Reply to post: Re: Brute force the firmware

How to log into any backdoored Juniper firewall – hard-coded password published

regadpellagru

Re: Brute force the firmware

"Now I have an itching to start disassembling all the firmware I have access to, then using each line as part of a dictionary attack against the devices to see what pops up."

You won't get far with that, if K = K1 XOR K2, with K being your backdoor, and K1 and K2 being the only strings in the binary ...

The only solution is disassemble the binary ... Possible but VERY time consuming.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019