Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
slsk and possibly other file sharing sites (browser saved passwords)
Posted by: VMw4r3
Date: March 30, 2011 11:07PM

Firefox Opera

This should be in search/dorks section.

I've noticed on file sharing sites like slsknet.org that many of their users are incorrectly configuring what they have on share, everyone can download from them.

Long story short, Just search for "ntuser.ini" and in many cases you should have full download access to all files in that account.


Firefox:

Browse/search for \$usermame\AppData\Roaming\Mozilla\Firefox\Profiles\SoMeRandomstuff.default

Then Download these 3 files to your "save" folder.

1. cert8.db
2. key3.db
3. signons.sqlite

For older versions of firefox the No.3 signons file might have a different extension.

After getting these 3 files you need to download an app called Firepass.

link [securityxploded.com]

The instructions on [securityxploded.com] are easy to follow.

The firepass will list all usernames and passwords only if the master password has not been set.


If the master password is set,
then try use firemaster.

Link [www.securityxploded.com]


Opera:

Browse/search for \$username\AppData\Roaming\Opera\Opera\profile\wand.dat

Download wand.dat and run an app called Opera Password Decryptor.

Link [securityxploded.com]

Same as abve.



Edited 1 time(s). Last edit at 03/30/2011 11:14PM by VMw4r3.

Options: ReplyQuote
Re: slsk and possibly other file sharing sites (browser saved passwords)
Posted by: VMw4r3
Date: March 31, 2011 08:07AM

filezilla

I forgot about filezilla, all plain text passwords,

C:\Users\$usermame\AppData\Roaming\FileZilla\sitemanager.xml

OR

C:\Users\$usermame\AppData\Roaming\FileZilla\recentservers.xml

Options: ReplyQuote


Sorry, only registered users may post in this forum.