Jump to content

Recommended Posts

Posted

Hey everyone  :-P

I am wondering what is some of the common tools your guys use to do network audit, and recently I been asked to recover all of the router password that had been lost on a client site, there about 3 to 4 linksys wireless switch and a 3COM switches.  any recommendation on what I maybe able to use or go about other then resetting them physically?

Posted

An essential part of a network audit would involve scanning the network for devices that should not be there and computers running services they should not.

Posted

Thanks for the reply mate, I did some scanning using Cain and Nessus, which is fantastic. But is that what do most people do? And the common standard and tools. And also if there are any ways of obtaining the login info on these devices I mention earlier. If not, I guess i will just to have reset them and re-config them again.  :-?

Posted

Unless someone has a practice of using the same passwords or password naming scheme on devices, you will have to do hard resets on the devices. As far as using things like Cain, I do not think it is what most corporate clients would want someone using on their system. Cain is usefull for certain things, but 99% of the people using it are looking to ARP attack a users session, or MITM attacks. That won't help recover router passwords unless someone is logging into the device and it is not encrypted or SSL/SSH into the device.

Posted

thanks buddy, I am now confirm no choice but hardware rest. Good point about Cain, I only started looking in the tool, so though it might be useful to do network scan and provide network and workstation info. But i have ended up going to each machine and ran "System Info", thank god there wasn't too many machines. Although what i should have disable windows firewall via group policy and run some sort of remote network audit tool.

Posted

You could try using snmpwalk or Hydra if you have no luck with that.

Network fuzzers always come in useful also other fuzzers.Other tools I use are nmap, wicrawl (yes I'm lazy most of the time), karma, tcpdump, tcp-replay, packeth, ettercap, wireshark, GCC, vi, dnswalk, and many, many more. I can't be bothered to list any more.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...