Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
why the passowrd can't be read?
Posted by: annen
Date: May 16, 2012 02:22AM

when I use havij to inject a bug .username and email are well ,only password like this:

=wu?E欛
=/?
=?80+
=GN皮Y"
=G皭斏
=衴屧D橉
=wz拷&$

what wrong?

Options: ReplyQuote
Re: why the passowrd can't be read?
Posted by: firestorm
Date: June 07, 2012 04:41PM

Well two things are clear.
1. If this is an error based vul. Then its a programming glitch that prevents the escape of password.

2. Else it can be due to encoding problem. try to get the pass in hex() and then unhex it manually or you may try md5() also.

Strong Advice: Dont use automated tools. They are noisy, detectable and try to learn doing it on your own.

Hackers create tools - Tools don't create hacker.

In case of asap, reach me by mail : syed@syedafzal.in

Options: ReplyQuote


Sorry, only registered users may post in this forum.