How to crack Cisco 7 “encrypted” passwords with a simple tool.

Posted: March 10, 2016. At: 1:51 PM. This was 2 years ago. Post ID: 8776

This website will crack any “encrypted” Cisco 7 password instantly. http://www.ibeast.com/content/tools/ciscopassword/. This shows that this type of “encryption” is useless when an attacker has access to view the configuration of the switch. Better to use more stringent encryption like 4096 bit. But this is the way that Cisco work. If you get access to a Cisco switch and can use this command to show the running config:

lannister#show running-config

Then the passwords are visible…

Current configuration : 2315 bytes
!
version 12.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname lannister
!
boot-start-marker
boot-end-marker
!
enable password 7 071F205F5D1E161713
!
username cisco password 7 065009271D1C59400116
aaa new-model
!
!
!
!
!
aaa session-id common
system mtu routing 1500
ip subnet-zero
!
ip domain-name arya
!
!
!
!
!
!
!
 --More--

So, make your switches more secure. Prohibit physical access with locked cabinets, do not use the default VLAN for the management interface(s) and educate the Cisco network administrators on secure practices and how to properly configure the switches to function correctly on the network, but still be secure from unwanted access. Use SSH for remote access instead of Telnet.

This is a better way to set an enable password.

lannister(config)#enable secret password1
Current configuration : 2325 bytes
!
version 12.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname lannister
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$OO2w$t./V1m3JAubQArABZUqG8/
!
username cisco password 7 065009271D1C59400116
aaa new-model
!
!
!
!
!
aaa session-id common
system mtu routing 1500
ip subnet-zero
!
ip domain-name arya
!
!
!
!
!
!
!
 --More--

This can still be cracked with this tool, but if you set a strong password, it should be more secure than a useless and insecure MD5 hash. Setting a longer password, i.e a long sentence, makes this tool take a very long time indeed. If you used upper case and numbers, then the password would take an exponentially greater amount of time to crack.

No comments have been made. Use this form to start the conversation :)

Leave a Reply