Soul Tianyang Forum
1: The network solution is good in the network era. Everything can be found online. Of course, the MD5 password is no exception. Of course, it is impossible to find any password. Otherwise, it will not be able to reverse restore, 2 websites are recommended:
Www.20.5.com
Www.xmd5.org/
The websites of both of them are very good at dealing with md5 numbers and letters and combinations of less than 10 .. the above words will be less pitiful ..
If not. You can use google.com to search for the hash password .....
Of course there are other websites that can be cracked online. I won't talk about it here, Baidu.
2: The best way to run
Although it is a little against the speed principle, it is the best option to give up without patience. This is not like our style. The 9-digit pure number is about 10 minutes,
3: Social Engineering
It is also a good choice to crack the password. You can directly ask for management to see .. Of course, you have to think about the lines. If you can't say it, it's really time to hit your idiot. That's funny...
4: Change the md5 value of the other party to itself.
If the other party uses an SQL database and our permissions are not small, we can submit a statement to replace the original password. For example, the target table is ADMIN, And the administrator ID is 11. The password column is PWD. You can submit the following:
Update [admin] set PWD = 7a57a5a743894a0e where id = 1
In this way, the password of the other party is changed to 7a57a5a743894a0e, that is, admin.
5: Cookie Spoofing
There are also COOKIES that have been circulating for N years, and COOKIES can be sniffed to get sessions. You can get them without knowing the original password.
There are still many websites with incorrect passwords. we can infer the correct password through the Administrator's incorrect password input ............. md5 password cracking methods