Botnet một cái tên nghe rất quen nhưng hầu như còn huyền bí với đa số dân CNTT Việt Nam
Để làm sáng tỏ về botnet và công nghệ tạo một bot hôm nay Shiru xin viết một tutorial về cách tạo một mạng botnet như là kim chỉ nam cho những người muốn hiểu rõ hơn về botnet.
I.Botnet là gì?
Botnet là một mạng gồm từ hàng trăm tới hàng triệu máy tính bị điều khiển hoàn toàn (theo thuật ngữ người ta gọi các máy tính này là Zombie tức các thây ma),chúng bị điều khiển để cùng làm một công việc gì đó theo mục đích của hacker điều khiển chúng vd: tải về cài đặt các chương trình quảng cáo, hay cùng đồng loạt tấn công một trang web nào đó thông qua kĩ thuật DDoS
II.Mạng BotNet đc tạo nên bởi gì ?
Nền tảng của BotNet là một chương trình máy tính đc thiết kế để liên lạc với hacker ,nhận lệnh và thực hiện lệnh của hacker, người ra gọi chương trình này là"Bot"(viết tắt từ robot).
III.Các con bot liên lạc với hacker bằng gì?
Kể từ những phiên bản đầu tiên các bot đã đc thiết kế để nhận lệnh thông qua các IRC server tức các máy chủ Internet Relay Chat một dạng máy chủ chạy dịch vụ chat công cộng (thường các máy chủ này là các máy chủ thuộc họ *nix ) để nhận đc lệnh từ hacker một cách nhanh nhất.
IV.Cách tạo một con "Bot":
Với ví dụ này Shiru sẽ dùng ngôn ngữ lập trình Visual Basic để minh họa vì ngôn ngữ này đc nhiều người sử dụng nếu có thời gian NoHat sẽ post thêm bài viết về cách viết bot trên nền ngôn ngữ C++
Con bot này sẽ có tính năng cơ bản là kết nối tới server IRC và trả lời khi hacker hỏi "LiveOrNot"
1.Điều đầu tiên mà bạn phải học là tập lệnh IRC:
Tập lệnh IRC sẽ có sự khác biệt đôi chút khi nó chạy trên các chương trình quản lý IRC server khác nhau
Code:
USER <Real Name> là lệnh thiết lập tên thật cho bot khi nó vào IRC server
NICK <NickName> là lệnh thiết lập nick name cho bot
JOIN <Channel> là lệnh cho bot truy cập vào một "kênh" (channel),channel tương tự như một room chat vậy
PRIVMSG <Channel> : <Message> là lệnh gửi tin nhắn tới hacker
Thứ tự các lệnh từ 1 tới 3 mà NoHat nêu chính là thứ tự các lệnh mà bạn phải gửi tới IRC server
2.Một số Sub chính cho bot:
Khai báo hằng và biến:
Code:
Const Server As String = " irc.datviet.net" 'tên channel
Const Port As Integer = 23 'port
Const Channel As String = "NoHat" 'Kênh mà bot sẽ chui vào
Dim Nick As String 'Nick của bot
Bạn tạo môt Form mới và kéo thả vào đó thành phần WinSock đặt thuộc tính name là ws
Code:
Private Sub Form_Load()
ws.Connect Server, Port 'Tạo một kết nối tới server IRC
Nick = "Tester" & LTrim(RTrim(Str(Int(Rnd * 100))))
End Sub
Sub thực hiện việc gời command sau khi kết nối hoàn thành
Code:
Private Sub ws_Connect()
Dim UserName, RealName As String
UserName = Nick
RealName = Nick
ws.SendData "USER " & UserName & " 0 * " & RealName & vbCrLf
ws.SendData "NICK " & Nick & vbCrLf
ws.SendData "JOIN " & Channel & vbCrLf
ws.SendData "PRIVMSG " & Channel & ":" & " Bot chao master" & vbCrLf
End Sub
Sub đáp trả khi bot nhận đc lệnh
Code:
Private Sub ws_DataArrival(ByVal bytesTotal As Long)
Dim strData As String
Dim Pos As Integer
Dim Master As String
ws.GetData strData
DoEvents
If InStr(strData, "liveornot") <> 0 Then
Pos = InStr(1, strData, "!")
Master = Mid(strData, 2, Pos - 2)
ws.SendData Replace(strData, "liveornot", "Live") & vbCrLf
ws.SendData "PRIVMSG " & Master & " " & Replace(strData, "liveornot", "Live") & vbCrLf
End If
EndSub
VII.Điều khiển bot thế nào ?
Để điều khiển bot bạn hãy cho chạy thử con bot trên để làm ví dụ
Sau đó bật một chương trình IRC Client nào đó ví dụ mIRC
Rồi kết nối vào máy server là irc.datviet.net với port 23 ( đáng nhẽ là port 6667 nhưng không hiểu sao đa phần các IRC server của Việt Nam lại dùng port 23 ?! ) với một nick tùy ý
gõ lệnh:
Code:
/JOIN NoHat (phải có dấu "/" vì mIRC .... bắt phải thế chứ IRC server không bắt thế đâu )
là bạn đã có mặt trong cùng channel với bot của bạn
sau đó hãy gõ lệnh:
Code:
LiveOrNot (chú ý viết hoa y chang nếu không con bot nó ngu ra mặt )
Con bot sẽ trả lời bạn rằng
Code:
Live
Read More
Ebook Check Sqli Căn Bản Cho Newbie Mới Vào Nghề :)
Read More
Trang chủ »Ebook »Lập trình
Lập trình hướng đối tượng C++ (Tiếng Việt)
Gửi cho bạn bè
Lập trình hướng đối tượng C++ (Tiếng Việt)
Bản quyền:Freeware
Kích thước:3.8 MB
Yêu cầu:Windows All
Nhà phát hành:
Đăng bởi:Tech24.soft
Ngày cập nhật:04/10/2011
Bình luận:0
Vote109
7925 37618
QA code Lập trình hướng đối tượng C++ (Tiếng Việt)
---
Backup theo yêu cầu
C được coi là ngôn ngữ mẹ trong lập trình. Khi đã thành thạo bạn có thể học bất kì ngôn ngữ nào một cách dễ dàng. Nhưng từ C chuyển sang lập trình hướng đối tượng C++ chắc chắn bạn sẽ gặp rất nhiều khó khăn. Cuốn ebook này sẽ giúp bạn làm quen với C++ một cách nhanh nhất và cơ bản nhất.
Ngoài cuốn ebook về C++ , bạn sẽ có thêm một tài liệu khác là slide C++. Giáo trình được biên soạn chủ yếu dựa vào giáo trình C++ Programming của tác giả Sharam Hekmat nhằm cố gắng đạt được ba mục tiêu. Thứ nhất, cung cấp nội dung súc tích sao cho những người bắt đầu có thể phát triển một hiểu biết tốt về ngôn ngữ trong một thời gian ngắn. Thứ hai, kết nối kiểu gia sư (dựa trên giải thích các khái niệm thông qua ví dụ) với kiểu tham khảo (dựa trên cấu trúc). Cuối cùng, tránh cố gắng làm phức tạp vấn đề bởi việc bỏ những chi tiết phức tạp của C++ nhưng vẫn đảm bảo được các chủ đề quan trọng. Điều này giúp cho những người bắt đầu học không bị tràn ngập với quá nhiều thông tin. Thực tế cho thấy các khe hở kiến thức nhỏ dần dần sẽ được lấp đầy thông qua khả năng tự học, tự khám phá.
Giáo trình này giới thiệu C++ như là một ngôn ngữ lập trình hướng đối tượng và giả sử rằng người đọc chưa có kiến thức về C hay bất cứ ngôn ngữ lập trình nào khác. Vì thế nếu đọc giả đã có kiến thức về một ngôn ngữ lập trình cấp cao (như là C hay Pascal) sẽ có thể bỏ qua một vài chương đầu trong giáo trình. Các chương trình minh họa được viết và chạy trên môi trường Turbo C++.
Giáo trình được chia thành 9 chương:
+Chương 1: Mở đầu
+Chương 2: Biểu Thức
+Chương 3: Lệnh
+Chương 4: Hàm
+Chương 5: Mảng, Con Trỏ và Tham Chiếu
+Chương 6: Lập trình Hướng Đối Tượng
+Chương 7: Lớp
+Chương 8: Tái Định Nghĩa
+Chương 9: Thừa Kế
pass: tech24.vn
Read More
trainers.php?id=
play_old.php?id=
declaration_more.php?decl_id=
Pageid=
games.php?id=
newsDetail.php?id=
staff_id=
historialeer.php?num=
product-item.php?id=
news_view.php?id=
humor.php?id=
communique_detail.php?id=
sem.php3?id=
opinions.php?id=
spr.php?id=
pages.php?id=
chappies.php?id=
prod_detail.php?id=
viewphoto.php?id=
view.php?id=
website.php?id=
hosting_info.php?id=
gery.php?id=
detail.php?ID=
publications.php?id=
Productinfo.php?id=
releases.php?id=
ray.php?id=
produit.php?id=
pop.php?id=
shopping.php?id=
productdetail.php?id=
post.php?id=
section.php?id=
theme.php?id=
page.php?id=
shredder-categories.php?id=
product_ranges_view.php?ID=
shop_category.php?id=
channel_id=
newsid=
news_display.php?getid=
ages.php?id=
clanek.php4?id=
review.php?id=
iniziativa.php?in=
curriculum.php?id=
labels.php?id=
look.php?ID=
galeri_info.php?l=
tekst.php?idt=
newscat.php?id=
newsticker_info.php?idn=
rubrika.php?idr=
offer.php?idf=
“id=” & intext:”Warning: mysql_fetch_array()
“id=” & intext:”Warning: getimagesize()
“id=” & intext:”Warning: session_start()
“id=” & intext:”Warning: mysql_num_rows()
“id=” & intext:”Warning: mysql_query()
“id=” & intext:”Warning: array_merge()
“id=” & intext:”Warning: preg_match()
“id=” & intext:”Warning: ilesize()
“id=” & intext:”Warning: filesize()
index.php?id=
buy.php?category=
article.php?ID=
play_old.php?id=
newsitem.php?num=
top10.php?cat=
historialeer.php?num=
reagir.php?num=
Stray-Questions-View.php?num=
forum_bds.php?num=
game.php?id=
view_product.php?id=
sw_comment.php?id=
news.php?id=
avd_start.php?avd=
event.php?id=
sql.php?id=
news_view.php?id=
select_biblio.php?id=
humor.php?id=
ogl_inet.php?ogl_id=
fiche_spectacle.php?id=
communique_detail.php?id=
sem.php3?id=
kategorie.php4?id=
faq2.php?id=
show_an.php?id=
preview.php?id=
loadpsb.php?id=
opinions.php?id=
spr.php?id=
announce.php?id=
participant.php?id=
download.php?id=
main.php?id=
review.php?id=
chappies.php?id=
read.php?id=
prod_detail.php?id=
article.php?id=
person.php?id=
productinfo.php?id=
showimg.php?id=
view.php?id=
website.php?id=
hosting_info.php?id=
gery.php?id=
rub.php?idr=
view_faq.php?id=
artikelinfo.php?id=
detail.php?ID=
index.php?=
profile_view.php?id=
category.php?id=
publications.php?id=
fellows.php?id=
downloads_info.php?id=
prod_info.php?id=
shop.php?do=part&id=
collectionitem.php?id=
band_info.php?id=
product.php?id=
releases.php?id=
ray.php?id=
produit.php?id=
pop.php?id=
shopping.php?id=
productdetail.php?id=
post.php?id=
viewshowdetail.php?id=
clubpage.php?id=
memberInfo.php?id=
section.php?id=
theme.php?id=
page.php?id=
shredder-categories.php?id=
tradeCategory.php?id=
product_ranges_view.php?ID=
shop_category.php?id=
transcript.php?id=
channel_id=
item_id=
newsid=
trainers.php?id=
news-full.php?id=
news_display.php?getid=
index2.php?option=
readnews.php?id=
newsone.php?id=
product-item.php?id=
pages.php?id=
clanek.php4?id=
viewapp.php?id=
viewphoto.php?id=
galeri_info.php?l=
iniziativa.php?in=
curriculum.php?id=
labels.php?id=
story.php?id=
look.php?ID=
aboutbook.php?id=
“id=” & intext:”Warning: mysql_fetch_assoc()
“id=” & intext:”Warning: is_writable()
“id=” & intext:”Warning: Unknown()
“id=” & intext:”Warning: mysql_result()
“id=” & intext:”Warning: pg_exec()
“id=” & intext:”Warning: require()
buy.php?category=
pageid=
page.php?file=
show.php?id=
newsitem.php?num=
readnews.php?id=
top10.php?cat=
reagir.php?num=
Stray-Questions-View.php?num=
forum_bds.php?num=
game.php?id=
view_product.php?id=
sw_comment.php?id=
news.php?id=
avd_start.php?avd=
event.php?id=
sql.php?id=
select_biblio.php?id=
ogl_inet.php?ogl_id=
fiche_spectacle.php?id=
kategorie.php4?id=
faq2.php?id=
show_an.php?id=
loadpsb.php?id=
announce.php?id=
participant.php?id=
download.php?id=
article.php?id=
person.php?id=
productinfo.php?id=
showimg.php?id=
rub.php?idr=
view_faq.php?id=
artikelinfo.php?id=
index.php?=
profile_view.php?id=
category.php?id=
fellows.php?id=
downloads_info.php?id=
prod_info.php?id=
shop.php?do=part&id=
collectionitem.php?id=
band_info.php?id=
product.php?id=
viewshowdetail.php?id=
clubpage.php?id=
memberInfo.php?id=
tradeCategory.php?id=
transcript.php?id=
item_id=
news-full.php?id=
aboutbook.php?id=
preview.php?id=
material.php?id=
read.php?id=
viewapp.php?id=
story.php?id=
newsone.php?id=
rubp.php?idr=
art.php?idm=
title.php?id=
index1.php?modo=
include.php?*[*]*=
nota.php?pollname=
index3.php?p=
padrao.php?pre=
home.php?pa=
main.php?type=
sitio.php?start=
*.php?include=
general.php?xlink=
show.php?go=
nota.php?ki=
down*.php?oldal=
layout.php?disp=
enter.php?chapter=
base.php?incl=
enter.php?mod=
show.php?corpo=
head.php?*[*]*=
info.php?strona=
template.php?str=
main.php?doshow=
view.php?*[*]*=
index.php?to=
page.php?cmd=
view.php?b=
info.php?option=
show.php?x=
template.php?texto=
index3.php?ir=
print.php?chapter=
file.php?inc=
file.php?cont=
view.php?cmd=
include.php?chapter=
path.php?my=
principal.php?param=
general.php?menue=
index1.php?b=
info.php?chapter=
nota.php?chapter=
general.php?include=
start.php?addr=
index1.php?qry=
index1.php?loc=
page.php?addr=
index1.php?dir=
principal.php?pr=
press.php?seite=
head.php?cmd=
home.php?sec=
home.php?category=
standard.php?cmd=
mod*.php?thispage=
base.php?to=
view.php?choix=
base.php?panel=
template.php?mod=
info.php?j=
blank.php?pref=
sub*.php?channel=
standard.php?in=
general.php?cmd=
pagina.php?panel=
template.php?where=
path.php?channel=
gery.php?seccion=
page.php?tipo=
sitio.php?rub=
pagina.php?u=
file.php?ir=
*inc*.php?sivu=
path.php?start=
page.php?chapter=
home.php?recipe=
enter.php?pname=
layout.php?path=
print.php?open=
mod*.php?channel=
down*.php?phpbb_root_path=
*inc*.php?str=
gery.php?phpbb_root_path=
include.php?middlePart=
sub*.php?destino=
info.php?read=
home.php?sp=
main.php?strona=
sitio.php?get=
sitio.php?index=
index3.php?option=
enter.php?a=
main.php?second=
print.php?pname=
blank.php?itemnav=
blank.php?pagina=
index1.php?d=
down*.php?where=
*inc*.php?include=
path.php?pre=
home.php?loader=
start.php?eval=
index.php?disp=
head.php?mod=
sitio.php?section=
nota.php?doshow=
home.php?seite=
home.php?a=
page.php?url=
pagina.php?left=
layout.php?c=
principal.php?goto=
standard.php?base_dir=
home.php?where=
page.php?sivu=
*inc*.php?adresa=
padrao.php?str=
include.php?my=
show.php?home=
index.php?load=
index3.php?rub=
sub*.php?str=
start.php?index=
nota.php?mod=
sub*.php?mid=
index1.php?*[*]*=
pagina.php?oldal=
padrao.php?loc=
padrao.php?rub=
page.php?incl=
gery.php?disp=
nota.php?oldal=
include.php?u=
principal.php?pagina=
print.php?choix=
head.php?filepath=
include.php?corpo=
sub*.php?action=
head.php?pname=
press.php?dir=
show.php?xlink=
file.php?left=
nota.php?destino=
general.php?module=
index3.php?redirect=
down*.php?param=
default.php?ki=
padrao.php?h=
padrao.php?read=
mod*.php?cont=
index1.php?l=
down*.php?pr=
gery.php?viewpage=
template.php?load=
nota.php?pr=
padrao.php?destino=
index2.php?channel=
principal.php?opcion=
start.php?str=
press.php?*[*]*=
index.php?ev=
pagina.php?pre=
nota.php?content=
include.php?adresa=
sitio.php?t=
index.php?sivu=
principal.php?q=
path.php?ev=
print.php?module=
index.php?loc=
nota.php?basepath=
padrao.php?tipo=
index2.php?in=
principal.php?eval=
file.php?qry=
info.php?t=
enter.php?play=
general.php?var=
principal.php?s=
standard.php?pagina=
standard.php?subject=
base.php?second=
head.php?inc=
pagina.php?basepath=
main.php?pname=
*inc*.php?modo=
include.php?goto=
file.php?pg=
head.php?g=
general.php?header=
start.php?*root*=
enter.php?pref=
index3.php?open=
start.php?module=
main.php?load=
enter.php?pg=
padrao.php?redirect=
pagina.php?my=
gery.php?pre=
enter.php?w=
info.php?texto=
enter.php?open=
base.php?rub=
gery.php?*[*]*=
include.php?cmd=
standard.php?dir=
layout.php?page=
index3.php?pageweb=
include.php?numero=
path.php?destino=
index3.php?home=
default.php?seite=
path.php?eval=
base.php?choix=
template.php?cont=
info.php?pagina=
default.php?x=
default.php?option=
gery.php?ki=
down*.php?second=
blank.php?path=
pagina.php?v=
file.php?pollname=
index3.php?var=
layout.php?goto=
pagina.php?incl=
home.php?action=
include.php?oldal=
print.php?left=
print.php?u=
nota.php?v=
home.php?str=
press.php?panel=
page.php?mod=
default.php?param=
down*.php?texto=
mod*.php?dir=
view.php?where=
blank.php?subject=
path.php?play=
base.php?l=
index2.php?rub=
general.php?opcion=
layout.php?xlink=
padrao.php?name=
pagina.php?nivel=
default.php?oldal=
template.php?k=
main.php?chapter=
layout.php?chapter=
layout.php?incl=
include.php?url=
base.php?sivu=
index.php?link=
sub*.php?cont=
info.php?oldal=
general.php?rub=
default.php?str=
head.php?ev=
sub*.php?path=
view.php?page=
main.php?j=
index2.php?basepath=
gery.php?qry=
main.php?url=
default.php?incl=
show.php?redirect=
index1.php?pre=
general.php?base_dir=
start.php?in=
show.php?abre=
index1.php?home=
home.php?ev=
index2.php?ki=
base.php?pag=
default.php?ir=
general.php?qry=
index2.php?home=
press.php?nivel=
enter.php?pr=
blank.php?loader=
start.php?cmd=
padrao.php?d=
sitio.php?recipe=
principal.php?read=
standard.php?showpage=
main.php?pg=
page.php?panel=
press.php?addr=
template.php?s=
main.php?tipo=
*inc*.php?ev=
padrao.php?page=
show.php?thispage=
home.php?secao=
main.php?start=
enter.php?mid=
press.php?id=
main.php?inc=
index3.php?cmd=
index.php?pname=
press.php?subject=
include.php?sec=
index3.php?xlink=
general.php?texto=
index3.php?go=
index.php?cmd=
index3.php?disp=
index3.php?left=
sub*.php?middle=
show.php?modo=
index1.php?pagina=
head.php?left=
enter.php?phpbb_root_path=
show.php?z=
start.php?basepath=
blank.php?strona=
template.php?y=
page.php?where=
layout.php?category=
index1.php?my=
principal.php?phpbb_root_path=
nota.php?channel=
page.php?choix=
start.php?xlink=
home.php?k=
standard.php?phpbb_root_path=
principal.php?middlePart=
mod*.php?m=
index.php?recipe=
template.php?path=
pagina.php?dir=
sitio.php?abre=
index1.php?recipe=
blank.php?page=
sub*.php?category=
*inc*.php?bOdy=
enter.php?middle=
home.php?path=
down*.php?pre=
base.php?w=
main.php?path=
nota.php?ir=
press.php?link=
gery.php?pollname=
down*.php?open=
down*.php?pageweb=
default.php?eval=
view.php?showpage=
show.php?get=
sitio.php?tipo=
layout.php?cont=
default.php?destino=
padrao.php?seccion=
down*.php?r=
main.php?param=
standard.php?e=
down*.php?in=
nota.php?include=
sitio.php?secao=
print.php?my=
general.php?abre=
general.php?link=
default.php?id=
standard.php?panel=
show.php?channel=
enter.php?r=
index3.php?phpbb_root_path=
gery.php?where=
head.php?middle=
sub*.php?load=
gery.php?sp=
show.php?chapter=
sub*.php?b=
general.php?adresa=
print.php?goto=
sub*.php?sp=
template.php?doshow=
padrao.php?base_dir=
index2.php?my=
include.php?w=
start.php?op=
main.php?section=
view.php?header=
layout.php?menue=
head.php?y=
sub*.php?content=
show.php?type=
base.php?id=
mod*.php?qry=
default.php?strona=
sitio.php?chapter=
gery.php?index=
nota.php?h=
page.php?oldal=
enter.php?panel=
blank.php?t=
start.php?pollname=
sub*.php?module=
enter.php?thispage=
mod*.php?index=
sitio.php?r=
sub*.php?play=
index2.php?doshow=
index2.php?chapter=
show.php?path=
gery.php?to=
info.php?base_dir=
gery.php?abre=
gery.php?pag=
view.php?channel=
default.php?mod=
index.php?op=
general.php?pre=
padrao.php?type=
template.php?pag=
standard.php?pre=
blank.php?ref=
down*.php?z=
general.php?inc=
home.php?read=
pagina.php?section=
default.php?basepath=
index.php?pre=
sitio.php?pageweb=
base.php?seite=
*inc*.php?j=
index2.php?filepath=
file.php?type=
index1.php?oldal=
index2.php?second=
index3.php?sekce=
info.php?filepath=
base.php?opcion=
path.php?category=
index3.php?start=
start.php?rub=
*inc*.php?i=
blank.php?pre=
general.php?channel=
index2.php?OpenPage=
page.php?section=
mod*.php?middle=
index1.php?goFile=
blank.php?action=
principal.php?loader=
sub*.php?op=
main.php?addr=
start.php?mid=
gery.php?secao=
pagina.php?tipo=
index.php?w=
head.php?where=
principal.php?tipo=
press.php?loader=
gery.php?showpage=
gery.php?go=
enter.php?start=
press.php?lang=
general.php?p=
index.php?sekce=
index2.php?get=
sitio.php?go=
include.php?cont=
sub*.php?where=
index3.php?index=
path.php?recipe=
info.php?loader=
print.php?sp=
page.php?phpbb_root_path=
path.php?bOdy=
principal.php?menue=
print.php?cont=
pagina.php?z=
default.php?mid=
blank.php?xlink=
sub*.php?oldal=
general.php?b=
include.php?left=
print.php?sivu=
press.php?OpenPage=
default.php?cont=
general.php?pollname=
template.php?nivel=
enter.php?page=
file.php?middle=
standard.php?str=
gery.php?get=
main.php?v=
down*.php?subject=
enter.php?sivu=
path.php?option=
index.php?strona=
index1.php?choix=
index2.php?f=
press.php?destino=
pagina.php?channel=
principal.php?b=
home.php?include=
head.php?numero=
general.php?ref=
main.php?dir=
gery.php?cont=
principal.php?type=
file.php?param=
default.php?secao=
path.php?pageweb=
info.php?r=
base.php?phpbb_root_path=
main.php?itemnav=
view.php?pg=
pagina.php?choix=
default.php?itemnav=
index2.php?cmd=
layout.php?url=
index.php?path=
index1.php?second=
start.php?modo=
index1.php?get=
index3.php?my=
sub*.php?left=
print.php?inc=
view.php?type=
path.php?*[*]*=
base.php?adresa=
index3.php?oldal=
standard.php?bOdy=
base.php?path=
principal.php?strona=
info.php?l=
template.php?left=
head.php?loc=
page.php?ir=
print.php?path=
down*.php?path=
sitio.php?opcion=
pagina.php?category=
press.php?menu=
index2.php?pref=
sitio.php?incl=
show.php?ki=
index3.php?x=
page.php?strona=
*inc*.php?open=
index3.php?secao=
standard.php?*[*]*=
template.php?basepath=
standard.php?goFile=
index2.php?ir=
file.php?modo=
gery.php?itemnav=
main.php?oldal=
down*.php?showpage=
start.php?destino=
blank.php?rub=
path.php?ir=
layout.php?var=
index1.php?texto=
start.php?pg=
index1.php?showpage=
info.php?go=
path.php?load=
index3.php?abre=
blank.php?where=
info.php?start=
page.php?secao=
nota.php?pag=
nota.php?second=
index2.php?to=
standard.php?name=
start.php?strona=
mod*.php?numero=
press.php?home=
info.php?z=
mod*.php?path=
blank.php?base_dir=
base.php?texto=
nota.php?secc=
index.php?tipo=
index.php?goto=
print.php?pag=
view.php?secao=
general.php?strona=
show.php?my=
page.php?e=
padrao.php?index=
gery.php?thispage=
start.php?base_dir=
default.php?tipo=
gery.php?panel=
standard.php?ev=
standard.php?destino=
general.php?middle=
main.php?basepath=
standard.php?q=
index1.php?tipo=
mod*.php?choix=
template.php?ir=
show.php?adresa=
general.php?mid=
index3.php?adresa=
pagina.php?sec=
template.php?secao=
home.php?w=
general.php?content=
sub*.php?recipe=
main.php?category=
enter.php?viewpage=
main.php?ir=
show.php?pageweb=
principal.php?ir=
default.php?pageweb=
index.php?oldal=
head.php?d=
gery.php?mid=
index.php?type=
standard.php?j=
show.php?oldal=
enter.php?link=
enter.php?content=
blank.php?filepath=
standard.php?channel=
base.php?*[*]*=
info.php?incl=
down*.php?include=
press.php?modo=
file.php?choix=
press.php?type=
blank.php?goto=
index3.php?showpage=
principal.php?subject=
start.php?chapter=
show.php?r=
pagina.php?thispage=
general.php?chapter=
page.php?base_dir=
page.php?qry=
show.php?incl=
page.php?*[*]*=
main.php?h=
file.php?seccion=
default.php?pre=
principal.php?index=
principal.php?inc=
home.php?z=
pagina.php?in=
show.php?play=
nota.php?subject=
default.php?secc=
default.php?loader=
padrao.php?var=
mod*.php?b=
default.php?showpage=
press.php?channel=
pagina.php?ev=
sitio.php?name=
page.php?option=
press.php?mid=
down*.php?corpo=
view.php?get=
print.php?thispage=
principal.php?home=
show.php?param=
standard.php?sivu=
index3.php?panel=
include.php?play=
path.php?cmd=
file.php?sp=
template.php?section=
view.php?str=
blank.php?left=
nota.php?lang=
path.php?sivu=
main.php?e=
default.php?ref=
start.php?seite=
default.php?inc=
print.php?disp=
home.php?h=
principal.php?loc=
index3.php?sp=
gery.php?var=
sub*.php?base_dir=
path.php?middle=
pagina.php?str=
base.php?play=
base.php?v=
sitio.php?sivu=
main.php?r=
file.php?nivel=
start.php?sivu=
template.php?c=
general.php?second=
sub*.php?mod=
home.php?loc=
head.php?corpo=
standard.php?op=
index2.php?inc=
info.php?pref=
base.php?basepath=
print.php?basepath=
*inc*.php?m=
base.php?home=
layout.php?strona=
padrao.php?url=
sitio.php?oldal=
pagina.php?read=
index1.php?go=
standard.php?s=
page.php?eval=
index.php?j=
pagina.php?pr=
start.php?secao=
template.php?*[*]*=
nota.php?get=
index3.php?link=
home.php?e=
gery.php?name=
nota.php?eval=
sub*.php?abre=
index2.php?load=
principal.php?in=
view.php?load=
mod*.php?action=
default.php?p=
head.php?c=
template.php?viewpage=
view.php?mid=
padrao.php?addr=
view.php?go=
file.php?basepath=
home.php?pre=
include.php?goFile=
layout.php?play=
index1.php?subject=
info.php?middlePart=
down*.php?pg=
sub*.php?bOdy=
index.php?option=
sub*.php?chapter=
default.php?t=
head.php?opcion=
nota.php?panel=
sitio.php?left=
show.php?include=
pagina.php?start=
head.php?choix=
index3.php?tipo=
index3.php?choix=
down*.php?channel=
base.php?pa=
nota.php?sekce=
show.php?l=
show.php?index=
blank.php?url=
start.php?thispage=
nota.php?play=
show.php?second=
enter.php?include=
principal.php?middle=
main.php?where=
padrao.php?link=
path.php?strona=
index3.php?read=
mod*.php?module=
standard.php?viewpage=
standard.php?pr=
*inc*.php?showpage=
pagina.php?ref=
path.php?pname=
padrao.php?mid=
info.php?eval=
include.php?path=
page.php?subject=
sub*.php?qry=
head.php?module=
nota.php?opcion=
head.php?abre=
base.php?str=
home.php?bOdy=
gery.php?module=
head.php?sivu=
page.php?inc=
pagina.php?header=
mod*.php?v=
home.php?doshow=
padrao.php?n=
index1.php?chapter=
padrao.php?basepath=
index.php?r=
index3.php?seccion=
sitio.php?mid=
index.php?where=
general.php?type=
pagina.php?goto=
page.php?pa=
default.php?menue=
main.php?goto=
index1.php?abre=
info.php?seccion=
index2.php?pa=
layout.php?pageweb=
nota.php?disp=
index1.php?bOdy=
default.php?nivel=
show.php?header=
down*.php?pag=
start.php?tipo=
standard.php?w=
index.php?open=
blank.php?menu=
general.php?nivel=
padrao.php?nivel=
*inc*.php?addr=
index.php?var=
home.php?redirect=
*inc*.php?link=
*inc*.php?incl=
padrao.php?corpo=
down*.php?url=
enter.php?goto=
down*.php?addr=
sub*.php?j=
principal.php?f=
sub*.php?menue=
index2.php?section=
general.php?my=
head.php?loader=
general.php?goto=
include.php?dir=
start.php?header=
blank.php?in=
base.php?name=
nota.php?goFile=
head.php?base_dir=
mod*.php?recipe=
press.php?pr=
padrao.php?*[*]*=
layout.php?opcion=
print.php?rub=
index.php?pr=
general.php?seite=
pagina.php?numero=
*inc*.php?pg=
nota.php?rub=
view.php?seite=
pagina.php?recipe=
index.php?pref=
page.php?action=
page.php?ev=
show.php?ir=
head.php?index=
mod*.php?pname=
view.php?ir=
*inc*.php?start=
principal.php?rub=
principal.php?corpo=
padrao.php?middle=
base.php?pname=
template.php?header=
view.php?sp=
main.php?name=
nota.php?m=
blank.php?open=
head.php?dir=
page.php?pname=
*inc*.php?k=
index.php?pollname=
head.php?oldal=
index1.php?str=
template.php?choix=
down*.php?pollname=
page.php?recipe=
template.php?corpo=
nota.php?sec=
info.php?*[*]*=
sub*.php?*[*]*=
page.php?q=
index1.php?type=
gery.php?y=
standard.php?lang=
gery.php?page=
index.php?action=
press.php?pname=
down*.php?v=
index3.php?second=
show.php?recipe=
main.php?pre=
file.php?numero=
print.php?str=
standard.php?link=
nota.php?OpenPage=
view.php?pollname=
print.php?l=
index.php?go=
standard.php?numero=
view.php?pr=
down*.php?read=
down*.php?action=
index1.php?OpenPage=
principal.php?left=
mod*.php?start=
file.php?bOdy=
gery.php?pg=
blank.php?qry=
base.php?eval=
default.php?left=
gery.php?param=
blank.php?pa=
nota.php?b=
path.php?loader=
start.php?o=
include.php?include=
nota.php?corpo=
enter.php?second=
sub*.php?pname=
mod*.php?pageweb=
principal.php?addr=
standard.php?action=
template.php?lang=
include.php?basepath=
sub*.php?ir=
down*.php?nivel=
path.php?opcion=
print.php?category=
print.php?menu=
layout.php?secao=
template.php?param=
standard.php?ref=
base.php?include=
blank.php?bOdy=
path.php?pref=
print.php?g=
padrao.php?subject=
nota.php?modo=
index3.php?loader=
template.php?seite=
general.php?pageweb=
index2.php?param=
path.php?nivel=
page.php?pref=
press.php?pref=
enter.php?ev=
standard.php?middle=
index2.php?recipe=
blank.php?dir=
home.php?pageweb=
view.php?panel=
down*.php?home=
head.php?ir=
mod*.php?ir=
show.php?pagina=
default.php?base_dir=
show.php?loader=
path.php?mid=
blank.php?abre=
down*.php?choix=
info.php?opcion=
page.php?loader=
principal.php?oldal=
index1.php?load=
home.php?content=
pagina.php?sekce=
file.php?n=
include.php?redirect=
print.php?itemnav=
enter.php?index=
print.php?middle=
sitio.php?goFile=
head.php?include=
enter.php?e=
index.php?play=
enter.php?id=
view.php?mod=
show.php?nivel=
file.php?channel=
layout.php?choix=
info.php?bOdy=
include.php?go=
index3.php?nivel=
sub*.php?include=
path.php?numero=
principal.php?header=
main.php?opcion=
enter.php?s=
sub*.php?pre=
include.php?index=
gery.php?pageweb=
padrao.php?path=
info.php?url=
press.php?ev=
index1.php?pg=
print.php?in=
general.php?modo=
head.php?ki=
press.php?my=
index1.php?pollname=
principal.php?to=
default.php?play=
page.php?g=
nota.php?pg=
blank.php?destino=
blank.php?z=
components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path=
module_db.php?pivot_path= module_db.php?pivot_path=”
/classes/adodbt/sql.php?classes_dir= /classes/adodbt/sql.php?classes_dir=”
components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_p ath=
com_extended_registration
smarty_config.php?root_dir= “smarty”
include/editfunc.inc.php?NWCONF_SYSTEM[server_path]= site:.gr
send_reminders.php?includedir= “send_reminders.php?includedir=”
components/com_rsgery/rsgery.html.php?mosConfig_absolute_path= com_rsgery
inc/functions.inc.php?config[ppa_root_path]= “Index – Albums” index.php
/components/com_cpg/cpg.php?mosConfig_absolute_path= com_cpg”
[Script Path]/admin/index.php?o= admin/index.php”;
/admin/index.php?o= admin/index.php”;
/modules/coppermine/themes/coppercop/theme.php?THEME_DIR= coppermine
/components/com_extcalendar/admin_events.php?CONFIG_EXT[LANGUAGES_DIR]= com_extcalendar
admin/doeditconfig.php?thispath=../includes&config[path]= “admin”
/components/com_simpleboard/image_upload.php?sbp= com_simpleboard”
components/com_simpleboard/image_upload.php?sbp= com_simpleboard”
/modules/coppermine/themes/coppercop/theme.php?THEME_DIR= coppermine
mwchat/libs/start_lobby.php?CONFIG[MWCHAT_Libs]=
zentrack/index.php?configFile=
inst/index.php?lng=../../include/main.inc&G_PATH=
pivot/modules/module_db.php?pivot_path=
include/write.php?dir=
includes/header.php?systempath=
becommunity/community/index.php?pageurl=
agendax/addevent.inc.php?agendax_path=
myPHPCalendar/admin.php?cal_dir=
yabbse/Sources/Packages.php?sourcedir=
zboard/zboard.php
path_of_cpcommerce/_functions.php?prefix
dotproject/modules/projects/addedit.php?root_dir=
dotproject/modules/projects/view.php?root_dir=
dotproject/modules/projects/vw_files.php?root_dir=
dotproject/modules/tasks/addedit.php?root_dir=
dotproject/modules/tasks/viewgantt.php?root_dir=
My_eGery/public/displayCategory.php?basepath=
modules/My_eGery/public/displayCategory.php?basepath=
modules/4nAlbum/public/displayCategory.php?basepath=
modules/coppermine/themes/default/theme.php?THEME_DIR=
modules/agendax/addevent.inc.php?agendax_path=
modules/xoopsgery/upgrade_album.php?GERY_BASEDIR=
modules/xgery/upgrade_album.php?GERY_BASEDIR=
modules/coppermine/include/init.inc.php?CPG_M_DIR=
shoutbox/expanded.php?conf=
library/editor/editor.php?root=
library/lib.php?root=
e107/e107_handlers/secure_img_render.php?p=
main.php?x=
*default.php?page=
*default.php?bOdy=
*index.php?url=
*index.php?arquivo=
index.php?include=
index.php?visualizar=
index.php?pagina=
index.php?page=
index.php?p=
index.php?cont=
index.php?x=
index.php?cat=
index.php?site=
index.php?configFile=
index.php?do=
index2.php?x=
Index.php?id=
template.php?pagina
inc/step_one_tables.php?server_inc=
GradeMap/index.php?page=
admin.php?cal_dir=
path_of_cpcommerce/_functions.php?prefix=
contacts.php?cal_dir=
convert-date.php?cal_dir=
album_portal.php?phpbb_root_path=
mainfile.php?MAIN_PATH=
dotproject/modules/files/index_table.php?root_dir=
gery/init.php?HTTP_POST_VARS=
pm/lib.inc.php?pm_path=
ideabox/include.php?gorumDir=
cgi-bin/index.cgi?page=
cgi-bin/awstats.pl?update=1&logfile=
cgi-bin/awstats/awstats.pl?configdir
cgi-bin/ikonboard.cgi
cgi-bin/acart/acart.pl?&page=
cgi-bin/quikstore.cgi?category=
cgi-bin/ubb/ubb.cgi?g=
cgi-bin/hinsts.pl?
cgi-bin/bp/bp-lib.pl?g=
ccbill/whereami.cgi?g=ls
cgi-bin/telnet.cgi
cgi-bin/1/cmd.cgi
calendar.pl?command=login&fromTemplate=
encore/forumcgi/display.cgi?preftemp=temp&page=anonymous&file=
events.cgi?t=
powerup.cgi?a=latest&t=
lc.cgi?a=
news.cgi?a=114&t=
biznews.cgi?a=33&t=
jobs.cgi?a=9&t=
articles.cgi?a=34&t=
events.cgi?a=155&t=
latinbitz.cgi?t=
newsdesk.cgi?t=
media.cgi?a=11&t=
reporter.cgi?t=
news.cgi?t=
newsupdate.cgi?a=latest&t=
deportes.cgi?a=latest&t=
news.cgi?a=latest&t=
whereami.cgi?g=id
auktion.pl?menue=
i-m/i-m.cgi?p=
vote.pl?action=show&id=
shop.pl/page=
newsdesk.cgi?a=latest&t=
fileseek.cgi?head=&foot=
cgi-bin/probe.cgi?olddat=
emsgb/easymsgb.pl?print=
app/webeditor/login.cgi?username=&command=simple&do=edit&passwor d=&file=
csv_db/csv_db.cgi?fil e=file.extention
cgi-bin/jammail.pl?job=showoldmail&mail=
cgi-bin/bbs/read.cgi?file=
support_page.cgi?file_name=
index.php?include=
index.php?open=
index.php?visualizar=
main.php?x=
main.php?page=
index.php?meio.php=
index.php?page=
index.php?action=
index5.php?configFile=
index5.php?page=
index5.php?content=
index5.php?x=
index5.php?open=
index5.php?m=
index5.php?site=
index5.php?cat=
index.php?d=
index.php?a=
index.php?b=
index.php?c=
index.php?e=
index.php?f=
index.php?g=
index.php?h=
index.php?i=
index.php?j=
index.php?k=
index.php?l=
index.php?m=
index.php?n=
index.php?o=
index.php?p=
index.php?q=
index.php?r=
index.php?s=
index.php?t=
index.php?u=
index.php?v=
index.php?x=
index.php?y=
index.php?z=
index.php?loc=
index.php?seite=
index2.php?d=
index2.php?a=
index.php?ir=
index.php?secao=
index2.php?b=
index2.php?c=
index2.php?e=
index2.php?f=
index2.php?g=
index2.php?h=
index2.php?i=
index2.php?j=
index2.php?k=
index2.php?l=
index2.php?m=
index2.php?n=
index2.php?o=
index2.php?p=
index2.php?q=
index2.php?r=
index2.php?s=
index2.php?t=
index2.php?u=
index2.php?v=
index2.php?x=
index2.php?y=
index2.php?z=
index5.php?inc=
index5.php?pg=
index5.php?lv1=
index.php?sub=
index.php?sub2=
index.php?pg=
index.php?lv1=
index.php?directfile=
index.php?funcion=
index.php?ll=
index.php?lnk=
index5.php?main=
index5.php?include=
index5.php?root=
index5.php?pagina=
index.php?theme=
index.php?acao=
index5.php?cont=
index5.php?pag=
index5.php?p=
index5.php?lang=
index5.php?language=
template.php?pagina=
llindex.php?sub=
index2.php?pg=
index2.php?lv1=
index2.php?sub=
index2.php?directfile=
index2.php?funcion=
index2.php?sub2=
index2.php?ll=
index2.php?lnk=
index5.php?bOdy=
index5.php?visualizar=
index5.php?do=
index2.php?theme=
index2.php?acao=
index2hp?aa=
index3hp?aa=
index.php?server=
index.php?cal=
index.php?prefix=
index.php?root_PATH=
index.php?path=
index.php?gorumdir=
index2.php?cont=
index2.php?server=
index2.php?cal=
index2.php?prefix=
index2.php?root_PATH=
index2.php?path= AKI
exibir.php?abre=
exibir.php?page=
exibir.php?get=
exibir.php?p=
exibir.php?lang=
index2.php?gorumdir=
index2.php?pag=
index2.php?lang=
index2.php?language=
index2.php?content=
index.php?middle=
step_one_tables.php?server_inc=
grademade/index.php?page=
phpshop/index.php?base_dir=
admin.php?cal_dir=
_functions.php?prefix=
contacts.php?cal_dir=
convert-date.php?cal_dir=
album_portal.php?phpbb_root_path=
mainfile.php?MAIN_PATH=
index_table.php?root_dir=
affich.php?base=
init.php?HTTP_POST_VARS=
lib.inc.php?pm_path=
include.php?gorumDir=
start_lobby.php?CONFIG[MWCHAT_Libs]=
index.php?configFile=
module_db.php?pivot_path=
index.php?lng=../../include/main.inc&G_PATH=
initdb.php?absolute_path=
step_one.php?server_inc=
pipe.php?HCL_path=
write.php?dir=
new-visitor.inc.php?lvc_include_dir=
header.php?systempath=
theme.php?THEME_DIR=
index.php?pageurl=
expanded.php?conf=
addevent.inc.php?agendax_path=
Packages.php?sourcedir=
_functions.php?prefix
addedit.php?root_dir=
view.php?root_dir=
vw_files.php?root_dir=
viewgantt.php?root_dir=
displayCategory.php?basepath=
default/theme.php?THEME_DIR=
upgrade_album.php?GERY_BASEDIR=
init.inc.php?CPG_M_DIR=
mod_mainmenu.php?mosConfig_absolute_path=
editor.php?root=
lib.php?root=
secure_img_render.php?p=
default.php?page=
arquivo.php?data=
word.php?id=
mod.php?mod=
index.php?plugin=
sendpage.php?page=
index.php?hl=
modules.php?op=
index.php?templateid=
article.php?sid=
.php?my=”
.php?a=”
.php?f=”
.php?z=”
.php?zo=”
.php?la=”
.php?perm=”
.php?item_id=”
.php?f_content=”
.php?from=”
.php?mid=”
.php?lest=”
.php?east=”
.gov.br/index.php?arquivo
index.php?ver=
/contenido/classes/class.inuse.php
news.php?CONFIG[script_path]=
index.php?vpagina=
index.php?arq=
index.php?pg_ID=
index.php?pg=
home.php?page=
*/newbb/print.php?forum=*topic_id=*”
*/newbb_plus/*=”
*/news/archive.php?op=*year=*month=*”
.php?abrir=”
.php?act=”
.php?action=”
.php?ad=”
.php?archive=”
.php?area=”
.php?article=”
.php?b=”
*/tsep/include/colorswitch.php?tsep_config[absPath]=*”
.php?back=”
.php?base=”
.php?basedir=”
.php?bbs=”
.php?board_no=”
.php?bOdy=”
.php?c=”
.php?cal_dir=”
.php?cat=”
/include/init.inc.php?CPG_M_DIR=”
/includes/mx_functions_ch.php?phpbb_root_path=”
/modules/MyGuests/signin.php?_AMGconfig[cfg_serverpath]=”
.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=”
.php?subd=”
.php?subdir=”
.php?category=”
.php?choice=”
.php?class=”
.php?club_id=”
.php?cod.tipo=”
.php?cod=”
.php?conf=”
.php?configFile=”
.php?cont=”
.php?corpo=”
.php?cvsroot=”
.php?d=”
.php?da=”
.php?date=”
.php?debug=”
.php?debut=”
.php?default=”
.php?destino=”
.php?dir=”
.php?display=”
.php?file_id=”
.php?file=”
.php?filepath=”
.php?flash=”
.php?folder=”
.php?for=”
.php?form=”
.php?formatword=”
.php?funcao=”
.php?function=”
.php?g=”
.php?get=”
.php?go=”
.php?gorumDir=”
.php?goto=”
.php?h=”
.php?headline=”
.php?i=”
.php?inc=”
.php?include=”
.php?includedir=”
.php?inter=”
.php?itemid=”
.php?j=”
.php?join=”
.php?jojo=”
.php?l=”
.php?lan=”
.php?lang=”
.php?link=”
.php?load=”
.php?loc=”
.php?m=”
.php?main=”
.php?meio.php=”
.php?meio=”
.php?menu=”
.php?menuID=”
.php?mep=”
.php?month=”
.php?mostra=”
.php?n=”
.php?name=”
.php?nav=”
.php?new=”
.php?news=”
.php?next=”
.php?nextpage=”
.php?o=”
.php?op=”
.php?open=”
.php?option=”
.php?origem=”
.php?Page_ID=”
.php?pageurl=”
.php?para=”
.php?part=”
.php?pg=”
.php?pid=”
.php?place=”
.php?play=”
.php?plugin=”
.php?pm_path=”
.php?pollname=”
.php?post=”
.php?pr=”
.php?prefix=”
.php?prefixo=”
.php?q=”
.php?redirect=”
.php?ref=”
.php?refid=”
.php?regionId=”
.php?release_id=”
.php?release=”
.php?return=”
.php?root=”
.php?S=”
.php?searchcode_id=”
.php?sec=”
.php?secao=”
.php?sect=”
.php?sel=”
.php?server=”
.php?servico=”
.php?sg=”
.php?shard=”
.php?show=”
.php?sid=”
.php?site=”
.php?sourcedir=”
.php?start=”
.php?storyid=”
.php?str=”
.php?subject=”
.php?sufixo=”
.php?systempath=”
.php?t=”
.php?task=”
.php?teste=”
.php?theme_dir=”
.php?thread_id=”
.php?tid=”
.php?title=”
.php?to=”
.php?topic_id=”
.php?type=”
.php?u=”
.php?url=”
.php?urlFrom=”
.php?v=”
.php?var=”
.php?vi=”
.php?view=”
.php?visual=”
.php?wPage=”
.php?y=”
/components/com_forum/download.php?phpbb_root_path= com_forum
[Script Path]/admin/index.php?o= admin/index.php”
/admin/index.php?o= admin/index.php”
index.php?menu=deti&page= index.php?menu=deti&page”
include/editfunc.inc.php?NWCONF_SYSTEM[server_path]= intitle:Newswriter
/classes/adodbt/sql.php?classes_dir= “index2.php?option=rss”
components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_p ath= com_extended_registration
index.php?RP_PATH= reviewpost
index.php?pagename= phpquiz
administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= /com_remository/
/components/com_extcalendar/admin_events.php?CONFIG_EXT[LANGUAGES_DIR]= com_extcalendar
components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path= “com_phpshop”
/tools/send_reminders.php?includedir= day.php?date=
SQuery/lib/gore.php?libpath= “/SQuery/”
m2f/m2f_phpbb204.php?m2f_root_path= /m2f_usercp.php?
wamp_dir/setup/yesno.phtml?no_url= “setup”
components/com_forum/download.php?phpbb_root_path= “com_forum”
index.php?p= “/index.php?p=*.php”
index.php?pag= “/index.php?pag=*.php”
template.php?page= “/template.php?page=*.php”
main.php?page= “/main.php?page=*.php”
index2.php?pag= “/index2.php?pag=*.php”
home.php?pag= “/home.php?pag=*.php”
index.php?page= “/index.php?page=*.php”
default.php?page= “/default.php?page=*.php”
inc/cmses/aedatingCMS.php?dir[inc]= “flashchat”
/modules/vwar/admin/admin.php?vwar_root= vwar
bb_usage_stats/include/bb_usage_stats.php?phpbb_root_path= forum
encapscms_PATH/core/core.php?root= encapscms_PATH
inc/session.php?sessionerror=0&lang= inc
path/index.php?function=custom&custom= path
[MyAlbum_DIR]/language.inc.php?langs_dir= [MyAlbum_DIR]
/inc/irayofuncs.php?irayodirhack= “/inc/”
index.php?function=custom&custom= custom
Cyberfolio/portfolio/msg/view.php?av= Cyberfolio
/modules/kernel/system/startup.php?CFG_PHPGIGGLE_ROOT= CFG_PHPGIGGLE_ROOT
*mwchat/libs/start_lobby.php?CONFIG[MWCHAT_Libs]=
*pivot/modules/module_db.php?pivot_path=
*inc/header.php/step_one.php?server_inc=
*inst/index.php?lng=../../include/main.inc&G_PATH=
*inc/pipe.php?HCL_path=
*include/new-visitor.inc.php?lvc_include_dir=
*includes/header.php?systempath=
*support/mailling/maillist/inc/initdb.php?absolute_path=
*coppercop/theme.php?THEME_DIR=
*zentrack/index.php?configFile=
*include/write.php?dir=
include/new-visitor.inc.php?lvc_include_dir=
includes/header.php?systempath=
support/mailling/maillist/inc/initdb.php?absolute_path=
coppercop/theme.php?THEME_DIR=
becommunity/community/index.php?pageurl=
shoutbox/expanded.php?conf=
agendax/addevent.inc.php?agendax_path=
myPHPCalendar/admin.php?cal_dir=
yabbse/Sources/Packages.php?sourcedir=
zboard/zboard.php
path_of_cpcommerce/_functions.php?prefix
dotproject/modules/tasks/viewgantt.php?root_dir=
My_eGery/public/displayCategory.php?basepath=
modules/My_eGery/public/displayCategory.php?basepath=
modules/4nAlbum/public/displayCategory.php?basepath=
modules/coppermine/themes/default/theme.php?THEME_DIR=
modules/agendax/addevent.inc.php?agendax_path=
modules/xoopsgery/upgrade_album.php?GERY_BASEDIR=
modules/xgery/upgrade_album.php?GERY_BASEDIR=
modules/coppermine/include/init.inc.php?CPG_M_DIR=
modules/mod_mainmenu.php?mosConfig_absolute_path=
pivot/modules/module_db.php?pivot_path=
library/editor/editor.php?root=
library/lib.php?root=
e107/e107_handlers/secure_img_render.php?p=
main.php?x=
main.php?page=
*default.php?page=
*default.php?bOdy=
default.php?page=
*index.php?url=
*index.php?arquivo=
index.php?meio.php=
index.php?include=
index.php?open=
index.php?visualizar=
index.php?pagina=
index.php?inc=
index.php?page=
index.php?pag=
index.php?p=
index.php?content=
index.php?cont=
index.php?c=
index.php?meio=
index.php?x=
index.php?cat=
index.php?site=
index.php?configFile=
index.php?action=
index.php?do=
index2.php?x=
Index.php?id=
index2.php?content=
template.php?pagina
inc/step_one_tables.php?server_inc=
phpshop/index.php?base_dir=
admin.php?cal_dir=
path_of_cpcommerce/_functions.php?prefix=
contacts.php?cal_dir=
convert-date.php?cal_dir=
album_portal.php?phpbb_root_path=
mainfile.php?MAIN_PATH=
dotproject/modules/files/index_table.php?root_dir=
html/affich.php?base=
gery/init.php?HTTP_POST_VARS=
pm/lib.inc.php?pm_path=
ideabox/include.php?gorumDir=
modules/tasks/viewgantt.php?root_dir=
cgi-bin/index.cgi?page=
cgi-bin/awstats.pl?update=1&logfile=
cgi-bin/awstats/awstats.pl?configdir
cgi-bin/ikonboard.cgi
cgi-bin/acart/acart.pl?&page=
cgi-bin/quikstore.cgi?category=
cgi-bin/ubb/ubb.cgi?g=
cgi-bin/hinsts.pl?
cgi-bin/bp/bp-lib.pl?g=
ccbill/whereami.cgi?g=ls
cgi-bin/telnet.cgi
cgi-bin/1/cmd.cgi
encore/forumcgi/display.cgi?preftemp=temp&page=anonymous&file=
cgi-sys/guestbook.cgi?user=cpanel&template=
account.php?action= account.php?action=
account.php?action= iurl:”account.php?action=”
account.php?action= iurl:”.php?action=”
account.php?action= .php?action=
accounts.php?command= .php?command=”
addmedia.php?factsfile[$LANGUAGE]= phpGedView
.php?p=”
announcements.php?phpraid_dir= “phpraid”
announcements.php?phpraid_dir= “phpraid signup”
announcements.php?phpraid_dir= php raid
announcements.php?phpraid_dir= phpraid
announcements.php?phpraid_dir= phpraid signup
arg.php?arg= .php?arg=
args.php?arg= .php?arg=
atom.php5?page= .php5?id=
auto.php?inc= .php?inc=”
auto.php?page= auto.php?page=
base.php?f1= base.php?f1=”
base.php?f1= .php?f1=”
board.php?see= board.php?see=”
board.php?see= .php?see=”
book.php5?page= php5?page=
/calendar.php?l= calendar.php?l=”
/calendar.php?l= calendar.php?l=
/calendar.php?p= calendar.php?p=”
/calendar.php?p= calendar.php?p=
/calendar.php?pg= calendar.php?pg=”
/calendar.php?pg= calendar.php?pg=
/calendar.php?s= calendar.php?s=”
/calendar.php?s= calendar.php?s=
/addpost_newpoll.php?addpoll=preview&thispath= /ubbthreads/”
/addpost_newpoll.php?addpoll=preview&thispath= /ubbthreads/
/addpost_newpoll.php?addpoll=preview&thispath= “/ubbthreads/”
/addpost_newpoll.php?addpoll=preview&thispath= “ubbthreads”
/addpost_newpoll.php?addpoll=preview&thispath= ubbthreads
administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= “com_remository”
administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= “com_remository
administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= com_remository
administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= index.php?option=com_remository
administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= “Mambo”
administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path= Mambo
/administrator/components/com_serverstat/inst.serverstat.php?mosConfig_absolute_path= com_serverstat
/administrator/components/com_serverstat/inst.serverstat.php?mosConfig_absolute_path= “com_serverstat”
canal.php?meio= .php?meio=”
/classes/adodbt/sql.php?classes_dir= “adobt”
/classes/adodbt/sql.php?classes_dir= adobt
/classes/adodbt/sql.php?classes_dir= adobt
/classified_right.php?language_dir= “classified.php”
/classified_right.php?language_dir= classified.php
/classified_right.php?language_dir= classified.php phpbazar
/classified_right.php?language_dir= “phpbazar”
/classified_right.php?language_dir= phpbazar
/coin_includes/constants.php?_CCFG[_PKG_PATH_INCL]= “phpCOIN”
/coin_includes/constants.php?_CCFG[_PKG_PATH_INCL]= phpCOIN
/coin_includes/constants.php?_CCFG[_PKG_PATH_INCL]= “phpCOIN 1.2.3″
/coin_includes/constants.php?_CCFG[_PKG_PATH_INCL]= phpCOIN 1.2.3
/coin_includes/constants.php?_CCFG[_PKG_PATH_INCL]= “powered by phpCOIN 1.2.3″
/coin_includes/constants.php?_CCFG[_PKG_PATH_INCL]= powered by phpCOIN 1.2.3
/components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_p ath= com_extended_registration
/components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_p ath= “com_extended_registration”
/components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_p ath= com_extended_registration
/components/com_facileforms/facileforms.frame.php?ff_compath= com_facileforms”
ThíchThích · · Chia sẻ
Những bình luận hàng đầu
10 người thích điều này.
Share By Stox
1- Local Attack Là gi ?
Local attack là kỹ thuật hack website bằng hình thức tấn công từ nội bộ bên trong. Nghĩa là tấn công vào một website có bảo mật kém chung server với website mục tiêu. Sau đó tấn công sang website mục tiêu bằng kỹ thuật Local.
2- Các bước thực hiện trong local attack
- Xác định các website chung server với site mục tiêu.
http://ceh.vn/Reverse/
http://www.vhbgroup.net/ip/
- Check qua toàn bộ server, xác định site có bảo mật kém có thể tấn công bằng các hình thức:
SQLI, RLI, LFI, XSS, DNN, IIS, Bugs….
- Up shell lên website có bảo mật kém
- Local sang Site mục tiêu
3- Nhiệm vụ của local
- Tìm file config
- Thu thập thông tin login vào cơ sở dữ liệu của victim
- Login vào csdl, xác định username và password được mã hóa của victim
- Crack hoặc thay đổi password của victim.
4- Các kỹ thuật Local
- Sử dụng các lệnh cơ bản: Dir, cat,….
- Symlink cơ bản.
- Symlink kết hợp với SSI.
- Face symlink, Indirec Symlink
- Backconnect
- Via SQL
- Các kỹ thuật Bypass
……
Đỉnh cao của kỹ thuật local là Get root.
Bài tiếp theo mình sẽ giới thiệu và demo tất cả các loại shell thông dụng và đặc biệt phục vụ cho công việc Local Attack.
Read More
