EDUCATION PURPOSE ONLY
we're going to take a hack at our own wireless routers to see just how secure they really are. I'm using Linux Mint and THC Hydra, a brute-forcing tool.
Step 1 Download & Install Hydra
First we need to go to the Hydra website, download Hyrda, and get everything configured. In this article, a "cmd" refers to a command that has to be entered into a terminal emulator.
- Download Hydra from THC's website.
- Extract Hydra in a nice location.
cmd: tar zxvf hydra-7.1-src.tar.gz - Change to the newly made directory.
cmd: cd <new directory> - cmd: ./configure
- cmd: make
- cmd: sudo make install
Step 2 Use Hydra on Your Router
Now we're going to attack our routers. The default IP/URL to reach it at will be 192.168.1.1, so test that address in a browser to confirm it. If you get a dialog box, you've reached your router. This is running HTTP basic authentication.
Commands & Configuration
- cmd: xhydra
- Enter 192.168.1.1 as your target.
- Use http-get as the method.
- Port 80.
- Pick a word list saved on your computer.
- Click start!
Congratulations! See how easy it can be? A router won't block out requests normally, either. So someone could brute-force you for days upon days. Change your password to something greater than 12 characters