I'm conducting an external penetration test. I have several Cisco VPNs and a Citrix Netscaler Gateway VPN. I'm trying to configure Portsigger's Burp to connect to my testing platform (Digital Ocean Ubuntu box with Squid) and then to the client's Cisco ASA VPNs and Citrix Netscaler Gateway (CNG) so I can perform password spraying attacks. I am able to successfully connect to the Cisco devices via their login interface page but I'm unable to successfully connect to the CNG.
Burp and Unbuntu/Squid should be setup correctly as I am able to access the Cisco ASA VPN login interface other websites as expected, i.e. bassmaster.com or weather.com for example.
Looking at the logs in the squid proxy I observe what I believe is HTTP traffic to/from the CNG to the squid proxy but the CNG Login Interface never appears in the browser. I'm not 100% clear on what I'm seeing in the squid logfiles. I don't see http traffic to the CNG in Burp.
Is the CNG doing something to prevent use of a squid proxy? I would think I should at least be able to hit the CNG login interface. I'm clueless at this point. Anyone have any decent ideas? Not sure what logs or screenshots at this point someone would need to assist. Just let me know and I can provide them... Thanks in advance to anyone that has the time to engage. It really, really sucks working on your day off and not making any progress...
