Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: [PEN-TEST] ios/cisco packet sniffer...

Re: [PEN-TEST] ios/cisco packet sniffer...

From: Beauregard, Claude Q <CQBeauregard_at_AAAMICHIGAN.COM>
Date: Mon, 27 Nov 2000 10:25:09 -0500

You may also want to look at a tool called Solarwinds. It's great for
obtaining the encrypted password for router access. It also has a config
viewer for extracting the running config from a router. - Nice tool -

http://www.solarwinds.net

-----Original Message-----
From: Penetration Testers [mailto:PEN-TEST_at_SECURITYFOCUS.COM]On Behalf
Of Joe Hacker
Sent: Friday, November 24, 2000 3:59 PM
To: PEN-TEST_at_SECURITYFOCUS.COM
Subject: Re: [PEN-TEST] ios/cisco packet sniffer...

I couldn't see this in the thread, only a bunch of links to various pages,
and since I
am off-line at the moment (and probably WAAAY behind reading this...), I
leave it
to the moderator to approve the post.

One good way to do a packet dump on a Cisco is:

        router(config)#access-list 199 permit ip <source> <mask>
<destination> <mask>
        router(config)#access-list 199 permit ip <destination> <mask>
<source> <mask>
        router(config)#end
        router# debug ip packet 199 dump

E.g.

        access-list 199 permit ip host 192.168.0.1 any
        access-list 199 permit ip any host 192.168.0.1

Will dump packets destined to and from 192.168.0.1.

I included the list, since debugging at packet level can cause the router
to reload if there is a lot
of traffic.

-j0e
Received on Nov 28 2000

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]