WAP Challenge 5: Brute forcing Digest Authentication
Writeup for WAP challenge 5 from pentester academy
In the last article we saw how can we actually brute force HTTP Basic Authentication, this time we will see how we can do the same in a Digest based Authentication. If you are not already familiar with Digest based authentication, I strongly recommend you to read more about it and then continue with this article. The key difference here is that for an HTTP basic authentication we can simply pass on different username:password combinations and it passes in plain text through the network. But for a digest based auth, encryption is being introduced so that hackers cannot eavesdrop on the communication between you and the server.
Lets us look into the script.
As you can see, we used the urllib module in python 3.4 to create an authhandler which handles the HTTP Digest Authentication along with the password, url and other things. As you can read from the Wikipedia that an md5 hashing is done using the nounce, url, password etc but when we automate this in python, urllib will take care of everything for us. We don’t need to bother about it.
If you find a better way to complete this or if you are facing any issues regarding to this challenge, don’t hesitate to drop a comment.