How would you proceed?

The network administrator at Spears Technology, Inc has configured the default gateway Cisco Router’s access-list as below:(Exhibit)

You are tried to conduct security testing on their network. You successfully brute-force for SNMP community string using a SNMP crack tool. The access-list configured at the router prevents you from establishing a successful connection.

You want to retrieve the Cisco Configuration from the router. How would you proceed?

The network administrator at Spears Technology, Inc has configured the default gateway Cisco Router’s access-list as below:

You are tried to conduct security testing on their network. You successfully brute-force for SNMP community string using a SNMP crack tool. The access-list configured at the router prevents you from establishing a successful connection.

You want to retrieve the Cisco Configuration from the router.

How would you proceed?

A.
Send a customized SNMP set request with spoofed source IP Address in the range- 192.168.1.0

B.
Run a network sniffer and capture the returned traffic with the configuration file from the router

C.
Run Generic Routing Encapsulation (GRE) tunneling protocol from your computer to the router masking your IP address

D.
Use the Cisco’s TFTP default password to connect and download the configuration file

Explanation:
SNMP is allowed only by access-list 1. Therefore you need to spoof a 192.168.1.0/24 address and then sniff the reply from the gateway.



Leave a Reply 0

Your email address will not be published. Required fields are marked *