Results 1 to 8 of 8

Thread: help hacking the login form....hacker challenge

  1. #1
    Member
    Join Date
    Oct 2006
    Posts
    63

    help hacking the login form....hacker challenge

    ok, I came across this hacker challenge, and it seems to work like this:.... anyone can register, once you register you can login, but you get a message saying that "you are a regular user, and you need administrator rights"....all the authentication is done against a mysql backend database, which contains the usernames and passwords, with that the first thing I tried was sql injection to see if the app would spit out all the content of the table... so I tried something simple like ' or 'x'='x which in sql evaluates to true, that didn't work so I use webscarab to kind of launch a dictionary attack against the login page using sql injection, but I think the application is doing input validation or stripping the input from any tags or slashes.... the other vector attack could be either a weakness in the cookie or sessionid but I haven't got there yet.

    here's the link http://www.pctechtips.org/pwn3d_login.php

    any help appreciated

    thanks
    Last edited by k_tech; August 18th, 2008 at 01:23 AM.

  2. #2
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    It is just the username in a cookie that is hashed. Change the value of it to the md5 of the word "admin" refresh and you got it

    I have a small howto on changing cookies on my forum:
    http://tech-board.net/viewtopic.php?f=15&t=3

  3. #3
    Member
    Join Date
    Oct 2006
    Posts
    63
    here's a good md5 cracker
    http://gdataonline.com/seekhash.php

    and I use cookie editor in firefox

  4. #4
    Junior Member SkaterDude541's Avatar
    Join Date
    Aug 2008
    Location
    I`m not gonna tell ya
    Posts
    1

  5. #5
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    Brute forcing is not really practical... Its usually best to try rainbow tables or a dictonary first...

  6. #6
    Member
    Join Date
    Oct 2006
    Posts
    63
    no to mention you leave traces in the logs and all over the place


    www.pctechtips.org

  7. #7
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    Not if you have the md5 hash on your local machine and you are trying to crack it there... thats what you are doing in this case.

  8. #8
    Junior Member
    Join Date
    Nov 2004
    Posts
    18
    Quote Originally Posted by k_tech
    here's a good md5 cracker
    http://gdataonline.com/seekhash.php

    and I use cookie editor in firefox
    Is it just me or does that site not work right now? no matter what you put in it just comes up blank.

Similar Threads

  1. Newbies: How to become a hacker.
    By Sick Dwarf in forum Newbie Security Questions
    Replies: 8
    Last Post: September 26th, 2002, 12:30 AM
  2. how to be a hacker
    By TURBOWEST in forum The Security Tutorials Forum
    Replies: 4
    Last Post: September 23rd, 2002, 05:46 AM
  3. The Ultimate Social Engineering tutorial!
    By Isellcrack4FBI in forum AntiOnline's General Chit Chat
    Replies: 2
    Last Post: July 4th, 2002, 02:40 PM
  4. The Worlds Longest Thread!
    By Noble Hamlet in forum AntiOnline's General Chit Chat
    Replies: 1100
    Last Post: March 17th, 2002, 09:38 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •