OpenWRTInvasion Versions Save

In this release:

Notify when detecting unsupported firmware (https://github.com/acecilia/OpenWRTInvasion/pull/148)

In this release:

• Remove windows support (https://github.com/acecilia/OpenWRTInvasion/pull/139, https://github.com/acecilia/OpenWRTInvasion/pull/144). If you use Windows, please see the readme for alternatives

In this release:

• Get stok programatically: user just needs to input the router password (#113)
• Optionally provide exploit files using a local file server, so there is no need for the router to have access to GitHub. This is specially useful for users based in China (#113)

In this release:

• Fix script so it works on Windows (#100)

This release includes a small bugfix for https://github.com/acecilia/OpenWRTInvasion/issues/48

Added support for SSH: after running the exploit, you will find an ssh server up and running

• Add the --insecure option to the curl command that downloads busybox, to avoid problems with SSL when the user runs the script in a complex network setup. See: https://github.com/acecilia/OpenWRTInvasion/issues/31#issuecomment-690755250

This version adds a FTP server at port 21, so you can get access to the filesystem using a GUI (for example cyberduck).

The exploit will start a telnet server connection:

Pros:

• Obtain a fully fledge telnet shell

Cons:

• Requires the router to have internet connection: it needs to download the busybox binary in order to start telnetd
• The password for the root account will be reset to none

The exploit will open a shell using netcat:

Pros:

• It does not require the router to be connected to the internet
• It is fast

Cons:

• It is a bit of a hacky way to open a shell