|

Routersploit | An Ultimate Guide on Exploit Routers

/ / Routersploit | An Ultimate Guide on Exploit Routers
ByKaran Ratta
Share
Tweet
Share
Pin
0 Shares

In this Post, We will discuss about Routersploit and how we can use it for exploitation. So, basically Routersploit is an open-source exploitation framework for embedded systems.

What is Routersploit?


RouterSploit is a Python application that simplifies many of the tasks involved with router exploitation. Designed after Metasploit, its commands would be familiar to those used in the Metasploit application. 

It includes scanning and exploit modules and is available for Kali Linux (and macOS or Mac OS X if you want).

Once you connect with the target network, scanning can show whether the router is easily accessible through the framework.

Today, we’re working through the Autopwn function to find vulnerabilities on routers and connected devices easily.

How to install Routersploit in Termux?


We’ll need to make sure that we have Python installed in Termux, and you can install it by using apt-get:


apt-get install python3-pip requests paramiko beautifulsoup4 pysnmp


To install on Termux or Kali Linux, open a terminal window and type the below commands:


git clone https://github.com/threat9/routersploit

cd routersploit

python3 -m pip install -r requirements.txt

python3 rsf.py


On macOS, the method is similar. In a terminal window, type:


git clone https://github.com/threat9/routersploit

cd routersploit

sudo easy_install pip

sudo pip install -r requirements.txt


How to check Vulnerability for all exploits in RouterSploit?

  • Run RouterSploit using ” routersploit ” or “./rsf.py“.
  • Type “use scanners/autopwn“.
  • To view options, type “show options“.
  • We need to set the target to write down “set target < Target IP address>“.
  • To start the module, type “run“.

Check Vulnerability in RouterSploit


It’ll inform us that the router is vulnerable to two exploits. To deselect the Module write “back” or  choose another Module.


👉 Read Also Don’t miss it:


Termux Commands list for Android


How to Install Metasploit Framework in Termux Application?

How to hack Android using Ngrok over Internet?

Step By Step to Hack Android Phone on LAN using Termux

How to use Routersploit in Termux for Exploitation?


Suppose I know the router being tested is made by D-Link. Then I pick the scanner I need and that is “use scanners/dlink_scan.It is in the above image.So, If you notice the vulnerability that impacts the router, pick the required module:


use exploits/dlink/dir_300_600_rce


Set a target (and port if needed):


set target <Target IP address>

And start with the operation:


run

Look at the changed command line prompt:


cmd >


It ensures that the commands entered would be sent directly to the insecure router using the Routersploit Results


RouterSploit enables you to:


  1. Get the password in clear text

  2. Get your password in the type of an MD5 hash

  3. Run commands on a remote router

  4. Step up the directories of the router and download the data

  5. Authenticate without the password

  6. Modify the password


All weaknesses in one way or another help you to modify network equipment configurations for subsequent attacks.


Using Open Data Credentials


The choices that make it possible to authenticate (open password, password-free authentication, password change) are limited because we have access to the router’s administrative panel and complete control over its parameters.

It allows the attacker:

  1. Reflash the router with the firmware tabs (a difficult version includes the expertise of unpacking/packing the built-in firmware, a deep knowledge of the Linux operating system; Not open to all routers, but if good, it gives unrestricted control of the router and traffic tracking;

  2. Leave the users without an Internet connection (simple choice, only update the settings to the wrong ones);

  3. If the router supports this or that VPN implementation, it can be connected to a specially designed VPN attacker, and all the man-in-the-middle attack capabilities become available.

  4. Find out the Wi-Fi password, activate the Wi-Fi module if it’s off.

  5. Change the DNS settings to the IP of your fake DNS.


All of this is valid to bypass security and vulnerabilities that cause you to change your password.


5 Modules that perform Penetration Testing Operations in  Routersploit

  1. Exploits – plugins that take advantage of known vulnerabilities – 
  2. Creds –  Modules designed to test credential against network service
  3. Scanners – modules that verify whether the target is vulnerable to any exploit.
  4. Payloads – modules responsible for producing payloads for different architectures and injection points.
  5. Generic– Modules that execute generic attacks.

Modules of Routersploit


DISCLAIMER: This article is written for educational purposes. I am not liable for any potential damage or fraudulent activities that have been implemented for this knowledge. If you continue reading, you agree to use this information exclusively for ethical purposes. If not, please stop reading now this Routersploit now and close this tab!


Share
Tweet
Share
Pin
0 Shares

Leave a Reply

Your email address will not be published.