Bootrom – AnonyViet – English Version https://en.anonyviet.com The most popular website for sharing information technology, computer networks, and security knowledge. Stay up to date with the hottest news and tips Tue, 31 Jan 2023 17:48:09 +0000 en-US hourly 1 https://wordpress.org/?v=6.9.1 https://en.anonyviet.com/wp-content/uploads/2023/01/cropped-ico-logo-75x75-1.png Bootrom – AnonyViet – English Version https://en.anonyviet.com 32 32 Attack the Bootrom system of the net shop https://en.anonyviet.com/attack-the-bootrom-system-of-the-net-shop/ https://en.anonyviet.com/attack-the-bootrom-system-of-the-net-shop/#respond Tue, 31 Jan 2023 17:48:09 +0000 https://en.anonyviet.com/?p=7479

Today we will try to learn about how to hijack Server Bootrom, cash registers, Routers to redirect DNS, install spyware by TPress the Bootrom system of the net shop

Join the channel Telegram of the AnonyViet 👉 Link 👈

Tools needed:

Let’s start practicing:

Step 1:

First, you need to determine the IP range allocated to the workstation and its Gateway. To determine the IP range for workstations and Router’s Gateway, go to cmd and type the command ipconfig then Enter

first

IPv4 Address is the IP of my machine: 192.168.1.108

Default Gateway of the system is: 192.168.1.1

Usually, the focus will divide the system into 2 IP ranges

  • 1 series for Bootrom machines (192.168.1.2 -> 192.168.1.99)
  • 1 array of workstations. (192.168.1.100 -> 254)

Step 2:

Install Nmap software. Just click Next and you’re done.

After the installation is complete, open Nmap and scan the IP ranges and ports of the net shop

  • In the Target section: is the network range to be scanned: 192.168.1.0/24.
  • Under Profile: select Intense Scan, all TCP Port.
  • Then click Scan

2

Wait for the results to appear (a bit long)

3

In the result we have 10 hosts that are online:

  • 1 host can be Linux,
  • 8 hosts are Windows
  • What is an unknown host?

Shown above Getway of Router is 192.168.1.1, in the picture after scanning we see that it is a Linux host. Maybe this host is the Router because usually Router devices will run on Linux source code

In the results of Nmap, we see that the Router is opening 2 ports, 53 and 80 (web port).

We try to enter a web browser and type the router’s IP: 192.168.1.1

4

The user and password are often changed by the net shop owner because it will be troublesome if they do not have IT knowledge, and when the technical staff comes to handle the problem, it will be more complicated. So they usually leave the default user/password

Now we try user: admin, pass: admin.

Wow, so you can access the router’s configuration page. They use TotoLink equipment

5

We are already half way here. Should not continue at the net shop, now find a way to go home and still access this Router. So we use the DDNS function to assign the domain name to the static ip of the net shop through the Router

This is how I can remotely remote into the Router. Go to menu: Management -> DDNS.

Select No-IP, then type the domain name registered on No-ip. Login information then save and reboot Router

6

Finished 1 child: 192.168.1.1

The next time we see what is the IP 192.168.1.2 of the net shop? (it runs Windows operating system, open port 3389 (port remote desktop) So we can remote computer 192.168.1.2 according to speculation this will be Bootroom server

7

Try Remote Desktop.

  • Into the run type command mstsc.
  • Enter Computer: 192.168.1.2

A dialog box asking for a Remote account appears

8
Now we have to use the guessing method, usually simple passwords such as the owner’s name, password, 123456, 123@abc … Good luck

If successful, the image below will appear

9 ten

Remote can enter Bootrom, what to do next is up to you!

(Author: Darkcode – Shellsec)

The article achieved: 5/5 – (100 votes)

]]> https://en.anonyviet.com/attack-the-bootrom-system-of-the-net-shop/feed/ 0