Hello there,
I'm working in a company has more than 700 Cisco device, in 700 branch
The IT Department concept of security is a little low, the just made "secret for enable" and even not activated " No service password-recovery", VPN enabled, I think it's IPSEC- Preshared Key to access internal networks, via multiple VLANs.
Any way,
I want to note that I'm not expert in networking, just amateur, and I'm not native English, I'm just Pen-tester Try to demonstrate and vulnerability and Proof of concept on it, that been said,
1- When anyone password-recovery procedure, he just need to no shut the interface and everything will work again, no hidden tricks????
summary : >> confreg 0x2142 -- Then copy start run , int f 0/0 , no shut, wr, copy run start
2- Let's assume that we have copied the configuration out to TFTP server, can we configure that "config" to GNS3 Router and connect it to Cloud internet
does that Scenario can give the person access to our network ?? or it's away away from real life ?
Regards,,