Skip to main content

Featured Post

Kali Linux Terminal Customization Tutorial

Today I'll show you guys how to change kali linux terminal header text.
5 comments

[Hacking Tutorial] How To Upload Shells Successfully

Hello all

This post is for people who fail to upload shell onto websites

Try these methods below



Method 1:
we all know that uploading scripts accepts JPG or GIF or both etc..
so its possible some times to bypass it by
renaming the file to
" shell.jpg.php "


Method 2:
Sometimes we can upload PHP file by editing the parameters with tools such as
Tamper Data ( Firefox Addon )
Download Here:
Code:
https://addons.mozilla.org/en-US/fir...n/tamper-data/
Change the

application/octet-stream
to
image/gif
or
image/jpg


Video tuorial:
http://www.youtube.com/watch?v=OB5iQI5SkTw
However, that works on some scripts...


Method 3:
We can also upload shell by adding
to the file name

%_00
shell.jpg%00php

shell.jpg%.php

or

shell.jpg;php (works alot specially on Win box'z )


Method 4:
Another way is by tricking Apache
by adding PHP languages
For Example:
file.php.en
the Apache will read the file.php.en
as a normal php file
cause .en refers to English
another example:
file.php.ar
.ar refers to Arabic and so on....
that helps when we find an uploading center that
denies PHP extinsions and allows any other unknown extionsion.

Well that's pretty much it

Good luck!
Labels:

Comments

Post a Comment

Popular posts from this blog

[Bank Transfer Tutorial] Prepaid Card Cashout

1. You will goto card.com and get a prepaid card with checking acc using the bank logs info to sign up with, only change the billing address to your drop address. It will take 3-5 days for you to receive and activate the card but you can deposit after registration is successfull. And as far as you havent caused any changes on the account, the owner will not be notified. 2. Go to venmo and register an account with the prepaid account details. Verify the venmo acc with the ssn and dob. 3. After a day, add the prepaid account to your venmo acc and verify it. Add the bank log details to the venmo acc and verify it. Two days gone. 4. On the third day, load less than $11,000 in your venmo balance. 5. On the next day, cashout less than $10000 into your prepaid account. the money is yours. 6. The mail containing the card would have reached your drop. Activate it online and cashout immediately. Warning. 1. Prepaid cards take only $10,000 and less. If more than $1000...
48 comments
Keep Reading

How to use google dorks (Google dork using)

Hello guys , today i will show you that, how to use google dork for hacking, Its very basic and most important thing for hacking ;) . So, Let's start - You can use google dorks to find SQL injection vulnerabilities. Here is an example of google dork: Code: inurl:index.php?id= +.com This one will search for "index.php?id" in the URL in .com domains Here is list with SQLi dorks: Code: http://pastebin.com/wUyRb0k8 You can add + (domainhere) Here are some examples: Code: inurl: index.php?id= +.com inurl: index.php?id= +.net inurl: index.php?id= +.org inurl: index.php?id= +.cc inurl: index.php?id= +.ws inurl: index.php?id= +.edu inurl: index.php?id= +.gov Also you could search for keywords by that way: Code: inurl:index.php?id= intext"keyword" just type intext"keyword" and change keyword with something for example credit card. I think this is enough for basics of google dorks, since I don't want 1000000000000 defanced websites after publishing this....
4 comments
Keep Reading

7,000 Dorks for Sql Injection

7,000 Dorks for hacking into various sites               about.php?cartID=         accinfo.php?cartId=         acclogin.php?cartID=         add.php?bookid=         add_cart.php?num=         addcart.php?         addItem.php         add-to-cart.php?ID=         addToCart.php?idProduct=         addtomylist.php?ProdId=         adminEditProductFields.php?intProdID=         advSearch_h.php?idCategory=         affiliate.php?ID=         affiliate-agreement.cfm?storeid=  ...
Post a Comment
Keep Reading