Jump to content

port forwarding on a pirated wifi


Recommended Posts

Well, it's a dirty trick and would probably be fairly obvious, but if you already have access to the wireless you can start a packet capture and then one-way ARP poison him (basically disconnecting him) and wait until he logs into the router to check out what's going on. This is, of course, assuming the he knows how to do that. But based on the fact that he dared you to get an SSH server going I'm going to assume that he does (which is why I don't bother suggesting trying default passwords).

Grab the password from the packet capture and you're set. That's the best I can come up with. Usually when I need to get into a router it's used by people who could care less about security (and so everything is default) and probably don't even know how to get to the login page. I've never tried getting into a router that's on a network with people that actually know how to log into it :P.

That's an interesting bet. My grandma bet me I couldn't get into her computer a few days ago but it just doesn't feel right hacking into an old woman's computer. Call me old fashioned but I just couldn't take her up on it :P.

Link to comment
Share on other sites

If you friend uses Firefox as his primary browser there is a high chance he has routers login in saved passwords. So if you can get your hand on it you may get lucky.

Only other methods I can think about are sniffing it (what Kerberos said) and brute-forcing.

Link to comment
Share on other sites

Not sure about Opera, but I guess it also has the option of saving passwords like every other browser. With Opera though I don't really know where to get the passes, but little Googling should help you out.

Link to comment
Share on other sites

Seems like an odd bet!

On the matter of opera passwords. They are stored under a file "wand.dat" in operas program files folder. If my memory serves me right there is a tool called unwand which can extract passwords from wand.dat if a master password is not used.

Link to comment
Share on other sites

I'm assuming you already have an SSH server running on the LAN, and now you want to access it from the WAN (Hence the port forwarding).

try a reverse SSH tunnel.

From the LAN ssh server initiate an ssh session to an external ssh server.

ssh -R 9999:localhost:22 external.sshd.com

then from the external ssh sever connect back to lan ssh server

ssh -p 9999 localhost

bingo, you now have an ssh connection into his LAN from the WAN.

if you want to get real fancy, you can create a bash script to every few min on the server to keep the outbound connection alive.

remember, keep it simple...

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...