Donate to us via Paypal!
Never in the field of human conflict was so much owed by so many to so few. - Winston Churchill
Wednesday, November 25, 2020
Navigation
Home
 Find:
 Information:
Learn
Communicate
Submit
Shop
Challenges
 Exploit:
 Programming:
 Think:
 Track:
 Patch:
 Other:
 Need Help?
Other
Members Online
Total Online: 104
Guests Online: 104
Members Online: 0

Registered Members: 130401
Newest Member: rohitkarma
Latest Articles

View Thread

HellBound Hackers | Computer General | Web hacking

Author

logging in on in ftp dos


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-07-06 16:04
okay, so i use nmap to scan a site and get an open ftp port (usually 21). so i connect to the site on ftp via dos, and no matter what i type, it asks "password required for <whatever i type>" so then i know its not gonna let me do a thing till i log in. so i type user admin and hit enter and then it asks me for a password, but after a couple of tries like root, admin, propgate etc im all out lol. Now, is there anyway to brute force this login using a program? also, it came to attention that the user name im using may be wrong, so is there a way to list the usernames required for login, without having to log in?

Im sure these questions will probably annoy the hell outta most people, so i apologise, but as always, and help given is very much appreciated! Grin




Edited by on 15-07-06 16:07
Author

RE: logging in on in ftp dos


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-07-06 16:20
Yeah, you can use brutus as it supports FTP.


Author

RE: logging in on in ftp dos


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 07-09-06 15:37
Usernames (like passwords) HAVE to be stored somwher in SOME file. Keep that mind set. There are programs that can 'overpower' it... but from my point of veiw using a crude tool, or any tool crudely, lacks style.

Now if you just wana get in fast and don't care much about the actual hack....:evil:

Author

RE: logging in on in ftp dos


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 11-09-06 05:08
These files keepy is talking about, do you find them through command prompt while connected to the ftp port?If so are the user and pass folders similar to unix like /ect/shadow




Edited by on 11-09-06 05:10
Author

RE: logging in on in ftp dos

bl4ckc4t
Member

Your avatar

Posts: 591
Location: /etc/
Joined: 07.03.06
Rank:
Wiseman
Posted on 11-09-06 07:04
depending on the OS, keepy, I believe is talking about the password files.
in linux - passwd stored in /etc/passwd
in windows - the SAM files stored in C:\WINDOWS\system32\config\SAM

You would have to have to obtain these from (most likely) physical access, since you are unable to log into the FTP.

There is also the other way of tricking them into opening a cleverly hidden trojan (I much rather see you code your own than download one) that has a backdoor port open for you.

He could be talking about exploiting the software that could be using a port.


You see theres numerous ways to root a computer. The easiest is get the passwd or SAM file, then decrypt it, then log in from your FTP client. It would be the least amount of work, in my honest opinion.

Bl4ckC4t



Author

RE: logging in on in ftp dos


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-09-06 13:24
you can try login as a "guest" Pfft type "anonymous" as username and password...

and yea there are some Programs that you can use to crack ftp...i got a good one..let me know if you want me to upload..

Edited by on 15-09-06 13:25
Author

RE: logging in on in ftp dos


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-09-06 13:49
in linux - passwd stored in /etc/passwd

Only if your system is running a distro that's older then I am. Most (read: all) distros these days use shadowed passwd files: the hashes are stored in /etc/shadow.