How to find the admin panel
by HunterBiden_G4ngSt4 - Sunday July 7, 2024 at 02:16 PM
Breached
Member
Posts: 30
Threads: 1
Joined: Jun 2024
Reputation: 0
#1
07-07-2024, 02:16 PM
Greetings, everyone. I tried to find admin panels on several major websites with admin creds, but unfortunately didn't get good results.

In most cases, phasers or web vulnerability scanners that include admin panels search (e.g. invicti scanner) are excellent for this task.

In my case, the sites are self-written, I tried all the classic methods: Fuzzing, scanners, brute force, studying the source code in the client part, google docs, git hub.  How else can you try to find the authorization page in the admin panel?
Reply
king of larps
user_7415
Posts: 206
Threads: 44
Joined: Jun 2023
Reputation: 1,761

Shoutbox AddictCoderWeeb
#2
07-07-2024, 02:17 PM
scraping the site, probably
Website
Reply
Breached
Member
Posts: 30
Threads: 1
Joined: Jun 2024
Reputation: 0
#3
07-07-2024, 02:20 PM
Ran the maximum number of pages through Burp, watched stake, files - nothing.
I know that sometimes panels can be hosted at other addresses for security reasons, I'd like to know how to look for them in that case, other than trying to fish out the address using social engineering
Reply
Banned

Posts: 111
Threads: 1
Joined: Feb 2024
Reputation: 0
#4
07-08-2024, 05:17 AM
(07-07-2024, 02:20 PM)HunterBiden_G4ngSt4 Wrote: Ran the maximum number of pages through Burp, watched stake, files - nothing.
I know that sometimes panels can be hosted at other addresses for security reasons, I'd like to know how to look for them in that case, other than trying to fish out the address using social engineering

did you try also dirb. nikto, gobuster, stuff like that?
This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Leeching | http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.
Reply
Breached
Member
Posts: 30
Threads: 1
Joined: Jun 2024
Reputation: 0
#5
07-08-2024, 10:41 AM
(07-08-2024, 05:17 AM)ent3r Wrote:
(07-07-2024, 02:20 PM)HunterBiden_G4ngSt4 Wrote: Ran the maximum number of pages through Burp, watched stake, files - nothing.
I know that sometimes panels can be hosted at other addresses for security reasons, I'd like to know how to look for them in that case, other than trying to fish out the address using social engineering

did you try also dirb. nikto, gobuster, stuff like that?

Yeah, I told you I've tried both web application vulnerability scanners and bruteforce.
I think the admin panel is at a different address, but it is somehow connected to the website, so there must be a way to find out its address technically, not socially. Perhaps you should sparse the site pages and files more thoroughly and examine the source code.
Reply
Breached
Member
Posts: 30
Threads: 1
Joined: Jun 2024
Reputation: 0
#6
07-11-2024, 05:32 PM
up up up up up up up up up up up up up up up up up up up up up up up up up up up up reply here
Reply
Breached
Member
Posts: 30
Threads: 1
Joined: Jun 2024
Reputation: 0
#7
07-30-2024, 02:42 PM
up up up up up up up up up up up up up up up up up up up up up up up up up up up up reply here
Reply
Breached
Member
Posts: 1
Threads: 0
Joined: Jul 2024
Reputation: 0
#8
07-30-2024, 09:44 PM
send me the website you are talking about
Reply
Breached
Member
Posts: 30
Threads: 1
Joined: Jun 2024
Reputation: 0
#9
01-11-2025, 01:24 PM
up up up up up up up up up up up up up up up up up up up up up up up up up up up up reply here
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Do people find success in selling stealer logs? persondc17 1 992 12-05-2024, 09:09 PM
Last Post: d133l3

Forum Jump:


 Users browsing this thread: 2 Guest(s)