NOTE: When cracking WPA/WPA2 passwords, make sure you check gpuhash.me first incase it's already been processed.

Home - Wireless Cracking - BTHub4-**** - Router admin password


17 Results - Page 1 of 1 -
1
Author Message
Avatar
Tartarus

Status: n/a
Joined: Sun, 04 Mar 2018
Posts: 28
Team:
Reputation: 31 Reputation
Offline
Fri, 09 Mar 2018 @ 23:19:48

Sorry if this isn't the place to be asking..

I've done a bit of research lately but unable to find..
so BTHub4 admin password is an additional sticker on the router

I have access to the WPA2 pass but not the router password which I'd like..

I know with some routers there are ways to obtain it.. does anyone have any experience with this?


Avatar
mkerr

Status: Banned
Joined: Sun, 03 Sep 2017
Posts: 377
Team:
Reputation: 317 Reputation
Offline
Sat, 10 Mar 2018 @ 10:33:34

WARNING! User is BANNED and maybe a SCAMMER.

Tartarus said:

Sorry if this isn't the place to be asking..

I've done a bit of research lately but unable to find..
so BTHub4 admin password is an additional sticker on the router

I have access to the WPA2 pass but not the router password which I'd like..

I know with some routers there are ways to obtain it.. does anyone have any experience with this?

The admin password is not on an additional sticker on the router
It is on the same sticker along with the SSID and wireless key


Avatar
Tartarus

Status: n/a
Joined: Sun, 04 Mar 2018
Posts: 28
Team:
Reputation: 31 Reputation
Offline
Sat, 10 Mar 2018 @ 10:59:15

mkerr said:

Tartarus said:

Sorry if this isn't the place to be asking..

I've done a bit of research lately but unable to find..
so BTHub4 admin password is an additional sticker on the router

I have access to the WPA2 pass but not the router password which I'd like..

I know with some routers there are ways to obtain it.. does anyone have any experience with this?

The admin password is not on an additional sticker on the router
It is on the same sticker along with the SSID and wireless key

Yep sorry that's what I meant

Why do companies have to make it hard.. what was ever wrong with admin/admin lol


Avatar
mkerr

Status: Banned
Joined: Sun, 03 Sep 2017
Posts: 377
Team:
Reputation: 317 Reputation
Offline
Sat, 10 Mar 2018 @ 11:16:52

WARNING! User is BANNED and maybe a SCAMMER.

Tartarus said:


Why do companies have to make it hard.. what was ever wrong with admin/admin lol

The main reason they moved from using credentials like admin/admin was because
some unauthorized entity inside the network could try a simple hardwired dictionary
to gain full access to the router and modify its configuration.

It used to be assumed that all actors inside a network were benign, but that is no
longer sufficient to maintain security

Still sets a fairly low bar, because anyone who has physical access to read the sticker
on the router can find the admin password anyway


Avatar
Tartarus

Status: n/a
Joined: Sun, 04 Mar 2018
Posts: 28
Team:
Reputation: 31 Reputation
Offline
Sat, 10 Mar 2018 @ 14:54:29

mkerr said:

Tartarus said:


Why do companies have to make it hard.. what was ever wrong with admin/admin lol

The main reason they moved from using credentials like admin/admin was because
some unauthorized entity inside the network could try a simple hardwired dictionary
to gain full access to the router and modify its configuration.

It used to be assumed that all actors inside a network were benign, but that is no
longer sufficient to maintain security

Still sets a fairly low bar, because anyone who has physical access to read the sticker
on the router can find the admin password anyway

I was joking, but thanks

Unfortunately I don't have access to the sticker


Avatar
mkerr

Status: Banned
Joined: Sun, 03 Sep 2017
Posts: 377
Team:
Reputation: 317 Reputation
Offline
Sat, 10 Mar 2018 @ 15:13:26

WARNING! User is BANNED and maybe a SCAMMER.

Tartarus said:


Unfortunately I don't have access to the sticker

It is a bit of a design flaw that the protection provided by the router wireless key is weaker
than the admin password, but at least they resolved that with the BTHub6


Avatar
BML

Status: n/a
Joined: Sun, 08 Apr 2018
Posts: 35
Team:
Reputation: 0 Reputation
Offline
Sat, 14 Apr 2018 @ 18:15:34

Have you tried routersploit?

Or perhaps a website with a DB of default router logins? Definately worth a shot, a lot of companies will leave the defaults.

Failing that, run a hydra attack against the router login form.

Of course, the default login for BtHub-4 is actually Admin (or admin, forgot which), with no password (ie./ leave password field blank).


Good luck with it, buddy ..


Avatar
mkerr

Status: Banned
Joined: Sun, 03 Sep 2017
Posts: 377
Team:
Reputation: 317 Reputation
Offline
Sat, 14 Apr 2018 @ 18:26:15

WARNING! User is BANNED and maybe a SCAMMER.

BML said:


Of course, the default login for BtHub-4 is actually Admin (or admin, forgot which), with no password (ie./ leave password field blank).

The default admin password is a lot harder than that on the BTHub4
Probably about 10 times harder keyspace than the wireless passphrase
Good luck trying Hydra on that

At least you are not from Dudley


Attachments: Login to view attachments.
Avatar
BML

Status: n/a
Joined: Sun, 08 Apr 2018
Posts: 35
Team:
Reputation: 0 Reputation
Offline
Sat, 14 Apr 2018 @ 19:06:54

Seems you're right.. I just checked BT site. Looks like it is just 8 Upper/numbers.. if the few stickers I have looked at in photos on there site are anything to go by..

Definately do-able in hydra.. maybe not in a hour, or as quick, but do-able, depends how bad he wants it i suppose.. :/

https://bt.custhelp.com/app/answers/detail/a_id/11383

.. btw, I do actually live close to Dudley.. but not that close unfortunately.. otherside of Wolverhampton ..
His best bet is Routersploit.. unless he knows how to disassemble the firmware with a JTag ..


Avatar
mkerr

Status: Banned
Joined: Sun, 03 Sep 2017
Posts: 377
Team:
Reputation: 317 Reputation
Offline
Sat, 14 Apr 2018 @ 19:14:49

WARNING! User is BANNED and maybe a SCAMMER.

BML said:


.. btw, I do actually live close to Dudley.. but not that close unfortunately.. otherside of Wolverhampton ..

I know, it was just my attempt at the old joke that the only place worse than Wolverhampton
is Dudley


Avatar
BML

Status: n/a
Joined: Sun, 08 Apr 2018
Posts: 35
Team:
Reputation: 0 Reputation
Offline
Sat, 14 Apr 2018 @ 19:16:19

People from Wolverhampton pretend we haven't heard that joke ..

;P


Avatar
BML

Status: n/a
Joined: Sun, 08 Apr 2018
Posts: 35
Team:
Reputation: 0 Reputation
Offline
Sat, 14 Apr 2018 @ 19:19:11

.. no matter how true the statement is ..


Avatar
BML

Status: n/a
Joined: Sun, 08 Apr 2018
Posts: 35
Team:
Reputation: 0 Reputation
Offline
Sat, 14 Apr 2018 @ 19:33:33

Seems you maybe able to use double backslash+csrf exploit on the bthub4 too, apparently..
check out gnucitizens site : http://www.gnucitizen.org/blog/dumping-the-admin-password-of-the-bt-home-hub/
good place to start

or you could probably hack the uart, to get a login, if you are confident about your soldering skills.. at least, you can with the hub5, so seems likely the 4 is susceptible too..
starting point :
http://www.instructables.com/id/BT-HomeHub-5A-Router-UART-Access-Hack/

Thats if the BT Homehub 4 is the same as BtHub4 ?? I havent ever used BT or bothered with one of the routers, so I don't know..

However, if not, I guess what I'm saying is, it is worth searching for 'exploits' of the router, via SecurityFocus/ExploitDB to get access to Router Page, or even Google is a good tool for finding less known exploits..

Either way, good luck with it ..


Avatar
mkerr

Status: Banned
Joined: Sun, 03 Sep 2017
Posts: 377
Team:
Reputation: 317 Reputation
Offline
Sat, 14 Apr 2018 @ 19:45:52

WARNING! User is BANNED and maybe a SCAMMER.

BML said:


or you could probably hack the uart, to get a login, if you are confident about your soldering skills.. at least, you can with the hub5, so seems likely the 4 is susceptible too..

I would think reading the label on the router would be a lot easier than getting a soldering
iron to it

But, as is usual with these kind of queries on this board, physical access is not an option
I always find this quite strange, as I naturally have physical access to all the routers I own

Facts do not cease to exist because they are ignored
― Aldous Huxley


Avatar
BML

Status: n/a
Joined: Sun, 08 Apr 2018
Posts: 35
Team:
Reputation: 0 Reputation
Offline
Sun, 15 Apr 2018 @ 11:25:33

mkerr said:

BML said:


or you could probably hack the uart, to get a login, if you are confident about your soldering skills.. at least, you can with the hub5, so seems likely the 4 is susceptible too..

I would think reading the label on the router would be a lot easier than getting a soldering
iron to it

But, as is usual with these kind of queries on this board, physical access is not an option
I always find this quite strange, as I naturally have physical access to all the routers I own

Facts do not cease to exist because they are ignored
― Aldous Huxley

LOL... too true , unless the sticker was just faded, or had been ripped off at some earlier date. In truth, I kinda lost focus of the Original question, and was concentrating purely on gaining access to a BTHub4 Router Page ..

But, also, It does demonstrate that there are other ways to do what he wanted, with out just cracking. Especially exploring remote exploits, like those found by gnucitizen..



Avatar
mkerr

Status: Banned
Joined: Sun, 03 Sep 2017
Posts: 377
Team:
Reputation: 317 Reputation
Offline
Sun, 15 Apr 2018 @ 11:40:43

WARNING! User is BANNED and maybe a SCAMMER.

BML said:


LOL... too true , unless the sticker was just faded, or had been ripped off at some earlier date.

Some highly unlikely possibilities there
I tend to rely more on Occam's Razor, which roughly translates as:

The Simplest Answer is Usually Correct

Maybe our friend in Coventry will post again and enlighten us?


Avatar
BML

Status: n/a
Joined: Sun, 08 Apr 2018
Posts: 35
Team:
Reputation: 0 Reputation
Offline
Sun, 15 Apr 2018 @ 16:12:12

perhaps he will .. but I, too, have a feeling that Occam's Razor would most probably be correct on this assumption ..



17 Results - Page 1 of 1 -
1

We have a total of 154926 messages in 19274 topics.
We have a total of 18297 registered users.
Our newest registered member is Baltazar.