pritchard9 Posted March 30, 2009 Share Posted March 30, 2009 Starting to look like the guy that set up your router kinda screwed you over mate.. Id go with tapping into the line, and seeing where wireshark gets you. Did you actually pay this guy to set it up for you? O.o Quote Link to comment Share on other sites More sharing options...
beakmyn Posted March 30, 2009 Share Posted March 30, 2009 Why not stick an Interceptor on the line? Sound like the perfect fit. Quote Link to comment Share on other sites More sharing options...
DingleBerries Posted March 30, 2009 Share Posted March 30, 2009 Sniffing the traffic without someone logging in will not give you the ROUTER ADMIN password. Google gods we need ye mighty powa! inpage:"hydra bruteforce how to" amen Quote Link to comment Share on other sites More sharing options...
vector Posted March 30, 2009 Share Posted March 30, 2009 Sniffing the traffic without someone logging in will not give you the ROUTER ADMIN password. Google gods we need ye mighty powa! inpage:"hydra bruteforce how to" amen haha jesus finally i get to the end of the thread and someone finally gets it. i was gonna shoot myself there for a second reading through fail post after fail post. proskater you need to get a little more familiar with your networking setup because when you start asking questions and calling things cat5 or coaxial cable antennas it confuses people and they arent sure what youre actually trying to do. but yes like dingleberries said no amount of arp spoofing or packet sniffing is going to catch the wep key or get you the admin password for the router configs. the only way that would work is if you are sniffing traffic and someone logs into the router, then you can cap the plaintext username and password. but it dosnt sound like anyone in your setup is going to be doing that anytime soon, so youll just be sitting there sniffing nonsense all day long. Quote Link to comment Share on other sites More sharing options...
vector Posted March 30, 2009 Share Posted March 30, 2009 Two things you could try. One, get the MAC address of the router, and then make your pc that same MAC address, then connect to the network without the router and see what traffic goes back and forth. This might be difficult depending on your knowledge of how to change it, but you can do this easily in Linux, or through your wifi card in windows. Ethernet cards in windows can be changed, but would require you to either edit the registry or use a thrid party app, both of which are not the most desired method. its actually very easy to change the mac address of your wireless nic or your ethernet nic in windows and dosnt require any registry modifications at all, this dosnt work on all chipsets but it works on most. a few are ralink, broadcom, atheros, and realtek depending on the driver. you just go into the advanced configuration of your network adapter and change the mac. its usually listed as network address or locally administered mac address. Quote Link to comment Share on other sites More sharing options...
digip Posted March 30, 2009 Share Posted March 30, 2009 Dumb question, but do you own the router? Because if you do(and not rent it from them) I wouldn't be so willing to hand it over to them, ot take it to them for configuration only to have them lock you out of it. What is to stop them from putting custom firmware on it and set up their own VPN, back door, etc. Just reset the damn thing already and call customer service to set it back up if you can't figure it out on your own. Quote Link to comment Share on other sites More sharing options...
VaKo Posted March 30, 2009 Share Posted March 30, 2009 I doubt its anything exciting like a VPN or magical backdoor, i think whoever set this up is just trying to make a fast buck. If you want to see how the router is talking to whatever doohicky it is that gives you internet access, tap the connection (tcpdump -p -i eth0 for instance). This should give you enough information to reset the device and configure it again with your password and the correct settings (ie any authentication, the IP's used, netmask etc). If you can't figure that out, call your ISP and ask for the settings (ie your paying for the service). If you can't do that then your not telling us everything. This entire process should take about 15 mins including a fag break. Quote Link to comment Share on other sites More sharing options...
beakmyn Posted March 31, 2009 Share Posted March 31, 2009 @Dingleberries, Yep I forgot what the point of discussion was. I thought we were going after his ISP authentication crendentials. Hydra should work but I've seen Zyxel's that will detect the brute force attempt and block you. Like Vako said the interceptor should be able to see the authentication traffic. Plug it in, reboot the router and which will force it to reconnect and you should be able to grab the credentials or least get a better idea of what's going. The only way you'll get the admin password at this point is by bruteforcing it on the router. Heck for giggles see if it's the MAC address or serial number. Other then that do a hard reset and hope for the best. Quote Link to comment Share on other sites More sharing options...
DingleBerries Posted March 31, 2009 Share Posted March 31, 2009 Give me remote desktop and I will break it for you, at a price of course. Shit isnt very hard to do, hell if your router can accept outside connections I can do it at my place. But a better diagram of your network would help. Is it a repeater? Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.