#305: VLANs: Am I a joke to you? | Python VLAN hacking.
David Bombal - En podkast av David Bombal
Kategorier:
Dynamic Trunking Protocol (DTP) makes it easy to sniff traffic from other VLANs. Disable DTP on user facing ports by making those ports access ports. You need to learn to code! Learn Python. Learn Networking. You are going to be very powerful and very scary if you combine knowledge of networking with Python scripting! But, do good. Learn to code. Learn Linux. Learn Networking. Menu: You need to learn Python! 0:00 Network Topology: 0:57 Python Script overview: 1:28 Cisco switch DTP setup: 2:00 We can see other VLAN traffic: 3:00 Script demo: 3:45 Results of attack: 4:24 Script explanation: 5:09 Create a loop: 5:49 Wireshark capturing of a different VLAN: 6:50 Kali Linux can see all VLAN traffic: 9:07 ====== Scripts: ====== All scapy scripts here: https://davidbombal.wiki/githubscapy Scapy DTP attack: https://davidbombal.wiki/scapydtp Playlist: https://davidbombal.wiki/scapy ============== Scapy Resources: ============== Website: https://scapy.net/ Documentation: https://scapy.readthedocs.io/en/latest/ ================ Cisco Best practice: ================ Access ports (for vlan 2 in this case): Switch(config-if)# switchport mode access Switch(config-if)# switchport access vlan 2 Trunk ports: Switch(config-if)# switchport mode trunk Switch(config-if)# switchport trunk encapsulation dot1q Switch(config-if)# switchport nonegotiate ================ Connect with me: ================ Discord: https://discord.com/invite/usKSyzb Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube: https://www.youtube.com/davidbombal python scapy ccna ccnp python scapy dtp dynamic trunking protocol dynamic trunk protocol ccna 200-301 python scripts kali linux linux kali cisco kali linux 2021.2 kali linux 2021 vmware vmware kali kali linux install oscp ceh security+ pentest+ Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!