I was wondering whether one could hack his way into cPanel and exploit the security loopholes.

Okay, first of all I would like to clarify my intentions. I have no malicious intention whatsoever and I'm not a hacker, i.e. I dunno any programming languages at all. I have a hosting account at a certain post to host forum, meaning to say, the admin helped me create a cPanel hosting account. I know the username but I dunno the password so I requested it from the admin. He told me and I tried it, but still I can't log into my account. I guess the password's wrong.

Now I'm getting a bit impatient so I wondered if there is a way to basically force my way into MY own cPanel account and change the password from inside out so I could access my cPanel properly the next time I log in. I tried the Brute Force exploit but not sure how that works. I just need to get inside. My question is whether there's a way to force myself inside, more so like a 'thief' trying to break into his own 'house' and opening the lock from inside out.

I hope you get what I mean. Plus, its my own website so I see no harm in trying to hack my own website. Technically speaking, its not even a website yet since I can't log in to cPanel to do anything!

just request your admirin.. over&over again.. where are you hosted? <b>please everyone do not post</b> if you know a way to hack cpanel.. trap17 is really well placed in google.. so if someone was to google it, the answer will pop up.. so yea.. the whole hacking into cpanel thing is freaky
so yea.. just request it over and over again

Indeed, hacking is not to be discussed here on the Trap17.

Cpanel uses a secure connection, which means everything is encrypted, and other junk, for security, so I doubt that you would be very successful on a Hacking attempt.
Best thing to do is to try the password again, checking that your CAPS LOCK is off, and type a single letter at a time.

If you continue to be denied access, ask the Admin to issue a new password to you.

Okay. I was just wondering if someone could give a few pointers. I understand that Trap17 is ranked high in Google and the information will be leaked out to other hackers out there.

I always thought it was possible to hack cPanel because there is a script written by an Iranian that could hack by using brute force into a cPanel account.

I will try contacting admin again. Thanks for your help.

Hacking any account would be a bad mistake, even if you were the owner of said account, the host should pick up the signatures of any of the most commonly used tools, and I doubt very much they would listen to any excuses you may have to offer. (read the T & C of your account). For example if I tried using some well known tools (which shall remain nameless here ), to test the security of my VPS, I am well aware that my server would be shutdown quick smart.
The guys above are right. Just hammer your admin with requests for a password reset, and if theyre still not forthcoming, well, it might be time to find a different host.

Trying to brute force your way into your own account will do you more harm then any good. I am sure after repetitive connection attempts to the server you will be seen as spam and they will no doubt block your IP resulting in you not being able to access their sites again. This is a bad idea and should never be even considered when all it takes is an administrator to reset your password, much much simpler. Just so you know there was a guy on trap17 that had his account or was it IP address banned from their server because he was running too many active connections on his account. I think he was running some kind of automatic signature update image or something. I cant remember the thread but hopefully you get the idea its not good to make continuous amount of connections that may end up looking like spam.

HACKING INTO CPanels
Hack Into Cpanel

Hacking any account would be a bad mistake, even if you were the owner of said account, the host should pick up the signatures of any of the most commonly used tools, and I doubt very much they would listen to any excuses you may have to offer. (read the T & C of your account). For example if I tried using some well known tools (which shall remain nameless here wink.Gif ), to test the security of my VPS, I am well aware that my server would be shutdown quick smart.

The guys above are right. Just hammer your admin with requests for a password reset, and if theyre still not forthcoming, well, it might be time to find a different host.