Follow us on Twitter!
You cannot teach a man anything; you can only help him find it within himself. - Galileo
Monday, April 21, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 22
Guests Online: 21
Members Online: 1

Registered Members: 82852
Newest Member: sockpuppets
Latest Articles
View Thread

HellBound Hackers | Computer General | Web hacking

Author

Hacking PHP login


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 14-08-08 06:46
Looking to get some information on where to look to find exploits in a php login.


I have my own copy of the ALL the files for the script so I can go through the code to find exploits, I just don't have any access to the actual login I want to crack.

As far as I can tell the login is custom coded with php (not some login from like hotscripts or something). It has just login and password fields with a forgot my password feature. To retrieve the password you need user + email address and I don't know/have access to either.

Where should I start to look to find exploits? Would it help if I posted the script and/or gave the url to my own version of the script hosted on my own servers on my own domain. (no legal trouble)

Thanks for any help.


edit: I'm sure you'll need to know most specifics just ask me and I can check them out or I can post the url to the code and/or to the code hosting and working (again, on my own servers.)

edit number 2: No limit to how many times you can try a password/username before you are banned or a captcha appears.

Edited by on 14-08-08 06:54
Author

RE: Hacking PHP login

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 14-08-08 08:11
Well, you pose an excellent question. What you basically want to know his how does one identify exploitable bugs in a login script written in PHP?.

Let me give you a few tips to get started. Check out the following:
-Input filtering
-Cookie management
-SQL database interaction
-'Are you logged in?'-procedures

Everything starts with input filtering. Faulty filtering can enable XSS, SQL injection and redirection attacks.

I hope this helped.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: Hacking PHP login

Uber0n
Member



Posts: 1963
Location: Sweden‭‮
Joined: 13.06.06
Rank:
Hacker Level 3
Posted on 14-08-08 10:08
trixus wrote:
I have my own copy of the ALL the files for the script so I can go through the code to find exploits, I just don't have any access to the actual login I want to crack.

Do you mean that you have a mirror of the HTML pages, or that you have the actual PHP source? There's a big difference there Pfft


img230.imageshack.us/img230/724/uber0nsig3hj6.gif
http://uber0n.web. . .
Nope http://uber0n.webs.com/
Author

RE: Hacking PHP login


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 14-08-08 14:07
if u have an exapt copy of the php it woul help loads, you can see exactly what is filtered from input, and the sql tables and columns that it interacts with to preform sql injections of your own lol, ps, how did you manage to get the copy of the php code?? ps.ps, does the page use lfi, 'cause if it does and you know that variables, cookies etc, use rfi attack to get admin possibly...i dno im tired so just spitballing here lol, hope it helps at all


Author

RE: Hacking PHP login


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 14-08-08 20:32
use a spider to try and and see what you can download


Author

RE: Hacking PHP login


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-08-08 00:08
I have ALL the files, not just the html. I have a 100% exact replica. I can put it up on my server as a live version. 100% the same script/code that I want to hack. If I put it up on my server would you guys be willing to help me out a little bit?



**THIS IS NOT ALL THAT I HAVE, this is just what is shown on the the login.php for the login**


<form method="post" action="">

<input type="hidden" name="token" value="xxx <---random value in here, but it is always the same."/>

<tr>
<td>Username:</td>
<td><input id="user_name" type="text" name="user_name" value=""/></td>
</tr>
<tr>
<td>Password:</td>

<td>
<input id="user_password" type="password" name="user_password"/>
<span id="lostpw">(<a href="lost-pass.php">I forgot my password/username</a>Wink</a>

Edited by on 15-08-08 00:18
Author

RE: Hacking PHP login

fashizzlepop
Member



Posts: 482
Location: Old folks home.
Joined: 08.04.08
Rank:
Moderate
Posted on 15-08-08 04:16
So you do have the sql queries?


"The definition of insanity is doing the same thing over and over again and expecting different results.”
~Albert Einstein~


csullivan.codeinspire.net/images/boomsig2.png
fashizzlepop@gmail.com http://csullivan.codeinspire.net/
Author

RE: Hacking PHP login

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 15-08-08 04:44
Trixus, you need to take a look at the PHP code and the SQL queries. The HTML is kind of irrelevant here.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: Hacking PHP login

Uber0n
Member



Posts: 1963
Location: Sweden‭‮
Joined: 13.06.06
Rank:
Hacker Level 3
Posted on 15-08-08 07:22
spyware wrote:
The HTML is kind of irrelevant here.

Correction: The HTML is totally irrelevant here.


img230.imageshack.us/img230/724/uber0nsig3hj6.gif
http://uber0n.web. . .
Nope http://uber0n.webs.com/
Author

RE: Hacking PHP login

korg
Admin from hell



Posts: 2798
Location: ENDING YOUR ONLINE EXPERIENCE!
Joined: 01.01.06
Rank:
God
Posted on 15-08-08 09:48
trixus said what?:
I can put it up on my server as a live version. 100% the same script/code that I want to hack


My question would be.... Why are we trying to help someone hack a login if he can't do it himself. Learning is the first step.


i57.photobucket.com/albums/g215/korg1269/shodan13.jpg

I deal in pain, All life I drain, I dominate, I seal your fate.
O R
Author

RE: Hacking PHP login

Uber0n
Member



Posts: 1963
Location: Sweden‭‮
Joined: 13.06.06
Rank:
Hacker Level 3
Posted on 15-08-08 10:03
trixus said what?:
I can put it up on my server as a live version. 100% the same script/code that I want to hack


korg wrote:
My question would be.... Why are we trying to help someone hack a login if he can't do it himself. Learning is the first step.


Because we get turned on when people say that they have source code. Duh Wink


img230.imageshack.us/img230/724/uber0nsig3hj6.gif
http://uber0n.web. . .
Nope http://uber0n.webs.com/
Author

RE: Hacking PHP login

korg
Admin from hell



Posts: 2798
Location: ENDING YOUR ONLINE EXPERIENCE!
Joined: 01.01.06
Rank:
God
Posted on 15-08-08 10:10
Oh I see your point now it's like porn, HMM maybe he should host it so we can try to hack his server, Or I mean the script for himforums.techarena.in/images/smilies/shifty.gif


i57.photobucket.com/albums/g215/korg1269/shodan13.jpg

I deal in pain, All life I drain, I dominate, I seal your fate.
O R
Author

RE: Hacking PHP login

fashizzlepop
Member



Posts: 482
Location: Old folks home.
Joined: 08.04.08
Rank:
Moderate
Posted on 15-08-08 14:40
Ooooh, that hit the spot there Korg... Pfft


"The definition of insanity is doing the same thing over and over again and expecting different results.”
~Albert Einstein~


csullivan.codeinspire.net/images/boomsig2.png
fashizzlepop@gmail.com http://csullivan.codeinspire.net/
Author

RE: Hacking PHP login


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-08-08 21:21
its funny how every thing is always so sexual with you korg