FTP open to everywhere? You could use a remote desktop tool where you can change the ports used... |
Posts: 100,022
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#22 | |
Superbowl MVP
Join Date: Oct 2005
Location: OOOOOOOOOOOOOLATHE
Casino cash: $9910252
|
Quote:
Yes it seems FTP is open everywhere.. I did CMD , FTP , OPEN ftp.aol.com, ftp.chiefsplanet.com ftp.chillplace.net all work fine If i knew usernames and PW to all those places I do have Ultra VNC installed on my PC and have been using the VNC Client on my cell phone.. it sucks.. but Ultra VNC is hella cool |
|
Posts: 11,177
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#23 |
MVP
Join Date: Aug 2003
Casino cash: $7737309
|
As htis said, you will get caught, but if that doesn't matter to you, then do as he suggested. It looks as though FTP is open to the world, and only HTTP is blocked by site.
Actually using FTP as a proxy though won't likely work (may be software out there, but I don't know it), as FTP is UDP and HTTP is TCP. I seriously doubt they have 21 TCP open. I would check for telnet (23) or SMTP (25). Either of these can be proxied easily, and are likely open to the world like FTP. SSH (22) probably is as well, but if you set this up on a home box, you'll probably want to use SSH for admin access. You could however configure to tunnel X Windows over SSH, which will give you the ability to open Firefox (or browser of choice) on the target system and have it display on your work box. (Without dissing VNC, I actually find this a better solution because you don't transmit the graphics of an entire desktop, only the application windows you open.) Lastly, many of the proxy content filters are "word-based". This is due to the ever-changing ip address landscape of the internet, and the ability to filter on custom language. That usually means you can simply enter the IP address of the target website (if not hosted virtually), and get to the site. Don't know about blue-coat though. |
Posts: 10,620
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#24 | |
'Tis my eye!
Join Date: Aug 2000
Location: Chiefsplanet
Casino cash: $10269900
|
Quote:
![]() I'm so fuggin burned out on technology... |
|
Posts: 100,022
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#25 |
MVP
Join Date: Aug 2003
Casino cash: $7737309
|
haha
I totally understand. Used to have multiple firewalls, routers , and servers in a nice rack solution. Now I'm down to a single ingress device, a few laptops and desktops and a crapload of parts I don't really feel motivated to do anything with. I've got about 40GB of mp3's on a server I've been to lazy to setup. Working so many hours that tech is no longer the passion it once was. The family is happy to be spending more time with me, and I'm glad I've gotten out of my cave. Used to be my life, now it's just my job. Think I'm turning into one of those old farts I used to make fun of when I first got into IT. oh well |
Posts: 10,620
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#26 | |
Superbowl MVP
Join Date: Oct 2005
Location: OOOOOOOOOOOOOLATHE
Casino cash: $9910252
|
Quote:
Think I could Run a Port Sniffer and see whats open? |
|
Posts: 11,177
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#27 | |
Ain't no relax!
Join Date: Sep 2005
Casino cash: $1708919
|
Quote:
__________________
![]() |
|
Posts: 47,805
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#28 |
MVP
Join Date: Aug 2003
Casino cash: $7737309
|
![]() A sniffer will just tell you what traffic is visible to your machine (unless you ARP poison, and bringing down the network will definitely get you fired). Since you seem to have "time" to do this, attracting AS LITTLE attention as possible is your best bet. If you're trying to "impress" the IT staff to get a job, setting alarms off is not going to help. Easiest thing to do, would be to configure a linux box at home (you seem to be getting good with SUSE) with SSH on a buch of different ports. #/ vim /etc/ssh/sshd_config modify the first line in the file to add more ports... (don't forget to remove the comment symbol "#") Port 22,23,25,80,443,2200,3500,4500 (etc.) then restart sshd... #/ /etc/init.d/sshd stop #/ /etc/init.d/sshd start Then check that it's working... #/ nmap -A localhost -p 22,23,25,80,443, (etc.) Then when you get to the office, see if you can login over one of the open ports. At this point, all you have to do is install a proxy server on your box on the open port. EDIT: Unless by "port sniffer" you meant "scanner", you still need to have a box on the outside to respond to you. Also, you will often see ports respond as "filtered" rather than open or closed as most firewalls now adays act as proxies, calling into question the results of most port scans. Actually opening a connection through the firewall to the outside is least likely to be seen, and will give solid results. Last edited by unlurking; 04-27-2006 at 10:44 PM.. |
Posts: 10,620
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#29 | |
Superbowl MVP
Join Date: Oct 2005
Location: OOOOOOOOOOOOOLATHE
Casino cash: $9910252
|
Quote:
|
|
Posts: 11,177
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() |
#30 |
Superbowl MVP
Join Date: Oct 2005
Location: OOOOOOOOOOOOOLATHE
Casino cash: $9910252
|
What if I am not able to load an SSH client on to my work machine? What would the method Be for using telnet in this case?
|
Posts: 11,177
![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
![]() |
![]() ![]() |
|
|