tag:blogger.com,1999:blog-6393405420951996198.post1117330059561331192..comments2024-01-14T17:27:47.707-06:00Comments on devicelocksmith.com Blog: EAP-TLS credentials decoder for Nokia, Humax, Motorola and Arris gateways. Ultimate fiber router bypass!Sergeyhttp://www.blogger.com/profile/00961510797073677343noreply@blogger.comBlogger107125tag:blogger.com,1999:blog-6393405420951996198.post-30401754586151534212023-06-21T23:30:54.567-05:002023-06-21T23:30:54.567-05:00Feel free to reverse engineer the published execut...Feel free to reverse engineer the published executables. It's a lot easier than reverse engineering embedded systems.Sergeyhttps://www.blogger.com/profile/00961510797073677343noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-27297015842250401452022-12-15T16:12:48.451-06:002022-12-15T16:12:48.451-06:00Don't get me wrong. I appreciate this work ver...Don't get me wrong. I appreciate this work very much. Just confused what the reason could be.Cameron Tacklindhttps://www.blogger.com/profile/07170780656138018502noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-82691011783507640052022-12-15T16:11:52.001-06:002022-12-15T16:11:52.001-06:00I would have though a blog dedicated to documentin...I would have though a blog dedicated to documenting the reverse engineering process would have published the data packing/obfuscation format.Cameron Tacklindhttps://www.blogger.com/profile/07170780656138018502noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-87022052217072441232022-02-27T15:56:42.210-06:002022-02-27T15:56:42.210-06:00So now I have the 320. I do not have the separate ...So now I have the 320. I do not have the separate ONT. It now it built-in. So now I'll have to use this cert in a ubuiqti router. <br /><br />years ago when I first got fiber. I was messing around with it. I plugged the ethernet from the ONT directly into my MAC... a messaged came up asking for the Authentication (user and pass I think). I will have to try it again. It almost reminded me of how old DSL was set up..Dr Hhttps://www.blogger.com/profile/11677352649846027080noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-69803807199947689602021-08-11T09:39:02.042-05:002021-08-11T09:39:02.042-05:00NVM i figured it out the the .tar.gz is a compress...NVM i figured it out the the .tar.gz is a compressed file with files in it thanks!<br />Anonymoushttps://www.blogger.com/profile/11049804163815338113noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-16336067391025829492021-08-11T09:34:29.827-05:002021-08-11T09:34:29.827-05:00Not sure what I'm doing wrong. I have the mfg....Not sure what I'm doing wrong. I have the mfg.dat and 7, *.der files from a BGW210-700 in the same folder as the mfg_dat_decode.exe. When I double click the exe file a .tar.gz file is created but thats it. There are no *.pem files or wpa_supplicant.conf files createdAnonymoushttps://www.blogger.com/profile/11049804163815338113noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-81499386964560598322021-06-01T11:08:33.164-05:002021-06-01T11:08:33.164-05:00Try version 1.05Try version 1.05Sergeyhttps://www.blogger.com/profile/00961510797073677343noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-40625647481254609572021-04-05T16:46:16.457-05:002021-04-05T16:46:16.457-05:00Can someone try this with the BGW 320-500/505? wou...Can someone try this with the BGW 320-500/505? would be neat to learn more about these unitsLightsnipehttps://www.blogger.com/profile/13402535763237530911noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-57084757260529242242020-09-25T10:51:23.098-05:002020-09-25T10:51:23.098-05:00I agree with Ryan - Sandbox feature is a natural f...I agree with Ryan - Sandbox feature is a natural fit to run things like mfg_decode. Along with WSL2 it is my favorite feature in latest Windows 10.Sergeyhttps://www.blogger.com/profile/00961510797073677343noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-78326306853304631672020-09-13T16:08:41.648-05:002020-09-13T16:08:41.648-05:00figured it out. somehow my downloaded .der files f...figured it out. somehow my downloaded .der files from the bgw210-700 contained html. no wonder. zipped them into tar.gz and it worked. If you import them into a mikrotik you need to see 6 certs. CBhttps://www.blogger.com/profile/06567749793682160828noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-21603315933283764992020-09-12T14:27:47.392-05:002020-09-12T14:27:47.392-05:00Where do I find the AAA server root CA der file?
...Where do I find the AAA server root CA der file?<br /><br />Found valid AAA server root CA certificates:<br /> None<br />WARNING: No valid server root Certificate Authority DER files found in c:\mfg_dat_decode_1_04_macosxCBhttps://www.blogger.com/profile/06567749793682160828noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-31428655959865673862020-08-25T11:11:46.346-05:002020-08-25T11:11:46.346-05:00I'd recommend Windows Sandbox if you're on...I'd recommend Windows Sandbox if you're on Win 10 Pro. Very convenient.Ryanhttps://www.blogger.com/profile/12835114864697571556noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-7565845349985035212020-08-25T11:02:19.706-05:002020-08-25T11:02:19.706-05:00Thanks, that was my next plan.Thanks, that was my next plan.Davehttps://www.blogger.com/profile/00539044471320919535noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-3147996712854965152020-08-25T03:14:01.826-05:002020-08-25T03:14:01.826-05:00Sorry, I don't have a Mac, so I don't have...Sorry, I don't have a Mac, so I don't have a machine to test with. The executable was compiled with Golang. Apple must have made some changes in recent MacOS that are not letting the tool to run. You could spin up a Windows or Linux virtual machine and use the respective versions within the VMs. Sergeyhttps://www.blogger.com/profile/00961510797073677343noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-56871737438775293342020-08-25T03:12:25.754-05:002020-08-25T03:12:25.754-05:00That is a false positive. You could report it to M...That is a false positive. You could report it to Microsoft if this bothers you. I've done this myself in past and this seems just a temporary solution before their engine tags it as malicious again. If in doubt you could always run it within an isolated temporary virtual machine.Sergeyhttps://www.blogger.com/profile/00961510797073677343noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-10672330859432965042020-08-24T11:04:24.842-05:002020-08-24T11:04:24.842-05:00Hi, Would it be possible to update your macos bina...Hi, Would it be possible to update your macos binary to work on the latest versions of macos? Currently it receives a `kill` signal when attempted to launch (even after gatekeeper has been updated). <br />ThanksDavehttps://www.blogger.com/profile/00539044471320919535noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-41885178255493868702020-08-14T22:22:17.612-05:002020-08-14T22:22:17.612-05:00Hello,
Windows defender is blocking me from using...Hello,<br /><br />Windows defender is blocking me from using this as it contains a virus.The Razalhttps://www.blogger.com/profile/16846222873424386111noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-23105321542866535932020-08-14T22:22:16.510-05:002020-08-14T22:22:16.510-05:00Hello,
Windows defender is blocking me from using...Hello,<br /><br />Windows defender is blocking me from using this as it contains a virus.The Razalhttps://www.blogger.com/profile/16846222873424386111noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-72812503642744590072020-07-14T07:23:25.845-05:002020-07-14T07:23:25.845-05:00No. You cannot turn it back in because it is assoc...No. You cannot turn it back in because it is associated with your account via the Mac. If someone else got that rg they could put it on their line and would cause you problems as well. Anonymoushttps://www.blogger.com/profile/15592493130103689313noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-55165926351056001942020-07-11T01:25:21.990-05:002020-07-11T01:25:21.990-05:00Was hoping to use Cisco IOS as well. Shame that Ci...Was hoping to use Cisco IOS as well. Shame that Cisco doesn't seem to support 802.1x auth. Guess I will stick with Ubiquiti UDM Pro or go back to Mikrotik.HelplessWeebhttps://www.blogger.com/profile/18387842194376459329noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-10707677777630378972020-07-09T11:51:44.754-05:002020-07-09T11:51:44.754-05:00How did you pull certs off the Pace 5286AC ?How did you pull certs off the Pace 5286AC ?Tweekhttps://www.blogger.com/profile/01312131566851271222noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-5782979258936909372020-06-03T19:33:28.089-05:002020-06-03T19:33:28.089-05:00I am sorry, I could not provide support for wpa_su...I am sorry, I could not provide support for wpa_supplicant on all possible platforms. You could try asking for help on wpa_supplicant mailing list at http://lists.infradead.org/mailman/listinfo/hostapSergeyhttps://www.blogger.com/profile/00961510797073677343noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-42304926258382714922020-05-27T17:46:58.614-05:002020-05-27T17:46:58.614-05:00It looks like my EAPOL start isn't being tagge...It looks like my EAPOL start isn't being tagged as vlan0, which might explain why I never get ANY response.<br /><br /><br />[2.4.5-RELEASE][admin@pfSense]/root/supplicant: tcpdump -vv -s 65535 -X -n vlan 0<br />tcpdump: listening on ngeth0, link-type EN10MB (Ethernet), capture size 65535 bytes<br />^C<br />0 packets captured<br />4 packets received by filter<br />0 packets dropped by kernel<br />[2.4.5-RELEASE][admin@pfSense]/root/supplicant: tcpdump -vv -s 65535 -X -n<br />tcpdump: listening on ngeth0, link-type EN10MB (Ethernet), capture size 65535 bytes<br />17:43:53.737022 EAPOL start (1) v2, len 0<br /> 0x0000: 0201 0000 ....doylerhttps://www.blogger.com/profile/00744920813263576263noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-45103195821777515832020-05-27T11:00:37.377-05:002020-05-27T11:00:37.377-05:00I'm running into a similar issue myself. Succe...I'm running into a similar issue myself. Successfully extracted my mfg.dat and certs from the BGW210, and was able to run mfg_dat_decode successfully.<br /><br />Unfortunately, just using wpa_supplicant I'm getting EAPOL failures.<br /><br />```<br />EAPOL: txStart<br />TX EAPOL: dst=01:xx:xx:xx:xx:xx<br />TX EAPOL - hexdump(len=4): 02 01 00 00<br />EAPOL: idleWhile --> 0<br />EAP: EAP entering state FAILURE<br />ngeth0: CTRL-EVENT-EAP-FAILURE EAP authentication failed<br />EAPOL: SUPP_PAE entering state AUTHENTICATING<br />EAPOL: SUPP_BE entering state FAIL<br />EAPOL: SUPP_PAE entering state HELD<br />EAPOL: Supplicant port status: Unauthorized<br />EAPOL: SUPP_BE entering state IDLE<br />EAPOL authentication completed - result=FAILURE<br />EAPOL: startWhen --> 0<br />```<br /><br />Any ideas/suggestions? The MAC is properly cloned for my interface, and should be tagged as VLAN0doylerhttps://www.blogger.com/profile/00744920813263576263noreply@blogger.comtag:blogger.com,1999:blog-6393405420951996198.post-91218524521098360192020-05-08T09:16:32.626-05:002020-05-08T09:16:32.626-05:00That would be a question for AT&T.That would be a question for AT&T.Sergeyhttps://www.blogger.com/profile/00961510797073677343noreply@blogger.com