![=-=>>W3LC[]M3<<=-=](http://3.bp.blogspot.com/-HQcdYiso0K4/UDjeSQBP6mI/AAAAAAAAAEE/1JtAW52i4iU/s1600/2.jpg)
[Windows XP]
In IIS Exploit we can upload shells, Defaced page or anything you like on the Vulnerable Server without any Login. It is most Easiest way to Hack any site
.
STEP 1:Click on Start button and open “RUN”.
STEP 2: Now Type this in RUN
%WINDIR%\EXPLORER.EXE ,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{BDEADF00-C265-11d0-BCED-00A0C90AB50F}
Now A Folder named “Web Folders” will open.
STEP 3: Now “Right-Click” in the folder and Goto “New” and then “Web Folder“.
STEP 4: Now type the name of the Vulnerable site in this. e.g.”http://autoqingdao.com/” and click “Next“.
STEP 5: Now Click on “Finish“
STEP 6: Now the folder will appear. You can open it and put any deface page or anything.
STEP 7: I put text file in that folder. Named “c99.php” (you can put a txt or HTML file also). If the file appear in the folder then the Hack is successful but if it don’t then the site is not Vulnerable.
Now to view the uploaded site i will go to “http://autoqingdao.com/c99.php”
In your case it will be ” www.[sitename].com/[file name that you uploaded] “
Some IIS Working Sites :
http://8090gogo.com/
http://bbs.365tg.net/
http://shop.365tg.net/
http://sys.lubooil.com/
http://auditeur.lexbase.fr/
http://axoneservices.com/
http://perros-guirec.icor.fr/
http://asr123.com/
http://9m9n.com/
http://bbs.9m9n.com/
http://home.9m9n.com/
http://nvshengjie.com/
http://ribendm.com/
http://v.9m9n.com/
http://www.9m9n.cn/
http://www.9m9n.com/
http://www.litikb.com/
http://www.riben123.cn/
http://www.tluo.cn/
[Windows 7]
Go to Start > Computer.
On Computer homepage, find a option Map Network Drive and make a click.
Map Network Drive Dialog appears. Click “Connect to a Web site that you can use to
store your documents and Pictures“.
When ‘Add Network Location’ Wizard appears on your screen, click Next.
Select “Choose a custom network location” and click Next.
Type the web folder address (i.e the vulnerable site you want to attack).
Enter a name to identify your web folder.
Check on “Open this network location when I click finish“.
Click Finish. Now you can insert your deface page.
No comments:
Post a Comment