Re: Brute Force/Crack Cisco VPN Concentrator 3000

[killy <killfactory () gmail com>]

Did you try the default password? ;)

On 11 Aug 2006 23:09:43 -0000, 09Sparky () gmail com <09Sparky () gmail com> wrote:
> Does anyone know of a good way to test the security of a Cisco 3000 Concentrator? I have access to the web interface 
> (http), but am stuck their.  I was thinking of using Hydra, but I cannot see an option for VPN.  Just (http head|get, 
> http get|post) nothing for VPN.  Any suggestions on how to brute force (either using hydra or other tools)?
>
>
> Thanks,
>
> 09Sparky
>
>
>
> ------------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Concerned about Web Application Security?
> Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
> Choice Award from eWeek. As attacks through web applications continue to rise,
> you need to proactively protect your applications from hackers. Cenzic has the
> most comprehensive solutions to meet your application security penetration
> testing and vulnerability management needs. You have an option to go with a
> managed service (Cenzic ClickToSecure) or an enterprise software
> (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
> help you: http://www.cenzic.com/news_events/wpappsec.php
> And, now for a limited time we can do a FREE audit for you to confirm your
> results from other product. Contact us at request () cenzic com for details.
> ------------------------------------------------------------------------------

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------