# printers

A great way to get access to sensitive information in an environment is to log into printers that have default/weak creds and steal SMTP/SMB credentials. To find good interfaces for pwning, I like to run gowitness first and then look at the report output (gowitness report list). Below are some notes on default creds for popular printers. You'll often see the printer make/model in the Title column of the gowitness output.

Default username:

administrator

password:

7654321

Unconfirmed but I believe this one needs a unique PIN.

Not sure about cred to login, but it's pretty boring from a sensitive data standpoint - I don't see a place to hijack SMTP/SMB creds.

M402dw default username is admin, and the default password is a unique 8-digit PIN found on a sticker inside the printer near the toner cartridge.

Default username of admin and password is shown on the printer config page.

The default admin password for the HP Color LaserJet Pro MFP M479fdn is likely the printer's default PIN, found on a sticker inside the front door or on the back of the printer. If that doesn't work, common defaults to try are admin or leaving the password field blank for the username admin.

Not sure about cred to login, but it's pretty boring from a sensitive data standpoint - I don't see a place to hijack SMTP/SMB creds.