GHDB « Hackers For Charity

GHDB

GHDB

Google Search: link:http://www.toastforums.com/

murfie rates this entry 6 out of 10.
Submitted: 2004-09-06 12:34:30
Added by: murfie
Hits: 4771
Score: 6

Toast Forums is an ASP message board on the Internet. Toast Forums also has all the features of an advanced message board (see hxxp://www.toastforums.com/). The problem is in the install documentation (quoting):– start quote –2. Rename the data.mdb file to a different name. After renaming the data.mdb file, open constants.asp and change the tstDBConnectString constant to reflect the new name. — end quote –This search finds sites running Toast Forum by using the LINK: operator. Trial and error is needed to find the database file from the results by changing the URL. Member data can be found in the table “tstdb_Member”. It looks like this:”ID” “FName” “LName” “Username” “Password” “Email” “HideEmail” “ICQ” “Homepage” “Signature” “IP” “Skin” “IncludeSignature” “NotifyDefault” “PostCount” “LastLoginDate” “LastPostDate”Passwords are encrypted with the RC4 algoritm, so an attacker would find cracking them is (more) difficult (than usual).

Comments:

2004-09-06 12:40:11 (murfie): Oh, before anyone asks, finding the path to the database goes like this:

1) go to the main forum page
2) change url from “http://sitename/toast/” to “http://sitename/toast/data/data.mdb”
3) download and open in access (or mdb-tools on linux)

2005-02-11 09:30:36 (Fidler): Anyone tried to crack the passwords ?

2005-12-31 07:38:12 (durato): http://www.cebrasoft.co.uk/encryption/rc4.htm
info :D


5 Responses to “GHDB”

  1. Jack says:
    October 26, 2011 at 9:12 pm

    Does GHDB still updates for now?

  2. Johnny says:
    October 27, 2011 at 3:31 am

    The GHDB is alive and well, updated through the ExploitDB: http://www.exploit-db.com/google-dorks.

  3. The Artist says:
    April 20, 2013 at 7:10 am

    Hi Johnny,been a while since I’ve came last. Aren’t you gonna update this website anymore???

  4. Johnny says:
    April 27, 2013 at 5:10 am

    The GHDB is not updated and lives with the exploitdb: http://http://www.exploit-db.com. Please check out the awesome folks at Offensive Security as well: http://www.offensive-security.com!

  5. Velmurugan says:
    May 7, 2013 at 7:38 am

    Is any offline view-able resources is available of this product ?

Leave a Reply