Hey People ,

Does somebody know how to enter the firewall (connect to it) when you only have a remote shell (from a buffer overflow) , PS I've got the shell on a primary domain controller

Thx

You could get the MAC address and IP of the machine you hacked, spoof the IP, then try to enter the firewall on port 80. It would think you were in the network maybe?

telnet with a shelll sometimes doesnt work, as with ftp command USE nc.exe to connect , should work :-) , u still will need user/pass if telnet admin is enabled

Not that difficult. If the firewall has a console login, you can do it from your remote shell. If it has web interface, you need to install a proxy on the server, then setup your browser to use the proxy on the remote server.

The main thing is you need to find out what firewall it is and then learn about it.

First you need to grab snmp info to find out what device is running.
This method works on some switches and routers.
Research via google what administrativ connections are possible on this device.
Or port scann the router from the lan and try to find out what service is running on open ports.
Frequently telnet and http administration.
Now try to sniff the login password for telnet or the http inerface.
After that tunnel your connection from your home to a computer in the lan and from this to the router.
Direct internet remote administration should be disabled by the sys admin.

OK I had this problem a while back but over came it...

Just tftp up a VNC client or other software (eg remoteanything) then do a reverse connection back to your box. Once you have a GUI then you can telnet from the box to fW as per ususal. If you are haing problems connecting back (ie egress filtering or proxy) then with remoteanything you can connect back on your own specified ports (try DNS HTTP, HTTPS , you get the drift etc). With VNC you may have to pipe the defaults ports using Fpipe.