@Spacessd said:
Guys may i ask u something?I tried to use burp sequencer.I turn intercept on i press login(with correct username and password) but when i press action->send to sequencer and then after clicking start live capture i get no tokens for some reason( on token location i have : iknowmag1k=etc)
It is because you have PHPSESSID in Cookie. Just remove it and sequencer will be able to capture tokens.
But I am not sure, what to do with those, as I used tool for pad busting, succesfully decoded cookie, but got stuck after this point until I realized that I must escape from this:D
I need some help please. I have decypted the thing that needs to be decrypted. and got back {“user”:“XXX”,“role”:“XXX”} then when I recrypt that value and inject it . it doesn’t work. I have tried different user account types and roles. what am I missing?
@jamesgreen said:
I need some help please. I have decypted the thing that needs to be decrypted. and got back {“user”:“XXX”,“role”:“XXX”} then when I recrypt that value and inject it . it doesn’t work. I have tried different user account types and roles. what am I missing?
Are you using the same encoding technique when encrypting?
@InsOp said:
i guess the plaintext parameter gets confused with all those quotation marks. i got slightly upset when i figured that out
Indeed I ran into the same issue and lost quite some time over something so trivial so I thought I could head over to the forum and help. Since this is my first post and I don’t want to spoil anyone I’ll try and formulate this in a way people that are not to this stage will not understand ( note to moderators: feel free to edit my comment otherwise ):
Once you know what to forge and want to forge it you might use a command that takes as one of it’s parameter a “textThatHasToPutInEncodedForm” (name voluntary modified not to be searchable too easily) . Some characters like " and , have to be escaped.
For example if you want to pass the following:
Hi,Iam{“Name”}
You need to escape as :
Hi,Iam{"Name"}
To test your escaped text just echo it in you bash.
Hope it helped.
Man, you really fucked my noob brain… but thats ok, lets move on. I stucked like almost everyone here and maybe my problem is this holy quotation marks. Is it like: {"eua":"boss","owner":"eua"}?
simple, echo it in your bash to test the escaping : echo {\"eua\":\"boss\"\,\"owner\":\"eua\"}?
result: {"eua":"boss","owner":"eua"}
when i put a question (?) after the echo i am getting that question mark back in my result
what is my mistake?
@InsOp said:
i guess the plaintext parameter gets confused with all those quotation marks. i got slightly upset when i figured that out
Indeed I ran into the same issue and lost quite some time over something so trivial so I thought I could head over to the forum and help. Since this is my first post and I don’t want to spoil anyone I’ll try and formulate this in a way people that are not to this stage will not understand ( note to moderators: feel free to edit my comment otherwise ):
Once you know what to forge and want to forge it you might use a command that takes as one of it’s parameter a “textThatHasToPutInEncodedForm” (name voluntary modified not to be searchable too easily) . Some characters like " and , have to be escaped.
For example if you want to pass the following:
Hi,Iam{“Name”}
You need to escape as :
Hi,Iam{"Name"}
To test your escaped text just echo it in you bash.
Hope it helped.
Man, you really fucked my noob brain… but thats ok, lets move on. I stucked like almost everyone here and maybe my problem is this holy quotation marks. Is it like: {"eua":"boss","owner":"eua"}?
simple, echo it in your bash to test the escaping : echo {\"eua\":\"boss\"\,\"owner\":\"eua\"}?
result: {"eua":"boss","owner":"eua"}
when i put a question (?) after the echo i am getting that question mark back in my result
what is my mistake?