Login or Register :: Home :: Search :: Your Account :: Forums :: Waraxe Advisories :: Tools :: July 27, 2024 Menu Home Logout Discussions Forums Members List IRC chat Tools Base64 coder MD5 hash CRC32 checksum ROT13 coder SHA-1 hash URL-decoder Sql Char Encoder Affiliates y3dips ITsec Md5 Cracker User Manuals AlbumNow Content Content Sections FAQ Top Info Feedback Recommend Us Search Journal Your Account User Info Welcome, Anonymous Nickname Password (Register) Membership: Latest: MichaelSnaRe New Today: 0 New Yesterday: 0 Overall: 9144 People Online: Visitors: 154 Members: 0 Total: 154 Full disclosure CyberDanube Security Research 20240722-0 | Multiple Vulnerabilities in Perten/PerkinElmer ProcessPlus [KIS-2024-06] XenForo <= 2.2.15 (Template System) Remote Code Execution Vulnerability [KIS-2024-05] XenForo <= 2.2.15 (Widget::actionSave) Cross-Site Request Forgery Vulnerability CVE-2024-33326 CVE-2024-33327 CVE-2024-33328 CVE-2024-33329 CyberDanube Security Research 20240703-0 | Authenticated Command Injection in Helmholz Industrial Router REX100 SEC Consult SA-20240627-0 :: Local Privilege Escalation via MSI installer in SoftMaker Office / FreeOffice SEC Consult SA-20240626-0 :: Multiple Vulnerabilities in Siemens Power Automation Products Novel DoS Vulnerability Affecting WebRTC Media Servers APPLE-SA-06-25-2024-1 AirPods Firmware Update 6A326, AirPods Firmware Update 6F8, and Beats Firmware Update 6F8 40 vulnerabilities in Toshiba Multi-Function Printers 17 vulnerabilities in Sharp Multi-Function Printers SEC Consult SA-20240624-0 :: Multiple Vulnerabilities allowing complete bypass in Faronics WINSelect (Standard + Enterprise) IT Security and Insecurity Portal www.waraxe.us Forum Index -> General discussion -> modifying a cookie View previous topic :: View next topic modifying a cookie Posted: Fri Apr 28, 2006 8:45 am brennusje Beginner Joined: Apr 28, 2006 Posts: 4 Hi, I used a sql injection and found the aid and md5 hash of a admin acount. now i want to create a cookie to log in as that account. The problem is that the cookie is a bit more complicated then the one used in the guide. (its a php-nuke website btw). i'm sure waraxe should be able to explain this cookie, since his own website makes the exact same cookies! here's an example: lang english www.waraxe.us/ 1024 1077309056 29854064 3459385152 29780638 * phpbb2waraxe_data a%3A2%3A%7Bs%3A11%3A%22autologinid%22%3Bs%3A0%3A%22%22%3Bs%3A6%3A%22userid%22%3Bs%3A4%3A%221921%22%3B%7D www.waraxe.us/ 1024 1007309056 29854064 3418135152 29780638 * user MTkyMTpicmVubnVzamU6Y2MwM2U3NDdhNmFmYmJjYmY4YmU3NjY4YWNmZWJlZTU6MTA6bmVzdGVkOjA6MDowOjA6OjQwOTY%3D www.waraxe.us/ 1024 3218353792 29786673 3459225152 29780638 * The are line breaks or something which notepad doesnt seem to undewrstand. when openend in ultra edit etc it shows as line breaks. When i decode the base64 part we get this: 1921:brennusje:cc03e747a6afbbcbf8be7668acfebee5:10:nested:0:0:0:0::4096 1921 = userid brennusje = username cc03e747a6afbbcbf8be7668acfebee5 = md5 hash But what is all that stuff after it? do i have to change it or just leave it alone? And what about the first half of the cookie? i know i have to change the userid obviously, but what about all that stuff in front of and after autologinid? and the stuff after www.waraxe.us/ ? plz explain a bit more. Posted: Fri Apr 28, 2006 11:08 am waraxe Site admin Joined: May 11, 2004 Posts: 2407 Location: Estonia, Tartu Only cookie you must have in order to hijack the account, is "user" cookie. Other cookies, like "phpbb2whatever" will be automagically created in later. By the way, i hope, that your example md5 hash is not really yours, because: http://www.google.com/search?hl=en&q=cc03e747a6afbbcbf8be7668acfebee5&btnG=Google+Search Posted: Fri Apr 28, 2006 11:34 am brennusje Beginner Joined: Apr 28, 2006 Posts: 4 Hi, Yeah i posted my own cookie, it's not like a super secret pass or anything I've tried to edit the user cookie but i just cant seem to get it to work. The site only makes 2 cookies: lang english www.somesite.org/ 1024 1577897728 29854082 3885223824 29780656 * msa_resolution 1280x1024x16 www.somesite.org/ 1088 3931871232 31079283 3888033824 29780656 * user MTExOnRlc3RhY2M6c29tZW1kNWhhc2g6MTA6OjA6MDowOjA6OjQwOTY%3D%3D www.somesite.org/ 1024 383975168 29786692 547436528 29780657 * And phpbb2mysql_data a%3A2%3A%7Bs%3A11%3A%22autologinid%22%3Bs%3A0%3A%22%22%3Bs%3A6%3A%22userid%22%3Bs%3A3%3A%22111%22%3B%7D somesite.org/ 1024 4068028544 29854086 2086077344 29780661 * Now it seems that i am just not getting something. I know the aid and md5 hash of the admin, but when i edit the cookies accordingly it doesnt work. (i get the index as if i was a unknown user and cookies get overritten)[/i] Posted: Fri Apr 28, 2006 12:01 pm waraxe Site admin Joined: May 11, 2004 Posts: 2407 Location: Estonia, Tartu What browser you are using? IE? Posted: Fri Apr 28, 2006 12:40 pm brennusje Beginner Joined: Apr 28, 2006 Posts: 4 Yeah i use IE. should i try it with firefox/mozilla instead? Anyways, i cracked the md5 hash so no need anymore Thanks for the very informative site and quick replies. I'm amazed at how good you are at finding exploits, my compliments! (maybe phpnuke should hire you ) Posted: Fri Apr 28, 2006 12:55 pm brennusje Beginner Joined: Apr 28, 2006 Posts: 4 Yeah i use IE. should i try it with firefox/mozilla instead? Anyways, i cracked the md5 hash so no need anymore Thanks for the very informative site and quick replies. I'm amazed at how good you are at finding exploits, my compliments! (maybe phpnuke should hire you ) Posted: Fri Apr 28, 2006 2:21 pm waraxe Site admin Joined: May 11, 2004 Posts: 2407 Location: Estonia, Tartu Thanks for good words! And about IE and cookies - yep, beginning from IE 6 (if i remember right) there is some counter-tampering measures integrated to IE, so that simple manual txt file cookie editing is not working anymore. But Firefox cookie file is not protected modifying a cookie www.waraxe.us Forum Index -> General discussion You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum All times are GMT Page 1 of 1 All Posts1 Day7 Days2 Weeks1 Month3 Months6 Months1 YearOldest FirstNewest First Select a forumSecurity Research by waraxe----------------General discussionHow to fixMetasploit relatedHash cracking requests----------------MD5 hashesAll other hashesHash related informationhttp://www.waraxe.us portal----------------SuggestionsCooperation proposalsSecurity bugs and issues in general----------------Newbies cornerSql injectionCross-site scripting aka XSSRemote file inclusionFull path disclosureShell commands injectionPhishing and Social EngineeringAll other security holesVarious software----------------PhpNukePostNukePhpBBXMB forumvBulletin BoardInvision Power Boarde107MamboJoomlaXOOPSM$ WindowsLinux worldAll other softwareCoppermine Photo GalleryProgramming languages----------------PhpMySqlPerlJavaJavascriptC and C++Visual BasicBorland Delphi and PascalPythonHTML and XMLAssemblerReverse engineering----------------Newbies cornerDisassemblingPHP script decode requestsMiscellaneous stuff----------------Future of the ITNanotechnologyFun cornerLinksTry2hack sitesProxy databaseDirect Downloads----------------ToolsTutorialsWordlistsRecycle Bin----------------Removed messagesOutdated posts Powered by phpBB © 2001-2008 phpBB Group

Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.166 Seconds