⬆️ ⬇️

And now the promised task is more difficult

I hope you are not tired of kneading the brain :)



The promised task. It is also published on www.worldview.com. I hope people will connect there too, it will be possible to pry :))



Problem, naturally, speculative. It even has not one, but at least 2 completely different solutions. Do not scold me for being detached from life: this is training :) So:

_________________________________________________________________________________________



_________________________________________________________________________________________

Suppose you are an unjustly offended employee of the IT department who stayed at night supposedly to work, but in fact you are carrying out terrible plans of retribution!

')

Your task is to get access to the privileged mode of the cisco router, which stands as a gateway to the Internet.



You made your way to a small server room, saw the router. That's as if everything, but alas, you once caught a piece of the config of this router. Here he is:



no service password-recovery

!

access-list 1 permit host 4.4.4.4

!

line vty 0 4

no login

privilege 15

access-class 1 in
(this is new, but mandatory)




You do not know the password for enable mode.

You couldn’t bring anything to the server room, but right there on the shelf you saw an unused ASA 5510 in a box with an AIP-SSM module. There was a computer with a console in the server hub, but alas, there was no network card in it.



ASA turned out to be new, not yet printed, with a pair of ezernet wiring, as expected, with an empty config, so you can use it as you wish.



(Hint: You can give commands to the router from an unprivileged mode.

Let it be interactive: you ask what command you need, I write it to you.)





Can you achieve your goals?



Dare!



ATTENTION: sprinkle ashes! I forgot one line in the config !!! See line access-class

Source: https://habr.com/ru/post/59847/



All Articles