Pentester's Promiscuous Notebook

Ctrlk

Twitter GitHub Blog

README
⚒️Pentest
⚔️Red Team
🐞Exploit Dev
- BOF
- RE
- WinDbg
⚙️Admin

Powered by GitBook

On this page

⚒️Pentest
Infrastructure
Networks

NAC Bypass

Network Access Control & Port Security (MAB, IEEE 802.1X, etc.)

https://luemmelsec.github.io/I-got-99-problems-but-my-NAC-aint-one/
https://www.thehacker.recipes/physical/networking/network-access-control
https://habr.com/ru/company/jetinfosystems/blog/564238/

Tools

FENRIR

https://github.com/Orange-Cyberdefense/fenrir-ocd
[PDF] 802.1x NAC & BYPASS TECHNIQUES (Hack in Paris 2017, Valérian LEGRAND)

NACKered & nac_bypass

https://github.com/p292/NACKered
https://github.com/scipag/nac_bypass
https://github.com/snovvcrash/nac_bypass

Set up the bridge (eth0 is connected to the switch, eth1 is connected to the authenticated client):

Check iptables rules:

Reset all the changes (bridge interface and iptables rules):

Last updated 3 years ago

Tools
FENRIR
NACKered & nac_bypass

$ sudo ./nac_bypass_setup.sh -1 eth0 -2 eth1 [-S] [-R]

$ sudo iptables -t nat -L

$ sudo ./nac_bypass_setup.sh -r