Who's Online
There are currently, 39 guest(s) and 2 member(s) that are online.
You are Anonymous user. You can register for free by clicking here
|  |
Hacking Small Office or Home office (SOHO) routers
Posted by cdupuis on Wednesday, 12 November 2008 @ 12:08:43 EST (321 reads)
Topic CISCO
The following security advisory can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
The SecuriTeam alerts list - Free, Accurate, Independent.
Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html
SUMMARY
The purpose of this paper is to outline the security measures being taken by vendors to prevent such attacks in their home routing products, what those security measures accomplish, and where they fall short.
We will use existing network tools to examine common vulnerabilities in a range of popular devices and demonstrate weaknesses in the security of those devices; additionally, we will examine common trends in security measures that have been duplicated across vendors, and examine how those trends help and hinder the security of their devices. In particular, we will examine the following home routers, which are some of the latest offerings from their respective vendors at the time of this writing:
* Linksys WRT160N
* D-Link DIR-615
* Belkin F5D8233-4v3
* ActionTec MI424-WR
DETAILS
Read the papers listed at the bottom of this message.
CONCLUSION
Router manufacturers are increasing the security of their devices, however, home router security still has a long road ahead of it. In the documents listed below you will find a table listing each of the devices and their associated, reasonably exploitable, vulnerabilities mentioned in this paper; these types of
vulnerabilities must be considered by all vendors, and should be investigated by any consumer before purchasing a router.
ADDITIONAL INFORMATION
The information has been provided by dev@sourcesec.com> SourceSec DevTeam.
The original article can be found at:
http://www.sourcesec.com/Lab/soho_router_report.pdf
Digital Short Cut products from Cisco Press
Posted by cdupuis on Friday, 25 July 2008 @ 13:10:27 EDT (1083 reads)
Topic CISCO
Technology is evolving faster than ever. As a technical professional, you need to know more than ever, and you need to know it now....which is why we publish "Short Cuts," your short cut to technical mastery.
Short Cuts are short, concise, PDF documents designed specifically for busy technical professionals like you. Each Short Cut is tightly focused on a specific technology or technical problem.
This may be a cutting-edge new technology that shows great promise, or it may be an existing technology that has reached the "tipping point" and is about to take off.
Either way, written by industry experts and best-selling authors, Short Cuts are published with you in mind — getting you the technical information that you need — now.
Clement
Cisco Press Publishes Products for New Cisco 640-863 CCDA Exam
Posted by boss on Wednesday, 28 February 2007 @ 14:24:17 EST (368 reads)
Topic CISCO
cdupuis writes "Indianapolis, IN—February 28, 2007
Cisco certification candidates pursuing the newest version of CCDA® (Cisco Certified Design Associate) certification will have new study materials to choose from in 2007. Cisco Press, the leader in CCDA self-study materials, announced today three products that map to the new CCDA exam: the CCDA Official Exam Certification Guide, Third Edition, Designing for Cisco Internetwork Solutions, Second Edition (CCDA Self-Study), and CCDA Quick Reference Sheets, available as a PDF download.
CCDA certification indicates a foundation knowledge of network design for the Cisco Internetwork Infrastructure. The 640-863 CCDA exam, announced on February 27, replaces the 2003 version of the exam, which will retire on July 13, 2007.
“The Quick Reference Sheets, to be published in April, offer early exam candidates a preparation tool that is both valuable and portable,” said Brett Bartow, Cisco Press executive editor. “The new edition of the Exam Certification Guide, the best-selling CCDA book ever published, will be available in June.”
Readers can see the Guide prior to official publication through the Safari® Rough Cuts service, which provides access to evolving manuscripts. Users can read it online or download and print a PDF version of the work-in-progress. To learn more about Rough Cuts, visit http://safari.ciscopress.com/roughcuts.
CCDA Official Exam Certification Guide, Third Edition
ISBN: 1587201771
Anthony Bruno, Steve Jordan
June 2007
SRP: $59.95
CCDA Quick Reference Sheets
ISBN: 158705311X
Jeff Hardee
April 2007
SRP: $9.99
Designing for Cisco Internetwork Solutions, Second Edition (CCDA Self-Study)
ISBN: 1587052725
Diane Teare
October 2007
SRP: $60.00
For more information on these and other CCDA products, visit www.ciscopress.com/ccda"
CCNA Video Mentor - A new product offering from CiscoPress
Posted by boss on Thursday, 07 September 2006 @ 16:52:30 EDT (823 reads)
Topic CISCO
cdupuis writes " CCNA Video Mentor ISBN: 1587201682 Author: Wendell Odom Pub Date: 8/21/06 US SRP: $69.95
The CCNA Video Mentor provides users with more than two hours of personal visual instruction from best-selling author and instructor Wendell Odom. In the 12 videos presented on the CD-ROM, Wendell walks users through common Cisco router and switch configuration topics.
The CCNA Video Mentor, featuring best-selling author and senior instructor Wendell Odom, contains a series of instructional videos that demonstrate how to accomplish various CCNA-level configuration tasks on Cisco® routers and switches and better prepare candidates for the CCNA exam. The CCNA Video Mentor is a CD-ROM product featuring 12 videos, totaling more than 2 hours of personal video instruction. The videos consist of animations and video captures of command entry and output, accompanied by audio instruction from Odom on how to configure various router and switch features. Cisco Press has also added select videos to a revised edition of the No. 1 selling, official CCNA preparation product, the CCNA Official Exam Certification Library, Second Ed. As the official test preparation package for CCNA certification, the value-priced bundle contains the first editions of the CCNA ICND Exam Certification Guide and CCNA INTRO Exam Certification Guide, as well as 30 minutes of video instruction. The two books inside this Library are the most recent printings of the 2003 Exam Certification Guides, with all updates included, making this the most comprehensive, up-to-date, and accurate self-study preparation package for the CCNA exam. "Cisco Press has been evolving our self-study product line ever since our first best-selling CCNA study guide was released in 1998,” said Brett Bartow, Cisco Press executive editor. “The CCNA Video Mentor is another option for those candidates who have already studied the foundation concepts for the CCNA exam, but who feel they still need a better grasp of how to perform real world configurations. The videos provide a key ingredient missing from most self-study programs, personal instruction.” “One of the biggest difficulties in learning about networking by reading books is that networking, by its nature, is about how things move and it’s hard to show movement on a printed page, “ said Odom. “The CCNA Video Mentor provides a way to communicate some of the most important CCNA concepts, showing movement of packets in a network and then showing the actual commands being typed into a router or switch command line. The ability to see it happening provides better visual references and gives the CCNA candidate another leg up on getting a solid grasp of the material." Cisco certifications continue to be among the fastest growing and most valued certifications in the industry. Cisco Systems® has awarded more than 700,000 certifications worldwide, and CCNA certification continues to be the most popular. For more information, visit www.ciscopress.com/ccna.
CCNA Video Mentor 1-58720-168-2 ▪ Wendell Odom ▪ SRP ▪ $69.95 www.ciscopress.com/title/1587201682
CCNA Official Exam Certification Library, Second Ed. 1-58720-169-0 ▪ Wendell Odom ▪ SRP $59.95 www.ciscopress.com/title/1587201690
About the author Wendell Odom, CCIE No. 1624, is a senior instructor with Skyline Advanced Technology Services where he teaches courses on QoS, CCNA, and CCIE lab preparation. He has worked in the networking arena for 20 years, with jobs in pre- and post-sales technical consulting, teaching, and course development. Wendell has written portions of more than 12 courses and is the author of numerous best-selling Cisco Press CCNA titles. He lives in Mason, OH. About Cisco Press Cisco Press, a partnership between Cisco Systems® (NASDAQ:CSCO) and Pearson Education, part of Pearson plc (NYSE:PSO), is the official publisher of Cisco® networking technology and Cisco certification self-study materials for networking students and professionals. With products designed to help users prepare for Cisco certifications and master the implementation and support of a diverse range of networking technologies, Cisco Press provides a variety of products to suit individual learning styles. Cisco Press resources are the only print companions reviewed and approved by Cisco Systems for use in the Cisco Networking Academy Program. Cisco Press products can be purchased at your favorite local bookstore, computer/electronic store, online bookseller, or at www.ciscopress.com.
Cisco VPN Clients Passwords can be decrypted
Posted by boss on Sunday, 16 October 2005 @ 17:36:26 EDT (678 reads)
Topic CISCO
Anonymous writes "As seen on Bugtraq and Full Disclosure today:
Dear List,
[1] heise published a news article today.
[2] EvilScientists reverse engineered the algorithm Cisco uses to _obscufate_ the passwords.
[3] PoC
Summary :
Cisco uses 3des to encrypt the passwords, however it does so using a deterministic encryption sheme (no user input) and thus must be reproducible.
The algorithm [2] found was as follows :
* GetDate - convert to string
* Generate an SHA Hash from that string h1 (20 Bytes)
* h1 is modified into Hash h2
* h1 is modified into Hash h3
* h2 and the first 4 Bytes from h3 give the 3DES Key
* The clear text password no encrypted in 3DES CBC Mode. The IV is the first 8 Bytes of h1.
* If the size of the clear text password is not a multiple of the Block size, the difference to the next block is calculcated and padded with a Digit. -> length of password is known
* A last hash is calculated from the encrypted Password h4 * The value of the Key "enc_UserPassword" is: h1|h4|verschlüsseltes Passwort
Credits:
I take no credit I am only translating and forwarding.
--
Thierry Zoller
"
ISS researcher quits job to detail Cisco flaws
Posted by boss on Monday, 01 August 2005 @ 01:00:00 EDT (1202 reads)
Topic CISCO
'IOS is the Windows XP of the Internet,' says ISS research analyst Michael Lynn
News Story by Robert McMillan
JULY 27, 2005 (IDG NEWS SERVICE) - Internet Security Systems Inc. (ISS) research analyst Michael Lynn quit his job to provide information on a serious Cisco Systems Inc. router vulnerability at this week's Black Hat USA conference, after his company decided not to give a presentation on the flaw.
Lynn felt compelled to quit his job Wednesday morning so that he could give the talk, because the Cisco security issues are of vital importance to the Internet's health. "This is the right thing to do," he said, speaking to Black Hat attendees, who punctuated his talk with applause. "When you attack the router, you gain control of the network."
Lynn described a now-patched flaw in the Internetwork Operating System (IOS) software used to power Cisco's routers, as well as the steps he used to gain control of a router. Although Cisco was informed of the flaw by ISS and patched its firmware in April, users running older versions of the company's software are at risk, he said.
Read the whole story at: http://www.computerworld.com/printthis/2005/0,4814,103515,00.html
Do you talk layer two? Yersinia does...
Posted by boss on Tuesday, 05 July 2005 @ 08:19:24 EDT (461 reads)
Topic CISCO
Yersinia is a network tool designed to take advantage of some weakeness in different network protocols. It pretends to be a solid framework for analyzing and testing the deployed networks and systems.
Features.
100% written in C. It uses libpcap, libnetand ncurses.
Runs in Linux, *BSD and Solaris
Multithreaded: it supports multiple users and multiple attacks per user.
Examine, analyze and watch your packets
Edit each protocol’s fields
Capture your network data in pcapformat.
Current protocols enabled: STP, CDP, DTP, DHCP, HSRP, 802.1Q andVTP.
Customize your preferences in a configuration file.
Learn packets from the network and replay them with your modifications.
Listens to your network!!
Three main modes: command line, network client and ncursesGUI.
More details available at: http://yersinia.sourceforge.net/
Yersinia - Layer 2 Attack Framework
Posted by boss on Tuesday, 05 April 2005 @ 09:11:24 EDT (977 reads)
Topic CISCO
Anonymous writes "Yersinia implements several attacks for the following protocols: Spanning Tree (STP), Cisco Discovery (CDP), Dynamic Host Configuration (DHCP), Hot Standby Router (HSRP), Dynamic Trunking (DTP), 802.1q and VLAN Trunking (VTP), helping the pen-tester in different tasks, e.g: - Becoming the root role in the Spanning Tree - Creating virtual CDP neighbors - Setting up rogue DHCP Servers - Becoming the active router in a HSRP scenario - Enabling trunk - Performing ARP spoofing over VLAN Hopping - Adding/deleting VLANs (via VTP) - more.. It is a multithreaded application with three main modes: command line, network client and ncurses GUI, allowing multiple users to launch multiple attacks simultaneously.
Additional Information:
The information has been provided by David Barroso Berrueta and Alfredo Andres Omella .
The original article can be found at: http://yersinia.sf.net "
A couple of nice tools for Cisco probes
Posted by boss on Wednesday, 16 March 2005 @ 19:07:54 EST (852 reads)
Topic CISCO
As seen on the SecurityFocus mailing list:
OCS 0.1
By: OverIP
Relevant URL: http://hacklab.altervista.org/download/OCS.cPlatforms: Linux
Summary:
This is a very reliable and fast mass scanner for Cisco router with telnet/enable default password.
Cisco Torch 0.1 alpha
By: Arhont Team
Relevant URL: http://www.arhont.com/cisco-torch.tar.bz2Platforms: Perl (any system supporting perl)
Summary:
A fast mass scanning and application layer fingerprinting tool for Cisco devices written while working on "Hacking Exposed: Cisco Networks" book. Supports telnet and SSH bruteforcing as well as Cisco management webserver exploitation. More features would be added soon - see TODO.
|
|
Login
Don't have an account yet? You can create one. As a registered user you have some advantages like theme manager, comments configuration and post comments with your name.
Big Story of Today
There isn't a Biggest Story for Today, yet.
Old Articles
There isn't content right now for this block.
|
Manager- IT security in Canada (Canadian citizens or PR)