Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > hacker invade > Content
Hot Articles
The MS08-067 crack invad
Smoothwall previews low
The RPC crack invades
GE Interlogix Diamond II
when load_file() invasio
Breaks the IE safe limit
Uses 135 ports to invade
MS08-067 introduces the
The local area network i
Sharp oracle pours into
SonicWALL Customers Prot
SmoothWall Launches Smoo
Invades the WINDOWS serv
Invades RedHat the Linux
Lotus notes also plays t
Recommend Articles
Manual injection ASP scr
Simulates the intruder t
Invades the chinalinux s
The local area network i
Invades the Linux operat
Invades in the process t
Invades once more using
Invades the WINDOWS serv
PHP pours into the invas
Brief analysis Linux sys
Invades the Turkish webs
Invades RedHat the Linux
Buffer overflow analysis
Invades the Linux system
The study contains the c
New Articles
Comodo Disk Encryption n
CRYPTO-MAS-service authe
The criminal attacks Erh
Hackers and malware deve
Five steps to protect co
MI5 hack highlights secu
Kaspersky Mobile Securit
Clavister and Meru Netwo
BioSlimDisk encrypted po
Facebook users are at ri
Europ?organizations awar
Gumblar Web-based attack
2012 Olympic Games suffe
Ties aimed at both Windo
How to recover EFS encry
Invasion 10 small skills
  Add date: 10/27/2008   Publishing date: 10/27/2008   Hits: 4
Total 2 pages, Current page:1, Jump to page:
 
Author: The fallen leaf flutters about [J.L.S.T]
Sources of information: Security leaf technology club [J.Leaves Security Team] (http://00day.cn)


The typing hits hand good tired. Saw in the evil behind-the-scenes manipulator fallen leaf this edits the article. Has taken several WEBSHELL with the following skill. However could not bring this paper (I to rip all day long down evil behind-the-scenes manipulator magazine that page. )
Therefore has hit down. - _-!  Possible fallen leaf where to have the original text. Forgot to want to him. +_+


--------------------------------------------------------------------------------



In the NOhack first several issue of magazines, many small snails have written some in the invasion process small skill, lets the human look loudly shouts satisfies a craving! This time, I also write some me the small skill which uses in the invasion process, hoped that everybody likes!

1. Judges system which the server uses
After for example our goal website is “http://www.00day.cn/forum/index.php” that we changes the address http://www.00day.cn/forum/index.PHP, again glances over has a look whether to have the page, if exists, then the server uses the system is windows, if the demonstration does not exist, what then the server has the possibility to use very much is the *nix system.

2. Ewebeditor takes the new skill which stands
Ewebeditor everybody should be again familiar? Uses the default password admin888 debarkation first, not good on downloading default database `/db/ewebeditor.mdb”, if the default database also changed we should give up? Here tells everybody me the experience! Is with the password admin999 debarkation, or the input “/db/ewebeditor1013.mdb” could download to the database. This method has 80% probabilities to be able to take the goal!

3. Social worker's small skill
In invasion time, if the goal website has forum, we may try the social worker, for example a website is “www.00day.cn”, the manager name is admin, then we may try with the password “00day” and “00day.cn” land, this method most suits in invasion large-scale company website time uses!

4. Time invasion thought development
Sometimes we have obtained the goal website manager password, but could not find the backstage, this is may try to land with FTP, for example, the goal website is the password which” www.00day.cn “obtains is “bishi”, we may try to use “00day” “00day.cn” www.00day.cn to take FTP user, with “bishi”: Carries on the debarkation as the FTP password, the success probability may very big!

5. When invasion obtains the manager name
When sometimes in the invasion is similar the website which sends in the news spreads a net, poured into obtained the manager password, but could not attain manager's name, what in the website also didn't have forum, at this time how should manage? We may open a news casually, however the hand looks for such as “the submission” carefully “the promulgator” and so on phrase, “the submission” was generally manager's name.

 
Other pages: : 1 * 2 * Next>>
Prev:Invades Dong Yanni the individual website entire process (chart) Next:ORACLE establishment data file WriteWebShell

Comment:

Category: Home > hacker invade
Home