How would you proceed?

seenagapeApril 22, 2012

The network administrator at Spears Technology, Inc has configured the default gateway Cisco Router’s access-list as below:

You are tried to conduct security testing on their network. You successfully brute-force for SNMP community string using a SNMP crack tool. The access-list configured at the router prevents you from establishing a successful connection.

You want to retrieve the Cisco Configuration from the router.

How would you proceed?

PrepAway - Latest Free Exam Questions & Answers

A.
Send a customized SNMP set request with spoofed source IP Address in the range- 192.168.1.0

B.
Run a network sniffer and capture the returned traffic with the configuration file from the router

C.
Run Generic Routing Encapsulation (GRE) tunneling protocol from your computer to the router masking your IP address

D.
Use the Cisco’s TFTP default password to connect and download the configuration file

Explanation:
SNMP is allowed only by access-list 1. Therefore you need to spoof a 192.168.1.0/24 address and then sniff the reply from the gateway.

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

ECCouncil Exam Questions

Free EC-Council Study Guide

How would you proceed?

Leave a Reply Cancel reply