|
|
Post by chavonbravo on Apr 28, 2005 18:48:22 GMT -5
i don't have this box, cuz i don't think it'd work in my area, but what if you were to try and connect the cable box to an internal network and ran ethereal or other programs...think we could find anything out from this? such as ip address? mac? maybe how to ping these boxes? cuz if we knew how to ping them and acquire mac address from them, we could try pinging while connected to isp network, and find all valid ip addresses and macs, put them onto other boxes (when how to do that becomes known of course) and see what happens.
|
|
|
|
Post by toyotatacoma on Apr 28, 2005 18:55:48 GMT -5
well you can find ip+mac etc by looking in the diagnostic menu, and the whole box/cm relation there is something
whenever i upgrade cable service (call and add more chans), or downgrade etc.. my cable modem dies out (have to have them re-hit it w/ a new config file)
|
|
|
|
Post by patsfan on Apr 29, 2005 17:29:36 GMT -5
the 2224/2244 boxes don't use a mac address. the DAC(digital access controller) talks to the using the unit id. the ip is only used by the return portion of the box so the DAC can poll the box to see if it has purchases and collect them. it has no part in the activation of the box.
toyotatacoma; you cable company must have issues becasue we don't have that problem here.
|
|
|
|
Post by adrianbv6 on May 3, 2005 15:12:58 GMT -5
plus for testing purposes u beter not plug in that uplink or use an directional amplifier....
|
|
|
|
Post by chavonbravo on Jun 2, 2005 22:23:18 GMT -5
i'd think that the way that cable companies communicate and send commands to cable boxes would be through snmp commands. so, since you know ip address from diagnostic menu, you could try to snmp walk it to see what info you come up with. of course, for this, you'd also need the community string, which we'd never get, but there's programs out there that brute force it, keep trying until they get the right one.
one example of this kind of program is SNMP Brute Force Attack by SolarWinds.
|
|
|
|
Post by adrianbv6 on Jun 3, 2005 2:10:06 GMT -5
no
|
|
|
|
Post by patsfan on Jun 3, 2005 10:12:30 GMT -5
i'd think that the way that cable companies communicate and send commands to cable boxes would be through snmp commands. so, since you know ip address from diagnostic menu, you could try to snmp walk it to see what info you come up with. of course, for this, you'd also need the community string, which we'd never get, but there's programs out there that brute force it, keep trying until they get the right one. one example of this kind of program is SNMP Brute Force Attack by SolarWinds. ip has nothing to do with auth of box or channels. it's only used to send back purchased info. don't take this the wrong way but, read the jtag thread here and you will see how far off you are |
|
