lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Mon Sep 26 20:36:47 2005
From: c0ntexb at gmail.com (c0ntex)
Subject: CORE-Impact license bypass

CORE is a good product for what it does. Just as NMAP is and just like
Nessus is, though relying on them is probably not a good idea for an
audit. I rather do all pentesting by hand, nothing can compete against
that and I can't think of a time where I have ever used either Nessus
or CORE in an audit.

Never used CANVAS. I don't care for Automated exploit tools but
someone had CORE and I  fancied a play as the CORE team are a pretty
interesting bunch of guys.

On 26/09/05, Josh Perrymon <perrymonj@...workarmor.com> wrote:
> While on the topic of Impact...
>
> What do you see as the real value of the program?
> Is it just because it has all the exploits in there and it's GUI based?
>
> What can you do with it you cant do by hand?
>
> Also- how does it compare to CANVAS?
>
> JP
>
> -----Original Message-----
> From: full-disclosure-bounces@...ts.grok.org.uk
> [mailto:full-disclosure-bounces@...ts.grok.org.uk] On Behalf Of c0ntex
> Sent: Monday, September 26, 2005 3:27 PM
> To: full-disclosure@...ts.grok.org.uk
> Subject: Re: [Full-disclosure] CORE-Impact license bypass
>
> On 26/09/05, c0ntex <c0ntexb@...il.com> wrote:
> > Sure, but you would hope that once your yearly license key had
> > expired, you would not be able to use the program again, at least to
> > exploit remote boxen.
> >
> > It's not a big deal and I don't want people thinking I am saying this
> > is some 0day or anything, it's dumb but I thought it might be
> > interesting.. to CORE in particular, since I guess they might be
> > inadvertently loosing money that is rightfully theirs, CORE is a great
> > product and deserves the $$$. hence the reason I have uninstalled it.
> >
> > Anyway, any more comments on this issue, send them to CORE.  :-)
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
>
>
>


--

regards
c0ntex

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ