52sale5126am
Dołączył: 18 Gru 2010
Posty: 529
Przeczytał: 0 tematów
Ostrzeżeń: 0/3 Skąd: England
|
Wysłany: Pią 4:47, 08 Kwi 2011 Temat postu: radii shoes sale |
|
|
Black domestic process of the host site of a hacker
black domestic process of a hacker site host black hacker sites for a host of domestic
the qq process, someone to domestic wood-known hacker site xxx pretense, arrogance of the gas, it makes angry, think about it, I was also in the hacking site,
x years ago when the Internet,[link widoczny dla zalogowanych], this site is still the womb it. It is. . . . Today to black on black. . . Hehe. .
first to be a general understanding of the system.
I opened the 3389 landing of the chicken, all the preparations are in it to do. Be careful ah, or eagle pecked the eyes may be bad.
good tool with the Open cmd
ping [link widoczny dla zalogowanych] no return value, must shield ping. It seems like a manager.
not afraid to try port 23
telnet [link widoczny dla zalogowanych] Yeah, the sun os 5.7 ah. The system seems to be not so good into it.
start scanning.
fact, scanning is selected remotely via TCP / IP ports of different services, and recording the answers given by this method, you can collect a lot about the target host
a variety of useful information (for example: if you can use anonymous login! whether writable FTP directory, if you can use TELNET,
HTTPD is ROOT or nobady running!) Our scanner should have three functions: that the ability of a host or network; Once a host, there is find out what services are running on this host
capacity; by testing these services, the ability to find bugs .
started from the broiler to find my hidden directories, all good things do. With (SuperScan) this also generate a report of the corresponding port.
RESULTS: Only 2,123,[link widoczny dla zalogowanych],801,633 (What is this port, the report did not give, whether it does)
goal seems we can only put ftp (21 ) and http (80) of the.
look at the anonymous ftp landed there, the many sites in the country exist.
ftp [link widoczny dla zalogowanych]
WUFU-FTP2.4.16
user: ftp
passwd: xxx. 21cn.com (it is best to lose a fake ah, huh, huh)
Oh, the administrators of this Shamao blow it. ,,, I entered. . . . To see what permissions?
ftp> ls
user
tmp
welcome
bin
etc
....
....
200 PORT Command successful.
ftp> cd user (5555, no permission)
ftp> cd temp
200 PORT Command successful.
ftp> put c: boyhacker.txt
200 PORT Command successful.
Ha ha! This directory is writable. . . Administrator you want done. .
ftp> bye
if I remember who wrote the article is the use of WUFU-FTP2.4.16 local overflow into the bar. . Come on, we try.
but overflow code to be compiled. To find a SUN OS broiler ah. See? The importance of the right chickens.
#. / wuftp [link widoczny dla zalogowanych] / tmp ftp / ftp @ 2.com-p 120
connect .....
send shell. ...
wait for you shell ....
..........
yeah yeah yeah yeah,,, I and other key moments. . . .
wow error., finished, not the administrator ah. I, ah, can not get out. . Give up? Answer: no thing to the spirit of a little hacking.
again.
not there a 80 port? To shore up the sword streamer, (point of complaining, some people say, people do not use the streamer on the grade, but really the passing of the good with the
, there may not be true to the nature of the scan low-level). Select the number of simple, sweeping. . .
out, cgi vulnerability only a few:
/ class / mysql.class [Vulnerability Description]
/ images / [Vulnerability Description]
/ manual / [Vulnerability Description]
/ mysql / [Vulnerability Description]
/ test / [Vulnerability Description]
gi I remember as if this / class / mysql.class vulnerability can see mysql's user password
but without success. (Now I know to do hackers, than done)
but Do not give up.. not a ect the directory you there?
look at the password:
df10% cat / etc / passwd
root: x: 0:1: Super-User: /: / bin / ksh
daemon: x: 1:1:: /:
bin: x: 2:2:: / usr / bin:
sys: x: 3:3:: /:
adm: x: 4:4: Admin: / var / adm:
lp: x: 71:8: Line Printer Admin: / usr / spool / lp:
smtp: x: 0:0 : Mail Daemon User: /:
uucp: x: 5:5: uucp Admin: / usr / lib / uucp:
nuucp: x: 9:9: uucp Admin: / var / spool / uucppublic : / usr / lib / uucp / uucico
listen: x: 37:4: Network Admin: / usr / net / nls:
nobody: x: 60001:60001: Nobody: /:
noaccess: x: 60002:60002: No Access User: /:
nobody4: x: 65534:65534: SunOS 4.x Nobody: /:
rudi: x: 9001:10:: / rudi : / bin / csh
liu: x: 9002:10:: / liu: / bin / csh
peng: x: 9003:10:: / peng: / bin / csh
Oh so many users ah....
how to do? do hackers want to get my mind, to use wisdom, I decided to spend Laomi of social engineering.
rest.
the first 2 days, the qq, talk to the administrator of that blow up. The following is a simple mind
recorded:
me: boss, ah, ah you are very powerful and did a hacker site management xxx Members ah.
x: general, I learn the network for several years.
me: you're a few years on the net?
x: not long ago, 99 years.
me: Oh, you're earlier than I ah, I was on the 2003 network, you are my predecessors of the (cheating)
x: is the bar (by, not modesty)
me: I am 82 born on November 21, my brother a few years ah?
x: I ah 80 years 10 月 26 ----------------( key information)
me: Recently, ah, my girlfriend broke up , and I miss her. do not know the treasure that time, my brother must have a girlfriend ------( emotionally moving)
x: Yes, ah, my girlfriend and me about the same size, I am than she is 1 month and 1 day 。----------( wow, key information)
me: Oh, What is the name of your girlfriend ah, net name must sound good, right?
x: She ah, the name is I (I seem to see him look sweet) kekeren ---------( Me and )
omitted 。。。。。]
collect the following password information: 801026 99801026 80925 80925521 kekeren80925 kekeren521 --- (I love you) kekerenx
801026kekeren ------ short as possible combinations.
next to the end of this article, and.. try it... I was only kekeren521 to successful.. It seems that he is a sentimentalist..
telnet [link widoczny dla zalogowanych]
user: x
passwd: kekeren521
wrote that it is not written.. authority is the root, you want to do whatever you want to do.
However, I still did not change the home page, to be a back door (many ways), a software pull down, remove the pp run...
over days, in the qq, and the id to the x, ridiculous是, x ask me not many flaws, is how to get root, and Oh,[link widoczny dla zalogowanych], I hope to see this article do not boss x
vomiting blood....
Summary: In fact, the black station, in fact,[link widoczny dla zalogowanych], no real exploits, but can not be said to give newbies a little thought, a little skill.
hackers, not from a real sense to go black, but the challenges themselves, facing difficulties, perseverance, dedication, wisdom, and this is our need to learn the 。。。。。
hacker is always wise.
Welcome to httP: / / dodo521.126.com
of: boyhacker
More articles related to topics:
tory burch flats Because you are my wife _3317
[link widoczny dla zalogowanych]
[link widoczny dla zalogowanych]
Post został pochwalony 0 razy
|
|