Results 1 to 8 of 8

Thread: Hacking the ADSL modem or router

  1. #1
    Just burned his ISO
    Join Date
    Jan 2010
    Posts
    12

    Default Hacking the ADSL modem or router

    I have been wondering that after pwn-ing a DSL modem or router over a WAN how can it be exploited maliciously. Only thing that comes to my mind is to setup a static routing and do the MITM stuff.

    Does anyone else know any details or any other way to exploit a pwned modem.

    By the word "exploiting" i didn't mean it in the hacking sense but like in general english.

  2. #2
    Very good friend of the forum Gitsnik's Avatar
    Join Date
    Jan 2010
    Location
    The Crystal Wind
    Posts
    851

    Default

    If you have... ahem... "pwned" your router, then there is no need to exploit it as you have already gained access to it.

    I suggest you spend some time learning a bit more about networking if you want to look at other things you could do, include in your google terms like "evilgrade" and "mitm filters".
    Still not underestimating the power...

    There is no such thing as bad information - There is truth in the data, so you sift it all, even the crap stuff.

  3. #3
    Just burned his ISO
    Join Date
    Jan 2010
    Posts
    12

    Default

    Thanks for reply.

    I know about the MITM filter and how to create them using ettercap but what i wanted to know is that how on WAN can you do MITM attack. Can static routing be done leading the traffic to your own IP.

  4. #4
    Good friend of the forums
    Join Date
    Jun 2008
    Posts
    425

    Default

    I know about the MITM filter and how to create them using ettercap but what i wanted to know is that how on WAN can you do MITM attack. Can static routing be done leading the traffic to your own IP.
    Set the dns to your computer then use a record of * to make anything that uses dns to repley with your address for everthing then forward it.
    If its got a gateway option, use that.

  5. #5
    Just burned his ISO
    Join Date
    Jan 2010
    Posts
    12

    Default

    @compaq

    Thanks for your reply. Tell me if i have understood your correctly?

    I think what your are trying to say is that I use DNS spoofing to redirect traffic to my own websever on my PC and then internally use ettercap to relay the spoofed traffic from the actual website with my own payloads added to the victim again.

  6. #6
    Good friend of the forums
    Join Date
    Jun 2008
    Posts
    425

    Default

    yep, change the dns in there router to your computer, when they lookup a site it will go to your dns server, and you repley that ever web site has your computers ip address, when they try to go to your web server, you forward it to the real web server, based on what the just looked up in the dns.

  7. #7
    Just burned his ISO
    Join Date
    Jan 2010
    Posts
    12

    Default

    Set the dns to your computer then use a record of * to make anything that uses dns to repley with your address for everthing then forward it.
    If its got a gateway option, use that.
    Thanks for the reply.

    Can you please explain what do you mean by "the GATEWAY option"?

  8. #8
    Good friend of the forums
    Join Date
    Jun 2008
    Posts
    425

    Default

    Thanks for the reply.

    Can you please explain what do you mean by "the GATEWAY option"?
    it tells the computer or router that if it can't find the address on it local network(like if your network uses 192.168.1.1) then anything that isn't 1.1-1.255 will look for it from the gateway.
    To find the gateway anything thats connected to the router will be asked if they know were your address is, and the isp will direct it to you,

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •