Resources

Routers/Access Control List Information

• Recover Router Password
• The Cost of Security on Cisco Routers - A Network Computing Tutorial on how implementing access control lists can impact Cisco routers
• Demystifying Cisco Access Control Lists - Network Computing Workshop on using Cisco ACL's
• Increasing Security on IP Networks - Cisco's Guide to network security using their products

Attack, Hacking, and ExploitInformation

• AntiOnline - News and information on network security and hacking
• Bindview'sRAZOR - A team of researchers that produce news and information on network security and system vulnerabilities
• Cult of the Dead Cow - Home of information on Back Orifice
• Fyodor's Playhouse - Lot's ofinformation on known exploits
• Gibson Research - Steve Gibson's collection of security tools, testers, and exploit information
• interhack - Information on network security issues
• NT Bugtraq - NT Bugtraq is a mailing list for the discussion of security exploits and security bugs in Windows NT and itsrelated applications
• NTSecurity - Information on Windows NT security and exploits
• PacketDefense - Information on InfoSec, exploits, and more
• Ping Of Death Page - Information on a flaw in many TCP/IP
  implementations that can allow a remote user to crash a system with a simple ping
• PPTP Crack- Information on the crack of Microsoft's Point-to-Point Tunneling Protocol
• SATAN Guide - A short paper on using SATAN, includes links to additional resources
• Security Administer's Tool for Analyzing Networks(SATAN) - Information and download sources for SATAN
• SecurityAdministrator's Integrated Network Tool (SAINT) - Tool for performing security assessments
• SecurityFocus - Enormous collectionof security resources and forums and home of bugtraq mailing lists
• SecurityTracker - Their purpose in life is to report on computer security vulnerabilities
• TCP Loopback DoS Attack (land.c) andCisco Devices - From Cisco's Web Site

DNS Security

• DNSSecurity - SANS Institute paper on DNS security

Denial of Service (DoS)

• Consensus Roadmap for Defeating Distributed Denial of Service Attacks- SANS institute document that outlines key trends and other factors related to DoS attacks and their prevention
• Denialof Service Attacks- White paper on DoS attacks. By IBM Global Services
• Denialof Service Attacks - White paper on detecting and preventing DoS attacks.  By Concord Communications
• DoShelp.com - Provides a wealth of information and resources on Denial of Service attacks

Firewall Information & Software

• Auditing Your Firewall Setup - A guide to auditing your firewall implementation and rule base
• AuditMy PC - Web-based tool for auditing your firewall vulnerability
• Building a Firewall with LINUX
  - Informative article by Arthur Donkers
• Cisco SAFE: A security blueprint for enterprise networks
  -Cisco's best practice information on designing and implementing secure networks
• COAST Internet Firewalls Resources
  - Large collection of links to firewall information
• Firewall and Proxy Server HOWTO - Mark Grennan's basic guide to settingup a filtering and proxy firewall using LINUX
• Firewall Supertore - Best
  place to get firewall appliances and installation services (IMHO :)
• Freefire Project
  - Information and support for freeware firewall users and developers
• Internet Firewalls FAQ
  - Guide to firewall and network security basics.
• LinuxSecurity Administrator's Guide- Guide to Linux security and pointers to additional resources
• 
  Public Domain Firewall Software Listing
  - A fairly complete listing of PD firewall software

 

Glossaries

• The Information Security Glossary - A comprehensive glossary of information security terms and phrases
• National Information Systems Security (INFOSEC) Glossary - From the National Security Telecommunications and Information Systems Security Instruction (NSTISSI)
• RFC2828: Internet Security Glossary - From the Internet Society

Government Agencies and Security Organizations

• ComputerEmergency Response Team (CERT) - U.S.-funded entity to study Internet security vulnerabilities, handle computer security incidents, publish security alerts, research long-term changes in networked systems, and develop information and training to help network improve security 
• Computer Incident Advisory Capability (CIAC) - U.S. Department of Energy response center for computer security incidents and threats
• ComputerSecurity Institute (CSI) - Computer professional's organization that provides information on protecting network-based systems against attacks
• Forumof Incident Response and
  Security Teams (FIRST) - Promotes coordination among various incident response teams
• International Computer Security Association (ICSA) -Provides security news and information as well as system certification information
• National Infrastructure Protection Center (NIPC) - U.S. based agency that serves as a national critical infrastructure threat assessment, warning, vulnerability, and law enforcement investigation and response entity.
• Nationa lInstitute of Standards and Technology (NIST) - Computer Security Resource Clearinghouse
• System Administration, Networking, and Security (SANS)  Institute - cooperative research and education organization for sharing network security related information

 

Intrusion Detection

• Bro- A system for detection network intruders in real-time - a high-performance network intrusion detection system written by Vern Paxson of the Lawrence Berkeley National Laboratory's Network Research Group and of ACIRI
• FAQ: Network Intrusion Detection Systems - A detailed FAQ covering NIDS history, capabilities, and products
• Inferring Internet Denial-of-Service Activity - A white paper on using intrusion detection to detect DoS attacks
• Intrusion Detection FAQ - Everything you ever wanted to know about intrusion detection
• Snort:The Open Source Network Intrusion Detection System - Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks
• Talisker's Intrusion Detection Systems - This independent site lists every known commercial Intrusion Detection System

 

Mailing Lists

• Firewall Wizard Mailing List - A moderated list for the discussion of network firewall and security issues
• Network World - A great list for current issues facing security professionals.

 

Misc. Security Sites

• COAST Library - Several papers on various aspects of network security
• Computer Security Information - Links to general information about computer security including documents, faqs, and newsletters
• ComputerSecurity Institute -Association for training of computer security professionals
• Firewall.cx- Contains a wealth of security and networking resources including guides to firewall topologies and architectures, networking guides, and networking and security downloads
• FredCohen and Associates - Huge collection of security related information from security guru Fred Cohen
• FreeRADIUS.org - An open source implementation of Radius
• GFI- Offers Freeware scanning and monitoring software for Windows NT/2000
• Idea Hamster- Home site for the open source security testing methodology manual, which has the distinction of trying to be an open standard for Internet security testing
• InfoSysSec - The Security Portal For Information System and Security Professionals
• Infowar.com - Security related information site
  sponsored by several network security organizations
• ISO17799, ISO 27001 and BS7799 - Probably the most complete information security standard portal
• IWS- The Information Warfare Site- News, discussions and mailing lists focusing on information security, information operations and e-commerce
• OPSEC:Open Platform For Security - Check Point's partnership effort to create end-to-end Internet Security 
• Security Dogs - Information on VPN's, Firewalls, NAT, and QoS
• RobertGraham.Com- Various network security publications and FAQ's
• Security ISO 27000 & ISO 27001 - Provides information on the wider ISO security standards, the 27000 series
• Security Search Engine - Looking for info on network security, you'll find it here
• SecWiz- A web collection of documents helping to solve your network security problems in system-specific detail
• Security Policies - Information security policies to download and evaluate
• Things that go bump in the Net - Security White Paper, By IBM
• TNO-FEL's URLography on Security Information - Links to many security resources
• Trinux- Linux Security Toolkit- A Linux security package that can run on 2-3 floppies
• WindowsSecurity- Tons of news and information resources for Microsoft Windows security
• WWW Security FAQ - Frequently asked questions on web site security

Virus Information

• ComputerVirus Myths home page- Great source of info about viruses and hoaxes
• Alwil/Avast! Best antivirus products on the market -- free for home use and 30-day trials for business. Get out of the resource-hogging antivirus products.



Security News Resources


SecurityNewsPortal.com
The 100 Latest News from ALL sources
The 5 Latest News from EACH source
411 Spyware.com
About AntiVirus
About Most Popular Articles
Baseline
BBC News - Technology
BugTraq
Castle Cops
CBR Online
CERIAS Coast
CIO
CNET Downloads AntiVirus
CNET Security
CNET Security Blog
Computer Crime Research
Computer Security Blog
Computer World - Security
Computerworld Virus News
Dark Reading
Donnas Security Flash
Dozleng Security News
eEye Zero Day Tracker
eSecurity Planet - Security News
eSecurity Planet - Threats and Alerts
eWeek Security
F-Secure - Security Labs
Full Disclosure
GCN - GovCompNews - Security
Google Computer Security News
Hack In The Box
Hackcraft.com
Help Net Security World
Help News Security Advisories
IBM ISS X-Force Alerts
iDefense - Malicious Code
iDefense - Vuln Alerts
Infiltrated
InfoSec Writers - Newest Articles
InfoSecNews
InfoWorld
InternetNews.com - Security News
IT Canada Security
Kaspersky - Hacker News
Kaspersky - News
Kaspersky - SPAM News
Kaspersky - Virus News
Kaspersky - Web Blog
Latest Info Technology Whitepapers
Latest Internet Focused Whitepapers
Latest Networking Whitepapers
Latest Security Whitepapers
Latest Telecom and Wireless Whitepapers
LatestVirus.org
Linux Security
Liquid Matrix
Metasploit
Microsoft
Microsoft Monitor
Microsoft Security Response Blog
Microsoft Watch
Milworm
Moreover AntiVirus
Network Computing Security
Network Security Journal
Network Times
Network World
NIST
SANS
SC Magazine
Schneier on Security
Scotsman Security News
Search Security - Tech Target
SecProNews
Secunia
SecuriTeam
Security Bloggers
Security Fix - Washington Post
Security Focus News and Bugtraq
Security Protocols
Security Reason - Alerts
Security Reason - Exploits
Security Tracker
SecurityFocus News
SecurityPark UK
SecWatch Advisories
SecWatch Exploits
Silicon.com
Sophos - Virus Alerts
Sophos - Virus News
Spyware.com
Spyware.com Parasites
Symantec AntiVirus
The Register - IT Crime
The Register - Network Security
The Register - Security
The Register - SPAM
The Register - Spyware
The Register - Virus
Topix - Security
Trend Micro Antivirus
US CERT - Tech Alerts
US CERT - Weekly Bulletin Summary
US CERT Announcements
Websense SecLab Alerts
Windows Security Blogs
Yahoo Security News
ZD Net - Security News
Zone H






Connect the router via serial cable to a PC, then run Kermit or PTTY to use as a terminal.
1. Turn the router off then back on.
2. Press the Break key or key sequence to put the router into ROM Monitor mode. The break key varies by computer or terminal software. The sequence might be CTRL-D, CTRL-Break or another combination.
3. At the > prompt, type 0 to record the current value of the configuration register normally 0x2102, or 0x102.
>o
Configuration register = 0x2102 at last boot
Bit# Configuration register option settings:
15 Diagnostic mode disabled.
4. Type o/r 0x2142 to tell the router to boot from flash without loading the configuration in NVRAM at the next reload.
5. Type i to have the router reboot and ignore the configuration in NVRAM.
6. Type no or press Ctrl-C to skip the initial setup Dialog.
7. Type enable at the Router> prompt to go to privileged mode.
8. Copy the startup configuration to the running configuration by using the configure memory or copy startup-config running-config commands. Do not type configure terminal. If you use the configure terminal command, you overwrite the configuration stored in NVRAM.
9. View the configuration by typing write terminal or show running-config. View the configured line, vty and enable passwords. Any encrypted passwords need to be changed.
10. Enter the configuration mode by typing configure terminal.
11. Change the line of enable passwords as necessary.
12. All interfaces are in a shutdown state. Issue the no shutdown command on every interface that is to be used.
13. Type config-register 0x2102 to return the router to normal operation at the next reloads.
14. Exit configuration mode by pressing Ctrl-Z
15. Save your changes by typing write memory or copy running-config startup-config.
16. Reload the router and verify the passwords.