Admin Page
/Practice/Cockpit/2-Enumeration/attachments/{CDAAAEBE-AF8B-4FC5-9E54-06DEF5A1EF58}.png)
Validating the exfiltrated web credential for the login page
/Practice/Cockpit/2-Enumeration/attachments/{DF383A6F-9A10-46DA-A915-7C064980FD43}.png)
Or /Practice/Cockpit/2-Enumeration/attachments/{DBCF495B-3412-4611-915F-29E3D6911A0A}.png)
Successfully authenticated and redirected to the dashboard at /password-dashboard.php
2 user credentials are revealed;
james:Y2FudHRvdWNoaGh0aGlzc0A0NTUxNTI=cameron:dGhpc3NjYW50dGJldG91Y2hlZGRANDU1MTUy
Password appears to be base64-encoded
┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/cockpit]
└─$ echo -n 'Y2FudHRvdWNoaGh0aGlzc0A0NTUxNTI=' | base64 -d
canttouchhhthiss@455152
┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/cockpit]
└─$ echo -n 'dGhpc3NjYW50dGJldG91Y2hlZGRANDU1MTUy' | base64 -d
thisscanttbetouchedd@455152 Decoded;
james:canttouchhhthiss@455152cameron:thisscanttbetouchedd@455152
There is password reuse for the james user