Page 1 of 2 12 LastLast
Results 1 to 10 of 14

Thread: Router passwords

  1. #1
    Junior Member
    Join Date
    Oct 2007
    Posts
    68

    Default Router passwords

    I was thinking to myself, if someone hacked my WEP key and i had mac address filtering enabled, they wouldnt go online would they? I was just thinking say if i wanted to access the setup page of my router which is 192.168.1.1 and it is not the default password admin, is there anyway for the other hacker to still be able to break into my network and change settings without getting any physical access to the AP?

  2. #2
    Junior Member
    Join Date
    Sep 2007
    Posts
    28

    Default

    Yes. Especially if you have a wireless client connected.

    All they would need is the MAC of the client thats connected...
    use macchanger to clone the clients MAC....
    Deauth the client and take its place.

    You can then fake auth with the AP, hack the key, and connect to the AP...

    Then all the attacker would have to do is get your routers password and viola, they can change whatever they want... including turning off your mac filtering.

    I dont know how hard it is to get a routers password because i havnt done much research on if its possible but like everything else... i am sure it is possible.

  3. #3
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default

    Quote Originally Posted by Glasskannon View Post
    Yes. Especially if you have a wireless client connected.

    All they would need is the MAC of the client thats connected...
    use macchanger to clone the clients MAC....
    Deauth the client and take its place.

    You can then fake auth with the AP, hack the key, and connect to the AP...
    absolutely! this is not all that hard either there are tutorials showing how it is done here on the forums.

    I dont know how hard it is to get a routers password because i havnt done much research on if its possible but like everything else... i am sure it is possible.
    One could use hydra to bruteforce the password. Depending on the complexity of the password it may take seconds to months or even longer.
    http://www.lastbit.com/pswcalc.asp

    The above link will give a calculator that will show the relative time it takes to crack a password.
    http://www.phenoelit-us.org/dpl/dpl.html

    This one gives a list of default router passwords.
    Both of these links should show you the basic info on why it is important to setup a good password.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

  4. #4
    Junior Member
    Join Date
    Sep 2007
    Posts
    28

    Default

    nice links! definatly going in my bookmarks!

    thanks!

  5. #5
    Developer
    Join Date
    Mar 2007
    Posts
    6,124

    Default

    With a weak password it can be easy


    http://blip.tv/scripts/flash/showpla...showplayer.swf

  6. #6

    Default

    Most weak passwords are easily bruteforced or dictionary attacked with Hydra or AccessDiver or the like. Best to have a long and secure password, with a different user name than the default. Just log into your router via SSH or Telnet, and providing its a *nix based system, just edit the /etc/passwd and change the new users ID to 0 to give it root priveleges. I don't always reccomend that, but it works.

    -Stephen

  7. #7
    Moderator KMDave's Avatar
    Join Date
    Jan 2010
    Posts
    2,281

    Default

    Some routers have the option to disallow access to the admin interface via wireless connections. I think that might be the safest way to prevent someone from accessing the admin interface without physical access to the AP.
    Tiocfaidh ár lá

  8. #8
    Junior Member
    Join Date
    Jan 2008
    Posts
    30

    Default

    Lets face it who uses WEP these days and MAC filtering is over rated
    Anyway ,

    1. boot the BackTrack cd and login as root
    2. hydra -l "" -P word.txt -v -e ns 192.168.1.1 http-get /
    3. hydra -l "admin" -P wpaList.txt -v -e ns 192.168.1.1 http-get /password
    -l is for a username which is null in this case
    -P is a wordlist of passwords to try
    -v is for verbose
    -e try no password and password
    the ip address of the device



    Tested and working on m Cisco 857 Wireless modem/Router, when I forgot the password. However if your password was somethang like D1FfiCU!T_P@s5W07D_2_Cr@CK_!5nt_It Then you'r a bit out of luck
    It's best to try, and google, then try, and google! and google more!

  9. #9
    Junior Member
    Join Date
    Sep 2007
    Posts
    28

    Default

    Quote Originally Posted by pureh@te View Post
    With a weak password it can be easy


    hxxp :// blip .tv/scripts/flash/showplayer .swf?enablejs= true&feedurl=hxxp:// purehate138 .blip. tv/rss&file=hxxp ://blip. tv/rss/flash/527781&showplayerpath=hxxp://blip. tv/scripts/ flash/showplayer.swf
    Nice video! Wow i am excited to go try this now! Hydra is a tool i have never used before. Cant wait to get off work now... lol

  10. #10
    Junior Member
    Join Date
    Oct 2007
    Posts
    68

    Default

    say it was something random like gwn7ngtwnt how long would that take a few minutes like the vid?

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •