Er Kali Posted March 31, 2012 Share Posted March 31, 2012 Bueno aqui les dejo estas dos paginas, en las cuales ponen una password y os la encrypta con el algoritmo de joomla, muy útil en el defacing para cambiar la password del admin directamente modificando la base de datos This is the hidden content, please Sign In or Sign Up This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
khanisgr8 Posted April 7, 2012 Share Posted April 7, 2012 (edited) The best way for me is . When i can not crack the hash . So lets say i have hash password but we are not able to crack it . soo here is the way . 1 : When i get hash password . 2 : I just download the same webapp version . joomla , wordpress , vbulletin , etc . 3 : Setup the webapp on my localhost . 4 : Find the admin page . And copy paste the function which is getting hash and then creating session . 5 : Finaly paste the function in new fresh php file . And the variable which is getting hash i set that variable to contain the admin hash which i cant crack . 6 : run the php . and that function will creat a session for me . 7 : Finaly replace the session and login to real website with cookies Edited April 7, 2012 by khanisgr8 Link to comment Share on other sites More sharing options...
Recommended Posts