12 replies to this topic

[Elessar]

I was wondering whether one could hack his way into cPanel and exploit the security loopholes.

Okay, first of all I would like to clarify my intentions. I have no malicious intention whatsoever and I'm not a hacker, i.e. I dunno any programming languages at all. I have a hosting account at a certain post to host forum, meaning to say, the admin helped me create a cPanel hosting account. I know the username but I dunno the password so I requested it from the admin. He told me and I tried it, but still I can't log into my account. I guess the password's wrong.

Now I'm getting a bit impatient so I wondered if there is a way to basically force my way into MY own cPanel account and change the password from inside out so I could access my cPanel properly the next time I log in. I tried the Brute Force exploit but not sure how that works. I just need to get inside. My question is whether there's a way to force myself inside, more so like a 'thief' trying to break into his own 'house' and opening the lock from inside out.

I hope you get what I mean. Plus, its my own website so I see no harm in trying to hack my own website. Technically speaking, its not even a website yet since I can't log in to cPanel to do anything!

[gisellebebegirl]

Elessar, on Mar 7 2008, 01:21 PM, said:

I was wondering whether one could hack his way into cPanel and exploit the security loopholes.

Okay, first of all I would like to clarify my intentions. I have no malicious intention whatsoever and I'm not a hacker, i.e. I dunno any programming languages at all. I have a hosting account at a certain post to host forum, meaning to say, the admin helped me create a cPanel hosting account. I know the username but I dunno the password so I requested it from the admin. He told me and I tried it, but still I can't log into my account. I guess the password's wrong.

Now I'm getting a bit impatient so I wondered if there is a way to basically force my way into MY own cPanel account and change the password from inside out so I could access my cPanel properly the next time I log in. I tried the Brute Force exploit but not sure how that works. I just need to get inside. My question is whether there's a way to force myself inside, more so like a 'thief' trying to break into his own 'house' and opening the lock from inside out.

I hope you get what I mean. Plus, its my own website so I see no harm in trying to hack my own website. Technically speaking, its not even a website yet since I can't log in to cPanel to do anything!

just request your admirin.. over&over again.. where are you hosted? <b>please everyone do not post</b> if you know a way to hack cpanel.. trap17 is really well placed in google.. so if someone was to google it, the answer will pop up.. so yea.. the whole hacking into cpanel thing is freaky
so yea.. just request it over and over again

[jlhaslip]

Indeed, hacking is not to be discussed here on the Trap17.

Cpanel uses a secure connection, which means everything is encrypted, and other junk, for security, so I doubt that you would be very successful on a Hacking attempt.
Best thing to do is to try the password again, checking that your CAPS LOCK is off, and type a single letter at a time.

If you continue to be denied access, ask the Admin to issue a new password to you.

[Elessar]

Okay. I was just wondering if someone could give a few pointers. I understand that Trap17 is ranked high in Google and the information will be leaked out to other hackers out there.

I always thought it was possible to hack cPanel because there is a script written by an Iranian that could hack by using brute force into a cPanel account.

I will try contacting admin again. Thanks for your help.

[MadDog]

Hacking any account would be a bad mistake, even if you were the owner of said account, the host should pick up the signatures of any of the most commonly used tools, and I doubt very much they would listen to any excuses you may have to offer. (read the T & C of your account). For example if I tried using some well known tools (which shall remain nameless here ), to test the security of my VPS, I am well aware that my server would be shutdown quick smart.
The guys above are right. Just hammer your admin with requests for a password reset, and if theyre still not forthcoming, well, it might be time to find a different host.

[sonesay]

Trying to brute force your way into your own account will do you more harm then any good. I am sure after repetitive connection attempts to the server you will be seen as spam and they will no doubt block your IP resulting in you not being able to access their sites again. This is a bad idea and should never be even considered when all it takes is an administrator to reset your password, much much simpler. Just so you know there was a guy on trap17 that had his account or was it IP address banned from their server because he was running too many active connections on his account. I think he was running some kind of automatic signature update image or something. I cant remember the thread but hopefully you get the idea its not good to make continuous amount of connections that may end up looking like spam.

[iGuest]

HACKING INTO CPanels
Hack Into Cpanel

Hacking any account would be a bad mistake, even if you were the owner of said account, the host should pick up the signatures of any of the most commonly used tools, and I doubt very much they would listen to any excuses you may have to offer. (read the T & C of your account). For example if I tried using some well known tools (which shall remain nameless here wink.Gif ), to test the security of my VPS, I am well aware that my server would be shutdown quick smart.

The guys above are right. Just hammer your admin with requests for a password reset, and if theyre still not forthcoming, well, it might be time to find a different host.

[iGuest]

Cpanel uses a secure connection, it contains a group of software engineers that are responsible for the security side..

for sure these software engineers aren't perfect.. That's why u can work on some decryption tools to hack a certain cPanel account.. But that's danger and illegal.. And cPanel has the right to trace you, block your ip and maybe more... And that's easy for them, it takes around 4 minutes to identify you (your Ip + your postal code)... Unless u re so smart and u re attempting using a secure fake ip..Lool.

cheers

-reply by Johnny Sokhn

[iGuest]

CPanel HackedHack Into Cpanel

Hiya

Any one help cpanel hacked and everytime we upload a new frount page the redirection script appears after saving the template, it appears again in the script!

I have a good guess where it is coming from and who it is, we caught a few people working for a internet provider, since I emailed and warned them if they didnt pay to access the site, this has happened.

I have kept a copy of the IP address and time etc will this help me?

Any help appreciated.

Thanks

Anita

-reply by Anita

[iGuest]

Anita your question is not clear!

u were talking about uploading a front page .. And than u've jumped and start talkn about scripts...

Later on, u have noticed that u have accessed the site.. Which site? and how did u access it?

Cpanel are independant servers... If you have client's ip address , this wont help u.

-reply by Johnny Sokhn