Post: Tutorial: Defacing a website/forum
Options
03-05-2011, 09:54 PM
#1
St0rM
Treasure hunter
Step One You will need a website that has vulnerabilities
o do so you will need a vulnerability scanner witch can be found here, You must login or register to view this content.
Step Two After you have found your victim of your website of the defacement, you will need to scan for the vulnerabilities, do to so please follow this YouTube tutorial on how to do so, [ame=https://www.youtube.com/watch?v=uM6X42rXRoE]YouTube - Web scanning made easy with Acunetix Web Vulnerability Scanner[/ame]
Step Three After you have found the vulnerability you can do multiple attacks against your victim, today we will be doing a very simple SQLI Injection, since I am quite lazy today I will be showing you someone else's tutorial found on YouTube as well, here is the tutorial I've found suitable for this written tutorial we are doing today
[ame=https://www.youtube.com/watch?v=2p-7VrMWP9A]YouTube - SQLi Injection( I messed up again, mute sound and follow along)[/ame]
Tools you will need to preform this,
SQL Helper witch can be found here, You must login or register to view this content.
Step Four If the admin has hashes you can crack the md5 hash here You must login or register to view this content.
If you need any more extra help please contact me. =D
By the way, Be safe & not stupid
Edit for the whiners, I will not give you a full detail tutorial on how to access the ftp or upload a shell, etc, but the tutorial will give you a idea on how it could possibly be done.
03-06-2011, 07:46 AM
#2
Alexis Rhodes
#get rekt
03-06-2011, 06:09 PM
#6
Tuhoaja
Banned
Originally posted by St0rM
Witch can lead into a mysql dump, etc, ofc I'm not going to give you full detail tut on how to deface. /facepalm
Why did you name that thread to Deface Tutorial then ... /facepalm
And Deface is simple,
1) Get admins pass (XSS, SQL Injection, Rat, RFI, LFI )
2) Sign up as admin and find hosting plave
3) Upload your shell
4) Go to your shell and paste your deface script to index.php...
03-06-2011, 06:23 PM
#7
St0rM
Treasure hunter
Originally posted by Tuhoaja
Why did you name that thread to Deface Tutorial then ... /facepalm
And Deface is simple,
1) Get admins pass (XSS, SQL Injection, Rat, RFI, LFI )
2) Sign up as admin and find hosting plave
3) Upload your shell
4) Go to your shell and paste your deface script to index.php...
And Deface is simple,
1) Get admins pass (XSS, SQL Injection, Rat, RFI, LFI )
2) Sign up as admin and find hosting plave
3) Upload your shell
4) Go to your shell and paste your deface script to index.php...
This is a gaming forum, not a hacking forum..Its for the script kiddies, U Seem mad.
The following user thanked St0rM for this useful post:
Copyright © 2026, NextGenUpdate.
All Rights Reserved.
