Home » Posts filed under Cisco

[CGE] Cisco Global Exploiter

in , , , , , - on 5:33 PM - No comments

Cisco Global Exploiter (CGE), is an advanced, simple and fast security testing tool/ exploit engine, that is able to exploit 14 vulnerabilities in disparate Cisco switches and routers.  CGE is command-line driven perl script which has a simple and easy to use front-end.

CGE can exploit the following 14 vulnerabilities:

[1] - Cisco 677/678 Telnet Buffer Overflow Vulnerability
[2] - Cisco IOS Router Denial of Service Vulnerability
[3] - Cisco IOS HTTP Auth Vulnerability
[4] - Cisco IOS HTTP Configuration Arbitrary Administrative Access Vulnerability[5] - Cisco Catalyst SSH Protocol Mismatch Denial of Service Vulnerability
[6] - Cisco 675 Web Administration Denial of Service Vulnerability
[7] - Cisco Catalyst 3500 XL Remote Arbitrary Command Vulnerability
[8] - Cisco IOS Software HTTP Request Denial of Service Vulnerability
[9] - Cisco 514 UDP Flood Denial of Service Vulnerability
[10] - CiscoSecure ACS for Windows NT Server Denial of Service Vulnerability
[11] - Cisco Catalyst Memory Leak Vulnerability
[12] - Cisco CatOS CiscoView HTTP Server Buffer Overflow Vulnerability
[13] - 0 Encoding IDS Bypass Vulnerability (UTF)
[14] - Cisco IOS HTTP Denial of Service Vulnerability

Installation:
tar -zxvf cge-13.tar.gz
Execution:
perl cge.pl [target] [vulnerability number]
Example output:
[root@hacker cge-13]# perl cge.pl 192.168.1.254 3

Vulnerability successful exploited with [http://192.168.1.254/level/17/exec/....] ...

Read more
Labels: , , , , ,

[Router Password Decryptor v2.0] Recover internet login/PPPoE authentication passwords, Wireless WEP keys, WPA/WPA2 Passphrases from your Router/Modem configuration file

in , , , , , , - on 2:55 PM - No comments

Router Password Decryptor is the FREE tool to instantly recover internet login/PPPoE authentication passwords, Wireless WEP keys, WPA/WPA2 Passphrases from your Router/Modem configuration file.

Currently it supports password recovery from following type of Routers/Modems
  • Cisco
  • Juniper
  • DLink
  • BSNL
In addition to this, it also has unique 'Smart Mode' feature (experimental) to recover passwords from any type of Router/Modem configuration file. It detects various password fields from such config file (XML only) and then automatically try to decrypt those passwords.

It also has quick link to Base64 Decoder which is useful in case you have found Base64 encoded password (ending with =) in the config file and automatic recovery is not working.

It is very easy to use tool with its cool GUI interface. Administrators & Penetration Testers will find it more useful to recover login passwords as well as wireless keys from the router configuration files.

It is fully portable and works on both 32-bit & 64-bit windows platforms starting from Windows XP to Windows 8.


Features & Benefits
  • Instantly decrypt and recover login/PPPoE/WEP/WPA/WPA2 Passwords from Router/Modem Config file
  • Supports Cisco/Juniper/DLink/BSNL modems/routers
  • Also has Smart Mode feature to recover password from any config file
  • Useful for Admins & Penetration Testers
  • Simple & elegant GUI interface makes it easy to use
  • Supports quick Drag & Drop of Router config file
  • Right click context menu to quickly copy the Password
  • Sort feature to arrange the displayed passwords
  • Save the recovered password list to HTML/XML/TEXT/CSV file
  • Fully Portable, does not require Java or .NET
  • Includes Installer for assisting you in local Installation & Uninstallation.

Read more
Labels: , , , , , ,