Hi all...
I get the tools to penetrate cisco...and I loved it ... the tool is Cisco Torch.
course..not wrong if you try this tools....
Cisco torch : Mass Cisco Vulnerability Scanner
Cisco Torch was designed as a mass scanning, fingerprinting, and exploitation tool. Cisco-torch is unlike other tools in that it utilises multiple threads, (forking techniques), to launch scanning processes. It also uses several methods to simultaneously carry out application layer fingerprinting. Cisco torch can be used for launching dictionary based password attacks against the services and discovering hosts running the following services:
[.] Telnet
[.] SSH
[.] Web
[.] NTP
[.] SNMP
[.] SSH
[.] Web
[.] NTP
[.] SNMP
Installation
1. Downloand Perl Modul :
. http://search.cpan.org/CPAN/authors/id/I/IV/IVAN/Net-SSH-0.09.tar.gz
. http://search.cpan.org/CPAN/authors/id/D/DT/DTOWN/Net-SNMP-v6.0.0.tar.gz
. http://search.cpan.org/CPAN/authors/id/F/FL/FLORA/Net-SSLeay-1.35.tar.gz
. http://search.cpan.org/CPAN/authors/id/T/TU/TURNSTEP/Net-SSH-Perl-1.34.tar.gz
. http://search.cpan.org/CPAN/authors/id/J/JR/JROGERS/Net-Telnet-3.03.tar.gz
. http://search.cpan.org/CPAN/authors/id/I/IV/IVAN/Net-SSH-0.09.tar.gz
. http://search.cpan.org/CPAN/authors/id/D/DT/DTOWN/Net-SNMP-v6.0.0.tar.gz
. http://search.cpan.org/CPAN/authors/id/F/FL/FLORA/Net-SSLeay-1.35.tar.gz
. http://search.cpan.org/CPAN/authors/id/T/TU/TURNSTEP/Net-SSH-Perl-1.34.tar.gz
. http://search.cpan.org/CPAN/authors/id/J/JR/JROGERS/Net-Telnet-3.03.tar.gz
tar -zxvf Net-SSH-0.0.9.tar.gz
perl Makefile.pl
make
make install
perl Makefile.pl
make
make install
tar -zxvf Net-SNMP-6.0.0.tar.gz
perl Makefile.pl
make
make install
perl Makefile.pl
make
make install
tar -zxvf Net-SSLeay-1.35.tar.gz
perl Makefile.pl
make
make install
perl Makefile.pl
make
make install
tar -zxvf Net-SSH-Perl.1.35.tar.gz
perl Makefile.pl
** Accept the following at the prompts:
SSH Version [3] Both SSH1 & 2
Perl schiphers [1] IDEA
BubbleBabble [Y]
Crypto::RSA [Y]
perl Makefile.pl
** Accept the following at the prompts:
SSH Version [3] Both SSH1 & 2
Perl schiphers [1] IDEA
BubbleBabble [Y]
Crypto::RSA [Y]
make
make install
make install
tar -zxvf Net-Telnet-3.0.3.tar.gz
perl Makefile.pl
make
make install
perl Makefile.pl
make
make install
2. Finally once these are all installed:
CiscoTorch download : click here please ...
tar -zxvf cisco-torch-0.4b.tar.gz
Modify the variables in the configuration file (torch.conf) to suit your environment:
$max_processes=20;
$hosts_per_process=10;
$passfile= "password.txt";
$communityfile="community.txt";
$usersfile="users.txt";
$fingerprintdb = "fingerprint.db";
$tmplogprefix="/tmp/tmplog";
$logfile="scan.log";
$llevel="c";
$hosts_per_process=10;
$passfile= "password.txt";
$communityfile="community.txt";
$usersfile="users.txt";
$fingerprintdb = "fingerprint.db";
$tmplogprefix="/tmp/tmplog";
$logfile="scan.log";
$llevel="c";
Execution :
usage:
./cisco-torch.pl <options> <IP,hostname,network> or
./cisco-torch.pl <options> -F <hostlist>
Available options:
-O <output file>
-A All fingerprint scan types combined
-t Cisco Telnetd scan
-s Cisco SSHd scan
-u Cisco SNMP scan
-g Cisco config or tftp file download
-n NTP fingerprinting scan
-j TFTP fingerprinting scan
-l <type> loglevel
-c critical (default)
-v verbose
-d debug
-w Cisco Webserver scan
-z Cisco IOS HTTP Authorization Vulnerability Scan
-c Cisco Webserver with SSL support scan
-b Password dictionary attack (use with -s, -u, -c, -w , -j or -t only)
-V Print tool version and exit
-A All fingerprint scan types combined
-t Cisco Telnetd scan
-s Cisco SSHd scan
-u Cisco SNMP scan
-g Cisco config or tftp file download
-n NTP fingerprinting scan
-j TFTP fingerprinting scan
-l <type> loglevel
-c critical (default)
-v verbose
-d debug
-w Cisco Webserver scan
-z Cisco IOS HTTP Authorization Vulnerability Scan
-c Cisco Webserver with SSL support scan
-b Password dictionary attack (use with -s, -u, -c, -w , -j or -t only)
-V Print tool version and exit
examples:
./cisco-torch.pl -A 10.10.0.0/16
./cisco-torch.pl -s -b -F sshtocheck.txt
./cisco-torch.pl -w -z 10.10.0.0/16
./cisco-torch.pl -j -b -g -F tftptocheck.txt
./cisco-torch.pl -s -b -F sshtocheck.txt
./cisco-torch.pl -w -z 10.10.0.0/16
./cisco-torch.pl -j -b -g -F tftptocheck.txt
Reference : http://www.hackingciscoexposed.com/
greetz to :
. Wan Satria Andanu
. Wan Satria Andanu
No comments:
Post a Comment