crak password

Crack Cisco Password
12

09

2007
Tadi ketika mau masuk router yang sering dikunjungi, ga tau kenapa tiba-tiba lupa password. Zzinkk!! tau-tau mau nginget susah banget. Karena lagi ga terlalu sibuk, iseng2 liat backup konfigurasi routernya.

hostname ach_keren
!
enable secret 5 $1$SKOf$u9nY/jWlSGpdUdfJDf98
enable password 7 xxxxxxx
!
username ach password 7 xxxxxxxx
username admin privilege 15 password 7 xxxxxx



Argh.. daripada mikir, mendingan iseng2 coba cari cara crack-nya di internet…

Cari-cari di google.. loh.. ternyata sudah banyak toh artikelnya.. trus juga udah lama toh bisa di crack… hehe..

Nah.. sekarang coba-coba ah….

hmmm… karena banyak versinya, cobain yang pake perl n web aja ah… (yg make C males compile nya :-p )

coba yang perl dulu ah…

ambil source code nya dari sini


#
# Credits for orginal code and description hobbit@avian.org,
# SPHiXe, .mudge et al. and for John Bashinski
# for Cisco IOS password encryption facts.
#
# Use for any malice or illegal purposes strictly prohibited!
#
@xlat = ( 0×64, 0×73, 0×66, 0×64, 0×3b, 0×6b, 0×66, 0×6f, 0×41,
0×2c, 0×2e, 0×69, 0×79, 0×65, 0×77, 0×72, 0×6b, 0×6c,
0×64, 0×4a, 0×4b, 0×44, 0×48, 0×53 , 0×55, 0×42 );
while (<>) {
if (/(password|md5)\s+7\s+([\da-f]+)/io) {
if (!(length($2) & 1)) {
$ep = $2; $dp = “”;
($s, $e) = ($2 =~ /^(..)(.+)/o);
for ($i = 0; $i < length($e); $i+=2) {
$dp .= sprintf “%c”,hex(substr($e,$i,2))^$xlat[$s++];
}
s/7\s+$ep/$dp/;
}
}
print;
}
# eof

Trus buat file baru yg isinya :

username ach password 7 xxxxxxxx
username admin privilege 15 password 7 xxxxxx

Trus jalanin deh file perlnya…

[chaidir@aCh ~]$ ./cisco.pl test
username ach password achaikerendeh
username admin privilege 15 password achaikerenbangetdeh

Hore… hore… ketemu lagi passwordnya…

duh.. jd serem ngasih priviledge 15, apa mendingan lgsg enable secret aja ya??

Nah, klo mau nyoba yang lebih mudah lagi.. mendingan langsung lewat web sini

Yosh!! karena dah nemu passwordnya… kembali ke laptop!!

Kerja lagi kitah….

Referensi :

http://insecure.org/sploits/cisco.passwords.html

http://www.cisco.com/warp/public/701/64.html

http://onno.vlsm.org/v01/OnnoWPurbo/contrib/network/network-security/cisco-pass-the-password.txt

http://www.ifm.net.nz/cookbooks/passwordcracker.html