Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Web-App-Sec
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: How to find the login name of a user accessing my website

from [Maxime Ducharme] Network Security [Permanent Link]
Subject: RE: How to find the login name of a user accessing my website
Date: Mon, 6 Nov 2006 10:43:39 -0500 

Hello
 
Depends if you are using Windows auth to secure a web site

This configuraiton will prompt the user for a login when
accessing web site

if there is no pompt when accessing your web site, username
is "anonymous", i.e. IUSR_MACHINENAME where MACHINENAME
is the name of your server

This user is logged in IIS log file, ensure cs-username
is checked in IIS logging, then open the log file

Another way to extract this user from HTTP commnication
is to capture 1 HTTP request from the client and read the
HTTP header "Authorization"

if the first string you see is "Basic", you can extract
username and password from the second string which
is username:password encoded in base64

So the complete header for someuser / somepass would be :

Authorization: Basic c29tZXVzZXI6c29tZXBhc3M=

use base64 tools to decode it :
http://www.rbl.jp/base64.php
http://josefsson.org/base64/
...

HTH

Have a nice day

Maxime Ducharme
 

-----Message d'origine-----
De : listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] De
la part de Anurag Agarwal
Envoyé : 3 novembre, 2006 21:14
À : security-basics@securityfocus.com; webappsec@securityfocus.com
Objet : How to find the login name of a user accessing my website

I was wondering if anyone could help me how I can find out the windows login

of the user, accessing my website. I think i read it somewhere that it gets 
passed as a header information but i am not sure. If anyone of you guys can 
help me with this, i will really appreciate it.

thanks
anurag


-------------------------------------------------------------------------
Sponsored by: Watchfire

AppScan delivers new remediation capabilities, key regulatory compliance 
reporting, and productivity enhancements that dramatically improve, 
automate and streamline users' ability to quickly find, remediate and 
manage web application security vulnerabilities. Change the way you think 
about application security testing - download AppScan today!

https://www.watchfire.com/securearea/appscancamp.aspx?id=701500000008YTE
--------------------------------------------------------------------------



-------------------------------------------------------------------------
Sponsored by: Watchfire

It's been reported that 75% of websites are vulnerable to attack. That's 
because hackers know to exploit weaknesses in web applications. 
Traditional approaches to securing these assets no longer apply. 
Download the "Addressing Challenges in Application Security" whitepaper 
today, and see for yourself.

https://www.watchfire.com/securearea/whitepapers.aspx?id=701500000008YTU
--------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  .NET Web Service Validation, Michael Eddington
Next by Date:  Call for papers: ARES 2007 submission deadline approaches in 2 weeks: 19-11-2006, Manh Tho
Previous by Thread:  Re: How to find the login name of a user accessing my website, Dhruv Soi
Next by Thread:  XSS Shell v0.3.9, Ferruh Mavituna
Indexes:  [Date] [Thread] [Top] [All Lists]