THIS IS A TEST INSTANCE. Feel free to ask and answer questions, but take care to avoid triggering too many notifications.
Ask Your Question

Revision history  [back]

Revision 2
grahamb's avatar
23.8k
grahamb
updated 2023-11-30 15:27:03 +0000

HTTP Router Gateway password encrypted or looks random

So recently i wanted to test if i can capture my own packet that i send to the router. To see if i can see the password in clear text but it doesn't show up as clear text. It shows a different password. This is the following TCP stream that i think sent the gateway the password.

POST /LoginCheck HTTP/1.1
Host: 192.168.0.1
Connection: keep-alive
Content-Length: 34
Cache-Control: max-age=0
Upgrade-Insecure-Requests: 1
Origin: http://192.168.0.1
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Referer: http://192.168.0.1/login.asp?0
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Username=admin&Password=YWRtaW4%3DHTTP/1.0 302 Redirect
Server: GoAhead-Webs
Date: Thu Nov 30 16:28:08 2023
Set-Cookie: ecos_pw=YWRtaW4=mji:language=en; path=/
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html
Location: http://192.168.0.1/index.asp

The password is the default admin

Revision 1
HyperSyntax's avatar
1
HyperSyntax
asked 2023-11-30 12:53:43 +0000

HTTP Router Gateway password encrypted or looks random

So recently i wanted to test if i can capture my own packet that i send to the router. To see if i can see the password in clear text but it doesn't show up as clear text. It shows a different password. This is the following TCP stream that i think sent the gateway the password.

password. POST /LoginCheck HTTP/1.1
Host: 192.168.0.1
Connection: keep-alive
Content-Length: 34
Cache-Control: max-age=0
Upgrade-Insecure-Requests: 1
Origin: http://192.168.0.1
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7
Referer: http://192.168.0.1/login.asp?0
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
en-US,en;q=0.9
  
Username=admin&Password=YWRtaW4%3DHTTP/1.0 302 Redirect
Server: GoAhead-Webs
Date: Thu Nov 30 16:28:08 2023
Set-Cookie: ecos_pw=YWRtaW4=mji:language=en; path=/
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html
Location: http://192.168.0.1/index.asp
http://192.168.0.1/index.asp

The password is the default adminadmin