Hey there!
Quick question, “is it possible” to hack an pop-up login form?
Like with Hydra?
I think it would be kinda frustrating because you don’t have an clean login page. Just the main.php and then ( where I have seen it - main.php/# ) with the js popup.
Maybe @MoNsTeR can help here? ^^
Greetings.
@Znap
Good question. Although I haven’t came across this before I would say yes. I would like to help you find out how. Read this topic and tell me what you think. https://security.stackexchange.com/questions/57839/hydra-bruteforce-and-json
Also what tool are you using to capture login packet?
I used BS (BurpSuite)