First, you want to find out as much about it as you can. So, first, you want to port scan it with nmap (I think its the best port scanner)
Code:
nmap -sT -O -p 1-250 -vv
http://www.thesiteyouwishtohackgoesrighthere.xxxSo, me example would be.
Code:
nmap -sT -O -p 1-250 -vv
http://www.mchs.gsacrd.ab.caBy the way, that is my school site, hack it if you want to
Sometimes, it will say that the site is down, if so, put the -P0 at the end (Its a 0 not a o)
So the example would be.
Code:
nmap -sT -O -p 1-250 -vv
http://www.mchs.gsacrd.ab.ca -P0
Alright, now, say that the site has a firewall, so that would mean, that your scan would say 0 open ports
But, don't worry. It is still possable to get into the site.
So, next thing you need to do is download netcat
Then, type this is
Code:
nc -vv
http://www.mchs.gsacrd.ab.ca 80
Then, when something pops up, you may need to type
Code:
GET test
Fianlly, we have most of what we need.
Next, we telnet to all of the open ports (If you get any)
So, to search for the exploit, I would search SSH then (Ctrl+F) 2.0
I would do that for every port I could find open.
Then, look for some exploits for the server type.
To do that, you would search for the server type and version.
MY ecample would be.
Code:
Apache
Then, (ctrl+f) 1.3.41
Then, edit the exploit so that it works onto your site (The one you are hacking) then compile the exploit, run it.
And, if you get a good exploit, you will get into the root of the website, and be able to edit any part of the site you want.
The sky is the limit.
Forum 
Latest images 
Fri Dec 05, 2008 3:25 pm
