首先解释名词:
cookies欺骗,就是在只对用户做cookies验证的系统中,通过修改cookies的内容来得到相应的用户权限登录。
那么什么是cookies呢,我这里给大家一个专业的解释,cookies是一个储存于浏览器目录中的文本文件,记录你访问一个特定站点的信息,且 只能被创建这个cookies的站点读回,约由255个字符组成,仅占4kb硬盘空间。当用户正在浏览某站点时,它储存于用户机的随机存取存储器ram 中,退出浏览器后,它储存于用户的硬盘中。储存在cookies中的大部分信息是普通的,如当你浏览一个站点时,此文件记录了每一次的击键信息和被访站点 的地址等。但是许多web站点使用cookies来储存针对私人的数据,如:注册口令、用户名、信用卡编号等。
以下是被破解分享的vip、
什么是Session?当一个访问者来到你的网站的时候一个Session就开始了,当他离开的时候Session就结束了。本质是来说,cookie是和浏览器有关系,而Session变量就可以存一些资源变量在服务器上面。
我们先里看个实例,在6KBBS的login.asp找到113—124行,得到以下代码:
if
[url=javascript:][color=#949494]Copy code[/color][/url]
login=false then tl=" 登 陆 失 败" mes=mes&"
·返回重新填写" else response.cookies(prefix)(“lgname”)
=lgname session(prefix"lgname")=
lgname response.cookies(prefix)(“lgpwd”)=
lgpwd response.cookies(prefix)(“lgtype”)=
lgtype response.cookies(prefix)(“lgcook”)=
cook if cook>0 then response.cookies(prefix).expires=
date+cook end if
我们来分析下,如果你登录失败了他就显示你登录失败并引导你返回上一页,否则就给你写进cookies里面,如果你的cookies有的话那么你的过期时间就是你cookies的过期时间——也就是你保存cookies的时间了。
这时,我们想到的是如果里面的信息是admin的,那一不就成了以管理员登陆了吗?
首先,我们先去注册一个用户,然后登录,有个cookies保存的选项,一定要选哦。我选择是保存一个月,因为保存了才会再你本机上写进它的 cookies。接着,打开数据库,看admin表里面有什么东西,别的不管,你只要那个bd为16的那个人就行了。有可能没有,你可以到他们论坛去逛一 下,看管理员是谁,然后在数据库里面拿他的账号和加密的密码来欺骗。
打开iecookiesview,这款软件是拿来察看和修改本机的cookies的,很方便我们的cookies欺骗入侵。
csdn的cookies :
[
{
“domain”: “.csdn.net”,
“expirationDate”: 1656735404,
“hostOnly”: false,
“httpOnly”: false,
“name”: “_gads",
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “ID=447099aec17a686e:T=1593663404:S=ALNI_Mbfntbx8JU8X9-jya8FVshcfaez8g”,
“id”: 1
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1596272997,
“hostOnly”: false,
“httpOnly”: false,
“name”: “announcement”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “%257B%2522isLogin%2522%253Atrue%252C%2522announcementUrl%2522%253A%2522https%253A%252F%252Flive.csdn.net%252Froom%252Fcompanyzh%252F5o1Kf1RQ%253Futm_source%253D1593515841%2522%252C%2522announcementCount%2522%253A0%257D”,
“id”: 2
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1609233057.4742,
“hostOnly”: false,
“httpOnly”: false,
“name”: “AU”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “DCE”,
“id”: 3
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1625217057.474273,
“hostOnly”: false,
“httpOnly”: false,
“name”: “BT”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “1593681055705”,
“id”: 4
},
{
“domain”: “.csdn.net”,
“hostOnly”: false,
“httpOnly”: false,
“name”: “c_first_page”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: true,
“storeId”: “0”,
“value”: “https%3A//blog.csdn.net/u011597375/article/details/105903875”,
“id”: 5
},
{
“domain”: “.csdn.net”,
“hostOnly”: false,
“httpOnly”: false,
“name”: “c_first_ref”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: true,
“storeId”: “0”,
“value”: “www.baidu.com”,
“id”: 6
},
{
“domain”: “.csdn.net”,
“hostOnly”: false,
“httpOnly”: false,
“name”: “c_ref”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: true,
“storeId”: “0”,
“value”: “https%3A//blog.csdn.net/u011597375/article/details/105903875”,
“id”: 7
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1625216543,
“hostOnly”: false,
“httpOnly”: false,
“name”: “c-login-auto”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “8”,
“id”: 8
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1735689597.978948,
“hostOnly”: false,
“httpOnly”: false,
“name”: “dc_session_id”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “10_1593658049182.592130”,
“id”: 9
},
{
“domain”: “.csdn.net”,
“hostOnly”: false,
“httpOnly”: false,
“name”: “dc_sid”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: true,
“storeId”: “0”,
“value”: “dc14a8065fd6d60ea916a093e1aba1c8”,
“id”: 10
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1593695688.831799,
“hostOnly”: false,
“httpOnly”: false,
“name”: “dc_tos”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “qcu4co”,
“id”: 11
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1625217213,
“hostOnly”: false,
“httpOnly”: false,
“name”: “Hm_ct_6bcd52f51e9b3dce32bec4a3997715ac”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “6525110_19034377010-1593658049182-133258!57441qq356968912”,
“id”: 12
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1625203322,
“hostOnly”: false,
“httpOnly”: false,
“name”: “Hm_ct_eacee5f896766726b7f7d91dc54015ab”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “6525110_19034377010-1593658049182-133258”,
“id”: 13
},
{
“domain”: “.csdn.net”,
“hostOnly”: false,
“httpOnly”: false,
“name”: “Hm_lpvt_6bcd52f51e9b3dce32bec4a3997715ac”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: true,
“storeId”: “0”,
“value”: “1593681290”,
“id”: 14
},
{
“domain”: “.csdn.net”,
“hostOnly”: false,
“httpOnly”: false,
“name”: “Hm_lpvt_eacee5f896766726b7f7d91dc54015ab”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: true,
“storeId”: “0”,
“value”: “1593667323”,
“id”: 15
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1625217289,
“hostOnly”: false,
“httpOnly”: false,
“name”: “Hm_lvt_6bcd52f51e9b3dce32bec4a3997715ac”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “1593667516,1593669243,1593679066,1593680544”,
“id”: 16
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1625203322,
“hostOnly”: false,
“httpOnly”: false,
“name”: “Hm_lvt_eacee5f896766726b7f7d91dc54015ab”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “1593667323”,
“id”: 17
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1625217213,
“hostOnly”: false,
“httpOnly”: false,
“name”: “Hm_up_6bcd52f51e9b3dce32bec4a3997715ac”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: "%7B%22islogin%22%3A%7B%22value%22%3A%221%22%2C%22scope%22%3A1%7D%2C%22isonline%22%3A%7B%22value%22%3A%221%22%2C%22scope%22%3A1%7D%2C%22isvip%22%3A%7B%22value%22%3A%220%22%2C%22scope%22%3A1%7D%2C%22uid%22%3A%7B%22value%22%3A%22qq356968912%22%2C%22scope%22%3A1%7D%7D”,
“id”: 18
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1625203322,
“hostOnly”: false,
“httpOnly”: false,
“name”: “Hm_up_eacee5f896766726b7f7d91dc54015ab”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “%7B%22islogin%22%3A%7B%22value%22%3A%220%22%2C%22scope%22%3A1%7D%2C%22isonline%22%3A%7B%22value%22%3A%220%22%2C%22scope%22%3A1%7D%2C%22isvip%22%3A%7B%22value%22%3A%220%22%2C%22scope%22%3A1%7D%7D”,
“id”: 19
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1609233057.474312,
“hostOnly”: false,
“httpOnly”: false,
“name”: “p_uid”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “U000000”,
“id”: 20
},
{
“domain”: “.csdn.net”,
“hostOnly”: false,
“httpOnly”: true,
“name”: “SESSION”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: true,
“storeId”: “0”,
“value”: “a17cee36-29a3-4a2f-8704-55aa2875bca8”,
“id”: 21
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1625217057.474234,
“hostOnly”: false,
“httpOnly”: false,
“name”: “UN”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “qq356968912”,
“id”: 22
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1609233057.474091,
“hostOnly”: false,
“httpOnly”: true,
“name”: “UserInfo”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “0d8fc8595be147e0851fd1d01c1d3ce0”,
“id”: 23
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1609233057.474015,
“hostOnly”: false,
“httpOnly”: false,
“name”: “UserName”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “qq356968912”,
“id”: 24
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1609233057.474169,
“hostOnly”: false,
“httpOnly”: false,
“name”: “UserNick”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “qq356968912”,
“id”: 25
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1609233057.474133,
“hostOnly”: false,
“httpOnly”: true,
“name”: “UserToken”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “0d8fc8595be147e0851fd1d01c1d3ce0”,
“id”: 26
},
{
“domain”: “.csdn.net”,
“expirationDate”: 1735689597.978878,
“hostOnly”: false,
“httpOnly”: false,
“name”: “uuid_tt_dd”,
“path”: “/”,
“sameSite”: “unspecified”,
“secure”: false,
“session”: false,
“storeId”: “0”,
“value”: “10_19034377010-1593658049182-133258”,
“id”: 27
}
]
在iecookiesview 里找到你要欺骗的那个网站,看到了吗?有你的用户名和md5加密的密码,我们吧这两项改为管理员的,就是把刚才数据库里面的管理员账号和md5加密的密码 代替你自己的。点击“更改cookies”,打开一个新的ie,然后再去访问那个论坛,看到没有?你现在已经是vip了。
————————————————