NIPPER – SECURITY AUDIT TOOL


DESCRIPTION

Nipper-ng is the next generation of nippper, and will always remain free and open source. Earlier it is known as “CiscoParser”. This software will be used to make observations about the security configurations of many different device types such as routers, firewalls, and switches of a network infrastructure.

DEVICES SUPPORT

  1. Cisco switches (IOS)
  2. Cisco routers (IOS)
  3. Cisco firewalls (PIX, ASA) and many more.
  4. Checkpoint
  5. Juniper
PLATFORM SUPPORT
  1. Windows
  2. Linux
  3. Unix
  4. OS X
HOW TO USE NIPPER ?
  • To use nipper, we need to get a router configuration file.
  • Follow the steps to use nipper.
Step 1: Access the router/switch/firewall
we can easily get after access the router via telnet or SSH.
Step 2: Run the command
Once you get the access of the router, just run the command show running-config command in the terminal.
Step 3: Copy the configuration on notepad
Step 4: Use nipper to extract the report.
Command:  nipper -ios-router -input=config.txt -output=report.html

FOR EXAMPLE 

Create a scenario which consists of one router and one virtual machine ( You can take kali linux)
Here i am using 7200 series router IOS image.


If nipper is not install in your linux machine, install it with this command.

RUN NIPPER

  • Command: nipper
  • See the below image for more details:

NEED HELP 

Command: nipper –help
See the below image for more details:

VERSION COMMAND 
 
Command: nipper –version

Run the command 
Command: nipper –ios-router –input=config.txt –output=report.html


OPEN THE REPORT

  • Open the html file on browser, once open it, you will find “Contents” list of the audit.
  • See the below image for more details:
GENERAL INFORMATION
AT THE END 
  • This way, we can audit our network device i.e router and make our router more secure.
  • If you are a security auditor or network engineer, this tool is must for you to use.
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s