GitXplorerGitXplorer
d

was_xor_decode

public
6 stars
4 forks
0 issues

Commits

List of commits on branch master.
Unverified
0991b539ef9162ac61e9e151f243375fbf02c626

Added command to find passwords

ddigital-shokunin committed 8 years ago
Unverified
b9d03c138cad36e531dfcf86d774f58638ade90d

Update README.md

ddigital-shokunin committed 11 years ago
Unverified
186799573e537ffe675871ecff772ad915f679de

Update README.md

ddigital-shokunin committed 11 years ago
Unverified
2e7fd68308479f828c59a59301f7be7d853ae7b5

Update README.md

ddigital-shokunin committed 11 years ago
Unverified
210d274510a414b66976e8dd4a34252126710846

Update README.md

ddigital-shokunin committed 11 years ago
Unverified
971818c7a47a98eae309f97c26172c0fec295639

Update README.md

ddigital-shokunin committed 11 years ago

README

The README file for this repository.

was_xor_decode

Decodes xor'ed passwords stored in the security.xml for Websphere Application Server (and related products) so you don't have to trust websites with your passwords, which may be blocked at your workplace anyway.

Can be run in python or wsadmin.sh using jython

###Usage:

xor_decode.py <xor string>

Example: wsadmin.sh -lang jython -f xor_decode.py {xor}Lz4sLCgwLTs=

or

Example: python xor_decode.py {xor}Lz4sLCgwLTs=

###Command to easily find passwords(on Unix/Linux):

ps -eaf |grep java |grep com.ibm.ws | awk '{for(i=1;i<=NF;i++){if ($i ~ /user\.install\.root/){print $i}}}' | awk -F'=' '{print $2}' |xargs -I % find % -name "security.xml" -exec grep {xor} '{}' \; | awk '{for(i=1;i<=NF;i++){if ($i ~ /password/){print $i}}}'