"Segala bentuk Tutorial yang kami bagikan disini hanya ditujukan sebagai Pengetahuan dan Pembelajaran, Penyalahgunaan atas Tutorial yang ada di blog ini diluar tanggung jawab kami. Use at your own risk."
Friday, 8 November 2013
11/08/2013 04:29:00 pm

[Deface] Tutorial deface dengan Fake Root

Hallo sobat ... kali ini saya akan share., cara deface menggunakan fake root :)
Oke, disimak yah ^^

Pertama - tama kita harus punya bahan - bahan'a dulu ^^
- Web vuln anda bisa menggunakan teknik Exploit joomla , Exploit Wordpress , Config web vuln
-  Shell 1NJECTION anda bisa mendowload disini  Mirror : Shell Config killer <<Dowload>>
  NB : Shell 1NJ3CTION v3.3 <<Tanpa Login>>

Oke disimak yah :)
Pertama - tama kita harus punya web yang sudah ditanam shell..., 
Kira - kira tampilan akan seperti ini 


Klik 2x tombol menu symlink

contoh gambar dibawah :


Kalo udh akan muncul beberapa menu., Pilihlah menu Domain list
lalu klik 2x


Taraaaaaaaaaaaaaaaaaa., Muncul deh website - website yang 1 server sama web tadi..,
cara mengecek web tadi vuln fake root
copy salah satu url web yang satu server sama web tadi.
tambahkan ~root di belakang url web tadi.,
contoh : ww.site.com/~root/
maka jika hasil'a akan forbidden...., so., web tadi vuln fake root jika tidak berarti tidak vuln
Sooo...
kita tinggal mengetahui root web nya aja
Lihat gambar dibawah:


 cara melihat root webite cukup mudah :)
kalo anda sedang masuk shell "injection ., shell inject akan mempublikasikan semua tentang web tadi
dan folder yang kalian lihat
contoh folder : /home/sixwords/public_html/
jadi ROOT web tadi adalah : sixwords karena root selalu berada di tengah (antara home sama public_html)
kurang jelas ? Lihat gambar dibawah


Jika sudah , mari kita gabungkan (Web yang kita peroleh dari domain list)
Oiya sobat., sobat harus mengupload script sobat  ju'a di web tadi ,
tapi jika sobat mempaste di Index.php juga ga papa kok :)
cara mengakses jika mempaste di index.php :
www.webtadi.com/~rootweb/
cara mengakse jika mengupload script
NB : (Upload di public_html) :
www.webku.com/~rootweb/filemu.html
 Sudah paham kan sobat ?
contoh fake root :
http://artiszin.co.uk/~sixwords/ .
http://ashtonphotography.co.uk/~sixwords/ .
http://asianbusinessforum.com/~sixwords/ .
http://attualegraphics.com/~sixwords/ .
http://attualegraphics.it/~sixwords/ .
http://audienginesandgearboxes.co.uk/~sixwords/ .
http://autoleveller.co.uk/~sixwords/ .
http://automotiveairfilter.co.uk/~sixwords/ .
http://avesta.ltd.uk/~sixwords/ .
http://axisoflight.co.uk/~sixwords/ .
http://aylesburychoral.org.uk/~sixwords/ .
http://aylesburydeanery.org/~sixwords/ .
http://babtek.com/~sixwords/ .
http://badcreditloansforunemployed.org.uk/~sixwords/ .
http://badcreditpaydayloans.org.uk/~sixwords/ .
http://badcredittenantloans.org.uk/~sixwords/ .
http://bandaoke.co.uk/~sixwords/ .
http://bayleavesrestaurant.co.uk/~sixwords/ .
http://bdwebdesign.co.uk/~sixwords/ .
http://becomeacounselor.co.uk/~sixwords/ .
http://bernwodebenefice.com/~sixwords/ .
http://bespoke-education.com/~sixwords/ .
http://bestgaminglaptop.co.uk/~sixwords/ .
http://bestguarantorloansuk.co.uk/~sixwords/ .
http://bestiphone4sdeals.co.uk/~sixwords/ .
http://bestmotorhomes.co.uk/~sixwords/ .
http://bestnlessaccountants.co.uk/~sixwords/ .
http://bestonlineflashgames.net/~sixwords/ .
http://bestpersonalinjurylawyernyc.com/~sixwords/ .
http://bicestersweepers.co.uk/~sixwords/ .
dan masih banyak lagi :)




22 comments:

  1. ijin sedot gan buat percobaan
    ditunggu kunjungannya

    http://bit.ly/1hJVFeC

    ReplyDelete
  2. waduh penjelasannya bingung nih.. kurang mantab

    ReplyDelete
  3. It's awesome in favor of me to have a web site, which is
    helpful in favor of my knowledge. thanks admin

    Feel free to visit my web-site - 123inkjets (http://kareldekar.com)

    ReplyDelete
  4. You actually make it seem so easy with your presentation
    but I find this matter to be really something which I think I
    would never understand. It seems too complex and extremely
    broad for me. I am looking forward for your next post, I'll try to get the hang of
    it!

    Also visit my weblog :: best double stroller 2014 ()

    ReplyDelete
  5. [catatan]JANGAN SALAH GUNAKAN[/catatan]

    ReplyDelete
  6. My brother recommended I might like this web site.
    He was entirely right. This post truly made my day. You can not imagine simply how much time
    I had spent for this information! Thanks!

    Feel free to visit my weblog :: anxiety panic attacks (en.wikipedia.org)

    ReplyDelete
  7. It's the best time to make some plans for the longer term and it's time to be
    happy. I've learn this submit and if I may just I desire to recommend you some attention-grabbing issues or suggestions.
    Perhaps you could write subsequent articles referring to this article.
    I desire to learn more issues approximately it!


    Feel free to visit my blog post: http://members.a1-article.com/

    ReplyDelete
  8. Thanks for sharing your thoughts on cleaning companies. Regards

    Here is my homepage :: encinocouncil.org

    ReplyDelete
  9. Hello there I am so delighted I found your blog page,
    I really found you by error, while I was looking on Bing for something else,
    Nonetheless I am here now and would just like to
    say kudos for a remarkable post and a all round thrilling
    blog (I also love the theme/design), I don't have time to read
    through it all at the moment but I have book-marked it and
    also included your RSS feeds, so when I have time I will be back to
    read a great deal more, Please do keep up the fantastic job.


    my blog post - articles.scfenghe.com

    ReplyDelete
  10. Asking questions are in fact good thing if you are not
    understanding something entirely, however this piece of writing
    presents nice understanding even.

    my website :: sightings.elvissightingbulletinboard.com

    ReplyDelete
  11. Do you mind if I quote a few of your articles as long as I provide credit and sources back to your site?
    My website is in the very same niche as yours and my users would truly
    benefit from some of the information you provide here.
    Please let me know if this alright with you. Many thanks!


    Review my web page http://business.sunsetmarchadors.com

    ReplyDelete
  12. I do not even know how I ended up here, but I thought this post was great.
    I don't know who you are but definitely you are going to a famous blogger if you are
    not already ;) Cheers!

    My web blog; home business

    ReplyDelete
  13. Thanks in favor of sharing such a nice thinking, post is pleasant, thats why i have read it entirely

    Feel free to surf to my blog post ganapatioccult.com

    ReplyDelete
  14. It's a pity you don't have a donate button! I'd most
    certainly donate to this superb blog! I guess for now
    i'll settle for bookmarking and adding your RSS feed to
    my Google account. I look forward to new updates and will talk about this blog with
    my Facebook group. Talk soon!

    my web-site: http://members.scfenghe.com

    ReplyDelete
  15. In fact when someone doesn't know after that its up to other users that they will assist, so here it happens.


    My web site; http://helpdesk.authorityspyreview.net

    ReplyDelete

CATATAN: TOLONG TAATI PERATURAN BERIKUT
• Dilarang menyisipkan link aktif!
• Dilarang ngiklan di kolom komentar!
• Untuk menyisipkan catatan, gunakan [catatan].. TEKS ...[/catatan]
• Untuk menyisipkan gambar, gunakan [img]URL GAMBAR[/img]
• Dilarang SPAM/JUNK/SARA
• Pengguna ANONIM tidak akan saya balas komentarnya..!