09-24-2022, 09:45 PM
(06-13-2022, 01:34 PM)Snoopy Wrote:(06-11-2022, 06:59 AM)JackSparrow47 Wrote:(06-10-2022, 06:09 PM)pdo Wrote:(06-10-2022, 05:31 PM)JackSparrow47 Wrote:(06-10-2022, 02:28 PM)Snoopy Wrote: that would be simple options
--increment --increment-min=8 and as mask ?a?a?a?a?a?a?a?a?a?a?a?a
but i think you will run into a buffer overflow
Think of it like I wanna bruteforce every possible password ever like the classic airmon-ng with crunch method, that generates and checks passwords on the way without making a dictionary.
What have you tried?
I didn't tried anything cause I don't know how to write a perfect character set!!
?a means all possible ascii chars, as long as the router doesnt accept things like cyrillic chars this should do the trick
?a = ?l?u?d?s and this means
l | abcdefghijklmnopqrstuvwxyz [a-z]
u | ABCDEFGHIJKLMNOPQRSTUVWXYZ [A-Z]
d | 0123456789 [0-9]
s | !"#$%&'()*+,-./:;<=>?@[\]^_`{|}~
but as i mentioned, cracking such a great keyspace will probably result in a bufferoverflow, depending on the length of your mask, 8-9 should be fine, i think with length 10 hashcat will tell you bufferoverflow
Yes the router has minimum 8 character of password to be set.
now how to write the character set with these l, u, d, s that you mentioned! but it should hit every possible 8 char long pass!