Sign in to follow this  
Followers 0
Chaya_

Login and Authentication ( C# / PHP )

Started by Chaya_,

4 posts in this topic

Posted 

        private const string _a = "0cHM6Ly9hcGkuZGVlcGJvdC50di9jbGllbnQvYm90bG9naW4ucGhwaHR"; ( Encoded URL, i am able to decode it )        private static NameValueCollection GetBaseParameters()        {            NameValueCollection values = new NameValueCollection();            values["bot_version"] = Application.ProductVersion;            values["comp_name"] = Environment.MachineName;            values["win_user_name"] = Environment.UserName;            values["win_os"] = Environment.OSVersion.ToString();            return values;        }        private static string GetResponseText(byte[] bytes)        {            string str;            using (MemoryStream stream = new MemoryStream(bytes))            {                using (StreamReader reader = new StreamReader(stream))                {                    str = reader.ReadToEnd();                }            }            return str;        }

Okay, so i have crack that application, but i have only one problem, what i can not resolve ...

 

What is a good structure for the login.php is it a post or ehat is that and how can i resolve it ?

Share this post

Link to post
Share on other sites

Posted

If you have the code available, I would look at changing the code to execute whatever you're trying to crack. No need to look at login.phps

Share this post

Link to post
Share on other sites

Posted

marty-somehow-we-where-brought-back-to-t

 

 

BTW, I thought Chaya_ was banned lol =X

Share this post

Link to post
Share on other sites

Posted

i did C# to PHP Authentication like this :

 

C# Application -> Username + Passwort into encoded strings -> POST encoded strings to server -> PHP Script recieves encoded user and pass -> PHP script decodes user and pass string -> PHP script connects to SQL Database and checks user and password to match those in database -> If user and pass are correct send flag back to c# software -> c# software reads response from php script and continues execution if flag is correct. if not throw error. 

 

Thats a huge amount of time to waste in , and only seconds with a decompiler to crack .. 

Id say how much time is required to bypass this system depends on what you do with that response from the server on client side. But thats on your own

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0
Go To Topic Listing C#