Hack down router login via Linux

EDUCATION PURPOSE ONLY

we're going to take a hack at our own wireless routers to see just how secure they really are. I'm using Linux Mint and THC Hydra, a brute-forcing tool.

Step 1 Download & Install Hydra

First we need to go to the Hydra website, download Hyrda, and get everything configured. In this article, a "cmd" refers to a command that has to be entered into a terminal emulator.

1. Download Hydra from THC's website.
2. Extract Hydra in a nice location.
   cmd: tar zxvf hydra-7.1-src.tar.gz
3. Change to the newly made directory.
   cmd: cd <new directory>
4. cmd: ./configure
5. cmd: make
6. cmd: sudo make install

Step 2 Use Hydra on Your Router

Now we're going to attack our routers. The default IP/URL to reach it at will be 192.168.1.1, so test that address in a browser to confirm it. If you get a dialog box, you've reached your router. This is running HTTP basic authentication.

Commands & Configuration

1. cmd: xhydra
2. Enter 192.168.1.1 as your target.
3. Use http-get as the method.
4. Port 80.
5. Pick a word list saved on your computer.
6. Click start!

Congratulations! See how easy it can be? A router won't block out requests normally, either. So someone could brute-force you for days upon days. Change your password to something greater than 12 characters

Continue Reading