Site Says I Need to Enable Cookies?

Discussion in 'Cracking Discussions & Help Forum' started by Trinity, Nov 30, 2015.

  1. Trinity

    Trinity Banned

    Messages:
    253
    Likes:
    35
    Ratio:
    0.01
    Hey guys I'm working on a site that says I need to enable cookies on my browser. It uses a CSRF token, but I configured a variable to handle that. It's my first time making a variable for CSRF, so idk if I did it right. If anyone wants to check it out I'll really appreciate it.


    Code:
    Select All
    [Wordlist] UserIndex=1 PassIndex=2 EmailIndex=0 33AC86E476CF1FF1D07369566637E35B=24 [Settings] SiteURL=https://bitzino.com/ Timeout=20 WaitBot=0 ResolveHost=0 ComboFilter=0 ComboMode=0 EmailFilter=0 EmailMode=0 UsernameStart=6 UsernameEnd=8 InvalidChars= AllowedChars= Letters=0 Digits=0 Alpha=0 Email=0 LowerUpper=0 LetterDigit=0 SpeciaChar=0 PasswordStart=6 PasswordEnd=8 PasswordInvalidChars= PasswordAllowedChars= PasswordLetters=0 PasswordDigits=0 PasswordAlpha=0 PasswordEmail=0 PasswordLowerUpper=0 PasswordLetterDigit=0 PasswordSpeciaChar=0 ProxyActivate=10 ProxyRatio=4 ProxyCombo=0 WaitTime=5 BanWindowWidth=1 BanWindowRatio=10 BanWindowProxies=10 blnNoProxies=1 HTTPHeader=<ACTION> <FORM ACTION> <HTTP VERSION>|Accept: */*|User-Agent: <USER AGENT>|Host: <HOST>|Pragma: no-cache|Connection: keep-alive| RequestMethod=2 Referer=0 POSTData=user_session%5Busername%5D=<USER>&user_session%5Bpassword%5D=<PASS>&utf8=%26%23x2713%3B&authenticity_token=u%2BsEtFR1mxQ7Qw8kuUOr36Ux7XNC2TKxI5ywsySDU8DEFza6h1hh0tf57wwciQ2cDqk1rBKO8NoQX5ywrum0Jw%3D%3D&user_session%5Bsource%5D=%2F&commit=Login [Fake] AfterFP=1 blnSuccess=0 SuccessRetries=3 blnProcessErrors=0 blnCompleteNot=1 EnableConHits=0 ConHits=0 FollowRedirect=1 EnableConLength=0 ConLength=-1 SourceTags=1 UserField=0 HTTPFollow=1 blnForbToOK=0 ForbToOkLength=1000 blnBadOcrCode=0 BadOcrCodeRetries=3 [Keywords] EnableHeaderSuccess=0 EnableHeaderBan=0 EnableHeaderFail=0 EnableHeaderRetry=0 HeaderSuccess= HeaderBan= HeaderFail= HeaderRetry= EnableGlobalSourceRetry=1 EnableSourceSuccess=0 EnableSourceBan=0 EnableSourceFail=1 EnableSourceRetry=0 SourceSuccess= SourceBan= SourceFail=Wrong password SourceRetry= [Form] IAParse=0 LoginPostData= LoginMethod=1 LoginHeader=0 Action=https://bitzino.com/user_session Username=user_session%5Busername%5D Password=user_session%5Bpassword%5D Email= AddData=utf8=%26%23x2713%3B&authenticity_token=u%2BsEtFR1mxQ7Qw8kuUOr36Ux7XNC2TKxI5ywsySDU8DEFza6h1hh0tf57wwciQ2cDqk1rBKO8NoQX5ywrum0Jw%3D%3D&user_session%5Bsource%5D=%2F&commit=Login CustomData= NoIndex= Cookie=_bitzino_session=d1Rwa0VCUi9PdlNEN2d5THhmamlCSmFxTUJxdCtDMDF4bit6emZCVUhHS0JpQ1dRSjNDT2p4Z0NlVmQ1YjhPSmlweXpNblUxbG13djhrdzAzcGJYUlRSVWJ6YUQwd1U2alRWdUcxcFBBZWR1REtualp6b0xPVEdlTVYwRUt5eXFnOGRsRk54YXE4VDBMVDBlUCttRVZCL3UyYUVvMGRCS3RNMW9JdXFuUlBQOWJsZXBBYStEL3hma2Z2MVJBVWVKRWtKWFMwTFE1d3lJM0dDWWhrT0h3QT09LS1mTUlsU3BhVlJmcDRjMksxeloveXJnPT0%3D--4ee90db2add2b39d924f5606f0846efe63928af9 IAction=-1 IUser=-1 IPass=-1 IEmail=-2 ICaptcha=-1 ReqReferer= ReqCookie= AjaxURL= AjaxPOSTData= AjaxData= AjaxParsingCode= RefData= ParsingCode= FormRedirectUrl= RedPostData= RedKeys= DataDesc= CaptureParsingCode= RefreshSession=0 RefreshCookie=1 FormHeader=0 AjaxHeader=0 RedHeader=0 IAMethod=2 POSTMethod=2 RedMethod=1 ImageAfterAjax=0 blnBasic=0 FollowRedirectsOnIA=0 FollowRedirectsOnRed=1 [Ajax] Variables=token||Login Page||None||Costant||authenticity_token=||&||None||ParsingCode||<meta name="csrf-token" content="|" />|#00|#00|0|#00|#00|0||-1||-1||0||0||0||0 PostElements2=None&&None&&None&&None&&None&&None&&None&&None&&token&&None&&None&&None&&None&&None&&None RedURL= [OCR] OCRMode=0 URLMode=0 ImageURLID=|| Captcha= OCRKey= RefreshCaptcha=0 blnContrast=0 blnBrightness=0 blnSaturation=0 blnThreshold=0 blnInvert=0 blnNoise=0 blnIsolate=0 blnResize=0 blnBorder=0 blnCharExtract=0 blnRemoveColors=0 blnStringFilter=0 blnLetter=1 blnDigits=1 blnBlur=0 blnReconstruct=0 blnLower=0 blnUpper=0 blnRemoveLines=0 blnMultiChar=0 blnCharTable=0 blnPalette=0 blnCharResize=0 blnCharSubExtraction=0 blnThreeImages=0 blnGif=0 blnCompute=0 blnBorderPre=0 Contrast=0 Brightness=0 Saturation=0 Threshold=0 Noise=1 Isolate=1 Resize=2 BorderLeft=0 BorderTop=0 BorderRight=0 BorderBottom=0 CharExtractMinBlack=0 CharExtractMaxBlack=1 CharExtractMinWidth=1 CharRotateMax=0 CharRotateSteps=5 MinLength=1 MaxLength=10 BlurRadius=1 CharExtractMaxWidth=33 CharWidthMinBlack=2 CharSpace=1 Range=0 InvertDensity=0 InvertLength=20 LineCurvatureMax=4 LineWidthMax=13 CharResize=1 CharHeight=13 GifStart=2 GifOffset=2 BorderLeftPre=0 BorderTopPre=0 BorderRightPre=0 BorderBottomPre=0 CharBorderH=5 CharBorderV=5 CharRotateBorder=5 CharExtractMinHeight=1 VerticalRejoin=30 CharExclude= SpecialChars= Colors= Colors2= Lines=Min Length: 2, Max Width: 5, Horizzontal Language=eng
     
  2. Flooky

    Flooky Well-Known Member Legacy

    Messages:
    2,014
    Likes:
    1,600
    Ratio:
    0.77
    sidorovcash likes this.
  3. Tarwin

    Tarwin Advanced Member

    Messages:
    381
    Likes:
    314
    Ratio:
    3.09
    Damm you enabled update session cookie
     
    Luxor likes this.
  4. Trinity

    Trinity Banned

    Messages:
    253
    Likes:
    35
    Ratio:
    0.01
    I don't have a working account what did I do wrong? Can you give me the ini?
     
  5. Sam_03

    Sam_03 Member

    Messages:
    445
    Likes:
    250
    Ratio:
    0.04
    you don't need to setup any var for this site !
    just paste this cookie in Session cookie field and do not tick at refresh cookie because this cookie don't needed to be updated or refreshed !

    _bitzino_session=UTZDWDNTVFYzSzNsK2l3bzNvVC9tOTBMTGhnVXZ0Q1ByLzR0MWdTa25ZWUtMdE9sdG5ZTEhsbW4wWnlFUm5LSkhPT2l6T3pvUGhZaTE3eEs2SG5PU3BpZCtwNEdKR1NwMzVnSng0dXlEZEY0ZElWS1JNOFZEMDRycGN2Q3VLdkVwL2JBWVFRV0ZoUFd4cFZRWHRYN3pHMDA0ZCtmd0YyZHFOZHludlBCeXZqV0dVb2RxVW0ycTQ3ZTZPTGczVzZwVnVtdHJDVXVXTzc4Z1RIZ0lSOXJrY213bXBlS2xldFZUQWVjaUtqbVFrSVB3dmwvNTVxeWhZY3NPOWJjbitlc2FnbExKeEZ4cHNSMmFtc0d3b0tWWERqekZ0djZka3BQZ2EzdGl4S1FlQnc9LS05UEFYYlBkQ0dKZWJpeFBEMmp0V2lnPT0%3D--476b8c42064ef369e1ec8a66c2c5aa3713c172a9
    and setup post data with this
    utf8=%E2%9C%93&authenticity_token=hBKpq9E7C4UGtGyIZHDY3Yy0Ww%2BFlEOncuKUkwx8zDY0%2FxWN58ayvRDci55J0vbPg3Us56gC3jYKxvk02THtIw%3D%3D&user_session%5Bsource%5D=%2F&user_session%5Busername%5D=&user_session%5Bpassword%5D=&commit=Login

    authenticity token update is not needed ! :)
     
  6. Sam_03

    Sam_03 Member

    Messages:
    445
    Likes:
    250
    Ratio:
    0.04
    you can create a free account on that site and setup capture.
     

Share This Page