Search:

taxis

Hacking Cisco NAC - NACATTACK

TranceVideos.info - Your daily hot source of trance videos
TranceVideos.info - Your daily hot source of trance videos TranceVideos.info - Your daily hot source of trance videos
TranceVideos.info - Your daily hot source of trance videos

At Black Hat Europe 2007 Dror-John Roecher and Michael Thumann showed how they were able to hack the Cisco NAC solution by exploiting a fundamental design flaw. In this video they illustrate how they worked towards this discovery and give us some exploit details. It is not their intention to simply release a tool, they want the audience to understand how Cisco NAC works and why it is not as secure as Cisco wants us to believe.For more security-related material visit http://www.net-security.org

Channel: Howto & Style
Uploaded: January 1, 1970 at 12:59 am
Author: helpnetsecurity

Length: 09:43
Rating: 4.38
Views: 32943

Tags: blackhat  cisco  exploit  hacking  NAC  vulnerability  

Video Url:


Embed Code:

Video Comments

phillyfunnyguy (January 1, 1970 at 12:59 am)
Cisco support has gone down the tubes. I remember calling sales and getting someone who actually could help. Now They are refusing to support Vista with my Pix firewall VPN, I need remote logon for my domain. (SBL) They did everything (including blaming Micrsoft) not to fix my problem. I would expect more out of Cisco then to make a client that only Half works for vista. No plans to make it right, very lame....
clotfy (January 1, 1970 at 12:59 am)
Cisco mainly positions its NAC appliance solution which is widely deployed and is a very reliable solution and not the NAC framework mentioned. If the hacking was truly done, how come they did not demo it? and how come they did not talk about other vendors?Seeing is believing: anybody can talk and claim that they hacked any system and if there is no concrete proof and clear explanation of how testing was done and proper analysis and explanation of results, this information is simply worthless
tsudohn1mh (January 1, 1970 at 12:59 am)
Thanks for posting this video. I got to meet these guys at BH America and I have to say their work is amazing. The research and reverse engineering work alone seemed overwhelming and the hack was brilliant. Thanks for the vid.
splintcer (January 1, 1970 at 12:59 am)
An in all honesty, most (if not all) NAC technologies out there suffer from a similar type of flaw. As rightly said at the begining, you are asking an end-device for posture information, which quite frankly can be spoofed - in some cases easily, in other cases not so easily.
Madowstone (January 1, 1970 at 12:59 am)
if this would be the only flaw on the cisco devices I would be the gladest man in the world.
masterdanoz (January 1, 1970 at 12:59 am)
Yer solid effort indeed. Smartasses :)
Webmast84 (January 1, 1970 at 12:59 am)
Great video guys!
eneasquintero (January 1, 1970 at 12:59 am)
I never saw anything but two guys talk, demo anyone?
Dooobs (January 1, 1970 at 12:59 am)
Very intresting, I do a little bit of reverse engineering myself and it is a lenghty process.So grats to these guys.
ha5h (January 1, 1970 at 12:59 am)
DUDE you rock....i need your help :)