How to Hack an Ethernet ADSL Router

Hack ADSL RoutersAlmost half of the Internet users across the globe use ADSL routers/modems to connect to the Internet. However, most of them are unaware of the fact that it has a serious vulnerability in it which can easily be exploited by anyone with a basic knowledge of computer. In this post, I will show you how to hack an Ethernet ADSL router by exploiting the common vulnerability that lies in it.

Every router comes with a username and password using which it is possible to gain access to the router settings and configure the device. The vulnerability actually lies in the Default username and password that comes with the factory settings. Usually the routers come preconfigured from the Internet Service provider and hence the users do not bother to change the password later.

This makes it possible for the attackers to gain unauthorized access to the router and modify its settings using a common set of default usernames and passwords. Here is how you can do it. Before you proceed, you need the following tool in the process:

Hacking the ADSL Router:

Here is a detailed information on how to exploit the vulnerability of an ADSL router:

  1. Go to whatismyipaddress.com. Once the page is loaded, you will find your IP address. Note it down.

  2. Open Angry IP Scanner, here you will see an option called IP Range: where you need to enter the range of IP address to scan for.

  3. Suppose your IP is 117.192.195.101, you can set the range something as 117.192.194.0 to 117.192.200.255 so that there exists at least 200-300 IP addresses in the range.
  4. Go to Tools->Preferences and select the Ports tab. Under Port selection enter 80 (we need to scan for port 80). Now switch to the Display tab, select the option “Hosts with open ports only” and click on OK.

  5. IP Scanner Settings

    I have used Angry IP Scanner v3.0 beta-4. If you are using a different version, you need to Go to Options instead of Tools
  6. Now click on Start. After a few minutes, the IP scanner will show a list of IPs with Port 80 open as shown in the below image:

  7. Angry IP Scanner

  8. Now copy any of the IP from the list, paste it in your browser’s address bar and hit enter. A window will popup asking for username and password. Since most users do not change the passwords, it should most likely work with the default username and password. For most routers the default username-password pair will be admin-admin or admin-password.

Just enter the username-password as specified above and hit enter. If you are lucky you should gain access to the router settings page where you can modify any of the router settings. The settings page can vary from router to router. A sample router settings page is shown below:

Router Settings Page Hacked!

If you do not succeed to gain access, select another IP from the list and repeat the step-5. At least 1 out of 5 IPs will have a default password and hence you will surely be able to gain access.

What can a Hacker do by Gaining Access to the Router Settings?

By gaining access to the router settings, it is possible for an attacker to modify any of the router settings which results in the malfunction of the router. As a result the target user’s computer will be disconnected from the Internet. In the worst case the attacker can copy the ISP login details from the router to steal the Internet connection or even hijack the DNS by pointing it at a rouge DNS server. If this happens, the victim will have to reconfigure/reset the router settings in order to bring it back to normal.

The Verdict:

If you are using an ADSL router to connect to the Internet, it is highly recommended that you immediately change your password to prevent any such attacks in the future. Who knows, you may be the next victim of such an attack.

Since the configuration varies from router to router, you need to contact your ISP for details on how to change the password for your model.

Warning!
All the information provided in this post are for educational purposes only. Please do not use this information for illegal purposes.

81 Comments

  1. Karan Kapoor
    June 28, 2010 at 4:03 PM

    Very very good information


  2. xcptnaly dngrs..
    June 28, 2010 at 4:23 PM

    hey srikanth…..

    the other i.p.’s arent working when i paste them on address bar….
    but my i.p. is working…

    and pls tell me hw to change the password too of any other i.p.


    • Srikanth
      June 29, 2010 at 9:10 AM

      @ xcptnaly dngrs..

      Try another series of IPs and they should work. Make sure that the IPs belong to ADSL ISP.


  3. kartik sibal
    June 28, 2010 at 7:47 PM

    hey thnkx it really worked
    i even gt his username and password through which he used to log in
    nw i cn use it
    thnkxx


    • Srikanth
      June 29, 2010 at 9:06 AM

      @ kartik sibal

      please keep in mind that it is illegal to break other’s privacy without permission. The above post is only intended to expose the flaws in the adsl routers and not to encourage hacking.


  4. Muralimohan.A.R
    June 28, 2010 at 9:21 PM

    MY DOWNLOAD MANAGER AND ANTIVIRUS WARNS ME ABOUT “ANGRY IP SCANNER” THAT ,IT IS POTENTIALLY UNWANTED PROGRAM.ALSO MY ANTIVIRUS NEUTRALISED IT AS VIRUS.

    WHAT CAN I DO NEXT?

    IS IT A VIRUS?


    • Srikanth
      June 29, 2010 at 9:07 AM

      @ Muralimohan.A.R

      Angry IP scanner is not a virus. However if you hesitate to use it, you can download any of the other IP scanners. Just try a Google search for “free IP scanners” or “Free port scanners” and you will definitely find an alternative!


  5. kartik sibal
    June 29, 2010 at 1:08 PM

    i kno hw does it fells wen someones changes ur pass i promise i will never change the pasword of the user.
    nd thnkx fr making me understand dis concept. :D


  6. Ajith
    June 29, 2010 at 4:47 PM

    Hi Srikanth…

    Any Way to change or clone the MAC Address of cable Mode????


  7. Almarghulani
    July 1, 2010 at 1:45 PM

    srikanth i wanted to ask u, ok i went to the router settings page, but how can i surf the internet?/


  8. Hasanka D-Note
    July 2, 2010 at 12:47 AM

    i am published a blog about computer tips, tricks & hacks..
    but i published it in Sinhala language..
    i learn many things from Gohacking.
    i love this website.
    Srikanth is great.
    visit my blog..
    thank you…


  9. Muralimohan.A.R
    July 2, 2010 at 5:19 PM

    THANKS FOR THE INFORMATION YAAR!!

    IT REALLY WORKED….


  10. roshan
    July 2, 2010 at 9:15 PM

    hey srikanth
    next time create new thread abt how to identify a file is backdoor or not/
    MUCH APPRECIATED


  11. shubham
    July 2, 2010 at 11:02 PM

    can i use bruteforce to break the router pass ?


  12. mohit yadav
    July 2, 2010 at 11:39 PM

    good but how to open the system files and folder after breaking into router be default userid and password


  13. Satyajit
    July 3, 2010 at 10:23 PM

    @srikanth nice info to share….keep sharing…hav a gud time.. :)


  14. DEEPU
    July 4, 2010 at 1:05 AM

    hey…..thank u srikanth….i’ve been trying to learn hacking the adsl..bt in vain till now…u made it possible for me !!!!

    yup!!! its working…

    Thank u.


  15. viraj
    July 5, 2010 at 5:58 PM

    hey man……..nice info!!
    thnx a lot…….


  16. Viswa
    July 5, 2010 at 11:00 PM

    Hey..
    i succeded by doing this..
    i hav a big doubt..
    wat can b done by opening dese ip addresses? i mean wat all power v hav?


  17. pinky
    July 6, 2010 at 11:27 AM

    i am new in this field of internet related tasks………..
    but reading ur article …..has made me curious bout all these stuff.
    could u plz tell wat is adsl router actually?
    the question is silly one but i really wanna know!


  18. darkfuture
    July 6, 2010 at 9:57 PM

    @ Srikanth (author) – how to view the password that is hidden under asterisk from there? Hope you reply. Thanks.


    • Srikanth
      July 7, 2010 at 5:04 PM

      @ darkfuture

      You can download Asterisk Unmasker to view the hidden password.


  19. punit
    July 6, 2010 at 11:05 PM

    how will i get the user name


  20. Ruk-Com
    July 7, 2010 at 2:14 AM

    Very very good information


  21. SaRaB
    July 9, 2010 at 2:55 PM

    can i use internet if i hack into sum1’s modem……pls reply…..


  22. waffles
    July 13, 2010 at 2:39 PM

    on the subject of internet, how would you find server #’s?i have looked around your site and i can’t find anything about it or RAT’s
    some help would be appreciated.oh and keep it up, i love this site, its provided me with more info than any other site :)


  23. prateek
    July 14, 2010 at 1:15 PM

    what to do after gaining access to router setting please help me & can i use internet if i hack into sum1’s modem……pls reply


  24. fokhwar
    July 16, 2010 at 2:37 PM

    Hey!
    Is this hacking for local DSL Router or Other DSL Router?
    Local DSL Router can be viewed by ipconfig/all.
    Please share me.


  25. Monks
    July 19, 2010 at 1:02 AM

    wil u give a good link to Asterisk Unmasker. cant seem to find where i can down load a copy


  26. Ashif
    July 25, 2010 at 12:26 PM

    dear srikanth,
    thanks for the post on adsl router hacking,it really worked even i got username and password of an i-baton modem,which is ayt kasaragod,kerala.i dont have internet at my home so i tried this in cafe… after reaching home i used his username and password in my netgear router but it doesnt connect…why is it???is it not possible?
    the thing is i didnt disconnect his router from internet,will it be a reason for that????pls replyyyyyy eagerly waiting for your reply and other such posts……
    yous sincerly
    Ashif


    • Srikanth
      August 11, 2010 at 11:30 AM

      @ Ashif

      Most ISPs have port binding enabled on their end and hence using the username-password from another line (another phone) will not make you connect to the Internet.


  27. durvesh
    July 29, 2010 at 10:20 AM

    Thanxx friend, this articles was useful, i want to publish my website hackerscodinglab.weebly.com, so will you help me in that? please reply me soon yarrr


  28. vinit
    August 8, 2010 at 9:34 AM

    whenever i”m entering the username-password(admin-admin or admin-password),a window pops up and says “the webpage cannot be displayed”….pls help


  29. ssss
    August 9, 2010 at 4:23 PM

    you are the best hacker bro..
    thanx for the tricks and helps.
    i need to break the password of a wi-fi connection,what i have to do??


  30. Munjaal
    August 11, 2010 at 9:47 PM

    hey, thanks for the info.
    just 1 question

    will NB scanner work instead of ip scanner,

    thanks in advance


    • Srikanth
      August 12, 2010 at 12:26 PM

      @ Munjaal

      Any port scanner will do the job.


  31. biswajit
    August 20, 2010 at 12:15 PM

    this work in same network but is it work in different network??


    • Srikanth
      September 17, 2010 at 2:18 PM

      @ biswajit

      It works for any network!


  32. Jason
    August 22, 2010 at 3:15 PM

    Hey I tried it out. it works. but is there any method by which i can bypass the internet connection and connect my pc to the target router from the above technique. I mean just steal the connection for speed n all???


  33. faisal
    August 26, 2010 at 1:48 AM

    How to get the user name and password??????????????

    The Default password is not working.

    plz reply soon,,,


  34. gaurav
    September 5, 2010 at 2:39 PM

    hey srikanth…
    Wen i click on start button den it showin the error…error show that malformed ip address specified, it should look like A.B.C.D. plz tell me wat should i do.


  35. SAHIL BJ
    September 5, 2010 at 7:43 PM

    great piece of knowledge for network related ppl,. nice :)


  36. arjie
    September 6, 2010 at 5:45 PM

    Thank you, now i know. I can protect my adsl.


  37. Sherif Awosanya
    September 7, 2010 at 7:16 PM

    Hi boss u re best help me with this (1)Hacking a wifi server password 2 get acess to their data base or to browse with it. 2. Hackin a modem with pasword to browse with it. 3. How do i get user name and pasword cuz d default isnt workin 4. What do i use d tags for


  38. Pouya
    September 10, 2010 at 5:11 AM

    thanks for the tips, when i scan with angry ip scanner 3-beta 4 no open ports (green)??


  39. sopn0
    September 12, 2010 at 9:47 AM

    man we know the ip its very easy to findout , but we need user name and password ,,, how we can get that , when password is changed


  40. kynox
    October 1, 2010 at 11:43 AM

    thanks Srikanth but you dont put full information about this hacking methods

    just a little which not help the majority of us


  41. tarun
    October 4, 2010 at 5:02 PM

    this works i tried it iam able to get in a 2 dsl routers


  42. Palash
    October 10, 2010 at 8:27 PM

    hello srikanth,
    thanks for the info. Generally, the broadband modems contains linux/mac OS. Those friends who says that they stole passwd and all, I dont think it would work because the MAC address will be different. However, logging into these virtual terminals doesnt suffice the role of a hacker. Hacking is not breaking into a computer or to steal passwds. It is more about how this functions. A few challanges for readers. Even logging into the virtual terminal using public ip how you people can really log into a person’s computer? How you can intrude with a firewall installed in a victim’s computer.

    Secondly, how can you keep yourself in stealth and evade.

    Please remember more knowledge more resposibility. Never harm anyone’s computer. How will you feel if someone does to you… Happy Hacking.

    :)

    palash

    palash737@gmail.com


    • Srikanth
      October 18, 2010 at 11:14 AM

      @ Palash

      Thanks for your input.


  43. CS
    October 20, 2010 at 2:55 PM

    hi srikant,
    i did wat was told but eventually i can find only my ip address…how do i get others ip addresses


  44. risto
    October 23, 2010 at 3:46 AM

    did hi (Angry IP Scanner v3.0 beta-4) work in windows7 if don’t teel mi another


  45. ranjeet
    November 4, 2010 at 12:07 AM

    its great….
    above information 100% work…


  46. javaid saleem
    November 23, 2010 at 12:09 AM

    hi Srikanth your tutorial is good but there is another program that can hack Ethernet ADSL Router the software name is backtrack 3 and it can easily hack ethernet password wep-wpa-wpa2 all the passwords


  47. Bala
    November 25, 2010 at 12:36 AM

    Good one….


  48. samuel
    February 15, 2011 at 2:42 PM

    @ srikanth. this is interesting. i will do that exactly.
    thanx


  49. Header
    February 24, 2011 at 9:14 PM

    thanks alot dear. its realy nice post.


  50. DmNS
    March 24, 2011 at 2:40 PM

    @srikant

    wow !! awesome info !!

    can u pls tell how to copy the “SAM” file in windows without using linux ??

    thanx !!!


  51. rahul
    April 4, 2011 at 9:14 AM

    hi i am rahul i am using bsnl broadconnection at my home ,but i have my friend bsnl username & password but when i put it on my pc its dont work what should i do i want to use my friend user name & password pls help which tool is use? i really confuse.pls help me.


    • Srikanth
      April 12, 2011 at 11:42 AM

      @ rahul

      I think port binding is activated on the ISP end which makes it possible to access the Internet only from your phone line. Request them to remove the port binding; if they do it then you can access your Internet from any other BSNL phone line.


  52. Sukhjit
    April 20, 2011 at 5:26 PM

    What if the default username and password are different? I would like a tutorial on that :D


  53. waqar
    May 26, 2011 at 11:25 PM

    It is great.But how we will find the IP of a remote computer about we know that he has not changed his password of router.e.g a friend etc


  54. yogesh chhabra
    June 1, 2011 at 8:40 PM

    @ Srikanth, is there any way to remove port binding? the help would be appreciated.


    • Srikanth
      June 5, 2011 at 12:14 PM

      @ yogesh chhabra

      I think you need to give a request for your ISP to remove port binding.


  55. shanker singh
    June 6, 2011 at 12:55 AM

    hi srikanth
    this was good
    but i am still in troubal how can i
    connet to other pc with open ports like port 80 and others


  56. danny
    June 18, 2011 at 3:03 AM

    hello young fellow, i ve tried this and it seems to work …. i used ip of my mobile internet provider. though i got some other ip”s but when i try copy and paste in ma browser, an error msg normally bops up. what do u think i should do? or am i doing it the wrong way?


  57. Aman Gupta
    June 24, 2011 at 8:31 PM

    Really gud piece of information…..bt i have an even shorter route 2 open up da router connections for which , one just needs 2 hav an ADSL modem. Call it stupidity or (watever suits u best), our ISP’s provide us a modem on da back side of wich, thre is url address of the router settings. Not only that, it has the username and password, boldly printed 4 ny1 2 c !!


  58. Neel
    July 7, 2011 at 2:33 AM

    Hey there it was good article but really old one, is their any trick to know the ip of router which is just near by ?


  59. sandy
    July 19, 2011 at 7:13 PM

    @karthick:By doing this will there be ne problem?????


  60. bala sharma
    August 24, 2011 at 8:12 AM

    ya it really works


  61. Rahul
    October 4, 2011 at 4:21 AM

    Hay Shri ……….. it’s too good yar… it worked bt the results r too complicated ….. I’m a beginner and just want to stop some computers to work since they keep on downloading unnecessary things 24/7 and we don’t get enough speed to surf also………
    I was abt to give all things that i came accross bt thought it would nt b safe …… so plz tell me how can i do so…….. stop those pc for some time atlist ……
    and plz tell how to restore also…..
    thanks………
    you r too good…….


  62. PARTHA
    October 7, 2011 at 4:36 AM

    Angry IP Scanner is not a virus, if you hesitated to use this , then i will recommend you advance ip scanner or free ip scanner.

    enjoy;d
    advance ip – http://www.radmin.com/products/ipscanner
    free ip scanner – http://www.eusing.com/ipscan/free_ip_scanner.htm


  63. mayuresh
    October 11, 2011 at 4:20 PM

    i am not able to download Angry IP Scanner
    plz provide a direct download link


  64. amit
    October 26, 2011 at 2:12 PM

    at one ip i was taken to oracle http server index.what is this?


  65. AKASH
    October 27, 2011 at 10:51 AM

    DOES IT WORKS WITH WIRELESS BROADBAND


    • Srikanth
      October 27, 2011 at 12:56 PM

      @ AKASH

      It works with Wifi router as long as the connection is ADSL


  66. arsh
    October 28, 2011 at 10:24 PM

    nice info but can we change our plan without letting isp know about it


  67. amit
    October 29, 2011 at 8:30 PM

    i have two wireless connection which under range of my wifi one is of wep security and wap security how to crack them


  68. dannyssy
    October 31, 2011 at 5:49 PM

    u re great young fellow, i ve gained acess to many dsl router, but i dont know what next to do to enable me gain acess to their internet connection. can u help futher more?


  69. javid
    November 8, 2011 at 8:50 PM

    hi
    i know this way before
    the best & high bandwith ADSL often change their default passwords
    so how we can find their password
    i try some software like force brute,but i didn’t know how to use it,and try it on my router and it cant find my password.
    this is one static router in my local isp,and i cant finde its password.
    anyone can help me?


  70. mahdi
    December 8, 2011 at 12:47 AM

    Simply a really great