EvilZone
Hacking and Security => Hacking and Security => Topic started by: hi2saif on May 11, 2013, 03:59:56 PM
-
Hi Guzzzz !!!
I just want to ask you that is there a way to bypass the routers authentication mechanism..
-
Can you please be a bit more specific? What do you mean with router authentication mechanism? You want to login to the administration web-interface, ssh to a router, 802.1X, wireless? What type of router, software and so on :)
So far I just can say: yes... I am sure there is a way to bypass the router authentication mechanism. You just need to find it :) Most important thing is to have fun and don't give up to fast.
-
Here is the screenshot of the mechanism I was talking about......
I hope this will help u to answer my question
-
Yes there is.
You could try the default passwords as a lot of people never change the defaults.
http://www.routerpasswords.com/
If that doesn't work, then you could try to crack the logon and hope the user did not make a long complex password.
Lots of tools to help with that like Hydra: http://www.thc.org/thc-hydra/
-
This is called HTTP BASIC Authentication. I doubt it will work on most routers but another attack to bypass these sorts of prompts is to do HTTP Verb Tampering and changing your GET request to another type of request (not POST) which will sometimes bypass the authentication if it is only attempting to force authentication for HTTP GET and HTTP POST
-
What is it you are trying to do? Just forward some ports or something else?
-
herez a hydra example to try,
change the directories for your
admin/wordlist list plus the ip:
hydra 192.168.1.1 -L /media/f1lez/Listz/users -P /media/f1lez/Listz/10kcommonz.txt -t 2 -e ns -f http-get /index.asp
k0f33
-
Thread is old as SHIT.
/