OCD Posted August 8, 2012 Share Posted August 8, 2012 Hey all, Is there a reliable way to recover the credentials you would need to access a router? I don't mean the network key, but instead the credentials you would use to log in to the router itself. (On my Linksys Router the address is 192.168.1.1 by default) As I understand it, there are exploits or brute forcing .. but I was hoping for something a bit more elegant. Thank you! Quote Link to comment Share on other sites More sharing options...
sober Posted August 8, 2012 Share Posted August 8, 2012 (edited) ip address or password username? http://www.techspot....r-ip-addresses/ http://portforward.c...rname_password/ http://api.viglink.com/api/click?format=go&key=552a35ca1eb1421626a0f973ac2a90af&loc=http%3A%2F%2Fwww.techspot.com%2Fguides%2F287-default-router-ip-addresses%2F&v=1&libid=1344458508340&out=http%3A%2F%2Fwww.answersthatwork.com%2FDownload_Area%2FATW_Library%2FNetworking%2FNetwork__4-List_of_default_Router_Admin_Passwords_and_IP_addresses.pdf&ref=http%3A%2F%2Fforums.hak5.org%2Findex.php%3F%2Ftopic%2F27195-reliable-way-to-retrieve-credentials-for-logging-in-to-router%2F&title=A%20List%20of%20Common%20Default%20Router%20IP%20Addresses%20-%20TechSpot%20Guides&txt=this%20PDF&jsonp=vglnk_jsonp_13444585312114 Edited August 8, 2012 by sober Quote Link to comment Share on other sites More sharing options...
OCD Posted August 8, 2012 Author Share Posted August 8, 2012 ip address or password username? http://www.techspot....r-ip-addresses/ http://portforward.c...rname_password/ http://api.viglink.c..._13444585312114 Well, I had meant the credentials (username and password). I believe that on a small network, an easy way to identify the router's IP would be to simply find the gateway you're using. So, I missed default credentials on my little list at the top :P I didn't really know people are known to leave these as stock! In any case, is that it? :| Quote Link to comment Share on other sites More sharing options...
Infiltrator Posted August 9, 2012 Share Posted August 9, 2012 (edited) As I understand it, there are exploits or brute forcing .. but I was hoping for something a bit more elegant. Exploits and brute forcing are one way to get to the router's password, another possible way would be via MITM attack. But this option, could be a bit less effective, because you will have to wait, for the exact time the person logs into the router, in order to get the router's login credentials. Edited August 9, 2012 by Infiltrator Quote Link to comment Share on other sites More sharing options...
digip Posted August 9, 2012 Share Posted August 9, 2012 (edited) If its your router, hit the reset button on the back, login with default creds. If its not yours, ask the owner for the password....if you want to "hack" the router, look up how to use tftp to overwrite firmware or retrieve them from some models and dump the memory or default creds. I think int0x80 even posted something on the forums about this once. http://www.routerpasswords.com/ Edited August 9, 2012 by digip Quote Link to comment Share on other sites More sharing options...
potato Posted August 11, 2012 Share Posted August 11, 2012 (edited) If you want to erase the nvram (clears all settings including the password) do a 30/30/30 reset. Hold the reset button for 30 seconds, Turn the router off and hold it for 30 seconds, Turn it back on and hold it for another 30 seconds. You could also look into DNS rebinding. Edited August 11, 2012 by cscash241 Quote Link to comment Share on other sites More sharing options...
sober Posted August 12, 2012 Share Posted August 12, 2012 Well, I had meant the credentials (username and password). I believe that on a small network, an easy way to identify the router's IP would be to simply find the gateway you're using. So, I missed default credentials on my little list at the top :P I didn't really know people are known to leave these as stock! In any case, is that it? :| most people leave them stock, my post links are the stock username and password for nearly every router/brand, and if that fails yes a reset would be easiest way. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.