best methods to hack the target

Par MG -


Salam
today i'll tell youh 
best methods to hack your target in easy way :)
it works 86% times ;)
===========================
1st Meth0d
Reverse Ip
How To Hack Your Target By Reverse Ip Method

it takes time so plz :p

so y0u g0t a target but y0u cant hack it ?

so i have a target lemme try 0n it :P
Our Target funnypaki
now ping your target like
CMD => ping funnypaki.com
Pinging funnypaki.com [63.247.87.162] with 32 bytes of data:
we g0t the ip address
63.247.87.162

open bing.com and type
ip:63.247.87.162 php?id=
now sites hosted on the same server will be listed

now check all the sites one by one for sql injection 

after y0u g0t sql injection vulnerable websh!t
you can upload shell there than y0u can symlink t0 y0ur taregt
===================================================
2nd Method 
Vulnerabilities
Check For Vulnerabilites in y0ur target like
SQL injection 
LFI
RFI 
Upload Vulnerability
Login Form Sql Injection
==================================================

3rd Method
Bruting
Try Bruteforcing The Admin Panel
FTP area
Cpanel
sometimes bruteforce work awesome
you need good bruteforcers so google it :)
=========================================

4th Method
CMS Vulnerability

Check For The CMS Vulnerability
Like
Wordpress
Joomla
vBulletin
MyBB
etc...
they all are vulnerable so you should give a try..
==============================================

5th Method
Upload Forms

Sometimes upload forms takes place
you can upload your shell through upload forms
then check the directories it will work too
=====================================

6th Method
Admin Mistakes

 alot of admins are noobs they dont care about websh!ts
they dont even set good pass 
try to guess password
admin
admin123
administrator
Admin
admin12345
123456
1'or'1'='1
======================================== i hope y0u enjoyed the p0st ;)
i'll also update this thread later so enjoy

Note:For Educaional Purpose Only!

Commentaires

Enregistrer un commentaire

Posts les plus consultés de ce blog

RDP access & Shell uploading trough SQLMAP

Par MG -
Image
Hey Salam Guyz Today i'll tell y0uh  Shell Uploading through SQLmap its very easy if you have few thing ;) -1st- Vulnerable website with full path -2nd- file write privilleges -3rd- sqlmap -4th- Me :D start it open your sqlmap i have sqlmap with its GUI so work becomes very easy :D you can also use sqlmap shell without its GUI just type this ./sqlmap.py -u http:www.site.in/index.php?id=1 --os-shell link to use sqlmap with GUI Here 1st tick on the url box now paste the vulnerable link in target box than click on Get Query and you'll see website appears on the  "Query To Sqlmap box" like in picture Now 0pen "Access" tab in sqlmap than => operating System than => sqlshell and tick sqlshell  then again click on Get query Than click on start button than windows will pop up after 1-2 minutes  it will ask y0u f0r enter Web application Language like in this pic web server ...
Lire la suite

Bypass Symlink (Priv8)

Par MG -
Image
How you can bypass Symlink in linux webserver ? 1/ Create a folder   2/ Upload inside   ".htaccess"     CODE:   Options all DirectoryIndex Sux.html AddType text/plain .php AddHandler server-parsed .php AddType text/plain .html AddHandler txt .html Require None Satisfy Any   3/ Bypass manually ln -s /home/user/public_html/t0ph4cking.txt        Enjoy :D
Lire la suite

How to get alot of Paypal Account's

Par MG -
Image
Hi Guys today i'll show u how to get alot of paypal account's so u can use them to buy something in the net or doing much more things Okay let's Goo first u need to get a mail list with password  - How ? use sqli and access to database u can find mail list u can use havij it easy and help u to do auto sqli u can download havij from here  and here's a list of sqli dork => dork now when u got the maillist+pass u have to check it if has paypal accs so go to paypalchecker and put ur mailist there and socks5 u can get socks5 from here & click check it out EnjoY
Lire la suite