我設置爲我的TPLINK路由器最簡單的密碼:aaaaaaac 默認用戶是admin水潤蠻力攻擊我的家TPLINK路由器
我看着在頁面的源代碼,並發現這一點:
<FORM METHOD="POST" ACTION="/Forms/login_security_1" name="Login_Form"><p> </p>
<p> </p>
<table width="540" border="0" align=center cellpadding="0" cellspacing="0">
<tr>
<td><table width="100%" border="0" align=center cellpadding="0" cellspacing="0">
<tr>
<td height="31"> </td><td> </td><td> </td></tr><tr>
<td width="8%"> </td><td width="86%" valign=top>
<table width="86%" border="0" align=center>
<tr>
<td> </td><td> </td><td> </td></tr><tr>
<td align=center colspan=3 style="color:gray;font-family:Arial;text-align:left;margin:0px auto;font-size:14px;" id="tr1">
</td><INPUT TYPE="HIDDEN" NAME="tipsFlag" VALUE="0"><INPUT TYPE="HIDDEN" NAME="timevalue" VALUE="0"><SCRIPT language="JavaScript">
if(document.Login_Form.tipsFlag.value == 1){
var infoStr='The username or password is incorrect,please input again.';
document.getElementById("tr1").innerHTML = infoStr;
}else if(document.Login_Form.tipsFlag.value == 2){
timelast = document.Login_Form.timevalue.value;
window.setInterval("IncreaseSec()", 1000);
}
</SCRIPT>
</tr></table><table style="background-color:white" width="86%" border="0" align=center>
<tr>
<td height=35> </td><td> </td><td> </td></tr><tr>
<td align=right width=35%>
<FONT color=gray><b>
Username:</b></font>
</td><td><INPUT TYPE="TEXT" NAME="Login_Name" SIZE="12" MAXLENGTH="31" VALUE="" class="text" onfocus="changeBorderColor(this,1);" onblur="changeBorderColor(this,0);"></td></tr><tr>
<td height=5> </td><td> </td><td> </td></tr><tr>
<td align=right >
<FONT color=gray><b>
Password:</b></font>
</td><td><INPUT TYPE="PASSWORD" NAME="Login_Pwd" SIZE="12" MAXLENGTH="31" VALUE="" autocomplete="off" class="text" onfocus="changeBorderColor(this,1);" onblur="changeBorderColor(this,0);"></td></tr><tr>
<td align=center colspan=3>
<INPUT TYPE="BUTTON" NAME="texttpLoginBtn" VALUE="Login" class="LoginBtn" onClick="checkForm();"></td></tr><tr>
<td align=center colspan=3>
<INPUT TYPE="HIDDEN" NAME="uiWebLoginhiddenUsername" VALUE=""><INPUT TYPE="HIDDEN" NAME="uiWebLoginhiddenPassword" VALUE=""></td></tr><tr>
<td height="30" colspan="3" style="text-align:center;">
<label id="copyright" >
Copyright © 2014 TP-LINK Technologies Co., Ltd. All rights reserved.</label>
</td></tr></table></td><td width="6%"> </td></tr></table></td></tr></table><!-- RpZDT -->
</form><p> </p>
我還考察了POST源,發現:
tipsFlag = 0 & TIMEVALUE = 0 & LOGIN_NAME = 34 & Login_Pwd = Ha2S%2BeOKqmzA6nrlmTeh7w%3D%3D &ù iWebLoginhiddenUsername = e369853df766fa44e1ed0ff613f563bd & uiWebLoginhiddenPassword = e369853df766fa44e1ed0ff613f563bd
所以我攻擊了我自己的路由器有這一行:
九頭蛇-f -l管理員-x 8:8:一-V 192.168.1.1 HTTP-POST形式「/ login_security.html /表格/ login_security_1:tipsFlag = 0 & TIMEVALUE = 0 & LOGIN_NAME =^^ USER & Login_Pwd =^^ PASS & uiWebLoginhiddenUsername =^^ USER & uiWebLoginhiddenPassword =^^ PASS:壞」
水潤成立錯誤的密碼
[http-post-form] host:192.168.1.1登錄名:admin密碼:aaaaaaak [STATUS]攻擊完成192.168.1.1(找到有效的對) 1 of 1 target successfully,1 valid發現密碼
我在做什麼錯了?
aaaaaaak不起作用,但只有aaaaaaac - 我爲實驗設置的密碼,以及在第三次嘗試中水葫蘆嘗試的密碼。 – MarioZ