Security Basics mailing list archives

RE: Cisco IOS Version audit (Vulnrable or Not?)

From: "Muhammad Naseer Bhatti" <naseer () digitallinx com>
Date: Thu, 1 Dec 2005 23:14:48 +0500


Search for kiwicattools ( http://www.kiwisyslog.com/cattools2.htm ) .. That
may solve all of your MASS CISCO problems. We have a network of 300+ routers
and switches and it works nicely.


Muhammad
 

-----Original Message-----
From: Genjii [mailto:genjii () gmail com] 
Sent: Wednesday, November 30, 2005 9:57 AM
To: security-basics () securityfocus com
Subject: Cisco IOS Version audit (Vulnrable or Not?)

I am looking for people to share there advise or any software that will
allow me to achieve the following.

I would like to do an SNMP walk over all of my Cisco devices, to get the
hardware and IOS version information.
With this information I would then like to audit each IOS version to see
    - Latest IOS image ave liable
    - Recommended IOS Image
    - Last IOS image that doesn't have any vulnerabilities
    - Then possibly an advanced check to see if my Cisco device supports the
mimimum hardware requirements

The main difficulty here is an easy automated way to get this information.

Any suggesions?

Current thread:

Cisco IOS Version audit (Vulnrable or Not?) Genjii (Dec 01)
- RE: Cisco IOS Version audit (Vulnrable or Not?) Muhammad Naseer Bhatti (Dec 02)
- Re: Cisco IOS Version audit (Vulnrable or Not?) Byron Sonne (Dec 02)
- Re: Cisco IOS Version audit (Vulnrable or Not?) David Ziggy Lubowa (Dec 03)