|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 68
Members: 0
Total: 68
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Acess to admin cp through cookies |
|
Posted: Tue Jun 28, 2005 9:52 pm |
|
|
badboy |
Regular user |
|
|
Joined: Jun 29, 2005 |
Posts: 5 |
|
|
|
|
|
|
|
I have got access to a forum by
exploiting the forums
i have the admin hash
but havent had luck with cracking
so i added it to the mozilla cookies so i would auto login
which worked
-------------------
but now i need access to the ADMIN CPANEL
but the problem is it asks to enter the password because theres no login session found
plz help
thanks
im talking about invision power board btw |
|
|
|
|
Posted: Tue Jun 28, 2005 10:36 pm |
|
|
diaga |
Regular user |
|
|
Joined: Jun 27, 2005 |
Posts: 22 |
|
|
|
|
|
|
|
I'd assume you got access of a phpbb forum - the forum has nothing to do with cPanel. Your only bit of chance is decrypting the has (it's encrypted in MD5) and then trying that password via cpanel.
As for the user name, if you can upload a php file onto their server and run it - and generate an error, you will get the cpanel user name
goodluck |
|
|
|
|
|
wtf |
|
Posted: Wed Jun 29, 2005 4:25 pm |
|
|
badboy |
Regular user |
|
|
Joined: Jun 29, 2005 |
Posts: 5 |
|
|
|
|
|
|
|
i told u it was invision
and the hash is like @!$!@#%$#&#%&YHGDFHDFHDFH
20 characters ive been brutefrocing for 3 months and its been on two online cracking things for 2 months |
|
|
|
|
|
help |
|
Posted: Thu Jun 30, 2005 5:56 pm |
|
|
badboy |
Regular user |
|
|
Joined: Jun 29, 2005 |
Posts: 5 |
|
|
|
|
|
|
|
BECAUSE IN INVISION THE ADMIN CPAENL DOESNT HAVE COOKIES, ITS LIKE ITS ASKING YOU TO CONFIRM THE PASS EVEN WHEN YOUR LOGGED IN AS ADMIN ANYWAY
is there a way to bypass THIs |
|
|
|
|
Posted: Fri Jul 01, 2005 9:14 am |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
Please Try not to shout.....
I dont believe there is any way to bypass this its an extra security messure that Ivision has added like phpbb now has. All you have to do is login twice if you get the hash cracked and if I remember correctly they are either salted or md5 'ed twice over. |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
www.waraxe.us Forum Index -> Newbies corner
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|