ds3 wrote:I have read all the apache tutorials and know the file name the hash should be under (I think...) and I have found the directory, but how do I get permission to view the file? Every time I try I get the "You can't view that file" message.
I need the password to get the hash I need the hash to get the password...
tomgeorge88 wrote:Well I've tried every possible way I can think of!But how do you get the hash file? I know where it should be!! but I simply can't access it. And the 16 pages of posts are just about cracking some hash which I believe was dealt with in realistic 6!
sniper15 wrote:i'm not sure if this is a spoiler or not but here we go... the hashed file is called .htpasswd so you use that knowledge and that of directory transversal and a little bit of url exploitation and poof there you go. it will dis play the hash file as a broken image (image with a red X in the top right corner). i hope i didn't give to much information away. i didn't really tell you how to accomplish anything just where to look. hope that helps....
Users browsing this forum: No registered users and 0 guests