Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!

TUCoPS :: Password Security :: passwd1.txt

Handler and Cracking Passwd Files

Handler and Cracking Passwd Files

This little page off my home page will teach you how to own a site with
the old handler hole. It's basically really fucking easy so if you want
to exploit handler read below. If not go back.


Type the following :
# telnet 80
Connected to
Escape character is '^]'.
GET /cgi-bin/handler/useless_shit; cat (hit tab) /etc/passwd|?data=Download

NOTE : remember to hit TAB between cat and /etc/passwd

This does not always work, and it usually won't unless the box is either
badly admined or an old system. now with the /etc/passwd file you now
need to crack it. I suggest using John the Ripper. You can find it at Now if the passwd file is shadowed (you can tell if
the passwd file is shadowed if it contains a * in the line rather then
random letters and numbers.) you can't crack it so if you find a
shadowed passwd file move on. If it is unshadowed then you can move on.


Now that you have an unshadowed passwd file and john the ripper
installed make a txt file of the passwd file and move the text into the
dir of john the ripper. Then your ready type ./john nameoftext.txt it
will go to work. Sometimes it takes DAYS to crack a passwd file so be
patient. Other then that enjoy the user and password you will get.

-Liquid Illusion

Questions about this? E-mail me here.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2015 AOH