HACK FIRMWARE and SSH and EXPLOIT for free
FIRMWARE
SSH on any Antminer
EXPLOIT Antminer (not only S15 or 17)
The exploit uses a security issue on Lighttpd!
Stop PM me if you will not pm your real name to me!
Hint: It works also above 1.4.32
FIRMWARE
- buy this ftdi https://amzn.to/2EUBb3P
- install cooltherm http://freeware.the-meiers.org/#CoolTerm Mac/Win/Linux/Raspi (DONATE)
- connect to any antminer board
- Connect ftdi to usb
- start CoolTerm
- Set 115000
- power on your miner
- login as usual: root admin
Code:
vi /www/pages/cgi-bin/upgrade.cgi
- remove line 45,46,46,48,49,50,51,52,77,78 (move with up and press d to remove a line. 77 and 78 are the last fi on that function)
- press ESC : wq
- open your antminer website and upload what ever you want
SSH on any Antminer
- buy this ftdi https://amzn.to/2EUBb3P
- install cooltherm http://freeware.the-meiers.org/#CoolTerm Mac/Win/Linux/Raspi (DONATE)
- connect to any antminer board
- Connect ftdi to usb
- start CoolTerm
- Set 115000
- login as usual: root admin
Code:
dropbearkey -t rsa -f /config/dropbear_rsa_host_key -y
- reboot -f
- power off your antminer
- disconnect ftdi
- power on
- login via ssh as usual
EXPLOIT Antminer (not only S15 or 17)
The exploit uses a security issue on Lighttpd!
- research your self
- if you use Kali Linux search for XSS, Lighttpd, remote execution
- It's hard to find but not impossible!
- do not spend any cent on this exploit use the above instructions
- if you have found the script use dos2linux to convert the script (it's a Win script)
- the code to execute is: dropbearkey -t rsa -f /config/dropbear_rsa_host_key -y
- Why? Because if you set a new dropbearkey ssh service will start from alone
Stop PM me if you will not pm your real name to me!
Hint: It works also above 1.4.32