So as I mentioned before, I was able to set up OpenVPN/dns2tcp to work on a MikroTik Router. I never mentioned how I actually got access to that MikroTik Router. Well, the way I got access to it was because the guy in charge of the network didn't bother updating it and BigNerd95's Exploit worked. I went to him the first time I found out about this and told him to update it and he said sure. A couple of days later, I go open WinBox and notice it hasn't been updated. I go back to him and told him to make sure he updates it, he says "I don't need to worry. Most Yemenis (I'm in Yemen now) don't know how to do stuff like this." I replied "Yeah, but what if someone evil (aka me 
) comes through and gives himself free internet or ruins your router." He says "ok don't worry, I'll update it." 3 days later, still no update. At this point, I just give up and just log in, give myself a bunch of codes I can use to log in, set up OpenVPN/dns2tcp, bypass my random MAC, etc...
So I'm leaving Yemen next week and decided to help this guy (who at this point we're friends considering how much times we talked together.) I go to him today after 2PM with my laptop and show him how the exploit worked and I explained to him some stuff. He got a call and had to leave, so we decided to meet after 6PM. I left to go shopping (a Pringles can cost 1250YR can you believe that (2.50$)) and got a cool USB and MicroUSB USB Storage device (64GB).
Came back home, relaxed til 6:10, then went to meet the guy. I got there, pulled out my laptop, and started researching about updating whether it was going to mess up user manager or not(all the codes are in the use manager and if it messes up, then none of the codes will work and there will be a lot of pissed customers.) After a while I back up the User Manager database (this came really handy later on), then I transfer it from the MikroTik Router to the guy's laptop. After that we spend a bit more time (like an hour and a half) looking up about MikroTik updating and if there's any negatives (more like I was the only one looking up cause I'm the only one who was able to read English.) Then I decided to wing it. I clicked the "Download&Install" button. The download was going slow (like 1% every 8-9 seconds) and my heart was beating loudly. I was hoping it wouldn't mess with anything. After a while, it was done and we heard the MikroTik Router beeping (it was restarting.) We waited for 10-15 secs before trying to log back on to WinBox, then it worked. I went to check on the scheduler, hotspot, firewall, and some other stuff. Then I went to check on the User Manager. My heart was beating fast as I hoped nothing happened to it. I went to log in, then it worked. All the users were still there. I then told him to change his User Manager account and password as having the password be blank and the account be called "admin" wasn't gonna be hard to break. I did something stupid and removed the admin account. He then added his own username and password. I left and thought that was the end of it.
Sike. He called me and told me the User Manager was messed up. I told him I'll be right there and left my home. Once I arrived, I took a look. The User Manager was completely empty. I panicked for a second, but I remembered we backed it up before we updated it. I went on the MikroTik Router through SSH and ran the command to restore it, and thank god it worked. I then let him change the account "admin"'s password. Now everything is working fine, the script I left in the scheduler to run every 5 mins to add my mac to the bypassed list is working, and now no one else can break through the MikroTik Router.
I found out that the other connection next to me uses MikroTik and he didn't update his router. I might hit him up later and ask him if he wants to update his router for better protection.
Also, I keep referring to him as "guy" because I actually don't know his name lol.
EDIT: Forgot to mention, but before I went to him to update it, I added a script to scheduler that adds a Random MAC Address I made up to the bypassed list so I can spoof my laptop's MAC for free Internet speed with 2mb/s. The script runs every 5 minutes, so even if he blocks it, it'll automatically change to bypassed after 5 min.
) comes through and gives himself free internet or ruins your router." He says "ok don't worry, I'll update it." 3 days later, still no update. At this point, I just give up and just log in, give myself a bunch of codes I can use to log in, set up OpenVPN/dns2tcp, bypass my random MAC, etc...So I'm leaving Yemen next week and decided to help this guy (who at this point we're friends considering how much times we talked together.) I go to him today after 2PM with my laptop and show him how the exploit worked and I explained to him some stuff. He got a call and had to leave, so we decided to meet after 6PM. I left to go shopping (a Pringles can cost 1250YR can you believe that (2.50$)) and got a cool USB and MicroUSB USB Storage device (64GB).
Came back home, relaxed til 6:10, then went to meet the guy. I got there, pulled out my laptop, and started researching about updating whether it was going to mess up user manager or not(all the codes are in the use manager and if it messes up, then none of the codes will work and there will be a lot of pissed customers.) After a while I back up the User Manager database (this came really handy later on), then I transfer it from the MikroTik Router to the guy's laptop. After that we spend a bit more time (like an hour and a half) looking up about MikroTik updating and if there's any negatives (more like I was the only one looking up cause I'm the only one who was able to read English.) Then I decided to wing it. I clicked the "Download&Install" button. The download was going slow (like 1% every 8-9 seconds) and my heart was beating loudly. I was hoping it wouldn't mess with anything. After a while, it was done and we heard the MikroTik Router beeping (it was restarting.) We waited for 10-15 secs before trying to log back on to WinBox, then it worked. I went to check on the scheduler, hotspot, firewall, and some other stuff. Then I went to check on the User Manager. My heart was beating fast as I hoped nothing happened to it. I went to log in, then it worked. All the users were still there. I then told him to change his User Manager account and password as having the password be blank and the account be called "admin" wasn't gonna be hard to break. I did something stupid and removed the admin account. He then added his own username and password. I left and thought that was the end of it.
Sike. He called me and told me the User Manager was messed up. I told him I'll be right there and left my home. Once I arrived, I took a look. The User Manager was completely empty. I panicked for a second, but I remembered we backed it up before we updated it. I went on the MikroTik Router through SSH and ran the command to restore it, and thank god it worked. I then let him change the account "admin"'s password. Now everything is working fine, the script I left in the scheduler to run every 5 mins to add my mac to the bypassed list is working, and now no one else can break through the MikroTik Router.
I found out that the other connection next to me uses MikroTik and he didn't update his router. I might hit him up later and ask him if he wants to update his router for better protection.
Also, I keep referring to him as "guy" because I actually don't know his name lol.
EDIT: Forgot to mention, but before I went to him to update it, I added a script to scheduler that adds a Random MAC Address I made up to the bypassed list so I can spoof my laptop's MAC for free Internet speed with 2mb/s. The script runs every 5 minutes, so even if he blocks it, it'll automatically change to bypassed after 5 min.
