API tools faq
paste
Advertisement
Guest User

SQL Dump + Hash crack

a guest
Mar 20th, 2015
2,389
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.23 KB | None | 0 0
raw download clone embed print report
  1. _____ _ _ _ _ _____
  2. | __ \(_) (_) | | | | __ \
  3. | | | |_ __ _ _| |_ __ _| | | | | | ___ ___ __ _ _ _
  4. | | | | |/ _` | | __/ _` | | | | | |/ _ \/ __/ _` | | | |
  5. | |__| | | (_| | | || (_| | | | |__| | __/ (_| (_| | |_| |
  6. |_____/|_|\__, |_|\__\__,_|_| |_____/ \___|\___\__,_|\__, |
  7. __/ | ______ __/ |
  8. |___/ |______| |___/
  9.  
  10. === SQL Dump ===
  11.  
  12. More lazy exploitations.
  13. Ah.. whatever.
  14.  
  15. == General Info ==
  16.  
  17. Target: http://www.apmonline.org/
  18. Version: 5.5.42
  19. DB name = apm
  20.  
  21. == Tables ==
  22.  
  23. documents,events,hitcounter,links,members,news,pages,specialbuttons,users,wordlist
  24.  
  25. Tables users and members are looking good.
  26. Let's try users table first.
  27.  
  28. == Columns in table users ==
  29.  
  30. ID,username,password,level
  31.  
  32. Sounds great, lets extract data.
  33.  
  34. Data in column username:
  35. fren@test.co.uk,sabine@apmonline.co.uk,fred@bloggs.com,bill@talktalk.com,harry@btconnect.com,jack@btinternet.com,lesley@tiscalli.co.uk
  36.  
  37. Data in column password:
  38. fdgherhedrtywrtywer45y,jhasduogih;jkhgauhsdgha;galdg,65e546h45jh6erth56,iedfu890sdfniofg90ion4l5,89345jhner80fvujs[08herf,cwoh4rtowejh[0fvjhawpiejfgws,rgsdjasd08gajis;dklfj6787563tg
  39.  
  40. I don't think that these passwords are hashed.
  41.  
  42. == Columns in table members ==
  43.  
  44. ID,onoff,firstname,lastname,login,passwd,reminder,level
  45.  
  46. login and password are interesting.
  47.  
  48. Data in column login:
  49. ian,anna.kurowska@whittington.nhs.uk,till.kroeber@farleighhospice.org,luluk@globalnet.co.uk,sklinger@peacehospicecare.org.uk,angela.nelmes@nhs.net,suzanne.kite@leedsth.nhs.uk,mark.kitching@doctors.org.uk,jennalight51@btinternet.com,helen.kirk@salisbury.nhs.uk,amy2kingston@yahoo.co.uk,niking@doctors.net.uk,sjk21@doctors.net.uk,nicky.king@ellenorlions.org,catriona.k@doctors.org.uk,stephkillick@hotmail.com,marykiely@doctors.org.uk,khodrie@talk21.com,drbenkennedy@gmail.com,clare.kendall@nbt.nhs.uk,rachelkemprvk@hotmail.com,sarahkelt@doctors.org.uk,keenleysideg@yahoo.com,j.keen@highlandhospice.org.uk,vaughan.keeley@derbyhospitals.nhs.uk,katrineowen@doctors.org.uk,aqdaskazi@yahoo.com,kiran.kaur@belfasttrust.hscni.net,kamdarroma@hotmail.com,mariejoseph@straphaels.org.uk,alicejordan74@hotmail.co.uk,caroline.jones@ucl.ac.uk,sjraven56@hotmail.com,robjones@shalomstdavids.org,emma.jones@pth.org.uk,bethansjones@f2s.com,drjolliffe@doctors.org.uk,judithandchris@doctors.org.uk,sally.johnson@wvt.nhs.uk,miriam.johnson@hyms.ac.
  50.  
  51. Damn..
  52.  
  53. Data in column passwd:
  54. 1daa0d0899c0709f81eaf8ff0d84ed49,f7b6f65e28b9150109a5ee54a8407394,98acaa4f3c85f0362d2e4045ea0232c1,da17c772ce33e4a8d259869b4ebb4ccd,0c08611dec143aae4510fa5e357b8618,4fa537ceb3e08daa99cbb7f0180d4a19,c7205bbd4f5c809553d9d25b8925d129,5fb6606acc89b916fa09cb2bddb47246,cda956cd87420b84df9b4f624dd37405,35a3a92c472f6559441d35ea74baeb8c,ec1fa0b7c4c001d4dc5f83811a278fc3,1cb8df837bc18e0be9119b11279c1f44,1a9e9cfc29e40d12fa00ba088a39152d,340b8755172045c41986876ab8a98be3,6306a9b2b4a5eb7590e36e6f656565d0,f8c44495a2e1688ea9aeb80b8ee31161,d157c3aa5016c7a3a9cad34e07461f79,158591c15704cc366b1831d9264b3ae0,1dfd6168c13af2dfdeab811755ec93c3,5480528404e692f0ef9aebc8cb44b022,0e0eb8cc98d0e6ea3669eaf4c2814316,b88a73edc22156224a1d498503936b44,552b7500ea226058647429c9eb6f8288,49c23dc9804729abf5755e57b4f3d7c8,0352a2165738bd1231769978dbf09ac8,8858d35070048ccbe4d63ebb78a54a62,2f493d855d75ba4ad1937c7dd3cd68f8,1a8e4a6f82143c272c3d620f0fca5e45,ed22876f7afac96896fcce798efa971d,43d36c4b90fe17b613f44da01fc6da40,24402eda8909ab8993f294cee4053afa,c
  55.  
  56. These passwords are definitely hashed. These are all MD5's.
  57.  
  58. Well, now we have all user accounts in hand, but where is the admin users?
  59.  
  60. Found this login page:
  61. http://www.apmonline.org/page.php?pageid=185
  62.  
  63. Cracked all md5 hashes as well for you:
  64.  
  65. 1daa0d0899c0709f81eaf8ff0d84ed49:pa28161
  66. f7b6f65e28b9150109a5ee54a8407394:Berlinger11!
  67. 98acaa4f3c85f0362d2e4045ea0232c1:stagmace8
  68. da17c772ce33e4a8d259869b4ebb4ccd:hopehips9
  69. 0c08611dec143aae4510fa5e357b8618:swobdele7
  70. 4fa537ceb3e08daa99cbb7f0180d4a19:wishhost2
  71. c7205bbd4f5c809553d9d25b8925d129:trayhome5
  72. 5fb6606acc89b916fa09cb2bddb47246:Hypnosis1
  73. cda956cd87420b84df9b4f624dd37405:zoospurs4
  74. 35a3a92c472f6559441d35ea74baeb8c:faysdamn5
  75. ec1fa0b7c4c001d4dc5f83811a278fc3:Windsock001
  76. 1cb8df837bc18e0be9119b11279c1f44:examovum4
  77. 1a9e9cfc29e40d12fa00ba088a39152d:Dragon11
  78. 340b8755172045c41986876ab8a98be3:tootritz6
  79. 6306a9b2b4a5eb7590e36e6f656565d0:sansbony9
  80. f8c44495a2e1688ea9aeb80b8ee31161:Aintree1
  81. d157c3aa5016c7a3a9cad34e07461f79:Gerard75
  82. 158591c15704cc366b1831d9264b3ae0:Voleparlour183
  83. 1dfd6168c13af2dfdeab811755ec93c3:yawnhaze9
  84. 5480528404e692f0ef9aebc8cb44b022:rungboth8
  85. 0e0eb8cc98d0e6ea3669eaf4c2814316:Rachel17
  86. b88a73edc22156224a1d498503936b44:hacknear7
  87. 552b7500ea226058647429c9eb6f8288:veerdram5
  88. 49c23dc9804729abf5755e57b4f3d7c8:roarouts5
  89. 0352a2165738bd1231769978dbf09ac8:wrapwaif8
  90. 8858d35070048ccbe4d63ebb78a54a62:Kate3105
  91. 2f493d855d75ba4ad1937c7dd3cd68f8:baudrash4
  92. 1a8e4a6f82143c272c3d620f0fca5e45:stowpals5
  93. ed22876f7afac96896fcce798efa971d:weptdocs7
  94. 43d36c4b90fe17b613f44da01fc6da40:ayesbeep4
  95. 24402eda8909ab8993f294cee4053afa:notetick9
  96.  
  97.  
  98. Have fun.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!