----------------------------------Exploiting Cisco Systems(Even From Windows! ;-) )Written by Cyvamp(with a few notes added by Raven)July 2000http://blacksun.box.sk----------------------------------Warning:DO NOT use this to damage cisco systems, or gain unauthorized access to systems.This tutorial is just something touse for educational purposes. Only use this information in a legal way (thehacker wargames for instance), and donot damage or destroy anything. This is a step-by-step guide on how a series ofproven cisco exploits can be used togain access. If you get caught breaking into a cisco router, or screw the systemup, you can interrupt hundreds ofinternet clients, and cost thousands of dollars, so only use this when you areallowed!! Using this the wrong waywill get you into a lot of trouble.Note: some of this tutorial was written on a Unix system, and the text was notconverted to be DOS /Windows-compatible, so you'll have to view this text from either your Internetbrowser, or from an advanced editorsuch as Microsoft Word.----------------------------------Table of Contents:----------------------------------Before you start:- What is an IP address?- What is an ISP?- What is a TCP/IP packet?- How to spoof your IP- How to use Telnet- How to use HyperTerminal- How to use Ping- How to use TraceRoute- How to use a proxy server-------------------------------------

- Section 1: why hack a cisco router?- Section 2: how to find a cisco router- Section 3: how to break into a cisco- Section 4: how to break the password- Section 5: how to use a cisco router-----------------------------------Stuff you'll need to know BEFORE you start:-----------------------------------What is an IP address?IP stands for Internet Protocol, IP addresses are used by other computers toidentify computers that connect tothem. This is how you can be banned from IRC, and how they can find your ISP. IPaddresses are easily obtained, theycan be retrieved through the following methods:-you go to a website, your IP is logged-on IRC, anyone can get your IP-on ICQ, people can get your IP, even if you have the option set "do not showip"they can still get it-if you are connected to someone, they can type "systat", and see who isconnected to them-if someone sends you an email with IP-logging java, they can also get your IPaddressThere are many more ways of obtaining IP addresses, including using back-doorprograms such as Sub7 or NetBus.------------------------------------What is an ISP?ISP stands for Internet Service Provider, they are the ones that give you theinternet. You connect to one everytimeyou dial-up and make a connection. People can find your ISP simply by running atraceroute on you (traceroute islater explained). It will look something like this:tracert 222.222.22.22Tracing route to [221.223.24.54]over a maximum of 30 hops.1 147ms 122ms 132ms your.isp [222.222.22.21]2 122ms 143ms 123ms isp.firewall [222.222.22.20]

3 156ms 142MS 122ms aol.com [207.22.44.33]4 * * * Request timed out5 101ms 102ms 133ms cisco.router [194.33.44.33]6 233ms 143ms 102ms something.ip [111.11.11.11]7 222ms 123ms 213ms netcom.com [122.11.21.21]8 152ms 211ms 212ms blahblah.tts.net [121.21.21.33]9 122ms 223ms 243ms altavista.34.com [121.22.32.43] <<< target's isp10 101ms 122ms 132ms 221.223.24.54.altavista.34.com [221.223.24.54]Trace complete.-----------------------------------What is a TCP/IP packet?TCP/IP stands for Transmission Control Protocol and Internet Protocol, a TCP/IPpacket is a block of data which iscompressed, then a header is put on it and it is sent to another computer. Thisis how ALL internet transfers occur,by sending packets. The header in a packet contains the IP address of the onewho originally sent the packet. Youcan re-write a packet and make it seem like it came from anyone!! You can usethis to gain access to lots of systemsand you will not get caught. You will need to be running Linux or have a programwhich will let you do this. Thistutorial does not tell you to use this on a Cisco router, but it does come inhandy when hacking any system. Ifsomething goes wrong when you try to hack a system, you can always try this...------------------------------------How to spoof your IP:Find a program like Genius 2 or DC IS, which will let you run IdentD. This willlet you change part of yourcomputer's identity at will! Use this when you get banned from some IRC chatroom.... you can get right back in! Youcan also use it when you are accessing another system, so it logs the wrongid...------------------------------------How to use telnet:You can open telnet simply by going to your Start Menu, then to Run, and typingin "telnet".Once you have opened telnet, you may want to change some features. Click onTerminal>Preferences. Here you canchange the buffer size, font, and other things. You can also turn on/off "localecho", if you turn local echo on,your computer will show you everything you type, and the other computer you areconnected to will show you aswell.So you may get something like this;You type "hello", and you gethhelelollo