Re: Brute Force/Crack Cisco VPN Concentrator 3000

From: killy (killfactory@gmail.com)
Date: Wed Aug 16 2006 - 10:38:43 EDT


Did you try the default password? ;)

On 11 Aug 2006 23:09:43 -0000, 09Sparky@gmail.com <09Sparky@gmail.com> wrote:
> Does anyone know of a good way to test the security of a Cisco 3000 Concentrator? I have access to the web interface (http), but am stuck their. I was thinking of using Hydra, but I cannot see an option for VPN. Just (http head|get, http get|post) nothing for VPN. Any suggestions on how to brute force (either using hydra or other tools)?
>
>
> Thanks,
>
> 09Sparky
>
>
>
> ------------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Concerned about Web Application Security?
> Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
> Choice Award from eWeek. As attacks through web applications continue to rise,
> you need to proactively protect your applications from hackers. Cenzic has the
> most comprehensive solutions to meet your application security penetration
> testing and vulnerability management needs. You have an option to go with a
> managed service (Cenzic ClickToSecure) or an enterprise software
> (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
> help you: http://www.cenzic.com/news_events/wpappsec.php
> And, now for a limited time we can do a FREE audit for you to confirm your
> results from other product. Contact us at request@cenzic.com for details.
> ------------------------------------------------------------------------------
>
>

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:56:44 EDT