Author: Vic
One day, I rushed to avoid monsters and entered an inn. The following story is purely fictitious. If there are similarities, it must be a coincidence ...]
One day when the sun was shining, the sun was blank, walking alone on the official road, and suddenly a storm blew up the sand. It's not good, it's cool... In desperation, the hacker hid in a large inn with a map bought at the stall next to the entrance
650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0P93a5A-0.jpg "/>
Shot the dust on his body, eyes bright, bright lights in the inn, Cool Breeze, wine smell, strange costumes of beautiful women from time to time across the desert, there is actually this heaven and earth... I quickly found an Kaifeng restaurant and took a bet: Kaifeng food = KFC. I took out the mobile phone from the package. Note: The mobile phone is a device for real-time calls, compared with Hongyan chuanshu and Feige chuanxin, there has been a great improvement.] I opened the Wi-Fi network to search for Several encrypted WIFI resources. I looked around for a week with a gloomy look, in addition to several commercial banks near the Kaifeng restaurant, there is no difference.
Next to Kaifeng's food, there was a shop with a flag flying on the pillar at the door, and the flag was printed with the font size of the shop, I found that the pinyin spelling of the shop font size corresponds to the Pinyin of the SSID name.
Note: The Origins of Pinyin: The Chinese pinyin scheme of Latin letters was developed by the Italian missionary Lima sinus in 1605 AD of the Ming Dynasty .]
Many years of experience in jianghu tells me that the Wi-Fi passwords of many stores in the world are generally a combination of phone numbers or store name abbreviations + phone numbers. Although this is not a hundred percent, this is true for quite a few of them, therefore, when setting your own password and selecting a password combination during the trip, you should pay attention to it. Otherwise, it will be easy to get rid of it...
I tried to enter the phone number on the flag in the password box, and the scene was instantly stuck... Log on to WIFI and you can access the Internet.
Bytes ---------------------------------------------------------------------------------------
Post-modern mountain Realism]
After entering the network, it is customary to scan the Intranet, there are three devices: 192.168.1.1 -- wireless route 192.168.1.88 -- PC and iphone
When the browser connects to port 80 of 192.168.1.1, it prompts you to enter the user and password. Enter the default admin user and password, and then ~~~~~~~~ Then, log on to the WEB Settings page of the wireless route. The public phone number is used as the Wi-Fi password, and the default password of the wireless route is not changed. Network security is not emphasized.
650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0P9391c8-1.jpg "/>
PING 192.168.1.1 and 192.168.1.88. The route can be pinged, but the PC cannot be pinged. Maybe, probably, IPSec or firewall is enabled, or PING fails.
650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0P93a936-2.jpg "/>
I wanted to use NMAP to scan 192.168.1.88 directly, and soon I came up with a new idea: map the PC to the public network, and then use NMAP to scan it)
650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0P93963C-3.jpg "/>
After saving the settings, use NMAP to scan the PC to see if the scan results can be broken. The scan results are as follows: enable the two ports: Port 82 xfer XFER Utility transmission Utility and port 5060 SIP network phone.
650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0P9395405-4.jpg "/>
Nmap again shows its power.
The gateway is under control. To learn more about the PC, it is time to use sniffer. A few days ago, I tried sniffer: Derv under the iPhone by setting up an intranet. I took this opportunity to try another: Pirni Pro GUI.
650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0P9391952-5.jpg "/>
Set the gateway IP address, sniff Host IP address, and port. After the settings are complete, click start on the right of the screen to start working. We then select Live Feed to switch the data packet capture display page,
Show, the number of the truncated number package is constantly changing
650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0P939B43-6.jpg "/>
650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0P9394412-7.jpg "/>
The software was shut down after sniffing for a few minutes. This was mainly used to test whether Pirni Pro was available. The test results were satisfactory.
The sniff result is saved in the/tmp directory of the mobile phone. The file name is log. pcap. Currently, I have not found an application to open the pcap file under the IPHONE. Therefore, sniff still needs a computer to analyze data packets.
If any hero knows the application for analyzing the PCAP file under the IPHONE, please let me know. Thank you first.
When I got home, I used Wireshark to open log. pcap and roughly checked the content of the package. I learned that during work hours, employees went to QQ ..
650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0P93a059-8.jpg "/>
Summary:
The store does not pay enough attention to network security, or the shopkeeper is lazy, leading to intranet insecurity. If you add a route entry when setting a route, you can only allow the host with a specific MAC address to log on to WEB management. This is relatively safer.
650) this. width = 650; "border =" 0 "alt =" "src =" http://www.bkjia.com/uploads/allimg/131227/0P93a096-9.jpg "/>
Pirni Pro has a good test effect and is full of firepower.