• Network Device Vulnerabilities | 139
    		•

    Learning Kali Linux




    Download 22,59 Mb.
    Pdf ko'rish
    bet132/225
    Sana14.05.2024
    Hajmi22,59 Mb.
    #232856
    1   ...   128   129   130   131   132   133   134   135   ...   225
    Bog'liq
    learningkalilinux

    Auditing Devices
    The first thing we will do is to use a tool to do some basic auditing of Cisco devices
    on the network. The 
    Cisco Auditing Tool
    (CAT) is used to attempt logins to devices
    you provide. It does this given a provided word list to attempt logins with. The down‐
    side to using this tool is that it uses Telnet to attempt connections, rather than SSH,
    which would be more common on well-secured networks. Any management over
    Telnet can be intercepted and read in plain text because that’s how it’s transmitted.
    Since management of network devices will include passwords, it’s more common to
    use encrypted protocols like SSH for management.
    CAT
    can also investigate a system by using the Simple Network Management Proto‐
    col (SNMP). The version of SNMP used by CAT is outdated. This is not to say that
    some devices don’t still use outdated versions of protocols like SNMP. SNMP can be
    Network Device Vulnerabilities | 139

    used to gather information about configuration as well as system status. The older
    version of SNMP uses a community string for authentication, which is provided in
    clear text because the first version of SNMP doesn’t use encryption. 
    CAT
    uses a word
    list of potential community strings, though it was common for the read-only commu‐
    nity string to be 
    public
    and the read-write community string to be 
    private
    for a long
    time. They were the defaults in many cases, and unless the configuration of the sys‐
    tem was changed, that’s what you would need to supply.
    CAT
    is an easy program to run. It’s a Perl script that calls individual modules for
    SNMP and brute-force runs. As I’ve noted, it does require you to provide the hosts.
    You can provide a single host or a text file with a list of hosts in it. 
    Example 4-6
    shows
    the help output for 
    CAT
    and how to run it against Cisco devices.
    Example 4-6. CAT output
    root@rosebud:~# CAT
    Cisco Auditing Tool - g0ne 
    [
    null0
    ]
    Usage:
    -h hostname 
    (

    Download 22,59 Mb.
    1   ...   128   129   130   131   132   133   134   135   ...   225




    Download 22,59 Mb.
    Pdf ko'rish