Hi All,
It’s been a long time haven’t write any security post but I have come up with a security issue on HP ALM Product 11.
While testing HP ALM Product's latest version I have found that the password encryption used by the Web Application was weak. I was able to break the Password encryption logic.
What is Encryption?
In cryptography, encryption is the process of encrypting messages or information in such a way that only authorized parties can read it.
Below is the explanation for it.
Assume, we enter password 111111111111 &amp; 222222222222 and capture the request in BurpSuite. We can see the encrypted password in the below screenshot (Figure 2 &amp; 3):
Breaking the Encryption Logic<img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1646124901043/9RPJysYkg.jpg" alt="Screen Shot 2022-03-01 at 12.53.34 PM.jpg" />
After comparing them, we can conclude that the encryption key.
For Example:
<ul>
<li>For understanding the algorithm let us take a simple password 1234</li>
<li>As 1 character of 1234 is 1 the encrypted value of it is</li>
<li>131(Encrypted Key Value for 1stChar) + 1= 132</li>
<li>Now we will take 2 characters of 1234 which is 2 the encrypted value of it</li>
<li>157(Encrypted Key Value for 2ndChar)+ 2=159</li>
<li>And so on…</li>
</ul>
<img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1646124914297/F1u8s12aU.jpg" alt="Screen Shot 2022-03-01 at 12.54.17 PM.jpg" />
Below is the screenshot for the analysis:
<img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1646124719637/oo4EZlFxt.jpeg" alt="Encyrpted-Value.jpeg" />
<img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1646124728703/3mlj2eX5O.jpeg" alt="Encyrpted-Value-2-.jpeg" />
<img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1646124750755/0r-Nmfvfy.jpeg" alt="Breaking-the-Encryption.jpeg" />
I have reported this issue to HP as responsible disclosure.
Happy Bounty Hunting

Hi All,

It’s been a long time haven’t write any security post but I have come up with a security issue on HP ALM Product 11.

While testing HP ALM Product's latest version I have found that the password encryption used by the Web Application was weak. I was able to break the Password encryption logic.

**What is Encryption?**

In cryptography, encryption is the process of encrypting messages or information in such a way that only authorized parties can read it.

Below is the explanation for it.
Assume, we enter password 111111111111 & 222222222222 and capture the request in BurpSuite. We can see the encrypted password in the below screenshot (Figure 2 & 3):

**Breaking the Encryption Logic**![Screen Shot 2022-03-01 at 12.53.34 PM.jpg](https://cdn.hashnode.com/res/hashnode/image/upload/v1646124901043/9RPJysYkg.jpg)
 
After comparing them, we can conclude that the encryption key.

For Example:
- For understanding the algorithm let us take a simple password 1234
- As 1 character of 1234 is 1 the encrypted value of it is
- 131(Encrypted Key Value for 1stChar) + 1= 132
- Now we will take 2 characters of 1234 which is 2 the encrypted value of it
- 157(Encrypted Key Value for 2ndChar)+ 2=159
- And so on…

![Screen Shot 2022-03-01 at 12.54.17 PM.jpg](https://cdn.hashnode.com/res/hashnode/image/upload/v1646124914297/F1u8s12aU.jpg)

Below is the screenshot for the analysis:
![Encyrpted-Value.jpeg](https://cdn.hashnode.com/res/hashnode/image/upload/v1646124719637/oo4EZlFxt.jpeg)
![Encyrpted-Value-2-.jpeg](https://cdn.hashnode.com/res/hashnode/image/upload/v1646124728703/3mlj2eX5O.jpeg)
![Breaking-the-Encryption.jpeg](https://cdn.hashnode.com/res/hashnode/image/upload/v1646124750755/0r-Nmfvfy.jpeg)

I have reported this issue to HP as responsible disclosure.

Happy Bounty Hunting


Decrypting Password Encryption -HP ALM Product 11

Information Security Knowledge by Vinesh Redkar to share some experiences and real-life security vulnerabilities.

Vinesh Redkar's blog

Vinesh Redkar's blog

Decrypting Password Encryption -HP ALM Product 11