Broken Authentication Brute-Forcing Password Reset Tokens
any hint
i try ffuf -w ./tokens.txt -u http://83.136.255.40:41881/reset_password.php?token=FUZZ -fr “The provided token is invalid”
this code not solve and try again to generata another It didn’t help me either.
Hello, i believe you are doing everything correctly. Try using the token on via the url rather than the password reset button.
eg: target.com/reset)=?token=value
i try it and i get the pass reset but i dont know the next step Did you specify a username when resetting the password?
Yes,the user admin exists. so i used admin as the user. Once you have reset the password, you ill have to login with the set password
You mean I can log in with what I wrote in the password field in Burp and the username is admin
Yes, exactly
Hi, im stuck here.
I tried to bruteforce the token= param via GET and via POST with the password, but i not receive any token, i create a python script that generate the token so i tried from 1 to 100000 but not works.
Task (2) for Broken Authentication - Brute-Forcing Passwords section.
Any hint for this?
Greetings
It’s possible for the academy is not token bruteforce but passwd brute?
The question in task is: “What is the password of the user ‘admin’?”
Greetings.
