[DSLink 260E] DLINK ROUTER – Defaut Passwords DNS Change

                   xplDSLink260E SCANNER

Ah um tempo atrás eu estava pesquisando alguns router(roteadores) vulneráveis a diversos tipos de ataques mas comuns, Durante a pesquisa encontrei 10 routers com senhas padrões em apenas um range de ip do modelo DSLink 260E, Todos com senhas padrões e com (forms) para alteração de DNS! Nos 10 routers conseguir realizar a alteração de DNS.

Ah some time ago I was researching some router (routers) vulnerable to various types of attacks but common, During the research found 10 routers with default passwords in one range of ip‘s DSLink 260E model, all with standards and passwords (forms) for DNS change, on 10 routers got success performing DNS change.

So I developed a mini scanner in python, which performs a small bruteforce with usernames and passwords standards defined within the code and then found username and password it sends a request get performing the change of DNS.

Então montei um mini scanner em python, que realiza um pequeno bruteforce com usuários e senhas padrões definidos dentro do código e depois de encontrado usuário e senha ele envia um request get realizando a alteração dos DNS.
  • jh00n root @: ~ / Desktop / codes # python xpl.py <IP>
    [Here você will be defined or ip do Roteador]

 return:

  • [ + ] DNS changed sucess in: 127.0.0.1 | user@password
[ + ] DNS changed sucess in: 127.0.0.1 | user@password
  • If sucessesul you will see return “changed sucess in DNS: IP | user @ password”
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s