.

APACHE WEak password

<<

manju_salian

User avatar

Jr. Member
Jr. Member

Posts: 89

Joined: Mon Apr 09, 2007 1:31 am

Post Thu Apr 25, 2013 1:54 am

APACHE WEak password

Hi,

With mass reported vulnerabilities for APACHE weak & default password.
Loking for automate script or tool to report and fix the vulnerability.

Kindly suggest
<<

Jamie.R

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Mon Aug 06, 2012 9:57 am

Location: UK

Post Thu Apr 25, 2013 2:12 am

Re: APACHE WEak password

I am not aware of any tool that can do this. I guess Nessus would pick up if the issue of default password. I am not sure how you could detect a weak password unless you brute forced the login and found the password to be 12345 or another easy to guess password.

You should be able to write a simple python script to do this. One thing that might be an issue with is how you detect a weak password and then replace it. As if you want the hole process to be automated you would need to store the password in the script in plaintext.

I am not the best programmer in the world so maybe other might have way around this.
| OSWP | eCPPT Silver and Gold | eWPT |

I'm an InterN0T'er
<<

superkojiman

User avatar

Jr. Member
Jr. Member

Posts: 81

Joined: Thu Sep 20, 2012 9:42 pm

Post Thu Apr 25, 2013 9:43 am

Re: APACHE WEak password

Hack_80 wrote:Hi,

With mass reported vulnerabilities for APACHE weak & default password.
Loking for automate script or tool to report and fix the vulnerability.

Kindly suggest


I'm not sure what vulnerability you're referring to...? Are just talking about basic authentication for websites?
OSCP + OSCE
<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Thu Apr 25, 2013 11:23 am

Re: APACHE WEak password

Hydra
The day you stop learning is the day you start becoming obsolete.

Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 2 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software