<<
Router password cracking requires two routers performing two-stage routing. Here, we use an ADSL modem with routing capabilities and a TP-Link router. If your ADSL modem does not have routing functions, you will need to find another one. That covers the hardware requirements.
The Router Password Cracking Process
Step 1:
Configure the ADSL broadband modem for automatic dialing, disable its DHCP function, and turn off the SNMP function in the security options. The detailed process will not be covered again.
Step 2:
Connect the network cable from the ADSL modem to the WAN port of the router. Then, set the computer IP and router IP to the same network segment. Open IE (mine is 192.168.123.254) to configure the router:
Change the WAN connection type to Static IP (note: not PPPoE mode)
Set the WAN IP address to the same segment as the ADSL modem, e.g., 192.168.1.2 (my ADSL modem IP is 192.168.1.1)
Subnet mask 255.255.255.0
Gateway 192.168.1.1
DNS: 202.99.XXX.XXX
Some broadband providers bind the MAC address on the authentication server to limit the number of access users. In this case, first connect the computer with the bound MAC address to the router’s LAN port (but do not connect the router to the Modem or the line provided by the ISP). Then, use the router password cracking method’s MAC address cloning feature to copy that network card’s MAC address to the broadband router’s WAN port.
Utilize the broadband router’s “MAC Address Cloning” feature to break through the provider’s address binding and enable multiple computers to share the internet. Take the TP-Link TL-R400+ small router as an example. From the computer with the bound MAC address, enter the router’s Web configuration page. Under the main menu’s “Basic Settings” select “Preliminary Settings”, click the “Modify” button in the “WAN Interface Type” column, then select “Dynamic IP”. After saving, return to the “Preliminary Settings” page. There is a text box after the “WAN MAC Address” option; the content inside is the current machine’s MAC address. Users can directly modify this MAC address in the text box, entering the bound network card’s MAC address here.
If you are not sure of the network card’s MAC address, you can select the “Clone MAC” button to directly clone the current computer’s network card MAC address to the TL-R400+’s WAN port. After saving and restarting the router, it will take effect.
Note: You must select “Dynamic IP” in the “WAN Interface Type”, otherwise the options to modify the WAN interface MAC address and clone the MAC address will not appear. If you use other access methods, such as Static IP, PPPoE, etc., you can complete the above settings first, then re-enter the configuration interface to modify the WAN type.
Router Password Cracking: MAC Address Cloning
Currently, in some regions of China, Netcom or Telecom broadband blocks multi-computer sharing to protect the interests of the ISP (Internet Service Provider). Since the blocking methods adopted vary by city or region, the corresponding router password cracking methods also change. However, most adopt a MAC address detection mechanism for restriction. It usually locks the MAC address of the first computer network card connected to the network as the sole legitimate terminal to provide normal network connection service.
When sharing the internet, the router, as a network device, itself carries a MAC address. When it connects to the wired broadband, it occupies this “slot”. When other computers connected to the router attempt shared internet access, the central office end will detect that the IP data packets sent by the router contain other illegal MAC address information. The central office end will then discard or block these detected IP data packets.
Router Password Cracking Tips
When a network card sends IP data packets or packets of other network layer protocols, it automatically splits and packages them into data frames with a maximum of 1518 Bytes and a minimum of 64 Bytes. This data frame includes the target MAC address, its own source MAC address, the protocol type within the packet, and a DWORD type CRC code.
Because a very few cities adopt a rule where once a MAC address is bound, it takes effect permanently, or use methods of changing account numbers or passwords during the dialing process, router password cracking is relatively difficult. It requires calling the network operator to inform them that the network card has been replaced, or using sniffing software to detect the real account or password, so that the correct dialing parameters can be set in the broadband router. However, from your description, it seems your city only uses the method of binding the dialing host network card’s MAC address. Therefore, using the broadband router’s “special dialing” mode can make all IP data packets it sends out contain uniform MAC address information, thus achieving the goal of breaking through the restriction.
Router Password Cracking: Internet Sharing Solution
Now most broadband routers support features like “MAC Address Cloning” and “Host Masquerading Mode”, which can make the router appear as a single connected device, thereby breaking through the multi-computer sharing restriction of the central office bound MAC address. Take TP-LINK products as an example. After logging into the management interface, click the “Network Parameters → MAC Address Clone” option in the left menu. Then, turn to the right window. You will see the MAC address used by the router is “00-14-78-B6-47-5D”. The MAC address used by the PC currently logged into the router is “00-11-85-1B-0D-0C”. Just click the “Clone MAC Address” button to make the router convert its own MAC address to the currently logged-in host’s MAC address, and all subsequently sent IP data packets will contain this unique MAC address information. After saving the modification, you can break through the multi-computer sharing restriction.
This covers all the content on router password cracking. We don’t know how much you have grasped, but we want to remind the vast number of netizens not to use the principles of router password cracking to disrupt others’ normal internet access; this is unethical.
【Editor’s Recommendations】