Hi,
I'm somewhat new to this and was wondering how I would go about getting past a simple cgi login-pass webpage and into the webserver. I know some stuff about pc's, but I doubt new as much as some of you, so if you would explain each thing your doing, it would help, thanks.

it should be 'but not as near as much', sorry bout the typo, I wasn't paying attention.

It depends on the webserver, app, and who programmed/secured it, but sometimes you can alter the URL and get past the login screen.

In other words, if the URL is http://www.server.com/cgi/login at the login prompt, you can replace or type in http://www.server.com/cgi/admin or http://www.server.com/cgi/shared or something like that to bypass the login. Usually it doesn't work, but occasionally it does. NOTE: that is cgi in the URLs; it looks like a q when underlined.

Or try telnetting or ftping to the site. Sometimes they forget to lock that down and you can get in or find info to allow you to login legit.

Kinda lame, I know, but it sometimes works. And no one else had replied yet. I always like to try the simple stuff before bringing out the flame thrower.

Thanks, but I should have said in the first post that I want to get the user and passwords also. So, basically hack the login to find all the usernames and their passwords, or just procedure to find one of them at least.

You may want to refer to this post specifically GSecur's Post.

http://www.governmentsecurity.org/forum/in...t=ST&f=15&t=294

Yes, I noticed that earlier when I was looking through the forum, I just could find any of the things he mentioned, I tried password.txt, password.pwd and I looked around for table in the source, but I didn't it. I'm new to this type of thing and if someone would explain it to me it would be very helpful.

I am a newbie regarding this so might be sending you down the wrong road but i am sure someone will correct me if this is the case. You could use a Scanner like N-stealth to look for vunerable web page's and a tool called a web spider which basically copys the whole site and you can specify certain word's to look for and view the source of all pages. Never seen it but i have read occasionally you might find a password in the source.You could always use google to search the site.I would look for peoples names or you could always do a whois query to see if it specifys the admin's name.Now you have a user name(hopefully) and then there are various tools for running a Dictionary attack agaisnt it. I think Brutus and Webcracker are the two you most hear about.Basically you start out by surveying the site looking for all possible weakness.