Waraxe IT Security Portal

revenant · Regular user

Allright, thanks for helping me. Can we use IRC so I can get a little help while I do this? This is my hacking virginity, so it would help. If you want, this is (kind of) my own personal channel. The only other person using it is my friend.

irc.gamesurge.net #toobin

My darwine is broken (gdi32.dll failed to initialize, happens even when i reinstall, so i cant use windows stuff)

Nice. I got Bars working on wine (CLI mode). Its taking a SHITLOAD of CPU. As in 175% of the User CPU (91% of total). How long will this take?

waraxe · Site admin

http://www.google.ee/search?client=firefox-a&rls=org.mozilla%3Aen-US%3Aofficial&channel=s&hl=et&q=bcc6d350f424f4b07ddcc6c64cf61dc3&lr=&btnG=Google+otsing

revenant · Regular user

Thats not right. It gets rejected. That can't be right... its the right pw for the hash. Where is the login form? Im just trying ftp.

revenant · Regular user

Ah, never mind. Im in the admin control panel. Now what?

waraxe · Site admin

http://www.waraxe.us/ftopict-2201.html

This should give you the access to execute arbitrary php code. Try phpinfo as for start.

revenant · Regular user

Nice. So if i keep this clandestine, i can use this site as something of a base of operations to execute code on this server!

waraxe · Site admin

Yes, so it seems Smile

revenant · Regular user

Eh! Here's a problem.

Warning: phpinfo() has been disabled for security reasons in /home/***/public_html/cutenews/data/Default.tpl on line 64

Could a shell be used to save a copy of this tpl file, edit it and reupload it? Or will the shell most likely be blocked also.

Another problem. When I tried to get the basic shell you linked me too into it:

Forbidden
You don't have permission to access /cutenews/index.php on this server.

Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.
Apache/1.3.41 Server at *** Port 80

[[No sensitive data !!]]

waraxe · Site admin

It's obvious, that server admins are implementing various security measures. Right now you have to get as much information about server software as possible. Start with phpversion(), if it's not disabled.

revenant · Regular user

oh shit. I misstyped phpversion and now i get...

Parse error: syntax error, unexpected T_STRING in /home/i***/public_html/cutenews/data/Default.tpl on line 64

every time i try to get into the template editor. im fucked. This happens in the WHOLE SITE, except the rest of the admin panel. Oh fuck fuck fuck.

Now all his news articles are gone too. Wow. Fuck.

waraxe · Site admin

Bad luck .... you must be more careful and not hurry things up. Best choice is to inject backdoor to the styles and then make all tests through it.
Example if(isset()...eval(base64_decode())...

revenant · Regular user

Is there anything you can do to repair the tpl file? If all the news things are gone, it might be possible to just leave that and dissapear afterwards, but i need the tpl fixed.