|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 103
Members: 0
Total: 103
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
help with the cookie |
|
Posted: Fri Oct 14, 2005 8:10 am |
|
|
raydog2k |
Regular user |
|
|
Joined: Oct 14, 2005 |
Posts: 8 |
|
|
|
|
|
|
|
hey can some1 plz tell me how i can change the cookie info which i got from using an exploit to a md5 hash
this is what i got .....
Cookie: phpbb2mysql_data=a:2:{s:11:\"autologinid\";s:0:\"\";s:6:\"userid\";s:3:\"217\";}; user=MjE3OnRyZGpvbmVzOmRkY2QxM2IzYzU4YzQ3Y2M2YTg3ZmIxOWE4MzYyMDc2OjEwOjowOjA6MDowOjo0MDk2; phpbb2mysql_sid=86613da316dbf4e0722e3f1843fea959; phpbb2mysql_t=a:1:{i:258;i:1129260091;}
thanks in advance |
|
|
|
|
Posted: Fri Oct 14, 2005 8:46 am |
|
|
raydog2k |
Regular user |
|
|
Joined: Oct 14, 2005 |
Posts: 8 |
|
|
|
|
|
|
|
Ok now i've figured how to change it to this:
a%3A2%3A%7Bs%3A11%3A%5C%22autologinid%5C%22%3Bs%3A0%3A%5C%22%5C%22%3Bs%3A6%3A%5C%22userid%5C%22%3Bs%3A3%3A%5C%22132%5C%22%3B%7D
now how do i get it into a md5 hash...please can some1 help |
|
|
|
|
Posted: Fri Oct 14, 2005 7:19 pm |
|
|
raydog2k |
Regular user |
|
|
Joined: Oct 14, 2005 |
Posts: 8 |
|
|
|
|
|
|
|
plz plz can some1 tell me what i need to do next? Cause i've gathered lots of cookie info |
|
|
|
|
Posted: Sat Oct 15, 2005 11:05 am |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
I havent done much cookie crafting but you may be able to find someone/somesite that specailises in it. Just search google |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
Posted: Thu Oct 27, 2005 4:14 pm |
|
|
s3s10n |
Beginner |
|
|
Joined: Oct 27, 2005 |
Posts: 3 |
|
|
|
|
|
|
|
raydog2k wrote: | Ok now i've figured how to change it to this:
a%3A2%3A%7Bs%3A11%3A%5C%22autologinid%5C%22%3Bs%3A0%3A%5C%22%5C%22%3Bs%3A6%3A%5C%22userid%5C%22%3Bs%3A3%3A%5C%22132%5C%22%3B%7D
now how do i get it into a md5 hash...please can some1 help |
There is no MD5 hash in this cookie, only the user id: 132. So try again to gathering the cookie with the md5 hash included. |
|
|
|
|
Posted: Fri Oct 28, 2005 1:00 am |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
since one of the phpbb versions it has been changed to not have the MD5 in the cookie I believe |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
Posted: Sat Oct 29, 2005 12:42 am |
|
|
kizkur |
Regular user |
|
|
Joined: Dec 04, 2004 |
Posts: 11 |
|
|
|
|
|
|
|
sorry by my english
this is base64
MjE3OnRyZGpvbmVzOmRkY2QxM2IzYzU4YzQ3Y2M2YTg3ZmIxOWE4MzYyMDc2OjEwOjowOjA6MDowOjo0MDk2
is equal
217:trdjones:ddcd13b3c58c47cc6a87fb19a8362076:10::0:0:0:0::4096
user is number 217 = trdjones
the hash md5 is ddcd13b3c58c47cc6a87fb19a8362076 |
|
|
|
|
Posted: Sat Oct 29, 2005 5:26 am |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
Yes as I said encrypted.
Anywayz hes already given that to me hashes to crack. Its because he can't crack it that hes wants to use it to login as admin |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
www.waraxe.us Forum Index -> PhpBB
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|