The one which you spoke is the GOLDEN method of Bypassing the Security Softwares. Also Obfuscating the Strings will be the other way of Bypassing the Security Softwares.
Regards, 0xN41K On May 11, 4:49 pm, Sandeep Thakur <[email protected]> wrote: > If I had to evade Firewall/IDS/IPS, I would do environmental (SSH) tunneling > usually over HTTPS (Application Layer) or over ICMP (Network Layer) as these > two are mostly allowed channels/ports for communication and will be best in > experience as well when compare to establishing other tunnels (say: over > DNS). > > Regards > Sandeep Thakur > > > > On Fri, May 7, 2010 at 3:24 AM, Tisiphone <[email protected]> wrote: > > Dependent on what exactly you want to pass in which direction, don't > > forget about tunneling over basic permitted protocols, for example, > > tunneling HTTP over DNS (as with Ozymandias or NSTX). > > > On Thu, May 6, 2010 at 3:47 PM, <[email protected]> wrote: > > > Not an expert on this topic but I know a common way to do so by taking > > advantage of protocols behaviour and stateful inspection design. > > > > So let's say that the firewall has stateful inspection for ftp and IRC > > protocols, you can inject ftp PORT commands during ftp sessions to fool the > > firewall into thinking that it is an IRC transaction and since this protocol > > uses peer to peer connections the firewall will automatically open any port > > needed by the IRC server(attacker) to the chat client (victim). > > > > Although this flaw has been patched by Netfilter team, definitely > > constitutes a sexy way to bypass firewalls. > > > > Google "phrack breaking through a firewall". > > > Sent via BlackBerry from Danux Network > > > > -----Original Message----- > > > From: Raja <[email protected]> > > > Date: Thu, 06 May 2010 09:32:35 > > > To: <[email protected]> > > > Subject: How to bypass firewalls > > > > Hi, > > > > Can anybody let me know the available methods for bypassing firewall for > > > all kinds of traffic? > > > > Thanks, > > > Raja > > > > ------------------------------------------------------------------------ > > > Securing Apache Web Server with thawte Digital Certificate > > > In this guide we examine the importance of Apache-SSL and who needs an > > SSL certificate. We look at how SSL works, how it benefits your company and > > how your customers can tell if a site is secure. You will find out how to > > test, purchase, install and use a thawte Digital Certificate on your Apache > > web server. Throughout, best practices for set-up are highlighted to help > > you ensure efficient ongoing management of your encryption keys and digital > > certificates. > > >http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be... > > > ------------------------------------------------------------------------ > > > ------------------------------------------------------------------------ > > Securing Apache Web Server with thawte Digital Certificate > > In this guide we examine the importance of Apache-SSL and who needs an SSL > > certificate. We look at how SSL works, how it benefits your company and how > > your customers can tell if a site is secure. You will find out how to test, > > purchase, install and use a thawte Digital Certificate on your Apache web > > server. Throughout, best practices for set-up are highlighted to help you > > ensure efficient ongoing management of your encryption keys and digital > > certificates. > > >http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be... > > ------------------------------------------------------------------------ > > -- > You received this message because you are subscribed to the Google Groups > "nforceit" group. > To post to this group, send an email to [email protected]. > To unsubscribe from this group, send email to > [email protected]. > For more options, visit this group > athttp://groups.google.com/group/nforceit?hl=en-GB. -- You received this message because you are subscribed to the Google Groups "nforceit" group. To post to this group, send an email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/nforceit?hl=en-GB.
