August 18th, 2008, 02:21 AM
help hacking the login form....hacker challenge
ok, I came across this hacker challenge, and it seems to work like this:.... anyone can register, once you register you can login, but you get a message saying that "you are a regular user, and you need administrator rights"....all the authentication is done against a mysql backend database, which contains the usernames and passwords, with that the first thing I tried was sql injection to see if the app would spit out all the content of the table... so I tried something simple like ' or 'x'='x which in sql evaluates to true, that didn't work so I use webscarab to kind of launch a dictionary attack against the login page using sql injection, but I think the application is doing input validation or stripping the input from any tags or slashes.... the other vector attack could be either a weakness in the cookie or sessionid but I haven't got there yet.
here's the link http://www.pctechtips.org/pwn3d_login.php
any help appreciated
Last edited by k_tech; August 18th, 2008 at 02:23 AM.
August 19th, 2008, 07:51 PM
It is just the username in a cookie that is hashed. Change the value of it to the md5 of the word "admin" refresh and you got it
I have a small howto on changing cookies on my forum:
August 19th, 2008, 09:02 PM
here's a good md5 cracker
and I use cookie editor in firefox
August 20th, 2008, 12:45 AM
August 20th, 2008, 02:36 AM
Brute forcing is not really practical... Its usually best to try rainbow tables or a dictonary first...
August 21st, 2008, 02:28 AM
no to mention you leave traces in the logs and all over the place
August 22nd, 2008, 04:54 PM
Not if you have the md5 hash on your local machine and you are trying to crack it there... thats what you are doing in this case.
August 25th, 2008, 05:17 AM
Is it just me or does that site not work right now? no matter what you put in it just comes up blank.
Originally Posted by k_tech
By Sick Dwarf in forum Newbie Security Questions
Last Post: September 26th, 2002, 01:30 AM
By TURBOWEST in forum The Security Tutorials Forum
Last Post: September 23rd, 2002, 06:46 AM
By Isellcrack4FBI in forum AntiOnline's General Chit Chat
Last Post: July 4th, 2002, 03:40 PM
By Noble Hamlet in forum AntiOnline's General Chit Chat
Last Post: March 17th, 2002, 09:38 AM