where are we

9 06 2010

Ok, so first things first – of course you didnt just connect to your neighbors open wifi, you had permission from the owner, or you were playing with your own environment (as this may be illegal activity in some parts – YOU HAVE BEEN WARNED). For me, this is all in my own lab environment – its big, complicated & takes up heaps of power – but thats for later blogging.

Right, where were we – oh yeah, we connected to the NETGEAR access point & got a DHCP lease – lets see what’s available to us.

We dont want to make too much noise just yet, so a little delicate probing is in order.

root@bt:~# ping -c 1 192.168.0.1
PING 192.168.0.1 (192.168.0.1) 56(84) bytes of data.
64 bytes from 192.168.0.1: icmp_seq=0 ttl=64 time=0.914 ms

--- 192.168.0.1 ping statistics ---
1 packets transmitted, 1 packets received, 0% packet loss
root@bt:~#
root@bt:~#
root@bt:~# nmap -p 80 192.168.0.1

Starting Nmap 4.53 ( http://insecure.org ) at 2010-06-09 16:40 EST
Interesting ports on 192.168.0.1:
PORT   STATE SERVICE
80/tcp open  http

Nmap done: 1 IP address (1 host up) scanned in 0.099 seconds

right – so its reachable & has port 80 open. If you can stand being a little noisier, nmap can do better than that for port 80

root@bt:~# nmap -sV -p 80 192.168.0.1

Starting Nmap 4.53 ( http://insecure.org ) at 2010-06-09 16:43 EST
Interesting ports on 192.168.0.1:
PORT   STATE SERVICE VERSION
80/tcp open  http    Apache httpd 2.2.11

Service detection performed. Please report any incorrect results at http://insecure.org/nmap/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 6.226 seconds

so its running an apache web server (dont leave comments about netgear’s not running apache – this is a doctored entry – made up from bits & pieces).
So we can fire up the web browser & head over to http://192.168.0.1 – what this … a password prompt …..

as the default SSID is in use & there is no security – chances are the default password will work here admin:password – BINGO !! we own the router

Advertisements

Actions

Information

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s




%d bloggers like this: