http://www.gorkhali....al/download.htm
this page can`t be found
Sponsored by: â–ˆ Sparkhost - Hosting Without Compromises! â–ˆ Hybrid Performance Web Hosting â–ˆ Spark Host Stream Hosting â–ˆ Hybrid IRC & IRCd Server Shell Accounts
Tutorials.
Started by
Guest_Jay_*
, Feb 02 2004 12:18 PM
67 replies to this topic
#64
WalocK
-
- Members
-
- 5 posts
Private
Posted 20 February 2008 - 06:42 AM
hey i just learned to use a keylogger
ill give a tut for you on it
download ardamax keylogger because that's not being detected by many av 's then after installing it enter registration
*search google*
then start remote installation
append it 2 any file(.jpeg) i reccomend.
to fool the victim
chek/unchek options as your requirement
if all goes well
you will have a install.exe file
when a victim double clicks it he gets bugged
but many are not fooled because it has .exe extension
so u can apply this trick>*
put install.exe and any xx.jpg
in a folder then create shortcut forboth
copy shortcut address of .exe and paste it in properties of .jpeg(shortcut file) then del .exe shortcut file
and del original .jpg file
rename your jpg file
make .exe file hidden
and bingo
u will have a shortcut to an exe with jpeg extension
send the folder to victim
***hope you like my 1st tut on using a keylogger********
ill give a tut for you on it
download ardamax keylogger because that's not being detected by many av 's then after installing it enter registration
*search google*
then start remote installation
append it 2 any file(.jpeg) i reccomend.
to fool the victim
chek/unchek options as your requirement
if all goes well
you will have a install.exe file
when a victim double clicks it he gets bugged
but many are not fooled because it has .exe extension
so u can apply this trick>*
put install.exe and any xx.jpg
in a folder then create shortcut forboth
copy shortcut address of .exe and paste it in properties of .jpeg(shortcut file) then del .exe shortcut file
and del original .jpg file
rename your jpg file
make .exe file hidden
and bingo
u will have a shortcut to an exe with jpeg extension
send the folder to victim
***hope you like my 1st tut on using a keylogger********
#65
julesv
-
- Members
-
- 6 posts
Private
Posted 03 December 2008 - 10:50 AM
Hello! This is my first tutorial and I hope it will be informative.
1. Getting to the admin Control Panel
2. Uploading shell
3. Messing... =)
We will call the website 'xxxxx.com for the purposes of this website.
--Part 1--
-First we must find a vulnerable host. All versions of Joomla! are vulnerable until next release, but there is a way you can prevent this attack. We will google dork around for a vulnerable website.
Google d0rk ----> intext:"Welcome to the Frontpage"
Now, we choose: xxxxx.com
To test if it is vulnerable we put this at the end of the url:
index.php?option=com_user&view=reset&layout=confirm
enter the character:
'
as the token. If all went well you should be redirected to a page where you can change the admin password. Now go back to xxxxx.com and add:
/administrator
to the end of the url. Try and login with admin (the default) as the user and the changed pass. I f it didn't work, it means you have the wrong username. This could become a very big guessing game =). I would suggest visiting the forums and looking for the admin username.
Finally! We are on the admin Control Panel of xxxxx.com! Time to upload shell...
--Part 2--
Now click on the
Settings
icon.Then click on the
System
tab. Now scroll to the bottom of the page and disable
Check mime types
File controlling
and add php as a legal file extension. Now get your php shell, I will use locus7s (a variant of c99) as my shell. You can get these shells anywhere. Save it as a php file on your disk. Now go back to the main Control Panel and go to the
Medias
and browse your shell from your computer press upload and wait for it to finish. When it says
Completed
you may proceed to the messing section =)...
--Part 3--
Now go back to xxxxx.com and add
/images/yourshell.php (replace yourshell.php by the name of the shell you uploaded. I would recommend giving your shell a secret name, otherwise people will re-access your shell.)
Now you should be on the shell interface. This might look kind of messed up when you are a beginner, but don't worry...
Click on the folder icon that says
..
Now go to
index.php
and press the
[write]
or the button on the far right above the text box. Now you may edit the front page =). Don't forget to press the
[save]
button.
Last but not least, go back to the main shell interface and click the
..
button and now go to
[logs]
and click on
errors.php
Now clear the bottom part with your IP and click
Save
Now you're clear to leave =).
Have fun...
--Created by julesv
1. Getting to the admin Control Panel
2. Uploading shell
3. Messing... =)
We will call the website 'xxxxx.com for the purposes of this website.
--Part 1--
-First we must find a vulnerable host. All versions of Joomla! are vulnerable until next release, but there is a way you can prevent this attack. We will google dork around for a vulnerable website.
Google d0rk ----> intext:"Welcome to the Frontpage"
Now, we choose: xxxxx.com
To test if it is vulnerable we put this at the end of the url:
index.php?option=com_user&view=reset&layout=confirm
enter the character:
'
as the token. If all went well you should be redirected to a page where you can change the admin password. Now go back to xxxxx.com and add:
/administrator
to the end of the url. Try and login with admin (the default) as the user and the changed pass. I f it didn't work, it means you have the wrong username. This could become a very big guessing game =). I would suggest visiting the forums and looking for the admin username.
Finally! We are on the admin Control Panel of xxxxx.com! Time to upload shell...
--Part 2--
Now click on the
Settings
icon.Then click on the
System
tab. Now scroll to the bottom of the page and disable
Check mime types
File controlling
and add php as a legal file extension. Now get your php shell, I will use locus7s (a variant of c99) as my shell. You can get these shells anywhere. Save it as a php file on your disk. Now go back to the main Control Panel and go to the
Medias
and browse your shell from your computer press upload and wait for it to finish. When it says
Completed
you may proceed to the messing section =)...
--Part 3--
Now go back to xxxxx.com and add
/images/yourshell.php (replace yourshell.php by the name of the shell you uploaded. I would recommend giving your shell a secret name, otherwise people will re-access your shell.)
Now you should be on the shell interface. This might look kind of messed up when you are a beginner, but don't worry...
Click on the folder icon that says
..
Now go to
index.php
and press the
[write]
or the button on the far right above the text box. Now you may edit the front page =). Don't forget to press the
[save]
button.
Last but not least, go back to the main shell interface and click the
..
button and now go to
[logs]
and click on
errors.php
Now clear the bottom part with your IP and click
Save
Now you're clear to leave =).
Have fun...
--Created by julesv
#66
Kashif Aziz Awan
-
- Members
-
- 3 posts
Private
Posted 28 October 2009 - 11:17 AM
thnx
Edu: no thanks! warned!
Edu: no thanks! warned!
www.kashifaziz.co.cc
kashifaziz.4shared.com
www.apnacns.co.cc
kashifaziz.4shared.com
www.apnacns.co.cc
#67
wardy1967
-
- Members
-
- 1 posts
Private
Posted 25 November 2009 - 01:23 PM
Hi All,
In relation to a tut.
Get a Pc, fresh install of xp service pack 1.
Download Metasploit framework and install it.
Go to cmd and run as admin. c:\msf3
then - c:\msfweb.bat
This loads all the exploits currently available.
Then it will load into a FIREFOX not ie please.
The select any of the xp exploits, you will be guided to the next phase.
Then select a payload, then run it against the xp box.
Once you are in using a vnc reverse you can play around, then reboot
You must reboot after every attack to reset the memory or you sit there for hours trying it again (i did it too)
Install service pack 2 and try some more hacks.
On to service pack 3 and then when you are done on to windows 2000
There are linux, mac, and other bofs and of you can set up a hacking lab, still doing that myself so can't advise you there.
Don't run this on any one elses box as it is a criminal offence and you will be arrested and face charges under the computer crimes act.
Have fun learn the craft and if youre a criminal hacker then get arrested and enjoy the time with Mr Big!!
If not get Nmap, Netcat, nessus, Backtract 4 excellent kit.
Backtrack 4 runs on Ubuntu and you'll learn about linux as you play.
Wardy1967
EDIT: Removed possible SPAM, wD
In relation to a tut.
Get a Pc, fresh install of xp service pack 1.
Download Metasploit framework and install it.
Go to cmd and run as admin. c:\msf3
then - c:\msfweb.bat
This loads all the exploits currently available.
Then it will load into a FIREFOX not ie please.
The select any of the xp exploits, you will be guided to the next phase.
Then select a payload, then run it against the xp box.
Once you are in using a vnc reverse you can play around, then reboot
You must reboot after every attack to reset the memory or you sit there for hours trying it again (i did it too)
Install service pack 2 and try some more hacks.
On to service pack 3 and then when you are done on to windows 2000
There are linux, mac, and other bofs and of you can set up a hacking lab, still doing that myself so can't advise you there.
Don't run this on any one elses box as it is a criminal offence and you will be arrested and face charges under the computer crimes act.
Have fun learn the craft and if youre a criminal hacker then get arrested and enjoy the time with Mr Big!!
If not get Nmap, Netcat, nessus, Backtract 4 excellent kit.
Backtrack 4 runs on Ubuntu and you'll learn about linux as you play.
Wardy1967
EDIT: Removed possible SPAM, wD
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
