Electronic Books

For instance, in this example the Administrator??™s password was discovered to
be 123.
*Note: One of the features I like best is that the SAINT vulnerability scanner provides
links where you can download patches or new versions of software that will
eliminate the detected vulnerabilities. Although it is not free beyond the two
IP limitations for 30-day trial use, SAINT receives a two-thumbs up.
Vulnerability Scanning
379
Lab 61: SNMP Walk
Exploit Data via SNMP Walk: NETWOX/NETWAG
Prerequisites: Simple Network Management Protocol (SNMP) target
Countermeasures: Bastion servers/workstations, host-based firewalls,
strong passwords, File Transfer Protocol (FTP) over Secure Socket
Layer (SSL)
Description: The NETWOX (NETWork toolbOX) application can be a
very dangerous tool in the wrong hands. NETWAG is the GUI interface
for NETWOX. In this lab, the tool is used to demonstrate its ability to
???walk??? the SNMP. SNMP lets you ???read??? information from a device.
SNMP gives its information via a Management Information Base (MIB).
MIBs are like directories and are referred to by name or by number.
Remember that all commands in Linux are case sensitive.
*Note: Lab 53 demonstrated using NETWOX/NETWAG in a Linux environment. In
this lab I will demonstrate the Windows version.
Procedure: Set the parameters, execute against the target(s), and review
the results.
Double-click the Netwag icon.
380
Practical Hacking Techniques and Countermeasures
The NETWAG application will start.


Pages:
124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148