Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Whether this is about ha.ckers.org, sla.ckers.org or some other project you are interested in or want to talk about, throw it in here to get feedback. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Routerpwn, a router exploitation web app
Posted by: hkm
Date: July 27, 2011 01:40AM

http://www.routerpwn.com

Routerpwn is a web application that aids with the exploitation of vulnerabilities in home routers and other embedded devices.

It is a compilation of local and remote exploits ready to run at the click of a button. The current release contains 103 exploits which can be run locally by using the default internal IP address or remotely by specifying a remote IP address.

Routerpwn is written in JavaScript and HTML, with the purpose of being able to run it on most devices. It has been optimized to run on mobile devices such as smartphones and tablets. Furthermore, it has been successfully tested on televisions, gaming consoles and old cell phones.

It is one single .html file which can be downloaded and browsed locally, so exploitation can occur without the need of an internet connection.

I hope you like it.


More info: http://www.websec.ca/news/routerpwn_framework

Options: ReplyQuote
Re: Routerpwn, a router exploitation web app
Posted by: Ivan
Date: July 27, 2011 08:19AM

Nice :)

You can add few more for Huawei HG510: http://netsec.rs/18/huawei-hg510-multiple-vulnerabilities/493/ ;)

http://www.security-net.biz/

Options: ReplyQuote
Re: Routerpwn, a router exploitation web app
Posted by: hkm
Date: July 28, 2011 01:37AM

Added:

HG510 rebootinfo.cgi denial of service

I am still not sure if I should add vulns like reflected XSS and CSRFs that require authentication.


Thanks!

Options: ReplyQuote


Sorry, only registered users may post in this forum.