DaemonForums - View Single Post - Tool for cracking encrypted session data

Thread: Tool for cracking encrypted session data

View Single Post

#1 (View Single Post)

Old

9th June 2010

J65nko

J65nko is offline

Administrator

Join Date: May 2008

Location: Budel - the Netherlands

Posts: 4,131

Default

Tool for cracking encrypted session data

From http://www.h-online.com/security/new...a-1017626.html

Quote:

Two researchers have released a tool which can be used to crack web server-encrypted session data contained in cookies and parameters hidden in HTML pages. The method used by Juliano Rizzo and Thai Duong's Padding Oracle Exploitation Tool (Poet) can also be used to crack CAPTCHAS.

__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump

Reply With Quote