Have an account?
It looks like you're new here. If you want to get involved, click one of these buttons!
Apply for Membership
Who's Online (1)
Looking to introduce yourself? Look no further, and click here! We also have IRC! [irc.evilzone.org #iexploit]
Web Application Security
Mini Spoofing Tut
[*]Ever got to a page saying only "Only Admin can View this Page" or you do not have the correct browser to view this? Then this is for you. This is also good for basic useragent attacks that make the server think your admin.[/*:m][/list:u]
[*]To do this we will be using LiveHTTPHeaders Again, which you can download Here[/*:m][/list:u]
[*]Okay so refresh the page of the target server that says "you arent using the right browser or whatever, and load up LiveHTTPheaders, select Useragent and change it from IE Explorer or whatever to Mozilla/5.0 Firefox (Google to find the proper names) then press replay, (this bypasses browserfilters). Anyway to the MAIN one! :D When you need to be admin (or make the server think you admin) find the cookie and it should say something like user=visitor or userid=null, change this to admin or 1 or the admin cookie if its a particular exploit and this will make the server think your admin so you can view pages like cgi_bin or config.php etc.! This doesnt work on most servers, but if you know how to do it! Its another tool in your toolkit to test when wanting to hack a site like a pro, not A skid who just searchs for vuln sites! :D [/*:m][/list:u]
[align=center]WRITTEN 100% BY XINAPSE[/align]
Nice mini-tutorial brother !
Thanks about that ! :D
Glad you liked it mate xD
Add a Comment