<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Penetration Testing: Re: Discovering hosts behind NAT

Re: Discovering hosts behind NAT

From: Javier Fernandez-Sanguino Peña <jfernandez_at_sgi.es>
Date: Wed, 23 May 2001 09:28:42 +0200

>
> There are two known network devices: a cisco, which seems totally silent, and a wellfleet router.
>

Have you tried SNMP access? First try to check if the SNMP ports (udp) are open
(nmap -sU) and then do a dictionary attack against the router. A common
misconfiguration is to have SNMP open to the outside world and with well-known
communities.
If so, you could probably get the information the router holds in its internal
tables and (maybe) configure it to allow you access to the "hidden" network.

Javi
Received on May 24 2001

This message: [ Message body ]
Next message: pete: "RE: Sample RFP for security audits"
Previous message: Simon Waters: "Re: Offtopic: SSL 3.0 Client Authentication"
In reply to: Franklin DeMatto: "Discovering hosts behind NAT"
Next in thread: Alex Butcher: "Re: Discovering hosts behind NAT"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos