WAVLINK-NU516U1-WO-A-2024-04-25-b516aec-GDBYFM固件仿真
Words:
295
·
Reading:
1 min
固件解包直接解包
使用FirmDissector
固件分析
Mipsel架构
firmwalker检查 lighttpd服务
干预分析
(1)干预1
第一次启动
报错信息如下
/etc/init.d # lighttpd start
2025-12-30 15:03:30: (server.c.824) No configuration available. Try using -f option.
/etc/init.d # ./lighttpd start
Can't open /var/lock/passwd
mkdir: can't create directory '/var/': No such file or directory
chgrp: /var/log/lighttpd: No such file or directory
cp: can't stat '/rom/etc/lighttpd/lighttpd.conf': No such file or directory
2025-12-30 15:04:18: (server.c.925) opening pid-file failed: /var/run/lighttpd.pid No such file or directory
执行命令
grep -ir "/var/lock/passwd"
先执行functions.sh
(2)干预2
报错信息
cp: can't stat '/rom/etc/lighttpd/lighttpd.conf': No such file or directory
Duplicate config variable in conditional 4 global/HTTPurl==/html/login.shtml/HTTPhost=~.*: url.redirect
2025-12-30 15:06:24: (configfile.c.1154) source: /etc/lighttpd/lighttpd.conf line: 82 pos: 1 parser failed somehow near here: (EOL)
每次执行都会在/etc/lighttpd/lighttpd.conf 后写入,所以每次执行要删除添加的内容
(3)干预3
报错信息
cp: can't stat '/rom/etc/lighttpd/lighttpd.conf': No such file or directory
2025-12-30 15:44:48: (server.c.925) opening pid-file failed: /var/run/lighttpd.pid No such file or directory
创建空文件,写入一个值
(4)干预4
报错信息
2025-12-30 15:46:48: (network.c.788) SSL: not enough entropy in the pool
SSL端口
查看内部端口为443 ,所以注释掉443端口那句配置
再次启动,网络能访问
