search

RedSiege / EyeWitness

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
https://www.christophertruncer.com/eyewitness-usage-guide/
GNU General Public License v3.0
5.01k stars 848 forks source link

Cisco Phone Adapter Configuration Utility signature #661

Closed digininja closed 5 months ago

digininja commented 5 months ago

@ChrisTruncer used to take care of all of these for me so don't know how you want to do it now, but the default creds for this are:

admin / admin
<html><head>
<title>Login Page</title>
<!--[if lt IE 7.]>
<script defer type="text/javascript" src="/pngfix.js"></script>
<![endif]-->
<script type="text/javascript" src="/md5.js"></script>
<script type="text/javascript" src="copyright.js"></script>

<style>
A:link { COLOR:#FFFFFF; }
A:visited { COLOR:#FFFFFF; }
A:hover { COLOR:#FFFFFF;}

BODY{
  margin:0px;
  overflow:hidden;
  abackground-image:url("/image/pageBackground.jpg");
  background-repeat:no-repeat;
  background-color:#02294a;
}
TABLE
{
  border:0px;
  padding:0px;
  border-collapse:collapse;
}
BODY,TD,P,INPUT{
  font-size:12px;
  color:#ffffff;
  font-family:Arial;
  vertical-align:top;
}
INPUT{
  color:#000000;
}
.MAINTABLE{
    height:100%;
    width:100%;
}
.APPNAME{
  font-size:22px;
  padding-right:40px;
}
.LOGO{
  padding-top:3px;
  padding-right:20px; 
  behavior: url("/iepngfix.htc");
}
.VER
{
  font-size:11px;  
  height:73px;
}
.REMNAME{
  vertical-align:middle;
  font-size:11px; 
}
.copyright
{
  font-size:11px;
  padding-bottom:20px;
}
.LOGINIMG
{
  vertical-align:center;
  padding-top:5px;
}
.LOGIN
{
  text-align:right;
}
.IDPWD{
  padding-right:8px;
}

.HELPLOGIN{
  color:#0088c2;
  font-size:11px; 
}

.ERRPWD
{
  color:red;
  font-size:14px;
  font-family:Arial;
  white-space:nowrap;
}
</style>
<script language="javascript">
var user_name="";
var logtime = '';
var access_flag = '0';

if ( logtime == "" ) logtime = 0;
function en_value(data)
{
        var pseed2="";
        var buffer1=data;
        var md5Str2="";
        var Length2 = data.length;
        if (Length2 < 10 )
        {
                buffer1 += "0";
                buffer1 += Length2;
        }else{
                buffer1 += Length2;
        }
        Length2 = Length2 +2;

        for(var p=0; p<64; p++) {
                var tempCount = p % Length2;
                pseed2 += buffer1.substring(tempCount, tempCount+1);
        }
        md5Str2 = hex_md5(pseed2);

        return md5Str2;
}

function to_submit()
{
  var F = document.login;
  //closeflg = 0 ;
  F.log.style.display = "";
  //document.getElementById("log").innerHTML="<img src='/image/login_progress.gif' class=LOGINIMG>";
  F.submit_button.value = "login";
  //alert("login_time="+F.login_time.value);
  F.pwd.value = en_value(F.pwd.value);
  if ( F._keep_name.checked == true ) 
    F.keep_name.value = "1";
  else
    F.keep_name.value = "0";
  return true;

}

function init()
{
  var ip1 = '172.16.70.22';
  var ip2 = '172.16.70.240';
  var auth_st = '';
  var keep_name='0';
  //alert("auth_st="+auth_st+";ip1="+ip1+";ip2="+ip2);
  if ( auth_st == "1" && ip1 == ip2 && ip1 != "" && ip2 != "")
    document.location.href = "index.asp";
//  if ( user_name != "" || keep_name == '1') document.login._keep_name.checked = true;
  document.login.user.focus();
  if(window.top != window.self) {
    window.top.location = window.self.location;
  }
}

function __T(obj){ return obj; }

</script>
</head><body onload="init()"> 
<form autocomplete="off" id="frm" name="login" method="post" action="/login.cgi" onsubmit="return to_submit()">
<input type="hidden" name="submit_button">
<input type="hidden" name="keep_name">
<input type="hidden" name="enc" value="1">
<div id="bg" style="position:relative; z-index:0"><img src="/image/pg.jpg" style="position:absolute; z-index:-1" width="100%">
<table class="MAINTABLE" cellspacing="0">
    <tbody><tr><td colspan="4" height="30%">&nbsp;</td></tr>
  <tr height="10px">
    <td width="100px">&nbsp;</td>
    <td rowspan="3" class="LOGO"><img src="/image/cisco_logo_about.png"></td>
    <td colspan="2"></td><td width="100px">&nbsp;</td>
  </tr>
  <tr height="20px"><td></td><td class="APPNAME">Phone Adapter Configuration Utility</td>
      <td rowspan="2" class="LOGIN">
        <table cellspacing="0" align="right">
        <tbody><tr><td>&nbsp;</td>
        <td class="ERRPWD">
        <script>

    if ( access_flag == "1" ) //modify by jack
        {
            document.write("<table width=100%><tr><td style='background-color:#e0e0e0;color:#FF0000'>");
            document.write(__T("Admin user is not allowed to login."));
            document.write("</td></tr>");
            document.write("<tr><td>");
            document.write("<img src='/image/ContextMessageArrow_DownT.gif'>");
            document.write("</td></tr></table>");
        }
        else if ( logtime != "0" ) //modify by jack
        {
            document.write("<table width=100%><tr><td style='background-color:#e0e0e0;color:#FF0000'>");
            document.write(__T("Invalid Username or Password.<BR>Please Try Again."));
            document.write("</td></tr>");
            document.write("<tr><td>");
            document.write("<img src='/image/ContextMessageArrow_DownT.gif'>");
            document.write("</td></tr></table>");
        }

        </script>
            </td><td></td></tr>
            <tr><td class="IDPWD">Username:</td><td>
            <script>
            document.write("<input type=input name=user value="+user_name+">");
            </script><input type="input" name="user" value="">
            </td><td></td></tr>
            <tr><td class="IDPWD">Password:</td><td><input type="password" name="pwd"></td><td></td></tr>
            <!-- WEB_ADU_SUPPORT
            <TR>
            <TD class=IDPWD>Language:</TD><TD>
            <select>
                <option value=en>English</option>
            </select>
            </TD>
            <TD></TD></TR>
            -->
            <tr><td></td><td><input type="submit" value="Log In">&nbsp;<img id="log" src="/image/login_progress.gif" class="LOGINIMG" style="display:none ">&nbsp;&nbsp;<!--a href="/help/HFAQ.asp">Help</a></TD-->
                            </td><td></td></tr>
            <tr><td></td><td class="REMNAME"><input type="checkbox" name="_keep_name" class="REMNAME">Remember Username</td></tr>
        </tbody></table>
      </td><td></td>
  </tr>
  <tr><td></td><td class="VER">Version 1.3.3 (015)</td><td></td></tr>
  <tr><td></td><td colspan="4" height="100%">&nbsp;</td></tr>
<tr><td></td>
    <td colspan="3" class="copyright">
        <script>document.write(COPYRIGHT);</script>© 2013 Cisco Systems, Inc. All Rights Reserved.<br>
        <script>document.write(COPYRIGHT_1);</script>Cisco, Cisco Systems, and the Cisco Systems logo are registered trademarks or trademarks of Cisco<br>
        <script>document.write(COPYRIGHT_2);</script>Systems, Inc. and/or its affiliates in the United States and certain other countries.</td>
    <td></td>
</tr>
</tbody></table>

</div></form></body></html>