Announcement

Collapse
No announcement yet.

How can I break into my own network box?

Collapse
This topic is closed.
X
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

    How can I break into my own network box?

    PREFACE: I am going to ask for some help doing something requiring information that could be misused. If you have answers for me but are not comfortable sharing them with the entire forum, please PM me and we can communicate privately. Thank you.

    I have a networked over-the-air DVR that is wonderful and at the same time frustrating. The Korean company that made it has stopped supporting it and is either going out of business or changing directions entirely. Requests from dozens if not hundreds of owners for them to release the source code or the device have gone unanswered, even though the device runs on linux and the have the GPL included in their documentation. I really don't have the resources to sue them.

    What I would like to do is make a few modifications to the menus and network structure of the device to make it more user friendly in my home environment - a few symlinks and the like, and possibly add a service or two and some connections to internet streaming pages. Of course, they have made it nearly impossible to get into the box itself. When they update the box, it is done over the internet via a coded firmware update.

    What I want to do is have a shot at getting in to it. I realise I may brick it or be unable to do anything once in, but I'd like to try anyway. The device has five open ports and I'd like to ssh into it. Anyone old hackers on here know any backdoor ways to get this done? Here's what I know so far:

    Not shown: 995 closed ports
    PORT STATE SERVICE
    21/tcp open ftp
    80/tcp open http
    139/tcp open netbios-ssn
    445/tcp open microsoft-ds
    6881/tcp open bittorrent-tracker

    I also know it's MAC address. The device runs off flash memory and has an internal (removable) hard drive used for storage. The http port puts you on a broswer based remote control page. I can ftp, samba and nfs transfer files to/from it.

    Suggestions?

    Please Read Me

    #2
    Don't know if this can be any help.
    Ok, got it: Ashes come from burning.

    Comment


      #3
      If you connect an FTP client to it, or telnet to the HTTP port, can you get the thing to cough up any version strings? If so, then you might go a-Googling for known vulnerabilities in the software versions you see. Also, look for fingerprinting tools (p0f), vulnerability scanners (nessus, nikto), and exploit toolkits (Metasploit). Lots more at SecurityTube Tools.

      Comment


        #4
        It appears to connect through port 80 to telnet, but no commands generating any output. Still digging....

        Please Read Me

        Comment


          #5
          After you telnet into port 80, type:
          Code:
          GET / HTTP/1.1
          (yes, upper case) and press [Enter] twice. What do you see?

          Comment


            #6
            HTTP/1.1 400 Bad Request
            Content-Type: text/html
            Content-Length: 349
            Connection: close
            Date: Mon, 23 Apr 2012 04:33:25 GMT
            Server: lighttpd/1.4.26


            <?xml version="1.0" encoding="iso-8859-1"?>
            <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
            "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
            <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
            <head>
            <title>400 - Bad Request</title>
            </head>
            <body>
            <h1>400 - Bad Request</h1>
            </body>
            </html>
            Connection closed by foreign host.

            Please Read Me

            Comment


              #7
              Originally posted by oshunluvr View Post
              Server: lighttpd/1.4.26
              Oopsie.

              Comment


                #8
                B&N pulled the Magazine "Linux Format" because it had an article titled "Learn to hack":

                http://www.tuxradar.com/content/learn-hack/


                It begins:
                There are two rules of computer security:
                one – don’t buy a computer; and
                two – if you have to buy a computer, don’t turn it on. If you break these rules then you’ll be opening yourself up to potential problems. No system is 100% safe from hackers, but by following a few simple steps you can make yours much harder for intruders to attack.
                but then gets fairly serious. I thought it a good article to post on this thread because it teaches hacking by breaking into one's "own computer", a guest OS, as a training tool.

                I know that this article will be the launching pad for a whole new generation of ... not script kiddies, because no coding is taught or required... but template kiddies.

                As a big kid I must say that it is a very interesting article!
                Last edited by GreyGeek; May 04, 2012, 12:29 PM.
                "A nation that is afraid to let its people judge the truth and falsehood in an open market is a nation that is afraid of its people.”
                – John F. Kennedy, February 26, 1962.

                Comment


                  #9
                  Silly B&N.

                  BTW... take a look at Etaoin Shrdlu's comment, "Rule #1," on that article. Smart guy!

                  Comment


                    #10
                    "Rule #1"

                    Yup.... At work I used to manipulate data supplied by the IRS. They required that the computer on which the data was stored and used be behind locked doors and not connected to the Internet or LAN.

                    Strange requirements when one considers that the data was made available for me to download from their website! (This rule was enacted after THEIR people were caught looking up the income of Hollywood stars.)

                    I used the data to compare the amounts reported on Nebraska tax returns with those reported on the IRS returns. Folks with discrepancies of more than some arbitrary value (usually $1,000) got a letter from our tax commissioner. There were several hundred who under reported their income by more than $5K on their state returns, and a few by over $100K :eek:
                    "A nation that is afraid to let its people judge the truth and falsehood in an open market is a nation that is afraid of its people.”
                    – John F. Kennedy, February 26, 1962.

                    Comment

                    Working...
                    X