Cara Mencari Shell Backdoor Yang Vuln
Rabu, 30 Januari 2013
2 Comments
Hai,, berjumpa lagi
dengan saya Thama,,
atau kalian bisa sebut saya MACHO . . . .
Posted saya sekarang membahas bagaimana cara Mencari Shell/Backdoor dengan menggunakan Dork yang ada..
atau kalian bisa sebut saya MACHO . . . .
Posted saya sekarang membahas bagaimana cara Mencari Shell/Backdoor dengan menggunakan Dork yang ada..
jadi kita gak perlu cape-cape buat scanning segala (mau di irc, mau tusbol sendiri dari awal).. ini sih buat yang males aja yeehh..
yah kalo buat orang-orang yang mau belajar, silahkan aja kakak =) ..
gak ada salahnya juga belajar dari dasar.. =D
Ini dia Dorknya :
"uname -a","uid=","drwxr-xr-x","r57shell"
safe-mode: off (not secure) drwxrwxrwx c99shell
inurl:c99.php
inurl:c99.php uid=0(root)
root c99.php
"Captain Crunch Security Team"
inurl:c99
download c99.php
inurl:c99.php
inurl:"/c99.php"
inurl:"c99.php" c99shell
inurl:c99.php uid=0(root)
c99shell powered by admin
c99 shell v.1.0 (roots)
inurl:c99.php
allintitle: "c99shell"
intitle:C99Shell v. 1.0 pre-release +uname
intitle:C99Shell v. 1.0 pre-release +uname
inurl:/c99.php+uname
c99shell [file on secure ok ]?
powered by Captain Crunch Security Team
"c99.php" filetype:php
"inurl:c99.php"
c99. PHP-code Feedback Self remove
c99shell
intitle:C99Shell v. 1.0 pre-release +uname
safe-mode: off (not secure) drwxrwxrwx c99shell
c99.php download
c99shell filetype:php -echo
c99shell powered by admin
inurl:c99.php uid=0(root)
C99Shell v. 1.0 pre-release build #5
--[ c99shell v. 1.0 pre-release build #16
c99shell linux infong
C99Shell v. 1.0 pre-release build
!C99Shell v. 1.0 beta!
Encoder Tools Proc. FTP brute Sec. SQL PHP-code
Update Feedback Self remove
!c99shell v. 1+Safe-mode: OFF (not secure)
"C99Shell v. 1.0 pre-release build "
intitle:c99shell +filetype:php
intitle:C99Shell v. 1.0 pre-release +uname
"Encoder Tools Proc. FTP brute Sec. SQL
PHP-code Update Feedback Self remove Logout
Encoder Tools Proc. FTP brute Sec. SQL PHP-code
Update Feedback Self remove Logout
intitle:!C99Shell v. 1.0 pre-release build #16!
root
intitle:c99shell intext:uname
allintext:C99Shell v. 1.0 pre-release build #12
c99shell v. 1.0 pre-release build #16
--[ c99shell v. 1.0 pre-release build #15 |
Powered by ]--
Encoder Tools Proc. FTP brute Sec. SQL PHP-code
Update Feedback Self remove Logout
"c99shell v 1.0"
ftp apache inurl:c99.php
c99shell+v.+1.0 16
C99Shell v. 1.0 pre-release build #16 download
intitle:c99shell "Software: Apache"
allintext: Encoder Tools Proc. FTP brute Sec.
SQL PHP-code Update Feedback Self remove
powered by Captain Crunch Security Team
powered by Captain Crunch Security Team
!C99Shell v. 1.0 pre-release build #5!
c99shell v. 1.0 release security
c99shell v. 1.0 pre-release build
c99shell [file on secure ok ]?
C99Shell v. 1.3
Encoder Tools Proc. FTP brute Sec. SQL PHP-code
Update Feedback Self remove Logout
powered by Captain Crunch Security Team
C99Shell v. 1.0 pre-release build #16
Encoder Tools Proc. FTP brute Sec. SQL PHP-code
Update Feedback Self remove Logout
inurl:c99.php
"C99Shell v. 1.0 pre"
=C99Shell v. 1.0 pre-release
Encoder Tools Proc. FTP brute Sec. SQL PHP-code
Update Feedback Self remove Logout
c99shell v. pre-release build
powered by Captain Crunch Security Team
!C99Shell v. 1.0 pre-release build #5!
intitle:"c99shell" filetype:php root
intitle:"c99shell" Linux infong 2.4
C99Shell v. 1.0 beta !
C99Shell v. 1.0 pre-release build #
allintext:C99Shell v. 1.0 pre-release build #12
"C99Shell v. 1.0 pre"
powered by Captain Crunch Security Team
Encoder Tools Proc. FTP brute Sec. SQL PHP-code
Update Feedback Self remove Logout
intitle:C99Shell pre-release
powered by Captain Crunch Security Team
C99Shell v. 1.0 pre-release build #16!
C99Shell v. 1.0 pre-release build #16
administrator
intitle:c99shell filetype:php
C99Shell v. 1.0 pre-release build #12
c99shell v.1.0
"c99shell v. 1.0 pre-release build"
inurl:"c99.php" filetype:php
"c99shell v. 1.0 "
ok c99.php
Encoder Tools Proc. FTP brute Sec. SQL PHP-code
Update Feedback Self remove Logout
c99shell v. 1.0 pre-release build #16 |
!C99Shell v. 1.0 pre-release build #5!
php
safe-mode bypass (list directories):
safe-mode: off (not secure)
safe-mode: off (not secure) drwxrwxrwx c99shell
startpar -f
hs_kuwait.php
lejeune interpolate
name asc. size · modify · owner/group · perms
action
shell c99 ccteam.r
.phpact=f shell
00007458 zip
allintitle: \locus7shell\
allintitle: c99memoryl
1 1.22% allinurl:upload3.php
1 1.22% astro acrobat
1 1.22% basel stellar library
1 1.22% c99memory
1 1.22% c99memoryl
1 1.22% c99shell v. 1.0 pre-release build #16
1 1.22% class-efem
1 1.22% efemerides del 22 de abril
1 1.22% encoder bind proc. ftp brute sec. sql
php-
1 1.22% encoder bind proc. ftp brute sec. sql
php-code feedback
1 1.22% encoder bind proc. ftp brute sec. sql
php-code update feedback
1 1.22% encoder tools proc. ftp brute sec. sql
php-code update feedback
1 1.22% filetype:php shell
1 1.22% foreach (array(sortsql_sort) as $v)
1 1.22% i.s.s.w team ...
1 1.22% intitle:locus7shell
1 1.22% inurl:ftpquickbrute
1 1.22% inurl:php drwxrwxr-x ftp brute sql
1 1.22% lejeune interpolation
1 1.22% lejuene interpolate
1 1.22% lmgrd_start 47
1 1.22% mysqld usage of cpu suse httpd2-prefork
1 1.22% php echo getenv
1 1.22% php4 â€Å“registered stream socket
transports�
1 1.22% powered by captain crunch filetype:php
1 1.22% powered by captain crunch security team
drwxrwxrwx
1 1.22% safe-mode:
1 1.22% select action/file-type:
1 1.22% software make dir upload file safe-mode
1 1.22% uid=30(wwwrun) gid=8(www)
1 1.22% "uname
-a","uid=","drwxr-xr-x","r57shell"
LOCUS7 SHELL
locus7shell
intitle:locus7shell
locus7shell filetype:php
locus7shell uname
allintitle: locus7shell
- locus7shell
intitle:- locus7shell
x2300 locus7shell
--[ x2300 locus7shell v. 1.0a beta modded by
#!physx^ |
allintitle:- locus7shell
intitle: - locus7shell
safe-mode: off (not secure)
locus7shell 2008
shell x2300 locus7shell
.br - locus7shell
.us/images/0/588/mo_656_656.swf
allintext:--[ x2300 locus7shell v. modded by
#!physx^
allintitle: - locus7shell
allintitle: locus7shell ext:php
allintitle:locus7shell
allintitle:locus7shell filetype:php
free locus7shell
ftp brute sec. sql php-code
inurl:act=sql
locus7s off secure
locus7s shell
ocus7shell apache
locus7shell edition 2008
locus7shell filetype: 'php'
locus7shell index:php
locus7shell linux 2008
locus7shell modified
php safe-mode bypass (list directories):
safe-mode: off (not secure) drwxrwxrwx
locus7shell
%%% locus7shell
- locus7shell windows
--[ x2300 locus7shell v. 1.0a beta modded by
#!physx^ | www.loc
--[ x2300 locus7shell v. modded by #!physx^ |
www.locus7s.com |
--[ x2300 locus7shell v.1.0a beta modded by
#!physx^ | www.locu
/locus7shell/
[enumerate] [encoder] [tools] [proc.] [ftp
brute] [sec.] [sql]
allintext: locus7shell v. 1.0a beta
allintext:�safe-mode: off (not secure)�
allintitle: \locus7shell\
allinurl: .phpact=ls
apache aix aixthread_scope
ar ba locus7shell
basel
basel 3.1 library
basel interpolation
basel interpolation engine
basel spectra
c99memoryl
encoder bind proc. ftp brute sec. sql php-code
feedback self re
filetype locus7shell
interpolation engine
intext:'' safe-mode:off (not secure)''
intitle:- locus7shell'
intitle:c99memoryl inurl:.php
intitle:locus7shell by filetype:php
intitle:locus7shell drwxr-xr-x
inurl:.phpact=ls
inurl:act intext:full hexdump
license.dat idl server bypass
locus7s uname
ocus7shell 2.0
locus7shell [file on secure ok ] drwxrwxrwx
locus7shell intext:x2300 intext:milw0rm.it
enumerate uname
locus7shell inurl:php
locus7shell linux
locus7shell linux 2006
locus7shell safe-mode: off (not secure)
drwxrwxrwx
locus7shell self remove drwxrwxrwx
locus7shell v. 1.0
locus7shell windows 2008
locus7shell-
make dir make file ok read files locus7shell
modded locus7shell
php safe-mode bypass (list directories)
php safe-mode bypass (read file)
php safe-mode bypass (read files)
safe-mode: apache uname -a: linux filetype:php
safe-mode: off (not secure) locus7shell
safe_mode: off drwxr-xr-x locus7shell
software: safe-mode: off (not secure) your ip: -
server ip: [ft
suhosin 5.1.2
sybase aixthread_scope
uploads/ drwxrwxrwx
warning kernel may be alerted using higher
levels safe mode
x2300 locus7shell download
x2300 locus7shell modified by #!physx^
x2300 locus7shell v. 1.0a
x2300 locus7shell v. 1.0a beta
FTP password:
intitle:"index of" spwd.db passwd
-pam.conf
filetype:bak
inurl:"htaccess\passwd\shadow\htusers
filetype:inc dbconn
filetype:inc intext:mysql_connect
filetype:properties inurl:db intext:password
inurl:vtund.conf intext:pass -cvs
inurl:"wvdial.conf"
intext:"password"
filetype:mdb wwforum
"AutoCreate:=TRUE password=*"
filetype:pwl pwl
filetype:reg reg
+intext:"defaultusername" intext:"defaultpassword"
filetype:ref ref+intext:"internet account
manager"
"index of/" "ws_ftp.ini"
"parent directory"
filetype:ini ws_ftp pwd
inurl:/wwwboard
*Cara Pakainya, gampang kok,
tinggal copy salah satu dork diatas, trus paste saja di Google, Bing, dll..
cari deh satu-satu, ntar juga ketemu kok..
\Sekian Dulu Tutorial yang saya Share semoga Bermanfaat..!!
cari deh satu-satu, ntar juga ketemu kok..
\Sekian Dulu Tutorial yang saya Share semoga Bermanfaat..!!
blogwalking mmpir blik gan
BalasHapushttp://anchumrt.blogspot.com
Blogwalking mampir balik bro :)
BalasHapushttp://kapuas-onecyber.blogspot.com