If you have access to the router, ultimately you have access to *ANY* computer on the network.
First off, let’s learn about the DMZ. DMZ stands for “Demilitarized Zone”. Basically, every router let’s you add an IP address to this DMZ, leaving the computer that has the the IP *WIDE OPEN* to the internet, meaning the firewall is off, all ports are open, etc.
So what do you do, once you hack into the router’s admin page, and add a computer into the DMZ? You attack the hell out of the computer! We’ll hope that the computer has no software firewall, and just a the router as a hardware firewall, because if it has a software firewall, it’s going to be a lot harder.
Now, here’s the tricky part: Getting access to the box. If you are *ON* the network (not remotely) that the router is on, you could simply plug the IP address into windows explorer (ie: \\192.168.0.101\) and look for shared directories. Most likely their will be at least one share on the computer. Their is also an administrator share on ALL win2000/XP boxes located at “\\IP_Address\c$\).
note:dont forget to change your IP address with IP spoofer
If we want full access to the computer, we’ll probably want to find some open ports on the computer and look for running services, such as FTP, Telnet, an HTTP web server, Remote Desktop, etc. Use your favorite port scanner to do this; if you find open ports, go ahead and brute force your way into these services. TelNet would be the best, basically giving you full access to the box.
Of course, you could always search the box for vulnerabilities/exploits using your favorite scanner, such as nessus, etc.
If you spend some time, their is a number of ways you can get access to the box, depending on what kind of box it is. Keep on keepin’ on.
dont try this on Secured TelNet ,this method is working in my appartment(maison de l'Inde) bcoz they are using 18.2 router channel with Denclon and Orange provider.