Archive for 02/01/2014 - 03/01/2014

Defacing Sites via HTML Injections (XSS)

Defacing Sites via HTML Injections

Defacing Sites via HTML Injections

What Is HTML Injection:

"HTML Injection" is called as the Virtual Defacement Technique and also known as the "XSS" Cross Site Scripting. It is a very common vulnerability found when searched for most of the domains. This kind of a Vulnerability allows an "Attacker" to Inject some code into the applications affected in order to bypass access to the "Website" or to Infect any particular Page in that "Website".

HTML injections = Cross Site Scripting, It is a Security Vulnerability in most of the sites, that allows an Attacker to Inject HTML Code into the Web Pages that are viewed by other users.

XSS Attacks are essentially code injection attacks into the various interpreters in the browser. These attacks can be carried out using HTML, JavaScript, VBScript, ActiveX, Flash and other clinet side Languages. Well crafted Malicious Code can even hep the "Attacker" to gain access to the entire system.

The most common tags that are used for the HTML Injections are are mentioned below -

1. script ==> This tag contains the code referred in the body of the document.

2. meta ==> This tag defines document's meta Information such as keywords, expiry date, author, etc..

3. html ==> This tag starts an HTML Document

4. body ==> This tag contains the body of the HTML document, which includes the entire content that will appear in the Web Browser.

5. embed ==> This tag is used to embed multimedia in HTML.

6. frame> ==> This tag is used to place the contents into the frame.

7. frameset ==> This tag is a container for frames and replaces the body tag.

8. img ==> This tag provides a facility to put into a web page.

9. style ==> This tag is used to specify the style Information for the document.

10. link ==> This tag is used to specify the color of the unvisited link.

Thus these are the above basic Tag that are used to perform HTML Injections on the site which is vulnerable to the Cross Site Scripting or HTML Injections.

How To Perform HTML Injections : 1, Over here we will use the Google Dork to find out the Vulnerable Site's  and we will use the below mentioned Dork :

GOOGLE DORK : inurl:"search.php?q="

Refer the Image below -

2, Now as we have surfed over the Internet and have found the Sites that are Vulnerable to the XSS that is HTML Injections then in this case we will be using the following simple scripts and the html tags as in detail mentioned above.

Hacking DNN Based Web Sites

Hacking DNN Based Web Sites

Hacking DNN Based Web Sites

Hacking DNN (Dot Net Nuke) CMS based websites is based on the Security Loop Hole in the CMS. For using that exploit we will see the few mentioned points which illustrates us on how to hack any live site based on Dot Net Nuke CMS.

Vulnerability : This is the know Vulnerability in Dot Net Nuke (DNN) CMS. This allows aone user to Upload a File/Shell Remotely to hack that Site which is running on Dot Net Nuke CMS. The Link's for more Information regarding this Vulnerability is mentioned below -

Getting Started : Here we will use the Google Dork to trace the sites that are using DNN (Dot Net Nuke) CMS and are vulnerable to Remote File Upload.

How To Do It : Here, I an mentioning the few points on how to Search for the existing Vulnerability in DNN.

Let's Begin with the Tutorial...

Step 1. Go To

Step 2. Now Enter this Dork -  :inurl:/tabid/36/language/en-US/Default.aspx

Now you will see the following as mentioned in the below Image -

The above Dork is used for tracing the sites running on the Dot Net Nuke CMS and will provide us the URL which are Vulnerable and which can be manipulated further to Upload Files Remotely.