dexter@aeron7.com
Amit Ghosh

A carefully careless entrepreneur

Menu
  • Entrepreneur
  • Investor
  • Stories
  • Life Style
    • College
    • Love
    • School
    • Post College
  • Travel
  • Projects
    • Hack This Site Solutions
    • ISI Solutions
  • Misc.
  • Tini’s Games
    • Fantasy Forest
    • Frogtastic
    • Number Snake
    • Painter

HTS Realistic Mission 7 Solution

Hack This Site Solutions  /  February 23, 2001  /  By Amit Ghosh
Home / Projects / Hack This Site Solutions
1 Comment
FacebookTwitterGoogle+PinterestTumblrLinkedInRedditEmailPrint

Unrestricted Server Feeds & Decrypting Hash Function Method

While scrubbing through the site you should come across the image directory. When you browse to this directory you will see a folder embedded call /admin. If you were to click on that folder you get an authentication window. By cancelling you will see what they webserver they are running. You will notice at the bottom it is running Apache. Apache uses .htpasswd files to store user names and passwords.

Now that you know .htpasswd files store the username and password you will need to get into the site, how do you get this file.

Well, you have to play with the site. After doing some work you will come across this page:

showimages.php?file=bush.txt

This page calls the file=bush.txt file to come up. So use this to get the .htpasswd file.

showimages.php?file=images/admin/.htpasswd

This translates into a picture that cannot be displayed because in reality it is a file not a picture. If you were to click on that picture you will notice in the URL administrator:aH0qcQOVz7e0s

You now know that the username is administrator and the password is aH0qcQOVz7e0s. The challenge now how to crack the encrypted password.

John the Ripper is a good program for this. You can download it and run the john.exe file. What you need to do is take the password you now have and copy that to a text file but add p: to the beginning of it.

Example: p: aH0qcQOVz7e0s

Run

john.exe c:/password.txt

After it is completed run

john.exe –show c:/password.txt

There you go the username and password:

uid: administrator
pwd: company

hack this siteHack This Site Realistic Mission 7 SolutionHack This Site Realistic Mission 7 Solutionshack this site solutionsHTS Realistic Mission 7 SolutionHTS Realistic Mission 7 Solutionshts solutionHTS SolutionsRealistic Mission 7 SolutionRealistic Mission 7 Solutions
About the Author

Amit Ghosh

Aloha, I'm Amit Ghosh, a web entrepreneur and avid blogger. Bitten by entrepreneurial bug, I got kicked out from college and ended up being millionaire and running a digital media company named Aeron7 headquartered at Lithuania.

NewerHTS Realistic Mission 8 Solution
OlderHTS Realistic Mission 3 Solution
Related Posts
Hack This Site Solutions

By Amit GhoshMay 302

HTS Basic Mission 1 Solution