1

I'm currently doing a pentest for a client and I've come across something new to me. When I log in, I view the username/password values in burpsuite and find they are encrypted using Cryptojs. I'm looking at the debugger in the browser and come across this function:

  const encryptParams = parameters=> {
if (parameters) {
  return CryptoJs.AES.encrypt(parameters, process.env.REACT_APP_ENCRYPTION_KEY).toString();
} else {
  return null;
}

I can see that the encryption key is process.env.REACT_APP_ENCRYPTION_KEY, which with my little web development knowledge, is a value stored in a file using the dotenv module. Is there a way I can extract this value on the client side?

More info: I want to bruteforce the login, and I can't do it unless I encrypt the values so the backend can accept the POST request

Crashie
  • 23
  • 4

0 Answers0