Dark Angel Index du Forum
Dark Angel
Hacking and Reverse
 
Dark Angel Index du ForumFAQRechercherS’enregistrerConnexion

:: Shelling ::

 
Poster un nouveau sujet   Répondre au sujet    Dark Angel Index du Forum -> Hacking -> WebApps
Sujet précédent :: Sujet suivant  
Auteur Message
Karl
Membre
Membre

Hors ligne

Inscrit le: 23 Nov 2009
Messages: 108

MessagePosté le: Jeu 7 Jan - 06:23 (2010)    Sujet du message: Shelling Répondre en citant

Ok This is my first tute in this forum..So sory about my mistakes here..

This is a basic methode we can use to deface websites.
Here we upload a file to victim website and that file will help us to deface it

These files called Shells..Basicly Shell is a PHP file.When we run that php file on a sever it will give us some permissions like delete files or upload files..Shells can do lot of things

The problem is how we going to upload it to victims sever??
here we can do some basic things to upload it..

As we are just going to learn or understand this we select a website that let us to upload files to the sever.Some websites use scripts to upload files..So users or Admin can upload files easily.And we can use the same method.

Now we search for those upload scripts using google..Use this dork to search

inurl:upload.php

So google will search for upload.php files.here we go..We got some sites .. select one

Most sites will let you upload images..

Actualy we can't upload our shell as shell.php..Coz most of upload scripts will not let you to upload php,,But you can upload it as some othe file..Like image file

Rename your shell.php file to shell.php.gif

or you can just use any image format

After uploading search the uploaded file..Most sites will show you the uploaded image.So you wil see a blank image as you just uploaded a php script , not a image..
How ever find the path to the uploaded file.If the site shows the uploaded image then right click on it and "copy image url"..then paset in your browser and pess enter,,,this will load your image..
In this case it will load your shell...

In some severs this will not work..But try some diferent web sites..shell will load up in some severs..

The importent things to remember is that you should rename your shell as shell.php.gif

And you should find the right image path..I mean the direct path.. like http://www.site.com/images/upload/shell.php.gif

if you can't see the uploaded file find it by browsing folders.

First try the image folder http://www.site.com/images

Like that type some folder names and try to find out..Or just use your brain


Here are some shells.. these are the most common shells in use..

http://hotfile.com/dl/12341515/fc5ba08/Shells.rar.html
(password: ZonTalolz )

File Uploader

http://hotfile.com/dl/16934478/e020841/file_uploader.rar.html


Revenir en haut
Publicité






MessagePosté le: Jeu 7 Jan - 06:23 (2010)    Sujet du message: Publicité

PublicitéSupprimer les publicités ?
Revenir en haut
Montrer les messages depuis:   
Poster un nouveau sujet   Répondre au sujet    Dark Angel Index du Forum -> Hacking -> WebApps Toutes les heures sont au format GMT + 1 Heure
Page 1 sur 1

 
Sauter vers:  

Index | Panneau d’administration | créer forum | Forum gratuit d’entraide | Annuaire des forums gratuits | Signaler une violation | Conditions générales d'utilisation
HalloweenOclock © theme by larme d'ange 2006
Powered by phpBB © 2001, 2005 phpBB Group
Traduction par : phpBB-fr.com