CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!
CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!
Path: blob/master/documentation/modules/auxiliary/scanner/http/cisco_firepower_login.md
Views: 1904
This module allows you to authenticate to Cisco Firepower Management console. The found credentials could also be used in Cisco Firepower's SSH service, which would potentially give you remote code execution.
Vulnerable Application
The vulnerable software can be downloaded from Cisco as long as you are a member. Specifically, this module was testing on version 6.0.1 during development.
For Cisco members, get the virtual appliance 6.0.1-2013 here:
Verification Steps
Make sure Cisco Firepower Management console's HTTPS service is running
Start
msfconsole
use auxiliary/scanner/http/cisco_firepower_login.rb
set RHOSTS [IP]
Set credentials
run
You should see that the module is attempting to log in.