Penetration Testing mailing list archives
Re: Vulnerability Assessment of VLAN
From: Curt Purdy <infosysec () gmail com>
Date: Thu, 13 Jan 2011 12:12:58 -0500
Cannot answer #1, but would be interested if there is anything analogous to dsniff on a switched network for VLANs. As for #2, the type and brand of firewall makes a lot of difference, in particular in which vulns & configuration problems you might be looking for. A nice tool for cisco is CIS rat (just feed in the config, and it will spit out problems it finds). A nice short generic whitepaper is one by Bennet Todd. If you are talking about auditing and not pen-testing, look for old, no longer used ACLs. Of the hundreds of lines, many are useless, and may do more harm than good. I have seen holes intentionally stuck in the middle of lists that no one ever saw because it was a rat's nest. Curt Purdy CISSP, GSNA, GSEC, MCSE+I, CCNA infosysec () gmail com purdy () tecman com On Wed, Jan 12, 2011 at 4:16 AM, informationhacker08 <informationhacker08 () gmail com> wrote:
1)Conducting Vulnerability assessment of a server that exist in a different VLAN and the your machine is located on other Vlan (No Trunk) 2)Any Good Paper on Firewall Auditing. I have deep interest in Auditing. Any well known paper that describes how to properly Audit a Firewall. What things should we check in Firewall Auditing. Regards Informationhacker08 -- View this message in context: http://old.nabble.com/Vulnerability-Assessment-of-VLAN-tp30631414p30631414.html Sent from the Penetration Testing mailing list archive at Nabble.com. ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Vulnerability Assessment of VLAN informationhacker08 (Jan 13)
- Re: Vulnerability Assessment of VLAN Curt Purdy (Jan 13)
- Re: Vulnerability Assessment of VLAN Christophe Vandeplas (Jan 14)
- RE: Vulnerability Assessment of VLAN S Walker (Jan 14)
- Re: Vulnerability Assessment of VLAN Tracy Reed (Jan 14)
- Re: Vulnerability Assessment of VLAN infosecMosaic (Jan 14)
- Re: Vulnerability Assessment of VLAN Tate Hansen (Jan 14)
- Re: Vulnerability Assessment of VLAN Curt Purdy (Jan 13)