wordlist_parte1
TRANSCRIPT
-
8/19/2019 wordlist_parte1
1/6
Una parte crucial de la comprobación de PC / red de seguridad es tener juegos decentes de
listas de palabras. Hay muchos por ahí en la red, sin embargo muchas no son realmente vale
mucho y algunos necesitan un montón de trabajo para que sean utiliables. grandes listas de
palabras no siempre signi!ica mejor. ROUTERS / puntos de acceso para los inicios de sesión y
contrase"as de router de cheques, siempre es digno de su tiempo para correr a trav#s de la
primera entrada por de!ecto los responsables y contrase"as. Cómo averiguar la marca del
router$ Pues dos opciones han trabajado para mí, . % . Cuando se ejecuta &ismet, que, en
ocasiones, ser capa de demostrar el !abricante del enrutador inal'mbrico (bre &ismet )de
concha* de puesta en +ismetng -rdenar por 01 )tipo 2s2 seguido por 3b3* 2s2 4
2b2 eleccione la red de inter#s y pulsa 3enter3 para ver los detalles de la red. i usted est' en
suerte el !abricante ser' mostrado. 5. Un medio alternativo es consultar con el !abricante
sobre la base de la dirección 01 6(C. -btener el 01 mac usando ya sea 2airodump 3o
&ismet. 7uego, el sitio 8eb9http://888.co!!er.com/mac;!ind/ permitir' una b
-
8/19/2019 wordlist_parte1
2/6
-
8/19/2019 wordlist_parte1
3/6
P U 7 0 C ( 1 - P - K C 0 L A ( > L %?:%M
http://adaywithtape.blogspot.com.es/2009/05/wordlists-and-wordlist-manipulation.htmlhttp://adaywithtape.blogspot.com.es/2009/05/wordlists-and-wordlist-manipulation.html
-
8/19/2019 wordlist_parte1
4/6
Ahere are a lot out there on the net, ho8ever a lot are not really 8orth much and some need
a lot o! 8or+ to ma+e them usable.
7arger 8ordlists do not al8ays mean better.
ROUTERS / ACCESS POINTS
or chec+ing router logins and pass8ords, it is al8ays 8orth your 8hile to !irst run through
the ma+ers de!ault login N pass8ords.
Ho8 to !igure out the ma+e o! the router $ Dell t8o options have 8or+ed !or me9
%.
Dhen running &ismet, it 8ill on occasion be able to sho8 the manu!acturer o! the 8ireless
router.
-pen up &ismet )!rom shell*
start+ismetng
ort by 01 )type 3s3 !ollo8ed by 3b3*
2s2 4 2b2
elect the net8or+ o! interest and hit 3enter3 to see more details on the net8or+.
0! you are in luc+ the 6anu!acturer 8ill be sho8n.
-
8/19/2019 wordlist_parte1
5/6
5.
(n alternative means is to loo+ up the manu!acturer based on the 01 6(C address.
et the 01 mac by using either 3airodump3 or &ismet.
Ahen 9
Ahe 8ebsite 9 http://888.co!!er.com/mac;!ind/ 8ill allo8 a loo+up o! 6(C addresses and
sho8 you the manu!acturer o! same.
Iou can then chec+ the de!ault login / pass8ords on either9
http://888.phenoelitus.org/dpl/dpl.html
or
https://888.securin!os.in!o/pass8ordslistemotsdepasse.html
Oi! you spea+ a bit o! !rench 9* =
Ahis should be your !irst chec+ be!ore trying timeconsuming brute!orce crac+ing 8ith hydra
or medusa.
HIDDEN ESSIDS
http://www.coffer.com/mac_find/http://www.coffer.com/mac_find/http://www.phenoelit-us.org/dpl/dpl.htmlhttps://www.securinfos.info/passwords-liste-mots-de-passe.htmlhttp://www.coffer.com/mac_find/http://www.phenoelit-us.org/dpl/dpl.htmlhttps://www.securinfos.info/passwords-liste-mots-de-passe.html
-
8/19/2019 wordlist_parte1
6/6
(s sho8n in previous posts, md+? can be used to crac+ hidden ssids. ( brute !orce option is
available but in reality ta+es a loong time !or ssids o! over ? or @ characters.
0t ta+es around ?Bmin to try all printable characters !or a ? character ssid on my test setup.
Having a good 8ordlist is much better, ho8ever i! the essid is not in the 8ordlist.. your outta
luc+.
Ahere is a custom ssid 8ordlist based on the hmoo roups ssid list !or DP( tables, 8hich can
be !ound here9
http://[email protected]/account/!ile/BE5B%FEG/dEb@dBe5/01.html
or instance, 0 have ta+en that list and add ne8 ssids 8hich 0 get 8hen out and about 8ith my
trusty old P1( running Di!io!um.
)Lo8 running at over @FFF o! 01s seen to be used*
Plenty o! 8ordlists can also be !ound on9
http://888.outpostG.com/!iles/Dord7ists.html
Church o! Di!i DP( tables
(nd o! course ...
oogle is your !riend :*
ut 8hat i! you 8ant to create a custom made 8ordlist !or a speci!ic job / test $
03ll try to elaborate a bit more on that in part 5..
P-A>1 I A(P> (A
http://www.4shared.com/account/file/57251079/d7b4d5e2/SSID.htmlhttp://www.outpost9.com/files/WordLists.htmlhttp://www.renderlab.net/projects/WPA-tables/http://www.google.nl/search?hl=nl&q=wordlists&btnG=Google+zoeken&meta=&aq=f&oq=http://www.4shared.com/account/file/57251079/d7b4d5e2/SSID.htmlhttp://www.outpost9.com/files/WordLists.htmlhttp://www.renderlab.net/projects/WPA-tables/http://www.google.nl/search?hl=nl&q=wordlists&btnG=Google+zoeken&meta=&aq=f&oq=