ms264556.net

Appearance

Show firmware details for Ruckus backups

Use this tool if you don't know which version of Ruckus software you need to be running in order to restore a backup.

Backup security

Ruckus Unleashed, ZoneDirector and SmartZone backups contain the super-administrator's password, rather than a cryptographic hash.

  • Protect your backups at rest, either in a secure location or wrapped in a password-protected archive.

End-of-life Ruckus software exposes backups to unauthenticated users.

  • Use VLANs or Client Isolation to segregate untrusted wireless users from your controller's management interface.

  • Never expose a Ruckus management interface to the internet.

    • Ruckus Unleashed has a free cloud management feature. Or use a VPN to connect to your controller.
    • Follow my guides to safely connect remote APs to Unleashed, ZoneDirector or Smartzone over the internet.

Online Tool

Your internet browser will use JavaScript to analyze your backup.
No data from the backup file will leave your PC.

Offline Tool

The Python aioruckus package can also be used to extract Ruckus Unleashed/ZoneDirector firmware info from backups.

Sample Python code to do this:-

python
from aioruckus import BackupSession, SystemStat
import asyncio

async def print_admin_user():
    with BackupSession.create("<path to your ZoneDirector/Unleashed .bak file>") as session:
        system_info = await session.api.get_system_info(SystemStat.SYSINFO, SystemStat.ADMIN)
        print(f"{system_info['sysinfo']['model']}: {system_info['sysinfo']['version']}")
asyncio.run(print_admin_user())

Recover lost/forgotten admin credentials

I don't currently provide an online tool to extract credentials, due to abuse.

  • If you have a support contract, Ruckus can extract the admin password from a backup.
  • If you have no support contract, please contact me privately so I can help you.
Contact me

Privately message me on one of the social networks provided on my GitHub profile page.

Or, if this is for your business/employer, you can email me from your work email address.
DO NOTE that I'll ignore emails which I can't link to a legitimate business.