Do you know your gateway IP? If not lets setup a Site Survey to understand your network?
If you've ever purchased a router or looked at your modem in the past you may have noticed the numbers 192.168.0.1, 192.168.1.1, 10.10.10.1, or 10.0.10.1.
To the average person these numbers do not mean much but to a skilled individual these numbers can open up the world. To me these numbers mean so much more to the naked eye. I often find myself exploring these numbers when I attempt a penetration and/or vulnerability test of a network I've been granted access to by simply asking for the Wi-Fi password.
A penetration test, colloquially known as a pen test or ethical hacking, is an authorized simulated cyberattack on a computer system, performed to evaluate the security of the system; this is not to be confused with a vulnerability assessment.
A vulnerability assessment is the process of identifying, quantifying, and prioritizing the vulnerabilities in a system.
***Note: This type penetration and vulnerability test should not be conducted without prior knowledge of network functionality and operability.
Commonly the if IP's listed below are left unchanged as the gateway IP address any one person with an ethernet connection could potentially gain access to your network by simply plugging a cat5 and/or cat6 cable into any open connection on your network.
192.168.0.1 |
192.168.1.1 |
10.10.10.1 |
10.0.10.1 |
An open connection typically refers to that of an ethernet port. An Ethernet port is a typically connected directly to the gateway. By entering one of the IP addresses listed above in your web browser. Access to the entire network could be allowed.
Google will provide the default login for most router/modem types and even the default login information for any Internet Service Provider.
Is your network secure from and for customers?
I know you are thinking "Could it really be that simple and easy?" The answer is a resounding "Yes."
Sometimes the solutions are even more simpler than that.
A simple solution for this common problem is to simply login to your router and change the password. Changing the default password does not circumvent the factory password set forth with the manufacturer.
A step up in security of this common problem would be to change both the default username and password of the router. Also create a second super-user account with mirrored credentials
An even more complex solution is that of only allowing a certain IP or subset or IP's access the resources on your gateway.
Comentarios