Deface dengan Magento Priv8





Malem, fanss :* Ketemu lagi sama gw :v kangen gak? :p
Hoho, kali ini gw mau share tentang Tutorial Deface dengan Magento Priv8. Tutor kali ini gw share setelah gw baca2 artikel di grup SurGoBLog . Dah yok, gausah banyak bacot :v Simak tutor nya gaess :*

Bahan - Bahan :
1. Dork (ada dibawah)
2. SQLi Dork Scanner (download)
3. Exploiter (download)
4. Kopi + Rokok :p
5. Ketabahan :v

Langsung simak cok :

Dork :


"/skin/

frontend/"
"/frontend/enterprise/"
"/js/mage/"
"/default/sales/"
"/customer/account/"
"/account/create/"
"/account/login/"
"/account/forgotpassword"
"/adminhtml/default/default/"
"lib/LinLibertineFont/"
"lib/3Dsecure/"
"lib/flex/"
"lib/googlecheckout/"
"lib/LinLibertineFont/"
"/catalogsearch/advanced"
"/sales/guest/form/"
"/catalogsearch/term/popular/"
"/catalog/seo_sitemap/category/"
"/index.php/catalog/seo_sitemap/category/"
"/index.php/catalogsearch/term/popular/"
"/catalogsearch/result/"
"/catalogsearch/result?q="
"/customer/account/login/referer/"
"skin/frontend/base/"
"skin/frontend/default/"
"skin/frontend/default/blank/"
"skin/frontend/default/blue/"
"skin/frontend/default/default/"
"skin/frontend/default/french/"
"skin/frontend/default/german/"
"skin/frontend/default/iphone/"
"skin/frontend/default/modern/"
"/skin/adminhtml/default/"
"inurl:/adminhtml/default/default/"
"inurl:/catalogsearch/result/"
"inurl:/catalogsearch/advanced"
"inurl:/catalogsearch/result?q="
"inurl:/sales/guest/form/"
"inurl:/default/sales/"
"inurl:/customer/account/login/referer/"
"inurl:/customer/account/"
"inurl:/account/create/"
"inurl:/account/login/"
"inurl:/account/create/"
"inurl:/account/forgotpassword"
"inurl:lib/LinLibertineFont/"
"inurl:lib/3Dsecure/"
"inurl:lib/flex/"
"/firecheckout/"
"inurl:lib/googlecheckout/"
"inurl:lib/LinLibertineFont/"
"inurl:skin/frontend/base/"
"inurl:skin/frontend/default/blank/"
"inurl:skin/frontend/default/blue/"
"inurl:skin/frontend/default/default/"
"inurl:skin/frontend/default/french/"
"inurl:skin/frontend/default/german/"
"inurl:skin/frontend/default/iphone/"
"inurl:skin/frontend/default/modern/"
"index.php/sales/guest/"
"index.php/catalogsearch/result/"
"index.php/catalogsearch/advanced"
"index.php/catalogsearch/result?q="
"index.php/sales/guest/form/"
"index.php/default/sales/"
"index.php/customer/account/login/referer/"
"index.php/customer/account/"
"index.php/account/create/"
"index.php/account/login/"
"index.php/account/create/"
"index.php/account/forgotpassword"
"index.php/adminhtml/default/default/"
1.  Buka SQLi Dork Scanner



2. Klik Remove Clones,
3. Copy All web , lalu paste di Exploiter, jangan lupa mengisi username dan password.



3. Klik scan.
4. Lihat 'Succes'




5. Buka admin page nya
    site.c0.li/admin
    site.c0.li/index.php/admin

 6. Login dengan username dan password yg kalian isi di exploiter tadi.




7.  Select 'System' klik 'Configuration'



8. Klik 'Design' di sidebar kiri



9.  Setelah masuk ke 'Design' pilih 'HTML Head'



10.  Isi 'Miscellaneous Scripts' dengan Script Deface kalian.. Belum punya? Klik disini



11. Klik 'Save Config'



12. Jika berhasil, tampilanya akan seperti ini:




13.  Well done gaess :* Cek website lu.




Udah kan?
Okee, sekian tutorial gw kali ini. Jika ada pertanyaan, ada kontak gw dibawah :D
See u next post gaess :*

Special thanks to :
SurGoBLog
Tools Maker
[OWL SQUAD] 


Regards,
Berandal, [OWL SQUAD]

6 تعليقات

Komentar Spam Akan kami Hapus

  1. Gan, username dan passwordnya dapat darimana ?

    ردحذف
    الردود
    1. Ini kan prinsip kerjanya nambah admin, jadi isi sesuai keinginan

      حذف
  2. di coba, failed semua.
    Yg succes kgk ada..
    wkwkwkwkwk

    ردحذف
    الردود
    1. wkwkw, sabar ajh gan, makannya kumpulin calon korban sebanyak-banyaknya kalo bisa, biar setidaknya ada 1 atau 2 yg berhasil :)

      حذف
    2. Sorry nih gan, failed nya dibagian mana?
      Brangkali bisa di fix

      حذف
  3. Tutor apaan ni berandal ? :v

    ردحذف

إرسال تعليق

Komentar Spam Akan kami Hapus

Post a Comment

أحدث أقدم