UGN Security Forums
My ProfileMember DirectoryLogin
Search our ForumsView our FAQView our Site Rules
View our CalendarView our Active TopicsGo to our Main Page

UGN Security Store
 

Network Sites UGN Security, The GoNix Initiative, Elite Web Gamers, Back of the Web, EveryDay Helper, VNC Web Design & Development
December
Su M Tu W Th F Sa
1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30 31
Sponsored Links
Latest Postings
Latest Reviews
Topic Options
Rate This Topic
#6678 - 06/29/03 02:02 PM Brute Forcing .htaccess
Gremelin Offline

Community Owner
*****

Registered: 02/28/02
Posts: 7193
Loc: Portland, OR; USA
Ok, I'm getting tired of seeing "How do I hack into a porn site". First off, the majority of "secure" "porn" sites use .htaccess for their authentication. In otherwords, if you see a little box pop up that sais "password" and "username" chances are it's .htaccess and .htpasswd that are blocking your way to your 20 seconds in heaven with Mr. Sock (or Ms. Mommies Panties, whatever floats your boat).

Now, how .htaccess looks is as follows:
Code:
AuthUserFile /var/www/html/members/.htpasswd
AuthName Paid Member 
AuthType Basic

<Limit GET POST>
require valid-user
</Limit>
See that, pretty fucking basic 'eh? And I'll bet you that the majority of 'em look the same fuckin way too...

Now, the .htpasswd file looks totally differant, the passwords are encrypted, the username is not...

Code:
gizmo:gikZbrq7ZFQJ.
gizzy:gieKOUmNNB7go
giz:giL8X53UiINbs
neo:nenIgi4UdbW.M
weeve:we7dyaNzlm.Ag
newbies:neZgxh60ynKGU
See, the thing is, you don't need either of the two files to bruit force a thing... Their just given here as an example of how things work (when you learn, thats how you learn, otherwise you get left behind).

Now, theirs really only a couple of things you need...
1. A couple of proxy servers (if you want to remain anonymous, but lets be honest, you're goinna end up cracking some porn sites, wtf is goinna try to bust you for porn?)...
2. A bruit force program (We reccommend http://www.accessdiver.com for all of your Bruit Force needs)...
3. A members URL which uses .htaccess (for example: http://www.yourvictem.com/members/ )
4. A wordlist (you're on your own there, my wordlist is my baby).

Basically, in AD you load your wordlist, load your proxys, drop in your URL, click standard. After many hours of grueling work, if you have a good wordlist, you'll have a user/pass...

Now shur the fuck up with that damned question and go play with Mr. Sock.
_________________________
Donate to UGN Security here.
UGN Security, Back of the Web, Elite Web Gamers & VNC Web Design Owner

Top
Sponsored Links
      
#6679 - 06/29/03 06:56 PM Re: Brute Forcing .htaccess
Ghost Offline


Registered: 06/16/03
Posts: 807
Loc: Wisconsin
How would you go about requesting these files?
_________________________
[[ GamerSupport ] [ UGN Security ] [ Evil Hosting ] [ Comic Relief ]
~[Ghost]

Top
#6680 - 06/29/03 08:37 PM Re: Brute Forcing .htaccess
Gremelin Offline

Community Owner
*****

Registered: 02/28/02
Posts: 7193
Loc: Portland, OR; USA
you're pretty much on your own there... We'll teach you to do some stuff but we won't hold your hand while you piss...
_________________________
Donate to UGN Security here.
UGN Security, Back of the Web, Elite Web Gamers & VNC Web Design Owner

Top
#6681 - 06/30/03 10:47 AM Re: Brute Forcing .htaccess
Crime Offline
UGN Super Poster

Registered: 03/01/02
Posts: 505
Loc: Tartarus

Top
#6682 - 07/02/03 12:52 AM Re: Brute Forcing .htaccess
Ghost Offline


Registered: 06/16/03
Posts: 807
Loc: Wisconsin
ahem thanx ahem
_________________________
[[ GamerSupport ] [ UGN Security ] [ Evil Hosting ] [ Comic Relief ]
~[Ghost]

Top
#6683 - 07/05/03 01:04 AM Re: Brute Forcing .htaccess
vendicate Offline
Junior Member

Registered: 11/22/02
Posts: 43
Some porn sites have *hidden pages*

Use intelltamper, it looks in all the possible directories of the website http://www.intellitamper.com/

Top

Moderator:  Infinite 
Featured Member
Registered: 10/28/14
Posts: 1
Forum Stats
2152 Members
46 Forums
36214 Topics
71384 Posts

Max Online: 1567 @ 04/25/10 05:20 AM
Top Posters
UGN Security 29375
Gremelin 7193
§intå× 3255
SilentRage 1273
Ice 1146
pergesu 1136
Infinite 1041
jonconley 955
Girlie 908
unreal 860
Newest Members
cdefgh368568, HushHush, golqm, Tim050, Gecko666
2151 Registered Users
Who's Online
0 registered (), 364 Guests and 340 Spiders online.
Key: Admin, Global Mod, Mod
Latest News


Donate
  Get Firefox!
Get FireFox!