Wednesday, May 25, 2016

Remote Ethernet ADSL Router

Remote Ethernet ADSL Router - Free Your ADSL InternetIntroDuction :-

AnADSLrouteris also known as aDSL modem.
The router is used to connect the computer to the DSL phone line for using the ADSL service.
BSNL and MTNLrolled out many ADSL router cum modem during the pk days of rising internet customers in India.

These ADSL routers have aserious vulnerabilityin them, which most of you are not aware off .
In this post I will show youhow to this commonvulnerabilitythat lies in most ADSL routers so as to gain complete access to the router settingsand ISP login details.

Remote ADSL Routers ( DSL modems ):-

EveryDSL modem(router) comes with auser name and using which it is possible to gain access to the router settings andconfigure the device.

The vulnerabilityactually lies in the Default user name and that comes with thefactorysettings.

Usually therouters comepreconfiguredfrom theInternet Service providerand hence theusers do not bother to change the .

This makes it possible for thttackersto gainunauthorized accessandmodify the router settingsusing a common set ofdefault user names and s.

Things Required :-

1.IP Scanner - To scan IPs
3.If you don't have Java installed , Download and Install Java ,Click Here
4. Internet Explorer

Beginning with Scanning

1. GoHERE,and note your IP address.

2.Open Angry IP scanner it will look like this:

3. Here you will see an option calledIP Range,Now you will need an IP Range. Which is a range or a list of IP's you will have the IP scanner to scan.

4.So lets say your IP is117.192.195.101and you want to look for a vulnerable router in your ar, you would set the range as117.192.194.0to117.192.200.255and that will give you a solid list of 100+ IPs in your ar or erally close to your ar.

5. NowGo to Tools->Preferences

6.Then under the under the ports tab under Port Selection type 80 'cos we will be interested in hosts with port 80 opened:

7.And on the display tab choose "Hosts with open ports only":

8.Then click OK to save the preferences and click start.

9.After a few minutes the scanner will show a list of Ips with port 80 open.

10.Now just select one of the IP addresses and open it with INTERNET EXPLORER!!!

11.A webpage will open asking for a username and , this is the login to their router

12.Now the trick is to abuse the fact that most people are too stupid to change their routers default factory setting router login details.
So when it asks for a and username try the most common router default logins which are:

admin - admin
admin -
admin - Lve the blank.

13.Just enter the username- as specified above and hit enter ,

If you are lucky you should gain access to the router settings page where you can modify any of the router settings.
The settings page can vary from router to router.
Here is the screenshot of one of the router with default settings.

14.If you do not succeed to gain access, select another IP from the list and rept the step-13. At lst 1 out of 5 IPs will have a default and hence you will surely be able to gain access.


Now for most of the routers you can find username in plain text and covered with*'s when setting up a new connection, so just look for something that says connection wizard or connection setup, and follow the steps till you find the username and as mentioned.

So why did we use Internet Explorer for this??

Because XPass works only with IE, we couldn't figure the pass out if we used Firefox or Chrome or Opera.

And now when we have the page where username and pass. are just open XPass click on the X sign and drag it over the *'s and you will have this:

Bingo, You Found The Username and
in this case is:854179

Finally You Stl an Internet Connection ,Now You can copy the ISP login details and close (logout)the Router Settings Page.

Now Login with The victims username and and get unlimited download and Browsing.

Counter Msures:-

Most of the home routers are left out in default configuration state & can be sily. The vulnerability can sily ed which later can result in havoc for a user. A little bit of user awareness is required to keep themselves safe.

1.If you are using an ADSL router toconnect to the Internet, it is highly recommended that you immediately change your to prevent any such attacks in the future.
Since the configuration varies from router to router, you need to contact your ISP for details on how to change the for your model.

2.Keep strong s rather than plain one's that can be sily guessed or brute forced.

3.Keep monitoring your routers logs.
4.Some new routers have option to disable remote access. It is recommended to disable any such remote access doors.
That's all. Stay safe and Be secure !

All the information provided in this post are for eduional purposes only. Plse do not use this information for illegal purposes.

No comments:

Post a Comment