iExploit

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Apply for Membership

Top Posters

Who's Online (0)

Powered by Vanilla. Made with Bootstrap.
Looking to introduce yourself? Look no further, and click here! We also have IRC! [irc.evilzone.org #iexploit]
Please i need Help
  • Hardcore-Gabber
    Posts: 118
    Please someone cane help me ..

    I have founde an Sql Injection vuln in a site and i am able with pangolin to read file like /etc/passwd and others and also i am able to write files ..

    My problem is that i cannot founde the root path of the site .. in root path i mean the site public_html to upload a shell..

    I have tried to read the /etc/passwd file then i have tried the users as user/home/public_html var/www/user/public_html and some others but i cannot finde the path ..

    Thanks..

    http://balmoralservices.org/hardcore/gabber.png
  • Sh3llc0d3
    Posts: 1,910
    On a server "/var/www/" is the webserver root usually.

    Unrelated question, is the site you have your signature on yours?

    [spoiler=Reason]File Info

    Report date: 2011-02-28 01:12:27 (GMT 1)
    File name: index
    File size: 7656 bytes
    MD5 Hash: 6bca3dcc2aafa346eac403bf7b0963fd
    SHA1 Hash: a4d13dd3166c6d8455373f9cc1de7e089ca3df9d
    Detection rate: 1 on 16 (6%)
    Status: INFECTED

    Detections

    a-squared -
    Avast - HTML:Script-inf
    AVG -
    Avira AntiVir -
    BitDefender -
    ClamAV -
    Comodo -
    Dr.Web -
    F-PROT6 -
    Ikarus T3 -
    Kaspersky -
    NOD32 -
    Panda -
    TrendMicro -
    VBA32 -
    VirusBuster -

    Scan report generated by
    NoVirusThanks.org

    Avast blocked the page lol, I'm gonna take it as a false positive.[/spoiler]
  • Hardcore-Gabber
    Posts: 118
    Please cane you tell me some files that contains passwords that i cane read .. i mean Ftp passwords mysql passwords and others ..

    The Os is Centos 5.5

    Thanks
  • chroniccommand
    Posts: 1,389
    said:


    Please cane you tell me some files that contains passwords that i cane read .. i mean Ftp passwords mysql passwords and others ..

    The Os is Centos 5.5

    Thanks



    /etc/passwd
    /etc/shadow

    You'll find the passwords for the users their. Look for users like
    postgres(Postgres DB)
    sshd(SSH daemon)
    www-data(Apache)
    mysql(Self explanatory)
    and of course, the root user.

    If you obtain the password you can

    su <user>

    And you'll have that users rights. I'd suggest root as root can do anything. If you just wanna fuck with MySQL then go for the mysql. But your choice.

    Good luck.
  • Hardcore-Gabber
    Posts: 118
    Thanks .. hope i will have luck ..

    This is first time when i am rooting a server ..
  • Xin
    Posts: 3,251
    The directory if it is a shared server wont be /var/www/ from teh servers i've routed it is,

    /var/www/customer_name/public_html

    So find the customer name in /etc/passwd/ it will probably be the first 7 letters of the url then the domain on the end eg iexploiorg .
    Xin
  • Hardcore-Gabber
    Posts: 118
    Thanks xinapse will try it ..

    Also please cane you answer my questiom that i have pm`ed you ..

    Thanks
Add a Comment