Posts: 102
Threads: 2
Joined: Jul 2016
A nice even 1000 passwords for the 5268AC. I think this is a good place to leave it, unless anybody has any more ideas...
https://pastebin.com/22ZGhHg4
Posts: 102
Threads: 2
Joined: Jul 2016
Look at what Santa left in my stocking!!!!
Let's crack it open and see if its firmware contains any mysteries....
Posts: 102
Threads: 2
Joined: Jul 2016
This pace edition is straight from the factory! I've got root access over UART. And check out the /usr/bin directory.... factory_set_default_wifi_passwd!
*sad trombone* It's just a script to pull the default password from elsewhere, not the algo. Now to find the elsewhere!
Code:
%factory# ls /usr/bin
battery factory_set_default_wifi_passwd
bunzip2 factory_set_default_wifi_ssid
bzcat factory_set_device_key
bzcmp factory_set_dsl_media
bzdiff factory_set_factorymode
bzegrep factory_set_ip_address
bzfgrep factory_set_led
bzgrep factory_set_led_mode
bzip2 factory_set_mac_range
bzip2recover factory_set_mfg_timestamp
bzless factory_set_model
bzmore factory_set_pca
call_qcsapi factory_set_serial
dumpmem factory_set_trusteng
factory factory_set_wifi5g_device
factory_batt factory_set_wifi5g_ipaddr
factory_battery_calib factory_set_wifi5g_mac_addr
factory_battery_daemon factory_set_wifi5g_mfg
factory_cert factory_set_wifi5g_model
factory_cert_get_file factory_set_wifi5g_netmask
factory_cert_install factory_set_wifi5g_param
factory_cert_list factory_set_wifi5g_passwd
factory_cert_remove factory_set_wifi5g_pca
factory_cert_request factory_set_wifi5g_serial
factory_cert_request_install factory_set_wifi5g_ssid
factory_cert_verify factory_set_wifi_cal
factory_disable factory_set_wifi_continuous_transmit
factory_download factory_test_usb_filecopy
factory_download_pkgstream factory_tftp_upload
factory_dsl_test_qln factory_unboot
factory_enable factory_usb_overload_status
factory_get factory_verify_credentials
factory_get_current_wifi_rx_count factory_wifi5g_finalize
factory_image_switch factory_wifi5g_update_image
factory_kmsgd feature_support
factory_log features
factory_reset_dsl jrecv
factory_reset_wifi5g jsend
factory_set_accesscode openssl
factory_set_authcode pkgstreaminstall
factory_set_current_wifi_channel quantenna_support
factory_set_current_wifi_fixed_tx_rate sendarp
factory_set_current_wifi_mode setmem
factory_set_current_wifi_ssid telnetd
factory_set_current_wifi_tx_frequency tftp_upload
factory_set_current_wifi_tx_power
%factory#