Cyberoam Hack : As many accounts as you like

Sep 19

Posted by

NOTE : I have now detailed the process explaining how to do it  http://navkamalrakra.com/cyberoam-accounts-stealing-hacking-bypassing/ 

Our College has got a CybeRoam Firewall to censor our online activities, and everybody is provided with a username/password combination to connect to internet. Students get a limited access and the faculty gets unlimited access, so the the aim ultimately is, to gather as many faculty accounts as possible. In free time I wrote a shell script to accomplish this task … and in about 2 hours I had more than 100 accounts out of which more than 10 were unlimited faculty accounts 🙂 ….
It was as easy as grep -i "mode=[0-9][0-9][0-9]" from the dump .
Here the proof (the list is too long to be displayed and the usernames as well as passwords have been trimmed off for security of accounts):

username=10803149		44
username=10901012		56
username=10901015		ki
username=10901018		34
username=10901024		bh
username=10901025		43
username=10901031		1*
username=10901040		le
username=10901042		67
username=10901047		31
username=10901048		40
username=10901056		12
username=10901062		al
username=10902025		dd
username=10902027		ja
username=10902038		ja
username=10902050		19
username=10902062		30
username=10902064		78
username=10902070		78
username=10902105		85
username=10902107		32
username=10902123		26
username=10902125		47
username=10902132		87
username=10902145		32
username=10902172		35
username=10902173		86
username=10902302		70
username=10902302		70
username=10902303		43
username=10903001		76
username=10903005		12
username=10903006		29
username=10903015		20
username=10903016		64
username=10903030		19
username=10903031		13
username=10903038		pa
username=10903045		80
username=10903052		qw
username=10903055		24
username=10903056		22
username=10903058		51
username=10903060		re
username=10903105		31
username=10903108		32
username=10903110		24
username=10903115		80
username=10903125		25
username=10903131		20
username=10903159		90
username=10903159		90
username=10903164		71
username=10903178		ni
username=11002001		88
username=11002005		67
username=11002010		28
username=11002013		41
username=11002034		49
username=11002043		82
username=11002049		23
username=11002096		52
username=11002160		10
username=11002160		um
username=11002172		46
username=11002176		as
username=11003301		77
username=11003309		80
username=11102146		15
username=11102156		15
username=11103042		ba
username=11103069		cu
username=11103323		90
username=11103333		72
username=11103339		72
username=11103339		72
username=1110339		72
username=11191039		96
username=120425727		en
username=120426058		36
username=120426058		36
username=641			40
username=801090			78
username=801160			95
username=802088			mo
username=802100			aa
username=802124			75
username=802242			74
username=802246			59
username=amandeep		pl
username=amandeep		pl
username=baljinder		hl
username=daljeet		sh
username=dinesh			ma
username=ema			37
username=hardeep		72
username=harpreet		20
username=jagro			32
username=nidh			56
username=palwin			11
username=ps			74
username=rake			67
.
.

The article has been moved to http://navkamalrakra.com/cyberoam-accounts-stealing-hacking-bypassing/

Posted on September 19, 2012, in Random and tagged , , , , , , , , , , , . Bookmark the permalink. 18 Comments.

  1. UKP | December 26, 2012 at 8:26 pm

    dude , can u share your script?

    Reply
  2. abbas | January 1, 2013 at 4:57 pm

    hey gr00v_hack3r, you wrote about script,
    but i am unable to find any links to that script.
    have you uploaded it anywhere?
    if yes, then can i have the link to it??
    i am also just a student like you, suffering from the same common problem.

    thnx

    Reply
    • gr00ve_hack3r | January 10, 2013 at 11:27 am

      No , I didnt upload the script, This script will vary according to the implementation of Cyber-roam firewall in your college/university. You will need to provide the details of how the accounts are distributed and their privileges .

      Reply
      • Rahul | January 10, 2013 at 5:22 pm

        Can u pls share ur version, I will modify as per the changes made by my univ

      • abbas | January 10, 2013 at 6:53 pm

        will you please be specific about what details you want for that the script….
        i will be very happy providing you with those details 🙂

      • kumar shivam | July 11, 2013 at 2:07 am

        hey…pleased to know after alot tries that someone can really do against admin… i have a teacher id which i used to use ..but now i thinks it has been reset … cud u plzz help me..my main system ip is 172.16.1.1 .. id’s distributed to studens are in the range be1500111 to 1530011 for 2k11 students … similarly for 2k12 be 1500112 to the end …. while teachers id’s are only in numbers..if u cud help me in any means ..i will be thankful to u very much…….

      • kumar shivam | August 9, 2013 at 6:30 pm

        in my college … students id is like be1501011 where 15010 is roll no. and 11 is the batch whereas faculty id are combination of 5 digits… like 10242.. plz help me

      • Pranjal Jain | September 12, 2013 at 11:59 am

        The accounts are distributed in exactly the same way. Please help me with the script details. PLEASE!! BTW, Which college are you from?

  3. Raj | January 3, 2013 at 7:28 pm

    where did u run the script dude ?

    Reply
  4. KAUSHAL | January 11, 2013 at 2:04 pm

    i am unable to get max. speed at my college which runs the cyberoam server, and as u described that u got faculty account i need a faculty account for my downloading purpose.
    CAN U PLEASE HELP ME OUT…PLEEEEASSSSE

    Reply
  5. garry | January 15, 2013 at 1:45 pm

    i have username of a teacher. i need password. help me

    Reply
  6. anonymous | April 5, 2013 at 12:53 am

    yr could u plz explain how to run where to run and what to change in that script according to clg setting ..

    Reply
  7. abcccc | May 5, 2013 at 3:20 am

    these are registratiion numbers from lovely professional university, if i guess so…

    Reply
  8. mpp | May 18, 2013 at 9:47 pm

    Can anyone help me even..
    I have been through the same situation..
    Teachers get unlimited and high speed access..
    The portal we login to is 172.16.0.50:8090.
    Can any one please send me the script and explain me where to implement it..
    Please i am frustrated a lot due to this

    Reply
  9. anurag | May 31, 2013 at 2:10 am

    Actually my clg faculty not make any new account for students.
    my clg username i.e 1101018
    1101015
    1202003
    1201010
    plz help me

    Reply
  10. sid | September 10, 2013 at 3:49 am

    hey dude…awesome work
    help me too…
    what detail of cyberoam account distribution &previlleges u want?give a example…in ur clg how is it?

    Reply
  11. kool | September 16, 2013 at 2:46 am

    please can u tell me the shell script my college is using the latest version of cyberoam …i want to know the username and password of faculties

    Reply
  12. vineet | May 21, 2015 at 7:36 pm

    Hey gr00ve_hack3r my college id is and and3412328. And all id distributed to students are in same pattern
    But I wanted to know password of c1320 one of our faculty’s id

    Reply

Leave a comment