Reliable Way To Retrieve Credentials For Logging In To Router?

[OCD]

Hey all,

Is there a reliable way to recover the credentials you would need to access a router? I don't mean the network key, but instead the credentials you would use to log in to the router itself. (On my Linksys Router the address is 192.168.1.1 by default)

As I understand it, there are exploits or brute forcing .. but I was hoping for something a bit more elegant.

Thank you!

[sober]

ip address or password username?

http://www.techspot....r-ip-addresses/

http://portforward.c...rname_password/

http://api.viglink.com/api/click?format=go&key=552a35ca1eb1421626a0f973ac2a90af&loc=http%3A%2F%2Fwww.techspot.com%2Fguides%2F287-default-router-ip-addresses%2F&v=1&libid=1344458508340&out=http%3A%2F%2Fwww.answersthatwork.com%2FDownload_Area%2FATW_Library%2FNetworking%2FNetwork__4-List_of_default_Router_Admin_Passwords_and_IP_addresses.pdf&ref=http%3A%2F%2Fforums.hak5.org%2Findex.php%3F%2Ftopic%2F27195-reliable-way-to-retrieve-credentials-for-logging-in-to-router%2F&title=A%20List%20of%20Common%20Default%20Router%20IP%20Addresses%20-%20TechSpot%20Guides&txt=this%20PDF&jsonp=vglnk_jsonp_13444585312114

Edited August 8, 2012 by sober

[OCD]

ip address or password username?

http://www.techspot....r-ip-addresses/

http://portforward.c...rname_password/

http://api.viglink.c..._13444585312114

Well, I had meant the credentials (username and password). I believe that on a small network, an easy way to identify the router's IP would be to simply find the gateway you're using. So, I missed default credentials on my little list at the top :P I didn't really know people are known to leave these as stock!

In any case, is that it? :|

[Infiltrator]

As I understand it, there are exploits or brute forcing .. but I was hoping for something a bit more elegant.

Exploits and brute forcing are one way to get to the router's password, another possible way would be via MITM attack. But this option, could be a bit less effective, because you will have to wait, for the exact time the person logs into the router, in order to get the router's login credentials.

Edited August 9, 2012 by Infiltrator

[digip]

If its your router, hit the reset button on the back, login with default creds. If its not yours, ask the owner for the password....if you want to "hack" the router, look up how to use tftp to overwrite firmware or retrieve them from some models and dump the memory or default creds. I think int0x80 even posted something on the forums about this once.

http://www.routerpasswords.com/

Edited August 9, 2012 by digip

[potato]

If you want to erase the nvram (clears all settings including the password) do a 30/30/30 reset. Hold the reset button for 30 seconds, Turn the router off and hold it for 30 seconds, Turn it back on and hold it for another 30 seconds. You could also look into DNS rebinding.

Edited August 11, 2012 by cscash241

[sober]

Well, I had meant the credentials (username and password). I believe that on a small network, an easy way to identify the router's IP would be to simply find the gateway you're using. So, I missed default credentials on my little list at the top :P I didn't really know people are known to leave these as stock!

In any case, is that it? :|

most people leave them stock, my post links are the stock username and password for nearly every router/brand, and if that fails yes a reset would be easiest way.