Download - Hack Your Home Routers
![Page 1: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/1.jpg)
Hack Your Home RouterSecure Your Internet Access
Zhongke Chen
![Page 2: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/2.jpg)
Home routers have powerful hardware!
![Page 3: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/3.jpg)
TL-WDR7500
• QCA9558 SoC, MIPS,720MHz
• 8MB Flash
• 128M RAM
• QCA9558 (integrated 2.4ghz)
• QCA9880 (5ghz)
• AR8327N Gigabit Switch
• USB 2.0 x2
• Serial/JTAG
![Page 4: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/4.jpg)
But software is poor!
![Page 5: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/5.jpg)
• Missing network features
• Limited USB devices!
• No extensions!!
• Closed source!!!
• Vulnerabilities!!!!
• Backdoors!!!!!
![Page 6: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/6.jpg)
One day Cisco open-sourced software of
WRT54G
Hack It!
![Page 7: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/7.jpg)
How?
![Page 8: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/8.jpg)
• Choose a firmware to install
• Openwrt: > 3500 packages
• DD-Wrt: Advanced features
• Tomato: Dual WAN
• etc.
![Page 10: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/10.jpg)
!
Download
• http://downloads.openwrt.org/ (xxxx-factory.bin)
Flash
• http://192.168.1.1/
![Page 11: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/11.jpg)
First Login
• Wire connect to the router
• telnet 192.168.1.1 or http://192.168.1.1/
• Type passwd to set a new password for root user
![Page 13: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/13.jpg)
BusyBox v1.19.4 (2013-09-08 04:33:11 UTC) built-in shell (ash) Enter 'help' for a list of built-in commands. ! _______ ________ __ | |.-----.-----.-----.| | | |.----.| |_ | - || _ | -__| || | | || _|| _| |_______|| __|_____|__|__||________||__| |____| |__| W I R E L E S S F R E E D O M ----------------------------------------------------- BARRIER BREAKER (Bleeding Edge, r37917) ----------------------------------------------------- * 1/2 oz Galliano Pour all ingredients into * 4 oz cold Coffee an irish coffee mug filled * 1 1/2 oz Dark Rum with crushed ice. Stir. * 2 tsp. Creme de Cacao —————————————————————————— root@OpenWrt:~#
![Page 14: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/14.jpg)
Basic Configure
• Internet connection
• WIFI
![Page 15: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/15.jpg)
What is special?
![Page 16: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/16.jpg)
• Block Ads
• Multiple dials to boost your bandwidth
• IPv6 tunnel
• Web server
• Remote wake up your computer
• Remote access network files
• Dynamic DNS and remote control from outside
• VPN Client + Policy route
• AirCrack
![Page 17: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/17.jpg)
• 3G Router
• Tethering over your phone
• Connect to HDD
• Download Movie
• Share storage
• Remote backup
• Connect to USB Audio
• Play Music
• AirPlay
• Connect to webcam
• …
![Page 18: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/18.jpg)
Domestic Internet is CRUCIAL!
![Page 19: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/19.jpg)
• DNS filtering/redirecting
• IP blocking
• IP+Port blocking
• URL filtering -> TCP reset
• Keyword filtering -> TCP reset
• Certificate blocking -> TCP reset
• SSL/TLS sniffer -> TCP reset
• M-I-T-M (CNNIC certificate)
• Email blocking
• block for a period
![Page 20: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/20.jpg)
• Email blocking:
• use only gmail and other abroad mail boxes
![Page 21: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/21.jpg)
• MITM
• remove CNNIC certificate
• don’t manual install 3rd party root certificate (12306)
![Page 22: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/22.jpg)
• Modify hosts - DNS filtering X
• HTTP Proxy - IP blocking X
• SSL Proxy - browser doesn’t support X
• Tor - tor directory and bridge blocked X
• VPN (PPTP, OPENVPN, L2TP, …) - partially work
• SSH Port forwarding - sniffer
• FreeGate, UltraSurf, Psiphon - need frequent upgrade
• GoAgent - SSL problem
• ShadowSocks - TCP only
![Page 23: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/23.jpg)
• Very slow! especially access domestic sites
• Needs switch on/off frequently
• Auto Route Traffic!
![Page 24: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/24.jpg)
• Auto route traffic
• Domain/URL based: PAC
• gfwlist
• IP based: route table
• chnroute: all china IP ranges
• geoip: query geo DB
• DNS pollution/hijacking!!
![Page 25: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/25.jpg)
• DNS pollution/hijacking
• block ISP bogus IP (Ads)
• Modify hosts - Manual work
• use open abroad DNS server (Google DNS, OpenDNS) - Still hijacked
• Encrypt DNS connection to abroad DNS server (DNScrypt) - not optimized
• block bogus IP
![Page 26: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/26.jpg)
• My Solution running on OpenWrt!
• Shadowsocks (VPS in US)
• iptables geoip module
• Domestic DNS + Abroad DNS + Bogus IP blocking
• Backup solution
• PPTP VPN
![Page 27: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/27.jpg)
• Corp Network
• official proxy: rhv-entbc-001:3128, maa-entbc-001, etc
• VPN -> US/Korea/…
• SSH -> US servers
• SSH -> US servers -> SSH your own server
• eBay Guest
• no way
• ChinaUnicom
![Page 28: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/28.jpg)
THANK YOU
![Page 29: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/29.jpg)
Debrick Your Brick
• RESET settings
• TFTP flash
• Serial port
• JTAG
![Page 30: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/30.jpg)
![Page 31: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/31.jpg)
OpenWrt Development• Port OpenWrt to new hardware
• Port app in C to OpenWrt
• Write app code in Perl/Python/Lua/etc
• Write app code in C
• Write Kernel Extensions
![Page 32: Hack Your Home Routers](https://reader034.vdocument.in/reader034/viewer/2022042518/55837cb2d8b42ac6268b4ef7/html5/thumbnails/32.jpg)
References
• https://en.wikipedia.org/wiki/OpenWrt
• https://openwrt.org/
• https://en.wikipedia.org/wiki/Great_Firewall_of_China