search

trustedsec / social-engineer-toolkit

The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
10.78k stars 2.76k forks source link

POSSIBLE USERNAME FIELD FOUND: ------WebKitFormBoundary8EXwJVwrPSprsNE0 #1046

Open mohammadakram0705 opened 10 months ago

mohammadakram0705 commented 10 months ago

[*] WE GOT A HIT! Printing the output: POSSIBLE USERNAME FIELD FOUND: ------WebKitFormBoundary8EXwJVwrPSprsNE0 Content-Disposition: form-data; name="ts"

1700411809313 ------WebKitFormBoundary8EXwJVwrPSprsNE0 Content-Disposition: form-data; name="q"

[{"app_id":"256281040558","posts":"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","user":"0","webSessionId":"l35n0g:otbjbt:aa12fw","trigger":"falco:web_blue_time_spent_navigation","send_method":"ajax","compression":"snappy_base64","snappy_ms":20}] ------WebKitFormBoundary8EXwJVwrPSprsNE0-- [*] WHEN YOU'RE FINISHED, HIT CONTROL-C TO GENERATE A REPORT.

192.168.55.234 - - [19/Nov/2023 22:06:49] "POST /ajax/bz?a=1&aaid=0&ccg=EXCELLENT&dyn=7xe6E5aQ1PyUbFuC1swgE98nwgU29zEdEc8uwdK0lW4o3Bw5VCwjE3awbG78b87C0yE7i0n24o5-0me2218w5uw5Uwdq0Ho2eU5O0PU1mUdEG0hi0Lo6-0iq0NE&hs=19680.BP%3ADEFAULT.2.0..0.0&hsi=7303212994465748451&req=1&rev=1009980949&s=l35n0g%3Aotbjbt%3Aaa12fw&spin_b=trunk&spin_r=1009980949&__spin_t=1700411782&user=0&dpr=1&jazoest=2866&lsd=AVp05RGdAMk HTTP/1.1" 302 - [*] WE GOT A HIT! Printing the output: POSSIBLE USERNAME FIELD FOUND: ------WebKitFormBoundaryrUuyEXe1dQTMAAAi Content-Disposition: form-data; name="ts"

1700411817302 ------WebKitFormBoundaryrUuyEXe1dQTMAAAi Content-Disposition: form-data; name="q"

[{"app_id":"256281040558","posts":"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","user":"0","webSessionId":"l35n0g:otbjbt:aa12fw","trigger":"falco:web_time_spent_bit_array","send_method":"ajax","compression":"snappy_base64","snappy_ms":2}] ------WebKitFormBoundaryrUuyEXe1dQTMAAAi-- [*] WHEN YOU'RE FINISHED, HIT CONTROL-C TO GENERATE A REPORT.

192.168.55.234 - - [19/Nov/2023 22:06:57] "POST /ajax/bz?a=1&aaid=0&ccg=EXCELLENT&dyn=7xe6E5aQ1PyUbFuC1swgE98nwgU29zEdEc8uwdK0lW4o3Bw5VCwjE3awbG78b87C0yE7i0n24o5-0me2218w5uw5Uwdq0Ho2eU5O0PU1mUdEG0hi0Lo6-0iq0NE&hs=19680.BP%3ADEFAULT.2.0..0.0&hsi=7303212994465748451&req=2&rev=1009980949&s=l35n0g%3Aotbjbt%3Aaa12fw&spin_b=trunk&spin_r=1009980949&__spin_t=1700411782&user=0&dpr=1&jazoest=2866&lsd=AVp05RGdAMk HTTP/1.1" 302 - [*] WE GOT A HIT! Printing the output: POSSIBLE USERNAME FIELD FOUND: ------WebKitFormBoundarysB2yBomCrTSB43L4 Content-Disposition: form-data; name="ts"

1700411826686 ------WebKitFormBoundarysB2yBomCrTSB43L4 Content-Disposition: form-data; name="q"

[{"app_id":"256281040558","posts":"3AWAW1siZmFsY286b2RzX3dlYl9iYXRjaCIseyJlIjoie1wiBRAkXCI6e1wiMTM0NAkKBTMYLmV2ZW50LgE1VHRpbWVfc3BlbnRfYml0X2FycmF5XCIBNGxqcy51c2VfYmFuemFpLmxvZ19pbW1lZGlhdGVsASMkWzEsbnVsbF0sXAErDScgcG9zdGluZ19lAWEEXCIVJVh9LFwiZmFsY28uZmFicmljLnd3dy5DM/pqAHaWABRwbGFuZXMRmkB3cml0ZV90b190cmFuc3Bvci6fAAnEBbUZKRBxdWV1ZVLEAA0pDGViX3RKPwEu2AANKhF8QlMA9BYBfX19IiwiciI6MSwiZCI6IiRefEFjYlJHNnQzd3ZuaV84SWh1QXk3T2RGaUUxSUdHSUZ3U0Z3N0NMZjZWX0VKdThrLXN5RzNncGZWWWVBRXlENXhUN0JQQUdRUE1LR2lYTTBpOVRYMTcwNUR5UnBqdmtjfGZkLkFjWjFmeGFCWjNvQkNjN3FlOEczcE5tcWJJV3dvU1RXTm80aHFrY0VwaG1zODQ4RmNWU3NPSGJHTWpKMXBWUF94NnY0MnVnaDB5RjR6S0JIUE5wWXZ1UFEiLCJzIjoibDM1bjBnOm90YmpidDphYTEyZnciLCJ0IjoxNzAwNDExODAwMTk2LjJ9LDE3MDA0MTE4MjEzMDAuMSwwLDY4NF1d","user":"0","webSessionId":"l35n0g:otbjbt:aa12fw","send_method":"beacon","compression":"snappy_base64","snappy_ms":2}] ------WebKitFormBoundarysB2yBomCrTSB43L4-- [*] WHEN YOU'RE FINISHED, HIT CONTROL-C TO GENERATE A REPORT.

192.168.55.234 - - [19/Nov/2023 22:07:06] "POST /ajax/bz?a=1&aaid=0&ccg=EXCELLENT&dyn=7xe6E5aQ1PyUbFuC1swgE98nwgU29zEdEc8uwdK0lW4o3Bw5VCwjE3awbG78b87C0yE7i0n24o5-0me2218w5uw5Uwdq0Ho2eU5O0PU1mUdEG0hi0Lo6-0iq0NE&hs=19680.BP%3ADEFAULT.2.0..0.0&hsi=7303212994465748451&req=3&rev=1009980949&s=l35n0g%3Aotbjbt%3Aaa12fw&spin_b=trunk&spin_r=1009980949&__spin_t=1700411782&user=0&dpr=1&jazoest=2866&lsd=AVp05RGdAMk HTTP/1.1" 302 - [] WE GOT A HIT! Printing the output: PARAM: local_storage[Session]=20 PARAM: local_storage[pigeon_state]=24 PARAM: local_storage[hb_timestamp]=13 PARAM: local_storage[banzai:last_storage_flush]=15 PARAM: local_storage[signal_flush_timestamp]=13 PARAM: session_storage[TabId]=6 PARAM: session_storage[sp_pi]=216 PARAM: logtime=1 POSSIBLE USERNAME FIELD FOUND: user=0 PARAM: a=1 PARAM: req=4 PARAM: hs=19680.BP:DEFAULT.2.0..0.0 PARAM: dpr=1 PARAM: ccg=EXCELLENT PARAM: rev=1009980949 PARAM: s=l35n0g:otbjbt:aa12fw PARAM: hsi=7303212994465748451 PARAM: dyn=7xe6E5aQ1PyUbFuC1swgE98nwgU29zEdEc8uwdK0lW4o3Bw5VCwjE3awbG78b87C0yE7i0n24o5-0me2218w5uw5Uwdq0Ho2eU5O0PU1mUdEG0hi0Lo6-0iq0NE PARAM: csr= PARAM: lsd=AVp05RGdAMk PARAM: jazoest=2866 PARAM: aaid=0 POSSIBLE PASSWORD FIELD FOUND: spin_r=1009980949 POSSIBLE PASSWORD FIELD FOUND: __spin_b=trunk POSSIBLE PASSWORD FIELD FOUND: __spin_t=1700411782 [] WHEN YOU'RE FINISHED, HIT CONTROL-C TO GENERATE A REPORT.

192.168.55.234 - - [19/Nov/2023 22:07:20] "POST /ajax/webstorage/process_keys/?state=1 HTTP/1.1" 302 - [] WE GOT A HIT! Printing the output: PARAM: local_storage[Session]=20 PARAM: local_storage[pigeon_state]=24 PARAM: local_storage[hb_timestamp]=13 PARAM: local_storage[banzai:last_storage_flush]=15 PARAM: local_storage[signal_flush_timestamp]=13 PARAM: session_storage[TabId]=6 PARAM: session_storage[sp_pi]=216 PARAM: logtime=1 POSSIBLE USERNAME FIELD FOUND: user=0 PARAM: a=1 PARAM: req=5 PARAM: hs=19680.BP:DEFAULT.2.0..0.0 PARAM: dpr=1 PARAM: ccg=EXCELLENT PARAM: rev=1009980949 PARAM: s=l35n0g:otbjbt:aa12fw PARAM: hsi=7303212994465748451 PARAM: dyn=7xe6E5aQ1PyUbFuC1swgE98nwgU29zEdEc8uwdK0lW4o3Bw5VCwjE3awbG78b87C0yE7i0n24o5-0me2218w5uw5Uwdq0Ho2eU5O0PU1mUdEG0hi0Lo6-0iq0NE PARAM: csr= PARAM: lsd=AVp05RGdAMk PARAM: jazoest=2866 PARAM: aaid=0 POSSIBLE PASSWORD FIELD FOUND: spin_r=1009980949 POSSIBLE PASSWORD FIELD FOUND: __spin_b=trunk POSSIBLE PASSWORD FIELD FOUND: __spin_t=1700411782 [] WHEN YOU'RE FINISHED, HIT CONTROL-C TO GENERATE A REPORT.

192.168.55.234 - - [19/Nov/2023 22:07:20] "POST /ajax/webstorage/process_keys/?state=1 HTTP/1.1" 302 - [] WE GOT A HIT! Printing the output: PARAM: local_storage[Session]=20 PARAM: local_storage[pigeon_state]=24 PARAM: local_storage[hb_timestamp]=13 PARAM: local_storage[banzai:last_storage_flush]=15 PARAM: local_storage[signal_flush_timestamp]=13 PARAM: session_storage[TabId]=6 PARAM: session_storage[sp_pi]=216 PARAM: logtime=1 POSSIBLE USERNAME FIELD FOUND: user=0 PARAM: a=1 PARAM: req=6 PARAM: hs=19680.BP:DEFAULT.2.0..0.0 PARAM: dpr=1 PARAM: ccg=EXCELLENT PARAM: rev=1009980949 PARAM: s=l35n0g:otbjbt:aa12fw PARAM: hsi=7303212994465748451 PARAM: dyn=7xe6E5aQ1PyUbFuC1swgE98nwgU29zEdEc8uwdK0lW4o3Bw5VCwjE3awbG78b87C0yE7i0n24o5-0me2218w5uw5Uwdq0Ho2eU5O0PU1mUdEG0hi0Lo6-0iq0NE PARAM: csr= PARAM: lsd=AVp05RGdAMk PARAM: jazoest=2866 PARAM: aaid=0 POSSIBLE PASSWORD FIELD FOUND: spin_r=1009980949 POSSIBLE PASSWORD FIELD FOUND: __spin_b=trunk POSSIBLE PASSWORD FIELD FOUND: __spin_t=1700411782 [] WHEN YOU'RE FINISHED, HIT CONTROL-C TO GENERATE A REPORT.

192.168.55.234 - - [19/Nov/2023 22:07:20] "POST /ajax/webstorage/process_keys/?state=1 HTTP/1.1" 302 - [] WE GOT A HIT! Printing the output: PARAM: local_storage[Session]=20 PARAM: local_storage[pigeon_state]=24 PARAM: local_storage[hb_timestamp]=13 PARAM: local_storage[banzai:last_storage_flush]=15 PARAM: local_storage[signal_flush_timestamp]=13 PARAM: session_storage[TabId]=6 PARAM: session_storage[sp_pi]=216 PARAM: logtime=0 POSSIBLE USERNAME FIELD FOUND: user=0 PARAM: a=1 PARAM: req=7 PARAM: hs=19680.BP:DEFAULT.2.0..0.0 PARAM: dpr=1 PARAM: ccg=EXCELLENT PARAM: rev=1009980949 PARAM: s=:otbjbt:aa12fw PARAM: hsi=7303212994465748451 PARAM: dyn=7xe6E5aQ1PyUbFuC1swgE98nwgU29zEdEc8uwdK0lW4o3Bw5VCwjE3awbG78b87C0yE7i0n24o5-0me2218w5uw5Uwdq0Ho2eU5O0PU1mUdEG0hi0Lo6-0iq0NE PARAM: csr= PARAM: lsd=AVp05RGdAMk PARAM: jazoest=2866 PARAM: aaid=0 POSSIBLE PASSWORD FIELD FOUND: spin_r=1009980949 POSSIBLE PASSWORD FIELD FOUND: __spin_b=trunk POSSIBLE PASSWORD FIELD FOUND: __spin_t=1700411782 [] WHEN YOU'RE FINISHED, HIT CONTROL-C TO GENERATE A REPORT.

192.168.55.234 - - [19/Nov/2023 22:08:11] "POST /ajax/webstorage/process_keys/?state=1 HTTP/1.1" 302 - [] WE GOT A HIT! Printing the output: PARAM: local_storage[Session]=20 PARAM: local_storage[pigeon_state]=24 PARAM: local_storage[hb_timestamp]=13 PARAM: local_storage[banzai:last_storage_flush]=15 PARAM: local_storage[signal_flush_timestamp]=13 PARAM: session_storage[TabId]=6 PARAM: session_storage[sp_pi]=216 PARAM: logtime=0 POSSIBLE USERNAME FIELD FOUND: user=0 PARAM: a=1 PARAM: req=8 PARAM: hs=19680.BP:DEFAULT.2.0..0.0 PARAM: dpr=1 PARAM: ccg=EXCELLENT PARAM: rev=1009980949 PARAM: s=:otbjbt:aa12fw PARAM: hsi=7303212994465748451 PARAM: dyn=7xe6E5aQ1PyUbFuC1swgE98nwgU29zEdEc8uwdK0lW4o3Bw5VCwjE3awbG78b87C0yE7i0n24o5-0me2218w5uw5Uwdq0Ho2eU5O0PU1mUdEG0hi0Lo6-0iq0NE PARAM: csr= PARAM: lsd=AVp05RGdAMk PARAM: jazoest=2866 PARAM: aaid=0 POSSIBLE PASSWORD FIELD FOUND: spin_r=1009980949 POSSIBLE PASSWORD FIELD FOUND: __spin_b=trunk POSSIBLE PASSWORD FIELD FOUND: __spin_t=1700411782 [] WHEN YOU'RE FINISHED, HIT CONTROL-C TO GENERATE A REPORT.

192.168.55.234 - - [19/Nov/2023 22:08:12] "POST /ajax/webstorage/process_keys/?state=1 HTTP/1.1" 302 - [] WE GOT A HIT! Printing the output: PARAM: local_storage[Session]=20 PARAM: local_storage[pigeon_state]=24 PARAM: local_storage[hb_timestamp]=13 PARAM: local_storage[banzai:last_storage_flush]=15 PARAM: local_storage[signal_flush_timestamp]=13 PARAM: session_storage[TabId]=6 PARAM: session_storage[sp_pi]=216 PARAM: logtime=0 POSSIBLE USERNAME FIELD FOUND: user=0 PARAM: a=1 PARAM: req=9 PARAM: hs=19680.BP:DEFAULT.2.0..0.0 PARAM: dpr=1 PARAM: ccg=EXCELLENT PARAM: rev=1009980949 PARAM: s=:otbjbt:aa12fw PARAM: hsi=7303212994465748451 PARAM: dyn=7xe6E5aQ1PyUbFuC1swgE98nwgU29zEdEc8uwdK0lW4o3Bw5VCwjE3awbG78b87C0yE7i0n24o5-0me2218w5uw5Uwdq0Ho2eU5O0PU1mUdEG0hi0Lo6-0iq0NE PARAM: csr= PARAM: lsd=AVp05RGdAMk PARAM: jazoest=2866 PARAM: aaid=0 POSSIBLE PASSWORD FIELD FOUND: spin_r=1009980949 POSSIBLE PASSWORD FIELD FOUND: __spin_b=trunk POSSIBLE PASSWORD FIELD FOUND: __spin_t=1700411782 [] WHEN YOU'RE FINISHED, HIT CONTROL-C TO GENERATE A REPORT.

mohammadakram0705 commented 10 months ago

GIVE ME A SOLUTION

goodnight-69 commented 9 months ago

GIVE ME A SOLUTION

i got the same error did you found a solution yet or not?

prodbigmant commented 7 months ago

any solution

uteachcs commented 7 months ago

I am having the same issue. Please advise! I am a Curriculum Developer and am trying to write an assignment for high school students for a Cybersecurity course.

I checked my version with lsb_release -rdc No LSB modules are available. Description: Kali GNU/Linux Rolling Release: 2023.4 Codename: kali-rolling