Skip to main content

Posts

Showing posts with the label WEBSITE HACKING

Hacking DNN Based Web Sites

Hacking DNN Based Web Sites Hacking DNN Based Web Sites Hacking DNN (Dot Net Nuke) CMS based websites is based on the Security Loop Hole in the CMS. For using that exploit we will see the few mentioned points which illustrates us on how to hack any live site based on Dot Net Nuke CMS. Vulnerability : This is the know Vulnerability in Dot Net Nuke (DNN) CMS. This allows aone user to Upload a File/Shell Remotely to hack that Site which is running on Dot Net Nuke CMS. The Link's for more Information regarding this Vulnerability is mentioned below -                                  http://www.exploit-db.com/exploits/12700/ Getting Started : Here we will use the Google Dork to trace the sites that are using DNN (Dot Net Nuke) CMS and are vulnerable to Remote File Upload. How To Do It : Here, I an mentioning the few points on how to Search for the existing Vulnerability in DNN. Let'...
Post a Comment
Read more

PWNing A System via (MSF) Metasploit Framework

PWNing A System via (MSF) Metasploit Framework PWNing A System via (MSF) Metasploit Framework Lab Requirements : Both OS running under my Virtual Machine. 1, Back Track 5 R3 Machine 2, Windows XP Machine Vulnerability : This is the know Vulnerability In Windows XP and Server 2003, MS08-067 vulnerability that uses the netapi module in the Windows SMB Protocol that may be used for arbitrary code execution. The Link's for more Information regarding this Vulnerability is  - http://blogs.technet.com/b/srd/archive/2008/10/23/more-detail-about-ms08-067.aspx http://www.symantec.com/security_response/attacksignatures/detail.jsp?asid=21702 http://www.rapid7.com/db/modules/exploit/windows/smb/ms08_067_netapi Effect Of MS08-067 NetAPI Vulnerability : This module exploits a parsing flaw in the path canonicalization code of NetAPI32.dll through the Server Service. This module is capable of bypassing NX on some operating systems and service packs. The correct target m...
Post a Comment
Read more

Domain Hijacking – How to Hijack a Domain

Domain Hijacking – How to Hijack a Domain Domain hijacking In this post I will tell you about how the domain names are hacked and how they can be protected. The act of hacking domain names is commonly known as Domain Hijacking. For most of you, the term “domain hijacking” may seem to be like an alien. So let me first tell you what domain hijacking is all about. Domain hijacking is a process by which Internet Domain Names are stolen from it’s legitimate owners. Domain hijacking is also known as domain theft. Before we can proceed to know how to hijack domain names, it is necessary to understand how the domain names operate and how they get associated with a particular web server (website). The operation of domain name is as follows Any website say for example gohacking.com consists of two parts. The domain name (gohacking.com) and the web hosting server where the files of the website are actually hosted. In reality, the domain name and the web hosting server (web server) a...
Post a Comment
Read more