Just curious if you got all working Pls update your post if you have time.

True, the info is a bit scattered around. Some background in networking and protocols is highly recommended.

Here some reading:
http://en.wikipedia.org/wiki/VLAN_hopping
Cisco info: http://www.cisco.com/en/US/products/hw/switches/ps708/products_white_paper09186a008013159f.shtml#wp39054

And tools:
http://www.perihel.at/sec/mz/index.html
http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/topic,535.0/

Is this link any help to you?
http://articles.techrepublic.com.com/5100-10878_11-5577508.html

Keep in mind: The HTTP server was introduced in IOS release 11.0 to extend router management to the worldwide Web.

The HTTP server is not enabled by default except on unconfigured Cisco model 1003, 1004, and 1005 routers.

So I would advise to check out what IOS version you run

You could try some of the following attacks:
- Arp spoofing
- Vlan hopping
- Double tag vlan hopping
- Mac overflow attack
- Spanning Tree attack

Look at the Allied Telesys website for attack info.
From the main page choose, "Solutions", and then "Lan Security". In the drop down menu you will find a summary of above listed attacks. This is something I still want to look at myself as well. Dunno yet what tools to use and I have no time at the moment. Too bad haha.

Dunno what router model you have. Many info can be found searching the Cisco site.
http://www.cisco.com/en/US/products/sw/secursw/ps5318/prod_installation_guide09186a00803e4727.html

This might help:

Step 1 Enable the HTTP and HTTPS servers on your router by entering the following commands in global configuration mode:

Router# configure terminal

Enter configuration commands, one per line. End with CNTL/Z.

Router(config)# ip http server

Router(config)# ip http secure-server

Router(config)# ip http authentication local

Router(config)# ip http timeout-policy idle 600 life 86400 requests 10000

If the router supports HTTPS, the HTTPS server will be enabled. If not, the HTTP server will be enabled. HTTPS is supported in all images that support the Crypto/IPSec feature set, starting from Cisco IOS release 12.25(T).

Let me know if it works. Otherwise try to find some Cisco books.

Aha it seems to resamble the practise test pretty well. I might give it a try after I completed CHFI. Thanks for the info

How does this exam work?? Is it like the free practise exam and you make it online from your own home?
Does it also include the practical part, examining evidence and writing a report?

I found the information on the site a bit confusing. Scored 80% on the test, pretty basic stuff.

Hi there, I did wonder if you took the test already. I am currently reading the Syngress CHFI study guide.

I made a summary myself so it is easier to remember all stuff. After reading the book I will play with some of the tools that are new to me. Overall it seems a bit better than CEH, less tools and a bit more theory.

Not sure yet when I plan the exam, maybe end of March. Anybody tips for test exams? Did not really find any. I would like to get at least some idea of the format. 50 questions ain't a lot haha.