Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: Wired captive portal pen-test
From: Roman Medina-Heigl Hernandez <roman () rs-labs com>
Date: Thu, 17 Jul 2008 00:32:59 +0200

Mario Spinthiras escribió:

I managed to successfully beat captive portal with NSTX. As far as

Which kind/"brand" of captive portal? As I previously said, NSTX or similar can be defeated.

vlans are concerned , by default catalysts have auto for trunk modes.
If you emulate DTP then you will turn your access port into a trunk
and since no prior configuration is made to a port that someone just
stuck a computer to , then you will be able to receive all vlan
traffic.

So it is as simple as launching DTP attack 1 with Yersinia, isn't it? Other interesting tools apart from that?

--

Saludos,
-Roman

PGP Fingerprint:
09BB EFCD 21ED 4E79 25FB  29E1 E47F 8A7D EAD5 6742
[Key ID: 0xEAD56742. Available at KeyServ]

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault