Cracking Cisco Passwords Page 1 of 2

Home | Store | Articles | Downloads | E-Mail | About | Testimonials | Contact | Labs Tuesday, June 23, 2009

Search Questions? Call Our Office Today 941-306-3031

Audience: Self Learners - Experts

Last Updated: 7/16/04 3:47 PM
Original Creation Date: 7/16/04 3:47 PM
**All times are EST**

Dealers Dealer
Looking for Dealers? Get Top Results for Dealer? Find More
www.toseeka.com Results for Dealer
www.topwebsearching.com

Cracking Cisco Passwords

By Erik Rodriguez

This article provides information on decrypting passwords stored in a Cisco router.

Hackers often attack routers because they are not monitored as closely as servers and can provided an
enormous source of information. Cisco routers will store all passwords in the running configuration file. In
order to get this password you must view the output from the routers running configuration using the
command below:

antares#sh run
Building configuration...

Current configuration:
!
version 12.0
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname antares
!
aaa new-model
enable secret 5 $1$1Pdr$rqEsfKmsdfeTtuRGK.5Oa0
enable password 7 071D7012641B480012
!
Mailing List username weaponx password 7 03085E1F0B0A2842
ip subnet-zero
E-mail: no ip routing
no ip domain-lookup
file prompt quiet
Subscribe! !
!
By Joining the mailing list !
interface Ethernet0
you will be notified of site
ip address 192.168.0.15 255.255.255.0
updates.
no ip directed-broadcast
_______________ ip nat outside
no ip route-cache
no ip mroute-cache
Show Your Support For
no mop enabled
This Site By Donating:
!
interface Ethernet1
ip address 192.168.0.16 255.255.255.0
no ip directed-broadcast
_______________ ip nat inside
no ip route-cache
Server Time:
no ip mroute-cache
12:51 PM !
This Server Runs: interface Serial0
Red Hat Enterprise Linux 4 no ip address
Kernel 2.6.9-42.0.2.EL #1 no ip directed-broadcast
Apache 1.3.36 (Unix) no ip route-cache
PHP 4.4.2 no ip mroute-cache
Perl 5.8.5 shutdown
cPanel 10.8.2-STABLE 120 !
interface Serial1
no ip address
no ip directed-broadcast
no ip route-cache
no ip mroute-cache
_______________ shutdown
!
ip classless
ip route profile
!

http://www.skullbox.net/ciscohash.php 6/23/2009
Cracking Cisco Passwords Page 2 of 2

banner motd ^C
This is a private Device!

Unathorized access is prohibited!

^C
!
line con 0
password 7 1205435B5D567B2E22
transport input none
line aux 0
line vty 0 4
password 7 1205435B5D567B2E22
!
end

Using a program called Cain and Abel, you can copy and paste the encrypted password shown in red, right
into the cain decryption window. You can download Cain and Abel by clicking here. See the images below:

Using the second encryption value from the above configuration output (03085E1F0B0A2842), you can see
the password is "letmein"

Copyright © 2002-2009 Skullbox.Net All Rights Reserved.

A division of Orlando Tech Works, LLC
By using this site you agree to its Terms and Conditions.
Contact the Webmaster.

http://www.skullbox.net/ciscohash.php 6/23/2009