default WPA keys!!!

[etech9]

ok i was hoping to start a long thread asking people to supply us with their details of routers with default WPA keys.

so we know that the SKY v1 netgear has been cracked
&
these guys have got quite far with tiscali and speedtouch
hxxp://forums.remote-exploit.org/showthread.php?t=15965&highlight=default+wpa+key

so this is a request for your;

MAC address
ESSID
serial no.
'default' WPA key

maybe someone can figure something out.

using this MAC address prefix list, helps to know the vendor of the router.
hxxp://standards.ieee.org/regauth/oui/oui.txt

ex. ESSID:OrangeAB12C3 MAC:00:01:E3:EE:76:B3 = siemens router
(i went to the 'orange' website to find out that siemens routers are supplied by Orange in their starter packs, if this helps anyway)

i would really like to know more on;
OrangeAB12C3
Livebox-1A23
BTHomeHub2
SKY v2 netgear
SKY sagem


i suppose all i know of is;

SKY12345 v1 netgear - WPA KEY= 8 char uppercase A-Z

help is much appreciated! thanks

[etech9]

237 views at the time of this post! and not 1 donation.

mac address
serial number
essid
default WPA key

[Talkie Toaster]

I can help with some of those, give me a couple of days though.... just bricked my lilo with a windows install, not got round to fixing it and most of my notes are on my BT3 partition.....

Or try googling GNU Citizen, Adrian Pastor (Pagvag/k????, he's maybe a member here actually) who writes for them has studied many domestic routers available here in the UK.

TT

[etech9]

hahahaha. you gotta luv gates and windows eh!

[Talkie Toaster]

Worst thing is I can't complain, its the first MS product I've actually REALLY liked (and it was free,double bonus), i think i've even forgiven it for blitzing my bootloader!

Ah well its time i re-learnt lilo anyway, its just worked first time every time so far, i kinda knew one day it'd all go wrong.....

I think i've donated in a few threads about home routers and also custom wordlists for reduced character sets (ie:routers that only have [a-f,0-9] or all capital letters in default pass), have a search through my previous posts and you might come across some good threads.

TT

[Lammer]

Hi.
Here in Portugal allmost all ISPs "borow" Thomson, D'Link and N2Wire.
Do you want the std info at this ones?
Reggards

[mummysboy]

Tiscalli use WPA2 as default.

When i next visit the oldies ill have a peek at their router for ya.

The router is a black gigabyte thing - dont know what its guts is as i didnt pay much attention when i set it up.

I know that AOL are still sending out Netgear routers with no preset security though.

AND

Livebox will only allow connections if you push a button on the side of the router to accept the device [even if the network is open you still need to push the button]

[Barry]

You know one of the links in BackTrack's Firefox goes to a web site with all this info already in it.

[=Tron=]

Quote:

Originally Posted by mummysboy

Livebox will only allow connections if you push a button on the side of the router to accept the device [even if the network is open you still need to push the button]

I guess this is something you only need to do when you connect to the device the first time? In that case it probably only remembers to allow the MAC address of the specific device, which means a simple spoofed MAC will bypass this protection.

[marked]

True about the Livebox unless 'Easy Pairing' is switched on in the router. There are Inventel USB adapters that apparently bypasses this and connect without Easy Pairing or pressing the button. I have had one and it isn't the case in my experience.

Also, on the Livebox, depending on the firmware. It use a mixed-mode of WEP Open and Shared Key with is a pain to break. I managed it on mine but it was long winded and have forgotten howto do it and deleted the cap files. Think you have to capture the handshake then forge an ARP and fake MAC to reply the ARP.

=Tron= - Nope, you have to do it all the time unless Easy Pairing is enabled.