|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
is there anybody know that ... ? |
|
Posted: Sat Aug 19, 2006 2:28 am |
|
|
AriA |
Regular user |
|
|
Joined: Aug 19, 2006 |
Posts: 5 |
|
|
|
|
|
|
|
hi
i got a shell from a bigg ass server
too many sites can be defaced ( but i dont care 'bout all of em , i jst want one of em and i dont wanna give up )
so , i haven't access for writin on that's directory
well , i think i must get root access for deface that site
everything is ok but i cant get a back connect ( well , i think the fuckin firewall stop it )
everybody can help me ? how can i solve this problem and wtf can i do ? |
|
|
|
|
|
Re: is there anybody know that ... ? |
|
Posted: Sat Aug 19, 2006 8:34 am |
|
|
Zipper_ |
Active user |
|
|
Joined: Aug 03, 2005 |
Posts: 29 |
|
|
|
|
|
|
|
AriA wrote: | hi
i got a shell from a bigg ass server
too many sites can be defaced ( but i dont care 'bout all of em , i jst want one of em and i dont wanna give up )
so , i haven't access for writin on that's directory
well , i think i must get root access for deface that site
everything is ok but i cant get a back connect ( well , i think the fuckin firewall stop it )
everybody can help me ? how can i solve this problem and wtf can i do ? |
To the best of my knowledge u cant remote root apache as thier is no root permission to be rooted as an alternative try maybe trying remote root through another exploit if you dont have permission to view /etc/passwd via shell try as waraxe explained cgi/pl exploits |
|
|
|
|
|
|
|
|
Posted: Sat Aug 19, 2006 11:20 am |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
Rooting is recommended of course - this gives you opportunity to clean logs, install sniffer and do other interesting and valuable things. Just look for local root exploits for that specific kernel version.
Now - if there is restrictive firewall and/or NAT, so that normal shell is not working, then try to use reverse shell:
http://www.plenz.com/reverseshell
Best! |
|
|
|
|
|
|
|
|
Posted: Sat Aug 19, 2006 11:39 am |
|
|
AriA |
Regular user |
|
|
Joined: Aug 19, 2006 |
Posts: 5 |
|
|
|
|
|
|
|
perhaps its better for me to say my problem in another way
i just wanna stop the firewall
i told this problem to my friend in GHS (Greek Hackers Sabotage) , and he just said try to stop the firewall ( same 2 my thought )
tnx Zipper 4 ur help , maybe youre right
but i think etc/passwd cant help me because it's shadow and i couldnt understand some parts of your answer ( because of my poor english )
im thinkin other problems can be solved
Remember , how can i stop this damned fire(fucker)wall ?
Thanks In Advance , and tnx to Zipper 4 his answer |
|
|
|
|
|
|
|
|
Posted: Sat Aug 19, 2006 8:25 pm |
|
|
AriA |
Regular user |
|
|
Joined: Aug 19, 2006 |
Posts: 5 |
|
|
|
|
|
|
|
waraxe wrote: | Rooting is recommended of course - this gives you opportunity to clean logs, install sniffer and do other interesting and valuable things. Just look for local root exploits for that specific kernel version.
Now - if there is restrictive firewall and/or NAT, so that normal shell is not working, then try to use reverse shell:
http://www.plenz.com/reverseshell
Best! |
tnx man 4 ur useful help
i have another one reverse shell from Iran Hackers Sabotage and dc.pl
but when i open a port on my system and try to connect it with server i don't get any result , so the most important problem is how can i get a reverse shell with this problem? |
|
|
|
|
|
|
|
|
Posted: Sun Aug 20, 2006 4:48 am |
|
|
Zipper_ |
Active user |
|
|
Joined: Aug 03, 2005 |
Posts: 29 |
|
|
|
|
|
|
|
waraxe wrote: |
Now - if there is restrictive firewall and/or NAT, so that normal shell is not working, then try to use reverse shell:
http://www.plenz.com/reverseshell
Best! |
i tried that small reverse shell on my system but i seem to be getting these errors
Code: | C:\nc>nc.exe
Cmd line: netcat -v -l -p 3333
netcat: forward host lookup failed: h_errno 11001: HOST_NOT_FOUND |
i am running xp pro even though i know it is supported on nix 95 nt progs usually work for me that are coded for nt i get te command line and errors just dont execte any ideas? |
|
|
|
|
www.waraxe.us Forum Index -> Newbies corner
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|