Jual DVD game HD android dan Tutorial oprek android

<span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">After very long times I didn't write about hacking webserver, today "again" when surfing around I've found that Jcow </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">Social networking </b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">engine can be exploited and the </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">exploit</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> ranking marked as "excellent".</span><br style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;" /><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">So actually, what happen when you have this Jcow </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">vulnerable</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> version??The simple thing is the attacker can go through your </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">web</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> server </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">directory</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> and doing everything there. For example, if you hosting your Jcow</span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">vulnerable</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> version(on insecure hosting also </span><img alt="icon_smile" class="wp-smiley" src="http://d289vtzrietndv.cloudfront.net/wp-includes/images/smilies/icon_smile.gif" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; height: auto; line-height: 29px; margin: 0px; max-width: 100%; opacity: 1; padding: 0px;" title="icon_smile" /><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> ) you can own your </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">web</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> server </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">directory</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">.</span><br style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;" /><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">In this example, let's say I have a Jcow </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">vulnerable</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">web</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> server in IP address 192.168.8.94. Actually, it's better to try installing your own </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">web</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> server, but if you want to find out Jcow in the wild you can search through Google dork "</span><i style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">intext: Powered by Jcow 4.2.0</i><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">" and register as the normal user there. In this tutorial I have already registered as </span>username:<span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> victim and </span><b style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">password</b><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> also victim </span><img alt="icon_smile" class="wp-smiley" src="http://d289vtzrietndv.cloudfront.net/wp-includes/images/smilies/icon_smile.gif" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; height: auto; line-height: 29px; margin: 0px; max-width: 100%; opacity: 1; padding: 0px;" title="icon_smile" /><br style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;" /><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">Okay, I hope you understand what I say above </span><img alt="icon_razz" class="wp-smiley" src="http://d289vtzrietndv.cloudfront.net/wp-includes/images/smilies/icon_razz.gif" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; height: auto; line-height: 29px; margin: 0px; max-width: 100%; opacity: 1; padding: 0px;" title="icon_razz" /><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"> to make it more realistic, let's try the tutorial…</span><br /><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"><br /></span><table align="center" cellpadding="0" cellspacing="0" class="tr-caption-container" style="margin-left: auto; margin-right: auto; text-align: center;"><tbody><tr><td style="text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhfjZJ6ZNQmW22Sdh4Fw0df81WML1Wna1xvLCqfQbdbQ4qFfDVXWHOwODgZYBqaadMDEyMkLRJNOeFEaGx2coC_95RNrZqguvM8r6xWQnK_k1jexsyCpZRLXuvXznnf7ZzOzOqH44UMrYNZ/s1600/55.jpg" style="margin-left: auto; margin-right: auto;"><img alt="4 Steps Hacking Jcow Social Networking Web Server via Arbitrary Code Execution" border="0" height="286" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhfjZJ6ZNQmW22Sdh4Fw0df81WML1Wna1xvLCqfQbdbQ4qFfDVXWHOwODgZYBqaadMDEyMkLRJNOeFEaGx2coC_95RNrZqguvM8r6xWQnK_k1jexsyCpZRLXuvXznnf7ZzOzOqH44UMrYNZ/s320/55.jpg" title="4 Steps Hacking Jcow Social Networking Web Server via Arbitrary Code Execution" width="320" /></a></td></tr><tr><td class="tr-caption" style="text-align: center;">4 Steps Hacking Jcow Social Networking Web Server via Arbitrary Code Execution</td></tr></tbody></table><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;"><br /></span><h2 style="background-color: white; border-bottom-color: rgb(70, 144, 179); border-bottom-style: solid; border-bottom-width: 4px; font-family: 'Helvetica Neue', Arial, sans-serif; font-size: 38px; line-height: 44px; margin: 10px 0px; padding: 0px 0px 5px;"></h2><h2 style="background-color: white; border-bottom-color: rgb(70, 144, 179); border-bottom-style: solid; border-bottom-width: 4px; font-family: 'Helvetica Neue', Arial, sans-serif; font-size: 38px; line-height: 44px; margin: 10px 0px; padding: 0px 0px 5px;">Level: <span style="color: red; margin: 0px; padding: 0px;">Medium</span></h2><div style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">Victim Server: work fine if victim uses Windows XP SP3</div><div style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">Victim vulnerable application: JCow 4.2</div><div style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">Attacker O.S: obviously you need Backtrack 5 R1</div><h2 style="background-color: white; border-bottom-color: rgb(70, 144, 179); border-bottom-style: solid; border-bottom-width: 4px; font-family: 'Helvetica Neue', Arial, sans-serif; font-size: 38px; line-height: 44px; margin: 10px 0px; padding: 0px 0px 5px;">Requirement :</h2><div style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">Here only you need bellow two item.</div><div style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">Which is your actual need.</div><div style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><span style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px;">1#. </span><a href="http://metasploit.com/" style="background-color: white; color: #0084ce; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">Metasploit framework</a><br /><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br />2.# Jcow.rb <b>exploit </b><a href="http://www.mediafire.com/?sidxv2b8g1esa26" style="color: #0084ce; margin: 0px; padding: 0px;">mediafire.com</a></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">Now lets start this article.<br /><h2 style="border-bottom-color: rgb(70, 144, 179); border-bottom-style: solid; border-bottom-width: 4px; font-family: 'Helvetica Neue', Arial, sans-serif; font-size: 38px; line-height: 44px; margin: 10px 0px; padding: 0px 0px 5px;"><span style="font-size: large; margin: 0px; padding: 0px;"><span style="color: orange; margin: 0px; padding: 0px;"><span style="color: black; margin: 0px; padding: 0px;">4 </span>Steps Hacking Jcow</span> <span style="color: lime; margin: 0px; padding: 0px;">Social Networking Web </span><span style="color: magenta; margin: 0px; padding: 0px;">Server via Arbitrary</span><span style="color: red; margin: 0px; padding: 0px;">Code Execution Process:</span></span></h2><u><i><span style="font-size: medium; margin: 0px; padding: 0px;"><b>1.#, first of all, you simply  Copy the </b></span></i></u></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">downloaded cow.rb <b>exploit</b> from the </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><b><br /></b></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><b>download</b> link above and copy it into<span style="font-size: 14px; margin: 0px; padding: 0px;"><b><span style="font-family: 'courier new', courier, monospace; margin: 0px; padding: 0px;"> /pentest/exploits/<b>framework</b>/modules/exploits/remote/</span></b></span> folder(for example <i>see the command below</i>).<br /><blockquote style="background: rgb(255, 255, 160); border: 1px solid rgb(229, 229, 151); margin: 0px; padding: 10px;"><pre style="background: rgb(174, 248, 252); overflow: scroll; padding: 5px;">cp jcow.rb /pentest/exploits/<span style="color: blue; margin: 0px; padding: 0px;"><b>framework</b></span>/modules/exploits/remote/</pre></blockquote>now you see the text "<b class="StrictlyAutoTagBold">framework</b>" in blue color it's only because I'm using </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">Backtrack 5 R1 and using Metasploit </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">v4.0.1, so the name depended on </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">your Metasploit version, maybe on your </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">the computer can be "framework3" or </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">"framework2" so on..so don't have</div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">confused.<br /><br /><span style="font-size: medium; margin: 0px; padding: 0px;"><b>2.# now when you copy successfully </b></span></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">after that, simply  Open your <b>Metasploit </b></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">console and then use the <b>exploit</b> you just added before see bellow </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /><blockquote style="background: rgb(255, 255, 160); border: 1px solid rgb(229, 229, 151); margin: 0px; padding: 10px;"><pre style="background: rgb(174, 248, 252); overflow: scroll; padding: 5px;">msf > use <b>exploit</b>/remote/jcow</pre></blockquote><div dir="ltr" style="margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="margin: 0px; padding: 0px;"><br /></div>3.# now when you complete step 2, The </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">next step we need to <b>view</b> the available </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">switch for this <b>exploit</b> by running the <span style="font-size: 14px; margin: 0px; padding: 0px;"><span style="font-family: 'courier new', courier, monospace; margin: 0px; padding: 0px;"><span style="background-color: yellow; margin: 0px; padding: 0px;"><b>show </b></span></span></span></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><span style="font-size: 14px; margin: 0px; padding: 0px;"><span style="font-family: 'courier new', courier, monospace; margin: 0px; padding: 0px;"><span style="background-color: yellow; margin: 0px; padding: 0px;"><b><br /></b></span></span></span></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><span style="font-size: 14px; margin: 0px; padding: 0px;"><span style="font-family: 'courier new', courier, monospace; margin: 0px; padding: 0px;"><span style="background-color: yellow; margin: 0px; padding: 0px;"><b>options</b></span></span></span> command, and then configured it(see the text with red color).<br /><a href="http://www.hacking-tutorial.com/pics/blog/jcow-arbitrary-execution/jcow_bypass1.jpg" style="color: #0084ce; margin: 0px; padding: 0px;"><img alt="jcow_bypass1" height="73" src="http://www.hacking-tutorial.com/pics/blog/jcow-arbitrary-execution/jcow_bypass1.jpg" style="border: none; height: auto; margin: 0px; max-width: 100%; opacity: 0; padding: 0px;" title="jcow_bypass1" width="200" /></a><br /><blockquote style="background: rgb(255, 255, 160); border: 1px solid rgb(229, 229, 151); margin: 0px; padding: 10px;"><pre style="background: rgb(174, 248, 252); overflow: scroll; padding: 5px;">msf  <b>exploit</b>(<span style="color: red; margin: 0px; padding: 0px;">jcow</span>) > set rhost 192.168.8.94 <span style="color: red; margin: 0px; padding: 0px;">--> set the target IP</span><br />rhost => 192.168.8.94<br />msf  <b>exploit</b>(<span style="color: red; margin: 0px; padding: 0px;">jcow</span>) > set <b>username</b> victim <span style="color: red; margin: 0px; padding: 0px;">--> set the <b>username</b></span><br /><b>username</b> => victim<br />msf  <b>exploit</b>(<span style="color: red; margin: 0px; padding: 0px;">jcow</span>) > set <b>password</b> victim <span style="color: red; margin: 0px; padding: 0px;">--> set the <b>password</b></span><br /><b>password</b> => victim<br />msf  <b>exploit</b>(<span style="color: red; margin: 0px; padding: 0px;">jcow</span>) > <span style="color: blue; margin: 0px; padding: 0px;">set uri jcow</span> <span style="color: red; margin: 0px; padding: 0px;">--> only if jcow not in/<b>directory</b> fill it here</span><br />uri => jcow</pre><pre style="background: rgb(174, 248, 252); overflow: scroll; padding: 5px;"></pre><pre style="background: rgb(174, 248, 252); overflow: scroll; padding: 5px;"></pre></blockquote><span style="color: red; margin: 0px; padding: 0px;"><span style="font-size: large; margin: 0px; padding: 0px;"><u><b>Importent:::?</b></u></span></span></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><b><br /></b>Set URI can be used if cow was not </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">installed on web server main <b>directory</b>, </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">for example <b><span style="font-size: 14px; margin: 0px; padding: 0px;"><span style="font-family: 'courier new', courier, monospace; margin: 0px; padding: 0px;">http://<b>web</b>-server.com/jcow</span></span></b>.</div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br />4#. now your work has been almost  </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">done , After everything was set up </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">successfully, the next thing to do was </div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">exploiting or running the <b>exploit</b> by using</div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;"><br /></div><div dir="ltr" style="background-color: white; font-family: Lora, Georgia, serif; font-size: 16px; line-height: 29px; margin: 0px; padding: 0px;">  <span style="font-size: 14px; margin: 0px; padding: 0px;"><span style="font-family: 'courier new', courier, monospace; margin: 0px; padding: 0px;"><span style="background-color: yellow; margin: 0px; padding: 0px;"><b>exploit</b></span></span></span> command.</div>

After very long times I didn't write about hacking webserver, today "again" when surfing around I've found that Jcow Soci...

View Post

Jual DVD game HD android dan Tutorial oprek android

Jumlah Pengunjung

4 Steps Hacking Jcow Social Networking Web Server via Arbitrary Code Execution

Popular

Comments