Korean - Ht
HackTricks TrainingTwitterLinkedinSponsor

NodeJS Express

์ฟ ํ‚ค ์„œ๋ช…

https://github.com/DigitalInterruption/cookie-monster ๋„๊ตฌ๋Š” Express.js ์ฟ ํ‚ค ๋น„๋ฐ€์„ ํ…Œ์ŠคํŠธํ•˜๊ณ  ๋‹ค์‹œ ์„œ๋ช…ํ•˜๋Š” ์ž๋™ํ™” ๋„๊ตฌ์ž…๋‹ˆ๋‹ค.

ํŠน์ • ์ด๋ฆ„์„ ๊ฐ€์ง„ ๋‹จ์ผ ์ฟ ํ‚ค

cookie-monster -c eyJmb28iOiJiYXIifQ== -s LVMVxSNPdU_G8S3mkjlShUD78s4 -n session

์‚ฌ์šฉ์ž ์ •์˜ ๋‹จ์–ด ๋ชฉ๋ก

To perform effective password attacks during a penetration test, it is important to have a comprehensive wordlist. A wordlist is a collection of words, phrases, and commonly used passwords that can be used to guess or crack passwords. While there are many pre-made wordlists available, creating a custom wordlist tailored to the target environment can greatly increase the chances of success.

ํŽœํ…Œ์ŠคํŠธ ์ค‘ ํšจ๊ณผ์ ์ธ ํŒจ์Šค์›Œ๋“œ ๊ณต๊ฒฉ์„ ์ˆ˜ํ–‰ํ•˜๊ธฐ ์œ„ํ•ด์„œ๋Š” ํฌ๊ด„์ ์ธ ๋‹จ์–ด ๋ชฉ๋ก์ด ํ•„์š”ํ•ฉ๋‹ˆ๋‹ค. ๋‹จ์–ด ๋ชฉ๋ก์€ ํŒจ์Šค์›Œ๋“œ๋ฅผ ์ถ”์ธกํ•˜๊ฑฐ๋‚˜ ํฌ๋ž™ํ•˜๊ธฐ ์œ„ํ•ด ์‚ฌ์šฉ๋˜๋Š” ๋‹จ์–ด, ๊ตฌ๋ฌธ ๋ฐ ์ผ๋ฐ˜์ ์œผ๋กœ ์‚ฌ์šฉ๋˜๋Š” ํŒจ์Šค์›Œ๋“œ์˜ ๋ชจ์Œ์ž…๋‹ˆ๋‹ค. ๋ฏธ๋ฆฌ ๋งŒ๋“ค์–ด์ง„ ๋‹จ์–ด ๋ชฉ๋ก์ด ๋งŽ์ด ์žˆ์ง€๋งŒ, ๋Œ€์ƒ ํ™˜๊ฒฝ์— ๋งž๊ฒŒ ์‚ฌ์šฉ์ž ์ •์˜ ๋‹จ์–ด ๋ชฉ๋ก์„ ๋งŒ๋“œ๋Š” ๊ฒƒ์€ ์„ฑ๊ณต ํ™•๋ฅ ์„ ํฌ๊ฒŒ ๋†’์ผ ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค.

To create a custom wordlist, it is important to gather information about the target environment. This can include company names, employee names, job titles, common phrases, and any other relevant information that may be used as a password. Additionally, it can be helpful to include common passwords such as "password123" or "admin" as many users still use weak passwords.

์‚ฌ์šฉ์ž ์ •์˜ ๋‹จ์–ด ๋ชฉ๋ก์„ ๋งŒ๋“ค๊ธฐ ์œ„ํ•ด์„œ๋Š” ๋Œ€์ƒ ํ™˜๊ฒฝ์— ๋Œ€ํ•œ ์ •๋ณด๋ฅผ ์ˆ˜์ง‘ํ•˜๋Š” ๊ฒƒ์ด ์ค‘์š”ํ•ฉ๋‹ˆ๋‹ค. ์ด๋Š” ํšŒ์‚ฌ ์ด๋ฆ„, ์ง์› ์ด๋ฆ„, ์ง์ฑ…, ์ผ๋ฐ˜์ ์ธ ๊ตฌ๋ฌธ ๋ฐ ํŒจ์Šค์›Œ๋“œ๋กœ ์‚ฌ์šฉ๋  ์ˆ˜ ์žˆ๋Š” ๊ธฐํƒ€ ๊ด€๋ จ ์ •๋ณด๋ฅผ ํฌํ•จํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค. ๋˜ํ•œ, ์—ฌ์ „ํžˆ ์•ฝํ•œ ํŒจ์Šค์›Œ๋“œ๋ฅผ ์‚ฌ์šฉํ•˜๋Š” ์‚ฌ์šฉ์ž๊ฐ€ ๋งŽ๊ธฐ ๋•Œ๋ฌธ์— "password123" ๋˜๋Š” "admin"๊ณผ ๊ฐ™์€ ์ผ๋ฐ˜์ ์ธ ํŒจ์Šค์›Œ๋“œ๋ฅผ ํฌํ•จํ•˜๋Š” ๊ฒƒ์ด ๋„์›€์ด ๋  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค.

There are various tools available that can assist in creating custom wordlists, such as Crunch, Cewl, and Cupp. These tools allow for the generation of wordlists based on specific criteria, such as word length, character sets, and patterns. By using these tools, a custom wordlist can be quickly generated and used in password attacks.

Crunch, Cewl ๋ฐ Cupp๊ณผ ๊ฐ™์€ ๋‹ค์–‘ํ•œ ๋„๊ตฌ๋ฅผ ์‚ฌ์šฉํ•˜์—ฌ ์‚ฌ์šฉ์ž ์ •์˜ ๋‹จ์–ด ๋ชฉ๋ก์„ ์ƒ์„ฑํ•˜๋Š” ๋ฐ ๋„์›€์„ ์ค„ ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค. ์ด๋Ÿฌํ•œ ๋„๊ตฌ๋ฅผ ์‚ฌ์šฉํ•˜๋ฉด ๋‹จ์–ด ๊ธธ์ด, ๋ฌธ์ž ์ง‘ํ•ฉ ๋ฐ ํŒจํ„ด๊ณผ ๊ฐ™์€ ํŠน์ • ๊ธฐ์ค€์„ ๊ธฐ๋ฐ˜์œผ๋กœ ๋‹จ์–ด ๋ชฉ๋ก์„ ์ƒ์„ฑํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค. ์ด๋Ÿฌํ•œ ๋„๊ตฌ๋ฅผ ์‚ฌ์šฉํ•˜์—ฌ ์‚ฌ์šฉ์ž ์ •์˜ ๋‹จ์–ด ๋ชฉ๋ก์„ ๋น ๋ฅด๊ฒŒ ์ƒ์„ฑํ•˜๊ณ  ํŒจ์Šค์›Œ๋“œ ๊ณต๊ฒฉ์— ์‚ฌ์šฉํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค.

cookie-monster -c eyJmb28iOiJiYXIifQ== -s LVMVxSNPdU_G8S3mkjlShUD78s4 -w custom.lst

๋ฐฐ์น˜ ๋ชจ๋“œ๋ฅผ ์‚ฌ์šฉํ•˜์—ฌ ์—ฌ๋Ÿฌ ์ฟ ํ‚ค ํ…Œ์ŠคํŠธํ•˜๊ธฐ

In batch mode, you can test multiple cookies simultaneously by providing a list of cookies to the testing tool. This allows you to efficiently check for vulnerabilities or misconfigurations across multiple cookies.

To test multiple cookies in batch mode, follow these steps:

  1. Create a text file and list the cookies you want to test, with each cookie on a new line. For example:

cookie1=value1
cookie2=value2
cookie3=value3

  1. Save the file with a .txt extension, such as cookies.txt.

  2. Use the testing tool's batch mode option and provide the path to the cookies.txt file as an argument. For example:

$ testing_tool --batch cookies.txt

  1. The testing tool will iterate through each cookie in the file and perform the specified tests. The results will be displayed for each cookie individually.

By using batch mode, you can save time and effort when testing multiple cookies, allowing you to identify and address any vulnerabilities or misconfigurations more efficiently.

cookie-monster -b -f cookies.json

์‚ฌ์šฉ์ž ์ •์˜ ์›Œ๋“œ๋ฆฌ์ŠคํŠธ๋ฅผ ์‚ฌ์šฉํ•˜์—ฌ ์ผ๊ด„ ๋ชจ๋“œ๋กœ ์—ฌ๋Ÿฌ ์ฟ ํ‚ค ํ…Œ์ŠคํŠธํ•˜๊ธฐ

To test multiple cookies using batch mode with a custom wordlist, follow these steps:

  1. Create a text file containing the custom wordlist. Each word should be on a separate line.

  2. Save the file with a .txt extension, for example, wordlist.txt.

  3. Open a terminal or command prompt and navigate to the directory where the wordlist file is located.

  4. Use a tool like cURL or a web browser extension to send HTTP requests with the cookies you want to test. For example, you can use cURL with the -b option to specify the cookies:

    curl -b "cookie1=value1; cookie2=value2" http://example.com

  5. Create a script or a command that iterates through each line of the wordlist file and sends an HTTP request with the cookies from that line. You can use a programming language like Python or a scripting language like Bash to accomplish this.

  6. Run the script or command to test each cookie combination from the wordlist. The script will automatically test each cookie combination and display the results.

By using this method, you can efficiently test multiple cookies using a custom wordlist in batch mode.

cookie-monster -b -f cookies.json -w custom.lst

์ƒˆ๋กœ์šด ์ฟ ํ‚ค๋ฅผ ์ธ์ฝ”๋”ฉํ•˜๊ณ  ์„œ๋ช…ํ•˜๊ธฐ

๋น„๋ฐ€์„ ์•Œ๊ณ  ์žˆ๋‹ค๋ฉด ์ฟ ํ‚ค๋ฅผ ์„œ๋ช…ํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค.

cookie-monster -e -f new_cookie.json -k secret
PreviousFlaskNextGit

Last updated