Metasploit Past a Router
Posted 12 December 2009 - 05:08 PM
The question I'm asking is. Can a hacker who knows my external IP address of (220.127.116.11) go across the internet and connect to my router. Then ultimately running an exploit on specific client on my private network. Like specifically targeting 192.168.1.1?
Is there any guide to this? The only reason I'm asking is because i want to protect myself from it.
Posted 16 December 2009 - 12:14 AM
aside from that, i would keep up with router exploits, and read up on NAT traversal techniques. that's about all i know on the subject, but it's more than nothing.
Posted 16 December 2009 - 12:27 AM
All that is assuming remote admin is enabled on the WAN. Disable remote admin and port forwarding services on the WAN portion and it should be safe. If there are no daemons running it is very difficult to connect.
EDIT: a good tip I learned is to DMZ an unused IP address. All packets should then be dropped and the router will be invisible to the outside world.
Edited by tekio, 16 December 2009 - 12:42 AM.
Posted 16 December 2009 - 12:58 AM
BinRev is hosted by the great people at Lunarpages!