Ah some time ago I was researching some router (routers) vulnerable to various types of attacks but common, During the research found 10 routers with default passwords in one range of ip‘s DSLink 260E model, all with standards and passwords (forms) for DNS change, on 10 routers got success performing DNS change.
So I developed a mini scanner in python, which performs a small bruteforce with usernames and passwords standards defined within the code and then found username and password it sends a request get performing the change of DNS.
- jh00n root @: ~ / Desktop / codes # python xpl.py <IP>
[Here você will be defined or ip do Roteador]
- [ + ] DNS changed sucess in: 127.0.0.1 | user@password
SCRIPT DOWNLOAD :