Professional Documents
Culture Documents
First of all you need a target website. (Google & find one)
Code:
http://www.selfseo.com/find_ip_address_of_a_website.php
Next thing you need to do is find out is, it online or offline. (Ping)
Go to
Code:
http://www.just-ping.com
Code:
http://whois.domaintools.com
Open Telnet
[Start > RUN > telnet]
Once done type, O <IP> <PORT>
Ex: O 127.0.0.1 21
Once you’ve done that, you’ll get a banner.
This will be displaying all the details of the software running on port.
If this doesn’t work you can try the first method.
Once you’ve got the banner, you need to search for vulnerability matching with
banner.
Exploit databases:
Code:
Injector http://www.inj3ct0r.com/
Milw0rm: http://www.milw0rm.com
Security Focus: http://www.securityfocus.com
Osvdb: http://www.osvdb.org
Cve Mitre: http://cve.mitre.org
Metasploit: http://www.metasploit.com
Once you’ve got the matching exploit of the same version software.
[If you haven’t got, try another port.]
You need to edit values, compile & run it.
Perl
For perl exploits, Copy the exploit in notepad & save it with .pl extension.
Download & Install, Active Perl:
Code:
http://www.activestate.com/activeperl
Once done, edit the exploit with notepad & double click to run it.
PHP
Once done, edit the exploit with notepad & execute it from CMD.
Python
Code:
http://www.python.org/download
Once done, edit the exploit with notepad & double click to run it.
C/C++