Account takeover due to weak encryption
Prelude
Hello world! In this short article, we will look at a striking example where, due to weak encryption, we can access an account. The vulnerability was found in a private program, so all site identifiers are hidden.
Vulnerability Scan
The first thing we need is to find a login page that has an OTP (one time password) login function, where a one-time password is sent to the account owner’s registered phone number.
To check if the one-time password is leaking in the response body, intercept the “OTP Log In” request to Burp. And we see that the password has leaked into the body of the response with the name “otpPassword”, but it is there in an encrypted format, namely in Bcrypt .
Exploitation of the vulnerability
There are various tools to decrypt bcrypt. In this article, we will use the Debcrypt tool. With it, we will decrypt the value of “otpPassword” and thus get full access to the account.
Operation steps:
- Find a line with a one-time password in Burp
"otpPassword":"$2a$10$hs/tvUkd4GveEdx/hACRDehWza38Z1ncMAEFeOtG77/l.Ja0ktuQa"- Copy the password encrypted via Bcrypt.
- Pass this value to the Debcrypt script:
- The one-time password is “12345”.
- Account takeover has been successfully completed!
That’s all. Thank you for watching!
We Got More Tools For #Price
#Update #tutorial #rianews #software #hardware #technology #money #earning #ipmc #love #giveaways #computing #computers #informationtechnology #learning #AI #redfishiaven #servers #deepweb #darkweb #bitcoin
See REDFISH IA VEN ( https://goo.gl/maps/LVKkEYNN2LTe9C34A ) in Google Maps.
https://www.youtube.com/channel/UC6k_cFigPCSEtRyALo1D-tA
Be the First To Know About The New #software
