Password generating script

Levi · July 2024

Looking for ready2go script to generate passwords. Something like:

Best if it is in PHP.

jahrinc · July 2024

Ask chatgpt, and that way you can learn at the same time

kait · July 2024

With or without RCE?

iKeyZ · July 2024

There's a few on Codecanyon, mostly only using JS;

https://codecanyon.net/item/pass-gen-strong-password-generator/50965159
https://codecanyon.net/item/password-generator/40732156

And some on GH like this: https://github.com/devloop01/password-generator

horasjey · July 2024

send pm

Levi · July 2024

@kait said:
With or without RCE?

RCE must be included as obligatory way to troll. Thanks!

totally_not_banned · July 2024

LET is the best password generator: x§oIUj09u$§34t&v437%4__#t25",32+3k%opF(sfeW

Need more?

kait · July 2024

@Levi said: RCE must be included as obligatory way to troll. Thanks!

Can't post code since Cloudflares WAF gets mad, but here you go, with RCE.

(this is my password generator on my terminal )

davide · July 2024

$ pwgen -sy 30
j?iDd|7;NEPii3QnE}n]}D<,^4r~MS V+&W]4al]L??y,~#9?~kJ+b,l;ZWp=
"'a_GWyeQx11#*Tj\]6g|E~!Ooz_-T xoR\^`v)%!dv0j:YOjGIU_dlii!Bw!
.W"o(f4C()|Ay)kVh"1/@5Xc.b373K _,r6Ou5o+#N&|)E_:H76O?zT!K!!an
c0v:<Wq;zy90*AF6Q#R@c}J7{4c0RI +bcID&v8L7Saj;D?=*$RY<+QJ]9NJ-
kd>T`<WSC8AAp/U@d2_D9:Cl-vYCux AN%K4$N}tRn!Z;$p%aaN8l:RBlh%a(
Eu^b">DBa`m4=^sAr`Z\noBS.Yf#a, tABJD;|W&|}a8Rg)S5hG!!EX[R9;{Z
PW^^X85#*lL,Z~Hh!N[*IGryr6dHnn U%sHi3f/R'Kl6z!w;E2rGLu8p],FZA
L_%~L0O:Ahu$X2qGWM[1v[^Sq1+0Wp Nwmw6=vhS[,9g7nWa|&_P7KsUCO+|5
g5.q`@(i%^k=*ng7[[2K-I5$sSZPG@ Vkv%d1\o)np`O8~Gav5kOJ&-pTY>X:
g0zpI<)ORe-bbu(@mImV:RK{Rf]M__ 1BXk?#%I'U0;aU+%6azRr)y;UU?&$k
DuG=RcRR*%A=RG\k0Y:2\H(ZK['/97 E_qCEKic<]C%|E/iRPJmCMdSB>>1&5
'@0_uVq\YXjnUyB*T3i&Qkb4Y%:o-G @I#7,AN2U)1{O*-Z6of<0n,|'S<Lvi
B(KHe!((Jg'vjiJi3SmNBIh"g!:59f Ul21=QH&Sq!(>!;i?\,E|Mv(arv8!"
i~-oHF2,2l;-zQivaWtn3U?uB(f3a, ]&V}D{<V*7.PI3:!&*&\O_G{\hp<2w
ZUviv)"`wIj-:j:q/Ig,?Si0FK-?vN .:8Cr?r+9fF@4)|pK^;^~1pxrI-yeU
)u3i..O9t@75%c@d?CGW!LEnqW>E{) '$!JTDjWM!o6;{4E[s8x#?x73+RQ<D
8bIxO-j%y;A#,X4Pv.o/lj}o*XMGK? H-IMhX/qa>^-b7jQz\1Ut^@-[/~*M`
+zk=5df}hK"H-2.!?05i_Q/2vy1?U! TE>c_K}aoH@9q&(#B>g8]fHG<<4bsl
sk^g_zw}LmZ-bf`t63Mm<^+W.vKn8. zY6oKb;ZgOW,^z3L1Cqx)Vd~UPbDnt
]E"(\v=ki&*+jBU.HICcm[d{?W8{iO ),]H?GPM2ecZU~Mff|8t-[[6hL:tD(

totally_not_banned · July 2024

intval($_GET['length']) if you want to be boring.

kait · July 2024

@totally_not_banned said:
.

Not a php pro so never heard of intval. + he wanted RCE.

totally_not_banned · July 2024

@kait said:

@totally_not_banned said:
.

Not a php pro so never heard of intval. + he wanted RCE.

Yeah i got confused a little too (length isn't exactly much of a predictable measure if the whole thing is base64 encoded anyways it seems) but intval is basically forcing the length variable to be a number. If that doesn't make sense for the value passed (because it's some random string or whatever) the result will probably be zero but at least it'll strip any kind of weird characters messing with the shell. Poor mans input sanitizing so to say

Levi · July 2024

Nice, unescaped GET directly executed on terminal. Nothing can go wrong here…

yoursunny · July 2024

Over the years, I've used these to generate passwords:

echo $RANDOM | sha1
openssl rand -hex 8
makepasswd --chars=12
https://correcthorse.pw

totally_not_banned · July 2024

@Levi said:
Nice, unescaped GET directly executed on terminal. Nothing can go wrong here…

He's right though. You wanted RCE. If you prefer to be boring just see my earlier post.

kait · July 2024

@totally_not_banned said: He's right though. You wanted RCE. If you prefer to be boring just see my earlier post.

Yup, RCE is funny like that.

vitobotta · July 2024

Funny coincidence since you are speaking of RCE, but right last week I found a nice one in a PHP app (of course) that renders files whose path is specified in a param, and has a local file inclusion vulnerability, i.e. it doesn't restrict which files I can render that way so I was able to see some stuff that I shouldn't, but I waited before reporting it as it was similar to another case I worked on a few months ago.

So I used the LFI vulnerability to render the Apache logs, which worked, and then sent a request to the server that includes a code snippet in the user agent, with the code snippet executing the command passed in the cmd param.

Since the content of the file you render is parsed with PHP, and since the user agent is logged with the request, I got a nice RCE there, and I was able to also run a shell with this trick.

Found this after 4 hours exploring the app. Reward: $6K

darkphil · July 2024

If you want something in the terminal, you can just run openssl rand -hex 100 or openssl rand -base64 100, if you have openssl installed, which I think it's installed by default in all modern OSes.

kait · July 2024

@vitobotta said: So I used the LFI vulnerability to render the Apache logs, which worked, and then sent a request to the server that includes a code snippet in the user agent, with the code snippet executing the command passed in the cmd param.

I love this initial access path, apache logs because php code in your user agent

ElisabethFischer · August 2024

Hmm, And if everyone asks the gpt chat to write them such a code, does this mean that everyone's code will be the same?

hyperblast · August 2024

@davide said:
$ pwgen -sy 30
j?iDd|7;NEPii3QnE}n]}D<,^4r~MS V+&W]4al]L??y,~#9?~kJ+b,l;ZWp=
"'a_GWyeQx11#Tj]6g|E~!Ooz_-T xoR\^v)%!dv0j:YOjGIU_dlii!Bw! .W"o(f4C()|Ay)kVh"1/@5Xc.b373K _,r6Ou5o+#N&|)E_:H76O?zT!K!!an c0v:<Wq;zy90*AF6Q#R@c}J7{4c0RI +bcID&v8L7Saj;D?=*$RY<+QJ]9NJ- kd>T<WSC8AAp/U@d2_D9:Cl-vYCux AN%K4$N}tRn!Z;$p%aaN8l:RBlh%a(
Eu^b">DBam4=^sArZ\noBS.Yf#a, tABJD;|W&|}a8Rg)S5hG!!EX[R9;{Z
PW^^X85#lL,Z~Hh!N[IGryr6dHnn U%sHi3f/R'Kl6z!w;E2rGLu8p],FZA
L_%~L0O:Ahu$X2qGWM[1v[^Sq1+0Wp Nwmw6=vhS[,9g7nWa|&_P7KsUCO+|5
g5.q@(i%^k=*ng7[[2K-I5$sSZPG@ Vkv%d1\o)npO8~Gav5kOJ&-pTY>X:
g0zpI<)ORe-bbu(@mImV:RK{Rf]M__ 1BXk?#%I'U0;aU+%6azRr)y;UU?&$k
DuG=RcRR%A=RG\k0Y:2\H(ZK['/97 E_qCEKic<]C%|E/iRPJmCMdSB>>1&5
'@0_uVq\YXjnUyBT3i&Qkb4Y%:o-G @I#7,AN2U)1{O-Z6of<0n,|'S!;i?\,E|Mv(arv8!" i~-oHF2,2l;-zQivaWtn3U?uB(f3a, ]&V}D{E{) '$!JTDjWM!o6;{4E[s8x#?x73+RQ^-b7jQz\1Ut^@-[/~M+zk=5df}hK"H-2.!?05i_Q/2vy1?U! TE>c_K}aoH@9q&(#B>g8]fHG<<4bsl sk^g_zw}LmZ-bft63Mm<^+W.vKn8. zY6oKb;ZgOW,^z3L1Cqx)Vd~UPbDnt
]E"(\v=ki&+jBU.HICcm[d{?W8{iO ),]H?GPM2ecZU~Mff|8t-[[6hL:tD(

why davide banned?

valk · August 2024

@hyperblast said:

@davide said:
$ pwgen -sy 30
j?iDd|7;NEPii3QnE}n]}D<,^4r~MS V+&W]4al]L??y,~#9?~kJ+b,l;ZWp=
"'a_GWyeQx11#Tj]6g|E~!Ooz_-T xoR\^v)%!dv0j:YOjGIU_dlii!Bw! .W"o(f4C()|Ay)kVh"1/@5Xc.b373K _,r6Ou5o+#N&|)E_:H76O?zT!K!!an c0v:<Wq;zy90*AF6Q#R@c}J7{4c0RI +bcID&v8L7Saj;D?=*$RY<+QJ]9NJ- kd>T<WSC8AAp/U@d2_D9:Cl-vYCux AN%K4$N}tRn!Z;$p%aaN8l:RBlh%a(
Eu^b">DBam4=^sArZ\noBS.Yf#a, tABJD;|W&|}a8Rg)S5hG!!EX[R9;{Z
PW^^X85#lL,Z~Hh!N[IGryr6dHnn U%sHi3f/R'Kl6z!w;E2rGLu8p],FZA
L_%~L0O:Ahu$X2qGWM[1v[^Sq1+0Wp Nwmw6=vhS[,9g7nWa|&_P7KsUCO+|5
g5.q@(i%^k=*ng7[[2K-I5$sSZPG@ Vkv%d1\o)npO8~Gav5kOJ&-pTY>X:
g0zpI<)ORe-bbu(@mImV:RK{Rf]M__ 1BXk?#%I'U0;aU+%6azRr)y;UU?&$k
DuG=RcRR%A=RG\k0Y:2\H(ZK['/97 E_qCEKic<]C%|E/iRPJmCMdSB>>1&5
'@0_uVq\YXjnUyBT3i&Qkb4Y%:o-G @I#7,AN2U)1{O-Z6of<0n,|'S!;i?\,E|Mv(arv8!" i~-oHF2,2l;-zQivaWtn3U?uB(f3a, ]&V}D{E{) '$!JTDjWM!o6;{4E[s8x#?x73+RQ^-b7jQz\1Ut^@-[/~M+zk=5df}hK"H-2.!?05i_Q/2vy1?U! TE>c_K}aoH@9q&(#B>g8]fHG<<4bsl sk^g_zw}LmZ-bft63Mm<^+W.vKn8. zY6oKb;ZgOW,^z3L1Cqx)Vd~UPbDnt
]E"(\v=ki&+jBU.HICcm[d{?W8{iO ),]H?GPM2ecZU~Mff|8t-[[6hL:tD(

why davide banned?

Harassment towards a member, a certain LET moderator had enough and banned him. He's moved over to OGF only to be attacked again (may be very well deserved) and still is currently active.

Howdy, Stranger!

Categories

In this Discussion

Password generating script

Comments

Howdy, Stranger!

Quick Links

Categories

In this Discussion

Password generating script

Comments