Archive for February 2012
How to Hack a Website completely
Hello friends, this is my 3rd article on HTP. Hope you are liking my articles.
There are several ways to hack a website
By Spl Injection read this article here.
Now you accessed admin panel of a website and you want to edit its
file. To edit files you need a php shell.
What is a php shell?
PHP Shell is a shell wrapped in a PHP script. It’s a tool you can use
to execute arbitrary shell- commands or browse the filesystem on your
remote webserver. This replaces, to a degree, a normal telnet
connection, and to a lesser degree a SSH connection. You use it for
administration and maintenance of your website, which is often much
easier to do if you can work directly on the server. For example, you
could use PHP Shell to unpack and move big files
around. All the normal command line programs like ps, free, du, df,
etc… can be used.
C99 is the shell by which you can manage the files of a website. Let
me explain practically :-
Create a fake account on http://www.my3gb.com and download c99
shell(link given below in step 1) in zip extract it to your pc. After
extracing upload c99.php file to your my3gb account and logout from
your account. Now just go to the link of the shell i.e.
Yourusername.my3gb.com/c99.php
Now you can access control panel of the website without login into your account.
To hack the website's control panel Just follow these steps :
Step 1 : Download a php shell. I recommended c99 because of its
extended features. For download go to http://sh3ll.org/ and download
c99 shell in zip.
Then extract it.
Step 2 : Now find a place where you can upload photos in website.
Step 3 : Upload your shell here. If the website dont allow to upload
.php file then change it to .php.gif or .jpg
Step 4 : Now go to the link of the file that should be
www.abc.com/yourfilename.
or
abc.com/images/yourfilename.
Now here you can see all the files of that website. Now you can access cpanel. Written by Mafiya Boy Ankit who is 13 years old hacker. http://undergroundhackerz.blogspot.com
How to Jailbreak iPhone 4s / iPad 2 on iOS 5.0.1
Dear Readers, this is my first article on Jail-breaking. So I would try to make it as simple as can. This exploit is about Jailbreak 5.0.1 untethered. and will work on following Devices:
Supported devices :
- iPhone 4 (GSM – CDMA)
- iPhone 3GS
- iPod touch 4G
- iPod touch 3G
- iPad 1+
Steps:
Step 1>
First of all connect your iPhone/iPad to your computer and open iTunes then Restore to iOS 5.0.1.
Step 2>
Next Download Greenpois0n Absinthe from http://cache.greenpois0n.com/dl/absinthe-win-0.4.zip and run in under Administrative privileges.
First of all connect your iPhone/iPad to your computer and open iTunes then Restore to iOS 5.0.1.
Step 2>
Next Download Greenpois0n Absinthe from http://cache.greenpois0n.com/dl/absinthe-win-0.4.zip and run in under Administrative privileges.
Step 3>
Connect your iPhone 4S / iPad 2 with your PC via USB.
Step 4>
Simply click on "Jailbreak" button follow the steps appear on the greenpois0n screen.
Step 5>
Once completed, you should see an Absinthe icon on the Home screen. Tap the Absinthe icon, it will open GreenPois0n site, and will then reboot your device. Once it loads again, the Cydia icon will have replaced the Absinthe icon.That is all, now you have jailbreak iPhone 4S / iPad 2 On IOS 5.0.1
VIDEO
=====
Hack Website Using Simple SQL Injection Tutorial.
You might seen websites hacked by hackers. When I dont know about these hacks I think it is very technical. But it is quite simple. Sometimes hacking website is quite like eating a banana (lol).So lets start the tutorial.
In this tutorial I will be showing you a very basic and simply SQLi (Structured Query Language Injection).I will show you how to get into a website by using some google dorks and SQL query. By using SQL queries we can bypass the username and password and can enter into the admin panel. To hack a website simply follow these steps :-
> Use any of the google dork to find the admin login page of a website.
inurl:admin.asp
inurl:admin.php
intitle:admin
intitle:admin login
intitle:administrator
inurl:adminlogin.asp inurl:adminlogin.php
inurl:administrator
There are many websites which can be hacked by this. Open anyone and you will see the login page. Type this SQL query in form.
Username : 1'or'1'='1
Password : 1'or'1'='1
Note : This is only for educational purposes. I am not responsible for any damage done by anyone.
If the site is vulnerable to this you will get into the admin panel. If it dont work then try other sites.
Written by Mafiya Boy Ankit. Add him http://undergroundhackerz.blogspot.com