Inspecting binary data in the Action Tec Router
What's inside the router?
Activate telnet access to the router from the router control panel
-
Advanced Section
-
Local Administration
-
Check telnet box
(Note the telnet port - by default it's 23 (std), but possible ti change)
Connect to the router from inside your firewall
-
telnet 192.168.1.1 <telnet port (if not 23)>
Dump FIOS config memory to screen (in telnet session use these commands)
-
flash
-
layout
-
dump -s 0 -l 10000
00000090: 00 00 00 00 28 72 67 5f 66 61 63 74 6f 72 79 0d |....(rg_factory.|
000000a0: 0a 20 20 28 73 79 73 74 65 6d 0d 0a 20 20 20 20 |. (system.. |
000000b0: 28 70 61 6e 69 63 5f 74 69 6d 65 6f 75 74 28 31 |(panic_timeout(1|
000000c0: 29 29 0d 0a 20 20 29 0d 0a 20 20 28 61 64 6d 69 |)).. ).. (admi|
000000d0: 6e 0a 20 20 20 20 28 75 73 65 72 0a 20 20 20 20 |n. (user. |
000000e0: 20 20 28 30 0a 20 20 20 20 20 20 20 28 75 73 65 | (0. (use|
000000f0: 72 6e 61 6d 65 28 61 64 6d 69 6e 29 29 0a 20 20 |rname(admin)). |
00000100: 20 20 20 20 20 28 70 61 73 73 77 6f 72 64 28 26 | (password(&|
00000110: xx xx 3b 26 xx xx 3b 26 xx xx 3b 26 xx xx 3b 26 |xx;&xx;&xx;&xx;&|
00000120: xx xx 3b 26 xx xx 3b 26 xx xx 3b 26 xx xx 3b 29 |xx;&xx;&xx;&xx;)|
00000130: 29 0a 20 20 20 20 20 20 29 0a 20 20 20 20 29 0a |). ). ).|
00000140: 20 20 29 0a 20 20 28 6e 65 74 77 6f 72 6b 0d 0a | ). (network..|
Sample of firmware dump. (xx is edited output)