Pages: [1]

Author Topic: Regaining access to a secured website I am still technically logged into.  (Read 474 times)

0 Members and 1 Guest are viewing this topic.

Offline Vingilot

  • NULL
  • Posts: 1
  • Cookies: 0
    • View Profile
Regaining access to a secured website I am still technically logged into.
« on: May 06, 2014, 07:36:28 am »
So I have a slightly weird query, and here's hoping someone may know how to help me out.  I'll try my best to explain.

I was recently let go from my job, which I accessed from home via their corporate portal.  When they laid me off, my home computer was still logged into the system, and as long as I didn't close the window it I was still able to access everything. 

Now, my computer restarted automatically much to my chagrin, and I am lo longer able to view the website on my computer.  However, I regularly accessed the website on my smart phone, and surprisingly I still have access on my phone, since I never signed out there (or plan to).  I can still see schedules and everything on my phone, and it still thinks I am logged in.

My question is this:  is there a way I can use my foot in the door (the site being open on my phone) to regain access on my computer? 
Report to moderator   Logged

Offline proxx

  • Avatarception
  • Global Moderator
  • Titan
  • *
  • Posts: 2803
  • Cookies: 256
  • ФФФ
    • View Profile
Re: Regaining access to a secured website I am still technically logged into.
« Reply #1 on: May 06, 2014, 07:40:23 am »
Well since the ethical nor the offical part is any of my concern.
You probably have a session ID/cookie stored on the phone.
Theoretically the same token can be used/inserted on an other device.
You will need some way of extracting this from the mobile device.
If you proxy your phone through your PC and run something like BURP you might be able to go from there.
However I think , considering your question this might be a big leap from a beginners standpoint.
And if there is one thing we dont do here is spoonfeeding random visitors, either learn and ask if needed or just gtfo.
« Last Edit: May 06, 2014, 07:43:56 am by proxx »
Report to moderator   Logged
Wtf where you thinking with that signature? - Phage.
This was another little experiment *evillaughter - Proxx.
Evilception... - Phage

Offline Kulverstukas

  • Administrator
  • Zeus
  • *
  • Posts: 6627
  • Cookies: 542
  • Fascist dictator
    • View Profile
    • My blog
Re: Regaining access to a secured website I am still technically logged into.
« Reply #2 on: May 06, 2014, 11:25:38 am »
The hardest part in this is extracting the cookie from your phone, can't suggest anything on this because you didn't state your phone model. Importing should be easy, since cookies are standardized.
Report to moderator   Logged

Offline proxx

  • Avatarception
  • Global Moderator
  • Titan
  • *
  • Posts: 2803
  • Cookies: 256
  • ФФФ
    • View Profile
Re: Regaining access to a secured website I am still technically logged into.
« Reply #3 on: May 06, 2014, 12:11:36 pm »
Quote from: Kulverstukas on May 06, 2014, 11:25:38 am
The hardest part in this is extracting the cookie from your phone, can't suggest anything on this because you didn't state your phone model. Importing should be easy, since cookies are standardized.
I think catching it with a HTTP proxy is the universal way to go on this one.
Heck of a lot easier than all sorta crappy apps.
Report to moderator   Logged
Wtf where you thinking with that signature? - Phage.
This was another little experiment *evillaughter - Proxx.
Evilception... - Phage
Pages: [1]