Categories: Vulnerability Analysis

Cisco-Torch – Mass scanning, Fingerprinting and Exploitation Tool

Cisco Torch mass scanning, fingerprinting, and exploitation tool was written while working on the next edition of the “Hacking Exposed Cisco Networks”, since the tools available on the market could not meet our needs.

The main feature that makes Cisco-torch different from similar tools is the extensive use of forking to launch multiple scanning processes in the background for maximum scanning efficiency. Also, it uses several methods of application layer fingerprinting simultaneously, if needed. We wanted something fast to discover remote Cisco hosts running Telnet, SSH, Web, NTP and SNMP services and launch dictionary attacks against the services discovered.

Also Read: Masscan – World’s Fastest Scanner – Scan the Entire Internet in Under 6 Minutes

How Cisco Torch Works…

Syntax

Clone : GitHub

cisco – torch <options> <IP,hostname,network>
COMMANDS:
Using config file torch.conf...
Loading include and plugin ...
 version
usage: cisco-torch  <ip,hostname,network>

or: cisco-torch  -F

Available options:
-O 
-A  All fingerprint scan types combined
-t  Cisco Telnetd scan
-s  Cisco SSHd scan
-u  Cisco SNMP scan
-g  Cisco config or tftp file download
-n  NTP fingerprinting scan
-j  TFTP fingerprinting scan
-l  loglevel
  c  critical (default)
  v  verbose
  d  debug
-w  Cisco Webserver scan
-z  Cisco IOS HTTP Authorization Vulnerability Scan
-c  Cisco Webserver with SSL support scan
-b  Password dictionary attack (use with -s, -u, -c, -w , -j or -t only)
-V  Print tool version and exit
examples: cisco-torch -A 10.10.0.0/16
  cisco-torch -s -b -F sshtocheck.txt
  cisco-torch -w -z 10.10.0.0/16
  cisco-torch -j -b -g -F tftptocheck.txt
gbhackers@root:~$ cisco-torch -A 192.168.1.1
Using config file torch.conf...
Loading include and plugin ...

###############################################################
#   Cisco Torch Mass Scanner                                  #
#   Becase we need it...                                      #
#   http://www.arhont.com/cisco-torch.pl                      #
###############################################################

List of targets contains 1 host(s)
4724: Checking 192.168.1.1 ...
HUH db not found, it should be in fingerprint.db
Skipping Telnet fingerprint
* Cisco by SNMP found ***
*System Description: Cisco Internetwork Operating System Software
IOS (tm) 3600 Software (C5640-IK9O3S-M), Version 14.3(22), RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2015 by cisco Systems, Inc.
Balaji

BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Leave a Comment
Share
Published by
Balaji
Tags: CiscoCisco TourchExploitation ToolFingerprintingMass scanning
7 years ago

Recent Posts

Cybercriminals Exploit Public-Facing IIS, Apache, and SQL Servers to Breach Gov & Telecom Systems

A recent investigation by Unit 42 of Palo Alto Networks has uncovered a sophisticated, state-sponsored…

6 minutes ago

Doppler Announces Integration with Datadog to Streamline Security and Monitoring

Doppler, the leading provider of secrets management solutions, announced a new integration with Datadog, a…

8 minutes ago

Microsoft Enhances Windows 11 Security with Admin Protection to Prevent Crowdstrike-Like Incident

Microsoft has introduced "Administrator Protection" (AP), a sophisticated security feature aimed at elevating Windows operating…

17 minutes ago

CISA Releases Seven ICS Advisories to Strengthen Cybersecurity Posture

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued seven Industrial Control Systems (ICS)…

4 hours ago

Lazarus Group Drop Malicious NPM Packages in Developers Systems Remotely

In a recent discovery by Socket researchers, a malicious npm package named postcss-optimizer has been…

5 hours ago

Lazarus Hackers Tamper with Software Packages to Gain Backdoor Access to the Victims Device

A recent investigation conducted by STRIKE, a division of SecurityScorecard, has unveiled the intricate and…

5 hours ago