Recent content by brumac

Ok! Thank you!

I have tested my asus rt-ac68u vulnerabilities with zANTI = android version of nmap to run vulnerability scans. The test reported vulnerabilities to me: 443 tcp open https syn-ack http-method-tamper VULNERABLE: Authentication bypass by HTTP verb tampering State: VULNERABLE (Exploitable) This...

I tested the vulnerabilities of my RT-68U (Firmware Asuswrt-Merlin 384.8.2) with zANTI: 443 tcp open https syn-ack http-method-tamper VULNERABLE: Authentication bypass by HTTP verb tampering State: VULNERABLE (Exploitable) So to install Skynet I have to format a USB pen drive in ext4 and...

OK! I was referring to (Firmware bug or depends on the OpenVPN (NordVPN) configuration on TCP port 443?!) : 443 tcp open https syn-ack http-method-tamper VULNERABLE: Authentication bypass by HTTP verb tampering State: VULNERABLE (Exploitable) This web server contains password...

Now I checked: Remote Access Config: Enable Web Access from WAN: No Firmware bug or depends on the OpenVPN (NordVPN) configuration on TCP port 443?!

How do I configure the RT68U router (Asuswrt-Merlin firmware) to allow HTTP access only through the local network? I do not know where to change this setting. Thank you!

443 tcp open https syn-ack http-method-tamper VULNERABLE: Authentication bypass by HTTP verb tampering State: VULNERABLE (Exploitable) This web server contains password protected resources vulnerable to authentication bypass vulnerabilities via HTTP verb tampering. This is often found in web...

I'm curious about it. I also trust the Merlin Firmware and I do not even have to hide. Thinking about vulnerabilities, they are perhaps false positives because I have not said one important thing: I have configured on my rt-68u VPN client (NordVPN) and also OpenVPN server (to communicate...

I looked for CVE on Google. I did not understand anything. I apologize for my ignorance. In AIProtection page Enabled AiProtection is OFF! Router Security Assessment gives me 3 Risk: Malicious Website Blocking enabled No Vulnerability Protection enabled - No Infected Device Prevention and...

Good morning, I am not an expert and need help. Yesterday I tested the vulnerabilities of my RT-68U (Firmware Asuswrt-Merlin 384.8.2) with zANTI. Result: Vulnerabilities (3): smb-vuln-cve2009-3103, http-slowloris-check, http-method-tamper Do I have to change the configuration? What should I do...