08-12-2008, 04:35 PM
This was made by Starwiz
him lol. But, I think it was a really useful tutorial and should be re posted. It was different when he posted it because he had scanning results but it still useful =P.
*Made by Starwiz*
*Reply if you like it, or if there is something wrong, or, just a comment :P*
First, you want to find out as much about it as you can. So, first, you want to port scan it with nmap (I think its the best port scanner)
So, me example would be.
By the way, that is my school site, hack it if you want to :P
Sometimes, it will say that the site is down, if so, put the -P0 at the end (Its a 0 not a o)
So the example would be.
Alright, now, say that the site has a firewall, so that would mean, that your scan would say 0 open ports :(
But, don't worry. It is still possible to get into the site.
So, next thing you need to do is download netcat
Then, type this is :P
Then, when something pops up, you may need to type
Finally, we have most of what we need.
Next, we telnet to all of the open ports (If you get any)
So, to search for the exploit, I would search SSH then (Ctrl+F) 2.0
I would do that for every port I could find open.
Then, look for some exploits for the server type.
To do that, you would search for the server type and version.
MY ecample would be.
Code:
Apache
Then, (ctrl+f) 1.3.41
Then, edit the exploit so that it works onto your site (The one you are hacking) then compile the exploit, run it.
And, if you get a good exploit, you will get into the root of the website, and be able to edit any part of the site you want.
The sky is the limit.
(I think this should be made sticky again)
him lol. But, I think it was a really useful tutorial and should be re posted. It was different when he posted it because he had scanning results but it still useful =P.*Made by Starwiz*
*Reply if you like it, or if there is something wrong, or, just a comment :P*
First, you want to find out as much about it as you can. So, first, you want to port scan it with nmap (I think its the best port scanner)
Code:
nmap -sT -O -p 1-250 -vv www.thesiteyouwishtohackgoesrighthere.xxxSo, me example would be.
Code:
nmap -sT -O -p 1-250 -vv www.mchs.gsacrd.ab.caBy the way, that is my school site, hack it if you want to :P
Sometimes, it will say that the site is down, if so, put the -P0 at the end (Its a 0 not a o)
So the example would be.
Code:
nmap -sT -O -p 1-250 -vv www.mchs.gsacrd.ab.ca -P0Alright, now, say that the site has a firewall, so that would mean, that your scan would say 0 open ports :(
But, don't worry. It is still possible to get into the site.
So, next thing you need to do is download netcat
Then, type this is :P
Code:
nc -vv www.mchs.gsacrd.ab.ca 80Then, when something pops up, you may need to type
Code:
GET testFinally, we have most of what we need.
Next, we telnet to all of the open ports (If you get any)
So, to search for the exploit, I would search SSH then (Ctrl+F) 2.0
I would do that for every port I could find open.
Then, look for some exploits for the server type.
To do that, you would search for the server type and version.
MY ecample would be.
Code:
Apache
Then, (ctrl+f) 1.3.41
Then, edit the exploit so that it works onto your site (The one you are hacking) then compile the exploit, run it.
And, if you get a good exploit, you will get into the root of the website, and be able to edit any part of the site you want.
The sky is the limit.
(I think this should be made sticky again)