Re: Wired captive portal pen-test

[Roman Medina-Heigl Hernandez <roman () rs-labs com>]

Mario Spinthiras escribió:

> I managed to successfully beat captive portal with NSTX. As far as

Which kind/"brand" of captive portal? As I previously said, NSTX or similar 
can be defeated.

> vlans are concerned , by default catalysts have auto for trunk modes.
> If you emulate DTP then you will turn your access port into a trunk
> and since no prior configuration is made to a port that someone just
> stuck a computer to , then you will be able to receive all vlan
> traffic.

So it is as simple as launching DTP attack 1 with Yersinia, isn't it? Other 
interesting tools apart from that?

--

Saludos,
-Roman

PGP Fingerprint:
09BB EFCD 21ED 4E79 25FB  29E1 E47F 8A7D EAD5 6742
[Key ID: 0xEAD56742. Available at KeyServ]

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------