NEW: We have a Discord server now. Click here to go there now!

NOTE: Why not use our List Manager to crack your lists? Its easy and enables better management.

NOTE: When cracking WPA/WPA2 passwords, make sure you check gpuhash.me first incase it's already been processed.

Home - Wireless Cracking - ZyXEL PLDTMyDSLBiz Routers - WPA Broken


3 Results - Page 1 of 1 -
1
Author Message
Avatar
blandyuk
Administrator
Status: Trusted
Joined: Tue, 05 Jul 2011
Posts: 3204
Team: HashKiller
Reputation: 7744 Reputation
Offline
Thu, 09 Jan 2014 @ 00:08:55

OK, so am here in the Philippines and I'm obviously doing my security rounds here Could not believe this when I saw it but in our office we have 4 wifi routers, all ZyXEL PLDTMyDSLBiz ones which use the default WPA key. After looking at the bottom, I noticed that they use the last 5 chars of the wifi MAC address at the end of the WPA key, which is totally retarded due to anyone being able to get the MAC address without even connecting.

Example:

SSID: PLDTMyDSLBizExample1
MAC: 00:0D:52:C7:86:E0
Passwd: PLDTWIFI786E0

All WPA keys have PLDTWIFI prepended so only need to add last 5 chars of MAC address.

You don't even need to try in order to get on these types of routers. Owned! This was the case for all 4 routers.

Have fun If anyone has one of these in range, please try this


Please read the forum rules | Please read the paid section rules

Avatar
Hash-IT

Status: Trusted
Joined: Tue, 02 Aug 2011
Posts: 4598
Team: HashKiller
Reputation: 2982 Reputation
Offline
Thu, 09 Jan 2014 @ 13:48:20

Excellent discovery Blandy and well written out, thank you !!! Rep +10

I am amazed at this as I thought ZyXEL were one of the best routers to buy.

We really need to have a better way to display all these exploits on md5decrypter.co.uk

Thanks again Blandy, nice to know you are still... err "testing" security wherever you are !!!


Please read the forum rules. | Please read the paid section rules.

BTC: 1MmWESN5bKZ1YSuHrm5uNwnQYxWyQnEQ6E

Avatar
wkIzalwikOzEqpJcByMa

Status: n/a
Joined: Sat, 06 Sep 2014
Posts: 11
Team:
Reputation: 0 Reputation
Offline
Tue, 09 Sep 2014 @ 13:19:56

hey Blandy and cia,

can you give us more details? I mean, how do you fingerprint those routers? Do you got a macaddress list for these routers?

Cheers



3 Results - Page 1 of 1 -
1

We have a total of 210225 messages in 25831 topics.
We have a total of 22907 registered users.
Our newest registered member is voztok94.