Go Back   Xisp.org Forums > Porn Password Cracking > Porn Password Cracking Help Section

what to do next with expoiting

Reply
Views: 530 - Replies: 7  
Thread Tools Display Modes

what to do next with expoiting
Old 04-28-2005, 01:10 AM   #1
stitchemup
Guest
 
Posts: n/a
Threads: 5107
Default what to do next with expoiting

Hello,
well with much research and reading of different directory structures, l was
lucky enough to fin the path to a. htpasswd file on a site.

Now what would be my next 2 steps,
1.try it in Triton with a good anonymous proxy?
2.then what, if succesful in Triton, what would u use to extract information.?

l dont want to stuff this up, and make a boo boo.
Sorry for posting this question but for some reason l couldn't find any complete
tutorials.......except for the following
http://www.xisp.org/forum/showthread.php?t=556&highlight=htpasswd

but it didn't say what to do next.
Maybe someone could point me to a tut.

Cheers
l have learnt so much while being a members of this board...Love it!!!
  Reply With Quote

Old 04-28-2005, 03:26 AM   #2
sPlico
The sPlicster
 
sPlico's Avatar
 
sPlico is offline Offline
Join Date: Jan 2005
Location: Croatia
Posts: 9,486
Threads: 407
sPlico is on a distinguished road
Default

When you find path to .htpasswd, cat it. It will reveal it's contents to you. Like
cat /home/usr/Supadupaadmin/thisamazingsite/.htpasswd (path can be anyway you find it, so don't take it it has to be in format i posted)
  Reply With Quote

Old 04-28-2005, 03:33 AM   #3
stitchemup
Guest
 
Posts: n/a
Threads: 5107
Default

Confusing!!
the .htacces file reads as
AuthName somesite.com AuthUserFile /Volumes/xraid/Data/.htpasswd

so what would the url be?
that bit i dont get. ?

l really appreciate this.

:-)
  Reply With Quote

Old 04-28-2005, 08:09 AM   #4
slysnake
Cheshire Cat
 
slysnake's Avatar
 
slysnake is offline Offline
Join Date: Jan 2005
Posts: 5,507
Threads: 315
slysnake is on a distinguished road
Default

I'm sceptical you will get anything but....

open a debugger
put in the site name
put in the command in post data
cat /Volumes/xraid/Data/.htpasswd

use good proxy

Question is what has Triton got to do with what you posted? Triton could be used to find more sites with the open path /.htpasswd. But I tell you, you find a site with that path open it is either fake or not worth the time it takes to find it. Just my opinion.
__________________
"How do you know I'm mad?" said Alice.
"You must be," said the Cat, "or you wouldn't have come here."
  Reply With Quote

Old 04-28-2005, 08:58 AM   #5
stitchemup
Guest
 
Posts: n/a
Threads: 5107
Default

slysnake, can l please pm you with details with what l am trying to do and with what url
l'm finding these details....
  Reply With Quote

Old 04-28-2005, 10:12 PM   #6
slysnake
Cheshire Cat
 
slysnake's Avatar
 
slysnake is offline Offline
Join Date: Jan 2005
Posts: 5,507
Threads: 315
slysnake is on a distinguished road
Default

sure, If you like. But I will be gone on tour till Monday. Will get back to you as soon as I can.
__________________
"How do you know I'm mad?" said Alice.
"You must be," said the Cat, "or you wouldn't have come here."
  Reply With Quote

Old 04-29-2005, 12:43 AM   #7
Jayman
Site Cracker
 
Jayman is offline Offline
Join Date: Jan 2005
Posts: 1,004
Threads: 104
Jayman is on a distinguished road
Default

Hmmmmm, he's asking how to find the link (url), which means that "cat" is useless.

Now we know that he's never going to get the link with the directory path he's posted.
  Reply With Quote

Old 04-29-2005, 03:04 AM   #8
tieumadau1
Platinum Exploiter
 
tieumadau1's Avatar
 
tieumadau1 is offline Offline
Join Date: Feb 2005
Posts: 845
Threads: 149
tieumadau1 is on a distinguished road
Default

yes, normally the .htpasswd will be placed in somewhere webusers cant reach. So there's no URL for you here :-)
  Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump



All times are GMT -4. The time now is 08:43 AM.


vBulletin skin developed by: Xisp.org Crew
Powered by vBulletin®
Copyright ©2000 - 2021, Jelsoft Enterprises Ltd.
2005 Copyright Xisp.org