Cracking username and password for LAN Control

Source: Internet
Author: User

Cracking username and password for LAN Control
Many people share a piece of broadband, and they are most afraid of it. For example, during the peak hours at, when others are dying, they are driving BT download by themselves, for example, if some ARP speed limiting software is installed on the Intranet, we will introduce how to crack the vro username and password to compete for network control.

If there is a good network management, it would be better to make reasonable regulations on the network, but if the rental house landlord is reluctant to spend money to buy a router, and he does not care about the network, it will be troublesome, let the network of the rental house be in disorder. Finally, you can only solve the problem by yourself. How can this problem be solved? It's easy to crack the administrator username and password of A vro, get the management permission of the vro, and kill all the disobedient ones. Or limit the number of connections. In addition, binding MAC addresses of all computers in the LAN to routers in two ways can also avoid ARP Intranet attacks.

The gateway address is displayed in the network neighbor.

Now the problem arises. First, how do I know the IP address of the router, and second, how can I get the Administrator account and password of the router? To obtain the IP address of a vro, you can open the "Network Neighbor" attribute and check the "local connection" status. In the "support" tab, the "Default Gateway" is displayed. This is the address of our local router.

The same effect can be achieved through the doscommand.

Of course, if you have a little doscommand, it is simpler. In the "Start"-"run" dialog box, enter "cmd" to open the command, enter "ipconfig/all" to obtain the local gateway address.

You also need to know the vro user name and password.

Now that you have obtained the IP address of the local router, you need to open the IP address in IE browser to see if you can enter the router management interface.

Generally, No one changes the initial port of the router, and the entry-level Router does not have this function. Enter the gateway address 192.168.0.1 to enter its WEB management interface. However, an experienced administrator will change the default port to another port for security consideration, so that we cannot log on through port 80. But don't worry. We can use the port scan tool to find the logon address of the router management interface.

If the router port is changed, we need to find its new port.

For example, I use this small port scanner ScanPort to scan all open ports of the router. Fill in the IP address 192.168.0.1 at "start" and "stop. Set the scan port to 1-65350. After the configuration is complete, click the start button. In a short time, you can find the logon port on the management interface of the vro. To test whether the port is correct, enter "http: // 192.168.1.1: Port Number" in the IE Address Bar. If the port is correct, the logon interface of the router appears.

Okay, you have obtained the WEB management address, and the rest is how to crack the Administrator's username and password. If you're lucky, the Administrator's account and password will remain the factory value, try several common initial account passwords. For example: "admin, admin"; "rootroot"; "useruser"; "adminpassword"... you can try it one by one. However, if the administrator's user name and password have been modified, it will be troublesome.

With the help of computers, brute force and dictionary files, we can try passwords one by one.

In this case, we need to use "Web password cracking tool" and "WebCrack" to help. To put it simply, for example, this type of Web Page password cracking is the use of brute force, reading pre-configured passwords from matching dictionary files one by one, which relies on the speed and patience of the computer. The password is short and simple. It may take a few minutes. If the password is too long or complicated, it may be several days or years.

Password test is only a matter of time

Download and install WebCrack. After running the script, Click Browse in "User Name file" to create a file. Then, we will find some matching dictionary files. The dictionary uses different user names and passwords generated by the software for matching, such as common user names such as admin and 123456, of course, the more data in the dictionary, the higher the probability of cracking. The password input format is one line. Return to the WebCrack interface, check the user name dictionary option, and browse and select the text document you just created. Enter the router logon address in "URL". After the configuration is complete, click "start" to perform the test.

Find the real password to control the vro.

After the detection is complete, click "result" and switch to the "found password" tab to view the detection result. At this time, the router will be taken over by us. Then you can do whatever you want, but do not go too far. Be careful when someone else dials the network cable !!

Enable Nic MAC Address binding to effectively prevent ARP man-in-the-middle interference

Now that the management permissions of the vro are available, we can bind the MAC address of the NIC to the IP address one by one, coupled with the firewall settings on the computer end, which can basically avoid Intranet attacks. If necessary, you can also enable the speed limit connection function on the vro.

For out-of-the-box downloading, you can enable the speed limit function of the vro.

In the LAN, whoever has the control of the vro has the right to speak, because we can not only set the port in the vro, but also enjoy the permission of the Internet, it also provides some lessons for users who use ARP software in LAN. It can speed up or throttling. There are other benefits for you to take advantage of them.


Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.