Cannot answer #1, but would be interested if there is anything
analogous to dsniff on a switched network for VLANs.
As for #2, the type and brand of firewall makes a lot of difference,
in particular in which vulns & configuration problems you might be
looking for. A nice tool for cisco is CIS rat (just feed in the
config, and it will spit out problems it finds). A nice short generic
whitepaper is one by Bennet Todd.
If you are talking about auditing and not pen-testing, look for old,
no longer used ACLs. Of the hundreds of lines, many are useless, and
may do more harm than good. I have seen holes intentionally stuck in
the middle of lists that no one ever saw because it was a rat's nest.
On Wed, Jan 12, 2011 at 4:16 AM, informationhacker08
<informationhacker08 (at) gmail (dot) com [email concealed]> wrote:
>
> 1)Conducting Vulnerability assessment of a server that exist in a different
> VLAN and the your machine is located on other Vlan (No Trunk)
>
> 2)Any Good Paper on Firewall Auditing. I have deep interest in Auditing. Any
> well known paper that describes how to properly Audit a Firewall. What
> things should we check in Firewall Auditing.
>
> Regards
>
> Informationhacker08
>
>
> --
> View this message in context: http://old.nabble.com/Vulnerability-Assessment-of-VLAN-tp30631414p306314
14.html
> Sent from the Penetration Testing mailing list archive at Nabble.com.
>
>
> ------------------------------------------------------------------------
> This list is sponsored by: Information Assurance Certification Review Board
>
> Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
>
> http://www.iacertification.org
> ------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
analogous to dsniff on a switched network for VLANs.
As for #2, the type and brand of firewall makes a lot of difference,
in particular in which vulns & configuration problems you might be
looking for. A nice tool for cisco is CIS rat (just feed in the
config, and it will spit out problems it finds). A nice short generic
whitepaper is one by Bennet Todd.
If you are talking about auditing and not pen-testing, look for old,
no longer used ACLs. Of the hundreds of lines, many are useless, and
may do more harm than good. I have seen holes intentionally stuck in
the middle of lists that no one ever saw because it was a rat's nest.
Curt Purdy CISSP, GSNA, GSEC, MCSE+I, CCNA
infosysec (at) gmail (dot) com [email concealed]
purdy (at) tecman (dot) com [email concealed]
On Wed, Jan 12, 2011 at 4:16 AM, informationhacker08
<informationhacker08 (at) gmail (dot) com [email concealed]> wrote:
>
> 1)Conducting Vulnerability assessment of a server that exist in a different
> VLAN and the your machine is located on other Vlan (No Trunk)
>
> 2)Any Good Paper on Firewall Auditing. I have deep interest in Auditing. Any
> well known paper that describes how to properly Audit a Firewall. What
> things should we check in Firewall Auditing.
>
> Regards
>
> Informationhacker08
>
>
> --
> View this message in context: http://old.nabble.com/Vulnerability-Assessment-of-VLAN-tp30631414p306314
14.html
> Sent from the Penetration Testing mailing list archive at Nabble.com.
>
>
> ------------------------------------------------------------------------
> This list is sponsored by: Information Assurance Certification Review Board
>
> Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
>
> http://www.iacertification.org
> ------------------------------------------------------------------------
>
>
------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
http://www.iacertification.org
------------------------------------------------------------------------
[ reply ]