8/19/2019 wordlist_parte1

1/6

Una parte crucial de la comprobación de PC / red de seguridad es tener juegos decentes de

listas de palabras. Hay muchos por ahí en la red, sin embargo muchas no son realmente vale

mucho y algunos necesitan un montón de trabajo para que sean utiliables. grandes listas de

palabras no siempre signi!ica mejor. ROUTERS / puntos de acceso para los inicios de sesión y

contrase"as de router de cheques, siempre es digno de su tiempo para correr a trav#s de la

primera entrada por de!ecto los responsables y contrase"as. Cómo averiguar la marca del

router$ Pues dos opciones han trabajado para mí, . % . Cuando se ejecuta &ismet, que, en

ocasiones, ser capa de demostrar el !abricante del enrutador inal'mbrico (bre &ismet )de

concha* de puesta en +ismetng -rdenar por 01 )tipo 2s2 seguido por 3b3* 2s2 4

2b2 eleccione la red de inter#s y pulsa 3enter3 para ver los detalles de la red. i usted est' en

suerte el !abricante ser' mostrado. 5. Un medio alternativo es consultar con el !abricante

sobre la base de la dirección 01 6(C. -btener el 01 mac usando ya sea 2airodump 3o

&ismet. 7uego, el sitio 8eb9http://888.co!!er.com/mac;!ind/ permitir' una b

8/19/2019 wordlist_parte1

2/6

8/19/2019 wordlist_parte1

3/6

P U 7 0 C ( 1 - P - K C 0 L A ( > L %?:%M

http://adaywithtape.blogspot.com.es/2009/05/wordlists-and-wordlist-manipulation.htmlhttp://adaywithtape.blogspot.com.es/2009/05/wordlists-and-wordlist-manipulation.html

8/19/2019 wordlist_parte1

4/6

Ahere are a lot out there on the net, ho8ever a lot are not really 8orth much and some need

a lot o! 8or+ to ma+e them usable.

7arger 8ordlists do not al8ays mean better.

ROUTERS / ACCESS POINTS

or chec+ing router logins and pass8ords, it is al8ays 8orth your 8hile to !irst run through

the ma+ers de!ault login N pass8ords.

Ho8 to !igure out the ma+e o! the router $ Dell t8o options have 8or+ed !or me9

%.

Dhen running &ismet, it 8ill on occasion be able to sho8 the manu!acturer o! the 8ireless

router.

-pen up &ismet )!rom shell*

start+ismetng

ort by 01 )type 3s3 !ollo8ed by 3b3*

2s2 4 2b2

elect the net8or+ o! interest and hit 3enter3 to see more details on the net8or+.

0! you are in luc+ the 6anu!acturer 8ill be sho8n.

8/19/2019 wordlist_parte1

5/6

5.

(n alternative means is to loo+ up the manu!acturer based on the 01 6(C address.

et the 01 mac by using either 3airodump3 or &ismet.

Ahen 9

Ahe 8ebsite 9 http://888.co!!er.com/mac;!ind/ 8ill allo8 a loo+up o! 6(C addresses and

sho8 you the manu!acturer o! same.

Iou can then chec+ the de!ault login / pass8ords on either9

http://888.phenoelitus.org/dpl/dpl.html

or

https://888.securin!os.in!o/pass8ordslistemotsdepasse.html

Oi! you spea+ a bit o! !rench 9* =

Ahis should be your !irst chec+ be!ore trying timeconsuming brute!orce crac+ing 8ith hydra

or medusa.

HIDDEN ESSIDS

http://www.coffer.com/mac_find/http://www.coffer.com/mac_find/http://www.phenoelit-us.org/dpl/dpl.htmlhttps://www.securinfos.info/passwords-liste-mots-de-passe.htmlhttp://www.coffer.com/mac_find/http://www.phenoelit-us.org/dpl/dpl.htmlhttps://www.securinfos.info/passwords-liste-mots-de-passe.html

8/19/2019 wordlist_parte1

6/6

(s sho8n in previous posts, md+? can be used to crac+ hidden ssids. ( brute !orce option is

available but in reality ta+es a loong time !or ssids o! over ? or @ characters.

0t ta+es around ?Bmin to try all printable characters !or a ? character ssid on my test setup.

Having a good 8ordlist is much better, ho8ever i! the essid is not in the 8ordlist.. your outta

luc+.

Ahere is a custom ssid 8ordlist based on the hmoo roups ssid list !or DP( tables, 8hich can

be !ound here9

http://888.@shared.com/account/!ile/BE5B%FEG/dEb@dBe5/01.html

or instance, 0 have ta+en that list and add ne8 ssids 8hich 0 get 8hen out and about 8ith my

trusty old P1( running Di!io!um.

)Lo8 running at over @FFF o! 01s seen to be used*

Plenty o! 8ordlists can also be !ound on9

http://888.outpostG.com/!iles/Dord7ists.html

Church o! Di!i DP( tables

(nd o! course ...

oogle is your !riend :*

ut 8hat i! you 8ant to create a custom made 8ordlist !or a speci!ic job / test $

03ll try to elaborate a bit more on that in part 5..

P-A>1 I A(P> (A

http://www.4shared.com/account/file/57251079/d7b4d5e2/SSID.htmlhttp://www.outpost9.com/files/WordLists.htmlhttp://www.renderlab.net/projects/WPA-tables/http://www.google.nl/search?hl=nl&q=wordlists&btnG=Google+zoeken&meta=&aq=f&oq=http://www.4shared.com/account/file/57251079/d7b4d5e2/SSID.htmlhttp://www.outpost9.com/files/WordLists.htmlhttp://www.renderlab.net/projects/WPA-tables/http://www.google.nl/search?hl=nl&q=wordlists&btnG=Google+zoeken&meta=&aq=f&oq=