Contact Info

sean [at] coreitpro [dot] com gpg key

Mastodon

sc68cal on Libera

Why Hello There

Just cruising around, looking for some good times.

Host dell-cb2a022280.wireless.cluelessnetwork appears to be up. Host colinandsarah.wireless.cluelessnetwork appears to be up. Host chintan-pc.wireless.cluelessnetwork appears to be up. Host tech-ss-34.wireless.cluelessnetwork appears to be up. Host proteusoptic-pc.wireless.cluelessnetwork appears to be up. Host mary-pc.wireless.cluelessnetwork appears to be up. Host macintosh-130.wireless.cluelessnetwork appears to be up. Host eop-13q85d1-ws.wireless.cluelessnetwork appears to be up. Host instrmn15.wireless.cluelessnetwork appears to be up. Host arnav-laptop.wireless.cluelessnetwork appears to be up. Host nks.wireless.cluelessnetwork appears to be up. Host instrmn-27.wireless.cluelessnetwork appears to be up. Host instrmn-06.wireless.cluelessnetwork appears to be up. Host quentin.wireless.cluelessnetwork appears to be up. Host d928xrc1.wireless.cluelessnetwork appears to be up. Host instrmn-20.wireless.cluelessnetwork appears to be up. Host paley-laptop-15.wireless.cluelessnetwork appears to be up. Host timmy-pc.wireless.cluelessnetwork appears to be up. Host ath-fbxosd-xp.wireless.cluelessnetwork appears to be up. Host dhcp10104065003.wireless.cluelessnetwork appears to be up. Host richardpymer-pc.wireless.cluelessnetwork appears to be up. Host instructrm10.wireless.cluelessnetwork appears to be up. Host instrmn17.wireless.cluelessnetwork appears to be up. Host justin-pc.wireless.cluelessnetwork appears to be up. Host instrmn-13.wireless.cluelessnetwork appears to be up. Host macintosh-10.wireless.cluelessnetwork appears to be up. Host salma.wireless.cluelessnetwork appears to be up. Host ibm-d688fb93f72.wireless.cluelessnetwork appears to be up. Host lawschool.wireless.cluelessnetwork appears to be up. Host instrmn10.wireless.cluelessnetwork appears to be up. Host your-7369fde7d0.wireless.cluelessnetwork appears to be up. Host meg.wireless.cluelessnetwork appears to be up.

Okay, let’s just pick one at random and see what we get.

arnav-laptop:~ macbookpro$ sudo nmap -AP0sS xxx.xxx.xxx.xxx Starting Nmap 4.20 ( http://insecure.org ) Nmap finished: 1 IP address (0 hosts up) scanned in 0.256 seconds arnav-laptop:~ macbookpro$ sudo nmap -AP0sS xxx.xxx.xxx.xxx Starting Nmap 4.20 ( http://insecure.org ) Interesting ports on instrmn-27.wireless.cluelessnetwork: Not shown: 1692 closed ports PORT STATE SERVICE VERSION 135/tcp open msrpc Microsoft Windows RPC 139/tcp open netbios-ssn 445/tcp open microsoft-ds Microsoft Windows XP microsoft-ds 1347/tcp open bbn-mmc? 3389/tcp open microsoft-rdp Microsoft Terminal Service MAC Address: 00:14:A5:5F:D3:E8 (Gemtek Technology Co.) No exact OS matches for host (If you know what OS is running on it, see http://insecure.org/nmap/submit/ ). Network Distance: 1 hop Service Info: OS: Windows OS and Service detection performed. Please report any incorrect results at http://insecure.org/nmap/submit/ . Nmap finished: 1 IP address (1 host up) scanned in 25.635 seconds

Computer is open to remote desktop. Reports itself as Windows XP Professional. Though, the TCP/IP Fingerprint tosses some info in about OS X. But is that the fingerprint for the remote machine or just mine? Let’s allow NMAP to hazard a guess.

PORT STATE SERVICE VERSION 135/tcp open msrpc Microsoft Windows RPC 139/tcp open netbios-ssn 445/tcp open microsoft-ds Microsoft Windows XP microsoft-ds 1347/tcp open bbn-mmc? 3389/tcp open microsoft-rdp Microsoft Terminal Service MAC Address: 00:14:A5:5F:D3:E8 (Gemtek Technology Co.) Device type: general purpose Running (JUST GUESSING) : Microsoft Windows 2000|2003|XP (92%) Aggressive OS guesses: Microsoft Windows 2000 SP4 (92%), Microsoft Windows Server 2003 Enterprise Edition 64-Bit SP1 (92%), Microsoft Windows XP SP2 (91%), Microsoft Windows XP SP2 (firewall disabled) (91%), Microsoft Windows 2003 Server SP1 (90%), Microsoft Windows 2000 Server SP4 (89%), Microsoft Windows 2000 SP3 (88%), Microsoft Windows 2000, SP0, SP1, or SP2 (88%), Microsoft Windows 2000 Server SP4 (85%) No exact OS matches for host (If you know what OS is running on it, see http://insecure.org/nmap/submit/ ). Network Distance: 1 hop Service Info: OS: Windows

Yeah, the TCP/IP fingerprint tosses my info into the mix. I guess it’d be for diagnostic purposes on behalf of the nmap crew.

Well, anyway, let’s see if there is actually a RD client listening on the port and accepting connections!

Screen Cap

Not good. You shouldn’t have a XP box on a public wifi allowing remote desktop connections.