Geschreven door studenten die geslaagd zijn Direct beschikbaar na je betaling Online lezen of als PDF Verkeerd document? Gratis ruilen 4,6 TrustPilot
logo-home
Presentatie

Succesfully Pass a Network Audit - Technical Report

Beoordeling
-
Verkocht
-
Pagina's
11
Geüpload op
19-03-2022
Geschreven in
2020/2021

When we talk about a network, basic devices that we have to talk about are routers, switches and firewalls, these three devices are the base of any network. Therefore, an audit to those devices is mandatory to verify correct configurations and precautions in order to avoid cyber-attacks. Successfully attack or compromise a network is relatively easy to do it, all we need is an attacker running a Pen testing Operating System like Kali Linux and access to the physical network. This tool can easy take advantage of a security breach and deploy a Denial of Services or Man-In-The-Middle attack. Most of these vulnerabilities con be mitigating with security measures applied in the switches and in the routers, for that reason, this report is focused basically on the switch and the router. Today's networks run protocols that are needed for communication, like ARP, DNS; others that make things easier for the management, like DHCP, CDP, Telnet; and others that help the network to have redundancies in case of a failure in a link, like STP and HSRP. All these protocols can be susceptible to attacks if do not take precautions while using them

Meer zien Lees minder
Instelling
Vak

Voorbeeld van de inhoud

Technical Report

1 Introduction
When we talk about a network, basic devices that we have to talk about are routers, switches and
firewalls, these three devices are the base of any network. Therefore, an audit to those devices is
mandatory to verify correct configurations and precautions in order to avoid cyber-attacks.

Successfully attack or compromise a network is relatively easy to do it, all we need is an attacker
running a Pen testing Operating System like Kali Linux and access to the physical network. This tool
can easy take advantage of a security breach and deploy a Denial of Services or Man-In-The-Middle
attack.

Most of these vulnerabilities con be mitigating with security measures applied in the switches and in
the routers, for that reason, this report is focused basically on the switch and the router.


2 Today’s networks
Today’s networks run protocols that are needed for communication, like ARP, DNS; others that make
things easier for the management, like DHCP, CDP, Telnet; and others that help the network to have
redundancies in case of a failure in a link, like STP and HSRP. All these protocols can be susceptible
to attacks if do not take precautions while using them.




Source: cisco.com




1

, Technical Report

Next, we are going to explain the basic functionality of all these protocols:

DHCP Dynamic host configuration protocol. Assign IPs automatically to new hosts that
want to join to the network.


ARP Address resolution protocol. Map an IP (logical) address with a MAC (physical)
address.


DNS Domain name system. It is a naming system that helps us to resolve hostnames to IP
addresses.


CDP Cisco discovery protocol. Cisco proprietary protocol that shares information of
connected cisco devices.

STP Spanning-tree protocol. Prevents loops from being formed when switches are
interconnected via multiple paths.


HSRP Hot standby router protocol. Cisco proprietary protocol for redundancy in the default
gateway.




With all these basic concepts we can jump to identify the vulnerabilities related to these protocols in
the next stage.

Note: It is assumed that the reader has already knowledge of these protocols, thus, further explanation
is not needed.


3 Vulnerabilities
According to my experience and my research, many networks are susceptible to the following
vulnerabilities.
3.1 Physical access

If someone has physical access to the devices can simply plug a console or network cable to change
the configuration or launch an attack.

Assuming that all devices are in VLAN 1 (same broadcast domain) and a DHCP server is running, an
attacker can basically just plug a UTP cable to a port and get all the information needed via DHCP to
perform scanning and subsequently start an attack.


2

Geschreven voor

Instelling
Studie
Vak

Documentinformatie

Geüpload op
19 maart 2022
Aantal pagina's
11
Geschreven in
2020/2021
Type
PRESENTATIE
Persoon
Onbekend

Onderwerpen

€10,80
Krijg toegang tot het volledige document:

Verkeerd document? Gratis ruilen Binnen 14 dagen na aankoop en voor het downloaden kun je een ander document kiezen. Je kunt het bedrag gewoon opnieuw besteden.
Geschreven door studenten die geslaagd zijn
Direct beschikbaar na je betaling
Online lezen of als PDF

Maak kennis met de verkoper
Seller avatar
Erickgoose

Maak kennis met de verkoper

Seller avatar
Erickgoose London Metropolitan University
Volgen Je moet ingelogd zijn om studenten of vakken te kunnen volgen
Verkocht
-
Lid sinds
4 jaar
Aantal volgers
1
Documenten
31
Laatst verkocht
-

0,0

0 beoordelingen

5
0
4
0
3
0
2
0
1
0

Recent door jou bekeken

Waarom studenten kiezen voor Stuvia

Gemaakt door medestudenten, geverifieerd door reviews

Kwaliteit die je kunt vertrouwen: geschreven door studenten die slaagden en beoordeeld door anderen die dit document gebruikten.

Niet tevreden? Kies een ander document

Geen zorgen! Je kunt voor hetzelfde geld direct een ander document kiezen dat beter past bij wat je zoekt.

Betaal zoals je wilt, start meteen met leren

Geen abonnement, geen verplichtingen. Betaal zoals je gewend bent via iDeal of creditcard en download je PDF-document meteen.

Student with book image

“Gekocht, gedownload en geslaagd. Zo makkelijk kan het dus zijn.”

Alisha Student

Bezig met je bronvermelding?

Maak nauwkeurige citaten in APA, MLA en Harvard met onze gratis bronnengenerator.

Bezig met je bronvermelding?

Veelgestelde vragen