kali ini gw mau share tutor simple buat newbie kek gw :'v
deface metode fckeditor
metode ini mengandalkan bug pada uploadtest.html (sok tau)
langsung saja menuju ke tkp
Seperti biasa. pertama kita dorking dulu dengan dork di bawah
/fckeditor/editor/filemanager/connectors/php/connector.php
/fckeditor/editor/filemanager/browser/default/connectors/asp/connector.asp
/fckeditor/editor/filemanager/browser/default/connectors/php/connector.php
/fckeditor/editor/filemanager/browser/default/connectors/aspx/connector.aspx
/includes/fckeditor/editor/filemanager/browser/default/connectors/aspx/connector.aspx
/includes/fckeditor/editor/filemanager/connectors/aspx/upload.aspx
/lists/admin/FCKeditor/editor/filemanager/connectors/uploadtest.html
/assets/admin/fckeditor/editor/filemanager/connectors/uploadtest.html
/admin/fckeditor/editor/filemanager/browser/default/connectors/asp/connector.asp
/admin/fckeditor/editor/filemanager/browser/default/connectors/aspx/connector.aspx
/admin/fckeditor/editor/filemanager/browser/default/connectors/php/connector.php
/admin/fckeditor/editor/filemanager/connectors/asp/connector.asp
/admin/fckeditor/editor/filemanager/connectors/asp/upload.asp
/admin/fckeditor/editor/filemanager/connectors/aspx/connector.aspx
/admin/fckeditor/editor/filemanager/connectors/aspx/upload.aspx
/admin/fckeditor/editor/filemanager/connectors/php/connector.php
/includes/fckeditor/editor/filemanager/browser/default/connectors/asp/connector.asp
/includes/fckeditor/editor/filemanager/browser/default/connectors/php/connector.php
/admin/fckeditor/editor/filemanager/browser/default/connectors/aspx/connector.aspx
/admin/fckeditor/editor/filemanager/browser/default/connectors/asp/connector.asp
/includes/fckeditor/editor/filemanager/browser/default/connectors/asp/connector.asp
/includes/fckeditor/editor/filemanager/browser/default/connectors/aspx/connector.aspx
/includes/fckeditor/editor/filemanager/browser/default/connectors/php/connector.php
/includes/fckeditor/editor/filemanager/connectors/asp/connector.asp
/includes/fckeditor/editor/filemanager/connectors/asp/upload.asp
/admin/fckeditor/editor/filemanager/browser/default/connectors/php/connector.php
/admin/fckeditor/editor/filemanager/connectors/aspx/connector.aspx
/admin/fckeditor/editor/filemanager/connectors/asp/connector.asp
/admin/fckeditor/editor/filemanager/connectors/php/connector.php
/admin/fckeditor/editor/filemanager/connectors/aspx/upload.aspx
/admin/fckeditor/editor/filemanager/connectors/asp/upload.asp
/admin/fckeditor/editor/filemanager/connectors/php/upload.php
/admin/fckeditor/editor/filemanager/upload/aspx/upload.aspx
/admin/fckeditor/editor/filemanager/upload/asp/upload.asp
/admin/fckeditor/editor/filemanager/upload/php/upload.php
/ckeditor/ckfinder/core/connector/asp/connector.asp
/ckeditor/ckfinder/core/connector/php/connector.php
/ckeditor/ckfinder/core/connector/aspx/connector.aspx
/includes/fckeditor/editor/filemanager/connectors/aspx/connector.aspx
/includes/fckeditor/editor/filemanager/connectors/aspx/upload.aspx
/includes/fckeditor/editor/filemanager/connectors/php/connector.php
/includes/fckeditor/editor/filemanager/connectors/php/upload.php
/includes/fckeditor/editor/filemanager/upload/asp/upload.asp
/includes/fckeditor/editor/filemanager/upload/aspx/upload.aspx
/includes/fckeditor/editor/filemanager/upload/php/upload.php
/fckeditor/editor/filemanager/connectors/aspx/upload.aspx
/fckeditor/editor/filemanager/connectors/asp/upload.asp
/fckeditor/editor/filemanager/connectors/php/upload.php
/fckeditor/editor/filemanager/upload/aspx/upload.aspx
/fckeditor/editor/filemanager/upload/asp/upload.asp
/fckeditor/editor/filemanager/upload/php/upload.php
/includes/fckeditor/editor/filemanager/connectors/asp/upload.asp
/includes/fckeditor/editor/filemanager/connectors/php/upload.php
/includes/fckeditor/editor/filemanager/upload/aspx/upload.aspx
/includes/fckeditor/editor/filemanager/upload/asp/upload.asp
/includes/fckeditor/editor/filemanager/upload/php/upload.php
/includes/fckeditor/editor/filemanager/connectors/aspx/connector.aspx
/includes/fckeditor/editor/filemanager/connectors/asp/connector.asp
/includes/fckeditor/editor/filemanager/connectors/php/connector.php
banyak kan ? :'v kalo kurang banyak, kembangin sendiri
setelah dapet target buka www.target.co.id/bla/bla/bla/bla/uploadtest.html
nanti akan muncul penampakannya seperti ini
kemudian atur seperti ini
sekaligus upload script deface kalian . script berformat *.txt ya . kemudian klik send it to the server ..
buka link yang muncul .. dan tara ..
gampang bukan ? ^^
Sekian tutor dari gw
jika ada yg di tanyakan silahkan join grup secghost disini
1 comments:
Click here for commentsmantap
ConversionConversion EmoticonEmoticon