threat9/routersploit

routersploit crushing

Open

#791 opened on Jul 7, 2022

View on GitHub
 (9 comments) (0 reactions) (0 assignees)Python (11,672 stars) (2,340 forks)batch import
help wanted

Description

Your Environment

  • RouterSploit Version used: 3.4.1
  • Operating System and version: Kali 2022.2
  • Python Version: 3.10.5
  • Python Environment:
  • aiodns==3.0.0 aiofiles==0.8.0 aiohttp==3.8.1 aiomultiprocess==0.8.0 aioredis==1.3.1 aiosignal==1.2.0 aiosqlite==0.17.0 alembic==1.7.6.dev0 altgraph==0.17.2 aniso8601==9.0.1 anyio==3.6.1 apispec==5.2.2 apispec-webframeworks==0.5.2 appdirs==1.4.4 APScheduler==3.9.1 argon2-cffi==21.1.0 asgiref==3.5.0 asn1crypto==1.4.0 async-timeout==4.0.1 attrs==21.2.0 autobahn==22.1.1 Automat==20.2.0 Babel==2.8.0 backcall==0.2.0 backdoor-factory==0.0.0 backoff==1.11.1 base58==1.0.3 bcrypt==3.2.0 beautifulsoup4==4.11.1 bidict==0.21.3 binwalk==2.3.3 bleach==4.1.0 blinker==1.4 bluepy==1.3.0 bottle==0.12.21 Bottleneck==1.3.2 Brlapi==0.8.4 Brotli==1.0.9 cairocffi==1.3.0 capstone==4.0.2 catfish==4.16.3 cbor==1.0.0 censys==2.0.9 certifi==2020.6.20 cffi==1.15.0 chardet==4.0.0 charset-normalizer==2.0.6 chirp==0.3.0.dev0 cli-helpers==2.2.1 cli2==2.5.0 click==8.0.3 click-plugins==1.1.1 colorama==0.4.5 commonmark==0.9.1 configobj==5.0.6 constantly==15.1.0 crcelk==1.3 crypto==1.4.1 cryptography==3.4.8 cupshelpers==1.0 cycler==0.11.0 Cython==0.29.30 dataclasses-json==0.5.7 dbus-python==1.2.18 debtags==2.1 decorator==4.4.2 defusedxml==0.7.1 deprecation==2.0.7 dicttoxml==1.7.4 distro==1.7.0 Django==3.2.13 dnslib==0.9.19 dnspython==2.2.1 docstring-parser==0.7.1 EasyProcess==0.3 ecdsa==0.18.0b2 email-validator==1.1.2 entrypoints==0.4 et-xmlfile==1.0.1 fake-useragent==0.1.11 faraday-agent-parameters-types==1.0.3 faraday-client==1.1.0 faraday-plugins==1.5.9 faradaysec==3.19.0 fastapi==0.74.1 fastjsonschema==2.15.1 feedparser==6.0.8 fierce==1.5.0 filedepot==0.5.2 filteralchemy==0.1.0 flasgger==0.9.5 Flask==2.0.1 Flask-Classful==0.14.1 Flask-KVSession-fork==0.6.3 Flask-Limiter==1.0.1 Flask-Login==0.5.0 Flask-Mail==0.9.1 Flask-Principal==0.4.0 Flask-RESTful==0.3.9 Flask-Security-Too==4.0.0 Flask-SocketIO==5.0.1 Flask-SQLAlchemy==2.5.1 Flask-WTF==0.14.3 flatbuffers===1.12.1-git20200711.33e2d80-dfsg1-0.6 fonttools==4.32.0 frozenlist==1.2.0 fs==2.4.12 future==0.18.2 fuzzywuzzy==0.18.0 GDAL==3.5.0 gevent==21.8.0 gitdb==4.0.9 GitPython==3.1.27 google==2.0.3 gpg===1.16.0-unknown greenlet==1.1.2 gyp==0.1 h11==0.13.0 h2==4.1.0 hiredis==1.0.1 hostsman==1.1.5 hpack==4.0.0 html2text==2020.1.16 html5lib==1.1 hupper==1.10.3 hyperframe==6.0.0 hyperlink==21.0.0 idna==3.3 imageio==2.4.1 impacket==0.10.0 importlib-metadata==4.6.4 incremental==21.3.0 iniconfig==1.1.1 invoke==1.7.0 ipdb==0.13.9 IPy==1.1 ipykernel==6.9.2 ipython==7.31.1 ipython_genutils==0.2.0 ipywidgets==6.0.0 itsdangerous==2.1.2 jdcal==1.0 jedi==0.18.0 Jinja2==3.0.3 jsonschema==3.2.0 jupyter-client==7.3.4 jupyter-core==4.10.0 jupyterlab-pygments==0.2.2 kaitaistruct==0.9 kali-tweaks==2022.2.1 KismetCaptureBtGeiger==2021.7.1 KismetCaptureFreaklabsZigbee==2018.7.0 KismetCaptureRtl433==2020.10.1 KismetCaptureRtladsb==2020.10.1 KismetCaptureRtlamr==2020.10.1 kismetexternal==2019.12.1 KivyMDEmulator==1.0.4 kiwisolver==1.3.2 ldap3==2.8.1 ldapdomaindump==0.9.3 lightdm-gtk-greeter-settings==1.2.2 limiter==0.1.2 limits==1.5.1 louis==3.22.0 lxml==4.8.0 lz4==4.0.0+dfsg M2Crypto==0.38.0 Mako==1.1.3 Markdown==3.3.7 MarkupSafe==2.0.1 marshmallow==3.15.0 marshmallow-enum==1.5.1 marshmallow-sqlalchemy==0.28.0 matplotlib==3.5.2 matplotlib-inline==0.1.3 mechanize==0.4.8 mistune0==0.8.4 mitmproxy==8.1.1 mnemonic==0.19 mock==4.0.3 more-itertools==8.10.0 mpmath==0.0.0 msgpack==1.0.3 multidict==5.1.0 mypy-extensions==0.4.3 Naked==0.1.31 nassl==4.0.2 nbclient==0.6.4 nbconvert==6.4.4 nbformat==5.4.0 nest-asyncio==1.5.4 netaddr==0.8.0 netifaces==0.11.0 networkx==2.5 nose==1.3.7 notebook==6.4.8 nplusone==1.0.0 numexpr==2.8.3 numpy==1.21.5 odfpy==1.4.2 olefile==0.46 onboard==1.4.1 openpyxl==3.0.9 packaging==21.3 pandas==1.3.5 pandocfilters==1.5.0 paramiko==2.10.4 parso==0.8.1 passlib==1.7.4 Paste==3.5.0 PasteDeploy==2.1.1 PasteScript==2.0.2 pbr==5.8.1 pcapy==0.11.5.dev0 pefile==2022.5.30 pendulum==2.1.2 pexpect==4.8.0 pgcli==3.4.1 pgspecial==1.11.10 pickleshare==0.7.5 Pillow==9.1.1 plaster==1.0 plaster-pastedeploy==0.5 pluggy==1.0.0 pluginbase==1.0.1 ply==3.11 prettytable==2.5.0 prometheus-client==0.9.0 prompt-toolkit==3.0.30 protobuf==3.12.4 psutil==5.9.0 psycopg2==2.9.2 ptyprocess==0.7.0 publicsuffix2==2.20191221 py==1.10.0 py-ubjson==0.16.1 pyasn1==0.4.8 pyasn1-modules==0.2.8 pycairo==1.20.1 pycares==4.1.2 pycparser==2.21 pycryptodomex==3.11.0 pycups==2.0.1 pycurl==7.44.1 pydantic==1.9.0 pydot==1.4.2 pyee==9.0.4 pyExploitDb==0.2.0 pyfiglet==0.8.post0 pygccxml==2.2.1 Pygments==2.11.2 PyGObject==3.42.1 pygraphviz==1.7 PyHamcrest==2.0.2 pyinotify==0.9.6 pyinstaller==5.1 pyinstaller-hooks-contrib==2022.7 pymssql==2.2.2 PyNaCl==1.5.0 PyOpenGL==3.1.5 pyOpenSSL==21.0.0 pyotp==2.3.0 pyparsing==3.0.7 pyperclip==1.8.2 pypng==0.0.20 pyppeteer==0.2.5 PyQRCode==1.2.1 PyQt-Qwt==1.2.2 PyQt5==5.15.6 PyQt5-sip==12.11.0 pyqtgraph==0.12.4 pyramid==2.0 pyrsistent==0.18.1 pyrtlsdr==0.2.91 pyserial==3.5 pyShodan==0.2.3 pysmbc==1.0.23 pysmi==0.3.2 pysnmp==4.4.12 PySocks==1.7.1 pytest==6.2.5 python-apt==2.3.0+b1 python-dateutil==2.8.1 python-debian==0.1.44 python-dotenv==0.20.0 python-engineio==4.0.0 python-Levenshtein==0.12.2 python-magic==0.4.26 python-snappy==0.5.3 python-socketio==5.0.3 PyTrie==0.4.0 pytz==2022.1 pytz-deprecation-shim==0.1.0.post0 pytzdata==2020.1 pyusb==1.2.1.post1 PyVirtualDisplay==2.2 pyxdg==0.27 PyYAML==5.4.1 pyzmq==22.3.0 qrcode==7.3.1 Quamash==0.6.1 redis==3.5.3 requests==2.27.1 requests-toolbelt==0.9.1 responses==0.18.0 retrying==1.3.3 rfcat==1.9.5 rich==12.4.4 routersploit==3.4.0 rq==1.10.1 rtlsdr-scanner==1.3.2 ruamel.yaml==0.17.16 ruamel.yaml.clib==0.2.6 scapy==2.4.4 schema==0.6.7 scipy==1.7.3 selenium==4.0.0a1 Send2Trash==1.8.1b0 service-identity==18.1.0 setproctitle==1.2.2 sgmllib3k==1.0.0 shellescape==3.8.1 shodan==1.27.0 simplejson==3.17.6 simplekv==0.13.0 six==1.16.0 slowapi==0.1.4 smmap==5.0.0 smoke-zephyr==2.0.1 sniffio==1.2.0 sortedcontainers==2.4.0 soupsieve==2.3.2 speaklater==1.4 specan==0.0.0 spyse-python==2.2.3 SQLAlchemy==1.4.31 sqlalchemy-schemadisplay==1.3 sqlparse==0.4.2 sslyze==5.0.5 starlette==0.18.0 sympy==1.10.1 syslog-rfc5424-formatter==1.2.2 tables==3.7.0 tabulate==0.8.9 Tempita==0.5.2 termcolor==1.1.0 terminado==0.15.0 terminaltables==3.1.0 termineter==1.0.4 testpath==0.6.0 texttable==1.6.4 theHarvester==4.0.3 thrift==0.16.0 tld==0.11.11 tls-parser==1.2.2 token-bucket==0.3.0 toml==0.10.2 tornado==6.1 tqdm==4.64.0 traitlets==5.3.0 translationstring==1.4 Twisted==22.4.0 txaio==21.2.1 typing-extensions==3.10.0.2 typing-inspect==0.7.1 tzlocal==4.2 u-msgpack-python==2.3.0 ufoLib2==0.13.1 ujson==5.3.0 unicodecsv==0.14.1 unicodedata2==14.0.0 Unidecode==1.3.4 urllib3==1.26.9 urwid==2.1.2 uvicorn==0.17.6 uvloop==0.16.0 venusian==3.0.0 visvis==1.13.0 wafw00f==2.1.0 wapiti3==3.0.4 wcwidth==0.2.5 webargs==8.0.1 webencodings==0.5.1 WebOb==1.8.6 websocket-client==1.2.3 websockets==10.2 Werkzeug==2.0.2 wfuzz==3.1.0 widgetsnbextension==2.0.0 wifite==2.6.0 wsaccel==0.6.3 wsproto==1.1.0 WTForms==2.2.1 wxPython==4.0.7 xcffib==0.11.1 xdg==5 XlsxWriter==3.0.2 xlwt==1.3.0 yarl==1.7.2 yaswfp==0.9.3 zipp==1.0.0 zope.deprecation==4.4.0 zope.event==4.4 zope.interface==5.4.0

Current Behavior

Routersploit crushes when scanning after running the run command it gives the following error: Traceback (most recent call last): File "/usr/lib/python3/dist-packages/routersploit/core/exploit/utils.py", line 109, in import_exploit module = importlib.import_module(path) File "/usr/lib/python3.10/importlib/init.py", line 126, in import_module return _bootstrap._gcd_import(name[level:], package, level) File "", line 1050, in _gcd_import File "", line 1027, in _find_and_load File "", line 1006, in _find_and_load_unlocked File "", line 688, in _load_unlocked File "", line 883, in exec_module File "", line 241, in _call_with_frames_removed File "/usr/lib/python3/dist-packages/routersploit/modules/exploits/routers/tplink/wdr842nd_wdr842n_configure_disclosure.py", line 1, in from Crypto.Cipher import DES ModuleNotFoundError: No module named 'Crypto'

During handling of the above exception, another exception occurred:

Traceback (most recent call last): File "/usr/lib/python3/dist-packages/routersploit/interpreter.py", line 389, in command_run self.current_module.run() File "/usr/lib/python3/dist-packages/routersploit/modules/scanners/autopwn.py", line 77, in run for module in utils.iter_modules(directory): File "/usr/lib/python3/dist-packages/routersploit/core/exploit/utils.py", line 138, in iter_modules yield import_exploit(path) File "/usr/lib/python3/dist-packages/routersploit/core/exploit/utils.py", line 120, in import_exploit raise RoutersploitException( routersploit.core.exploit.exceptions.RoutersploitException: Error during loading 'routersploit/modules/exploits/routers/tplink/wdr842nd_wdr842n_configure_disclosure'

Error: No module named 'Crypto'

It should be valid path to the module. Use key multiple times for completion.

During handling of the above exception, another exception occurred:

Traceback (most recent call last): File "/usr/bin/routersploit", line 29, in routersploit(sys.argv) File "/usr/bin/routersploit", line 25, in routersploit rsf.start() File "/usr/lib/python3/dist-packages/routersploit/interpreter.py", line 125, in start command_handler(args, **kwargs) File "/usr/lib/python3/dist-packages/routersploit/core/exploit/utils.py", line 177, in wrapper return fn(self, *args, **kwargs) File "/usr/lib/python3/dist-packages/routersploit/interpreter.py", line 394, in command_run print_error(traceback.format_exc(sys.exc_info())) File "/usr/lib/python3.10/traceback.py", line 183, in format_exc return "".join(format_exception(*sys.exc_info(), limit=limit, chain=chain)) File "/usr/lib/python3.10/traceback.py", line 135, in format_exception te = TracebackException(type(value), value, tb, limit=limit, compact=True) File "/usr/lib/python3.10/traceback.py", line 502, in init self.stack = StackSummary.extract( File "/usr/lib/python3.10/traceback.py", line 357, in extract if limit >= 0: TypeError: '>=' not supported between instances of 'tuple' and 'int

Expected Behavior

*After running the run command routersploit should then run exploit check on the given router just like the image on the readme of this repo

Contributor guide

Tech stack
python
Domain
securitybackendcli
Issue type
bug
DifficultyEstimated implementation difficulty for a new contributor, from 1 for very small changes to 5 for expert-level work.
2
Estimated timeA rough time range for an experienced contributor to investigate, implement, test, and prepare a pull request.
under 1 hour
Activity statusHow available the issue appears right now: fresh, active, stale, blocked, or waiting on maintainer input.
stale
ClarityHow clearly the issue explains the expected change, acceptance criteria, and next step.
clear
Prerequisites
Python environment setup
Newbie friendlinessA 1-100 score estimating how approachable this issue is for first-time contributors.
50
Research direction
Investigate the import error in the file `wdr842nd wdr842n configure disclosure.py` which uses `from Crypto.Cipher import DES`. Check if the required dependency `pycryptodome` is listed in the project's requirements or setup files. Additionally, the secondary TypeError in the traceback module may be related to Python 3.10 compatibility; review recent commits or issues for similar reports.
routersploit crushing · threat9/routersploit#791 | Good First Issue