[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y ] [Search | Free Show | Home]

I have the admin account on a wifi router that multiple devices

This is a blue board which means that it's for everybody (Safe For Work content only). If you see any adult content, please report it.
  1. Home
  2. /g/ - Technology
  3. I have the admin account on a wifi router that multiple devices
Thread replies: 14
Thread images: 2

Anonymous
2017-03-05 07:54:39 Post No. 59254392
[Report] Image search: [Google]
File: file.png (180KB, 300x250px) Image search: [Google]
file.png
180KB, 300x250px
Anonymous 2017-03-05 07:54:39 Post No. 59254392 [Report]
I have the admin account on a wifi router that multiple devices are connected too. I was wondering if there was any surveillance or password's I could sniff? Is there anything interesting I can do?
>>
Anonymous 2017-03-05 07:55:36 Post No.59254408
[Report] Image search: [Google]
Anonymous 2017-03-05 07:55:36 Post No.59254408 [Report]
File: 348s.jpg (21KB, 348x348px) Image search: [Google]
348s.jpg
21KB, 348x348px
use wireshark
>>
Anonymous 2017-03-05 07:56:02 Post No.59254419
[Report]
Anonymous 2017-03-05 07:56:02 Post No.59254419 [Report]
>>59254392
You can literally read every single packet that goes through the router. Anything unencrypted is yours

This is why public wifi is dangerous
>>
Anonymous 2017-03-05 08:06:49 Post No.59254617
[Report]
Anonymous 2017-03-05 08:06:49 Post No.59254617 [Report]
>>59254392
Are you the NSA?
>>
Anonymous 2017-03-05 08:09:58 Post No.59254673
[Report]
Anonymous 2017-03-05 08:09:58 Post No.59254673 [Report]
>>59254392
iptables -j TEE target

redirects a copy of all traffic to your computer
There you can analyze it with Wireshark.
>>
Anonymous 2017-03-05 08:11:48 Post No.59254706
[Report]
Anonymous 2017-03-05 08:11:48 Post No.59254706 [Report]
>>59254392
So wire shark is the way to go?

How power full would it be? Could I get the handshake key's for a website's login?
>>
Anonymous 2017-03-05 08:13:07 Post No.59254726
[Report]
Anonymous 2017-03-05 08:13:07 Post No.59254726 [Report]
>>59254706
No
>>
Anonymous 2017-03-05 08:20:47 Post No.59254868
[Report]
Anonymous 2017-03-05 08:20:47 Post No.59254868 [Report]
You need to setup your own gateway with which you can sniff the traffic. Then change the ip of the router to something else, change your sniffers LAN side ip to the old router ip. Change sniffers wan side to the new router ip. Change dhcp scope on the router to point gateway at your sniffer lan side ip. Now you're sniffing for both new and existing clients.
>>
Anonymous 2017-03-05 08:21:52 Post No.59254882
[Report]
Anonymous 2017-03-05 08:21:52 Post No.59254882 [Report]
>>59254868
>You need to setup your own gateway with which you can sniff the traffic.
No.
>>59254673
>>
Anonymous 2017-03-05 08:34:06 Post No.59255126
[Report]
Anonymous 2017-03-05 08:34:06 Post No.59255126 [Report]
>>59254392
Run your own dns server, replace dns servers in the router and then redirect the page u are interested in sniff the password. You need to use some "social engineering" toolkit i really don´t think that is an apropiate name for that tools but anyway...... or just use sslsttrip2 + MITMF
>>
Anonymous 2017-03-05 08:37:30 Post No.59255188
[Report]
Anonymous 2017-03-05 08:37:30 Post No.59255188 [Report]
>>59255126
i forgot if u have acces to the router via telnet u can edit the iptables from there and redirect the traffic and do some interesting things
>>
Anonymous 2017-03-05 08:41:41 Post No.59255276
[Report]
Anonymous 2017-03-05 08:41:41 Post No.59255276 [Report]
>>59254882
That's exactly how you do it, you setup a middle man machine and force all the traffic to route through it while you sniff it.
>>
Anonymous 2017-03-05 08:50:23 Post No.59255433
[Report]
Anonymous 2017-03-05 08:50:23 Post No.59255433 [Report]
>>59255276
You can´t just sniff a password in https....plain text password sure.....but https ? Without the RSA key or a dumped session key of the "attacked" browser
>>
Anonymous 2017-03-05 08:54:21 Post No.59255517
[Report]
Anonymous 2017-03-05 08:54:21 Post No.59255517 [Report]
>>59255433
Yeah you're not going to sniff https or unless you also do ssl cert man in the middle. If you have control of the clients then you can install your own root ssl cert and then you can sniff everything
Thread posts: 14
Thread images: 2
[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y] [Search | Top | Home]

I'm aware that Imgur.com will stop allowing adult images since 15th of May. I'm taking actions to backup as much data as possible.
Read more on this topic here - https://archived.moe/talk/thread/1694/


If you need a post removed click on it's [Report] button and follow the instruction.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com.
If you like this website please support us by donating with Bitcoins at 16mKtbZiwW52BLkibtCr8jUg2KVUMTxVQ5
All trademarks and copyrights on this page are owned by their respective parties.
Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the content originated from that site.
This means that RandomArchive shows their content, archived.
If you need information for a Poster - contact them.