Wubi Posted August 2, 2012 Report Posted August 2, 2012 Description: This video is to demonstrate how a hacker can hack a shared server using a Symlink Bypass.The attacking can read configuration on other users who are hosting on the same server as the compromised website.First the attack needs to find a vulnerable website so he can get shell to the server to upload the symlinks bypass toolFrom there the attack has to locate the other users on the same server and then try to figure outwhere or if there is a configuration ex; wp-config.phpIt will then open the config.php and save the inside of the config.php as a txt file.From there the attacker would be able to access the victims SQL data base and change the information.Files for this video can be found on ZARABYTE.COMPlease be sure to check out the forum if you need help.Programs used:Backtrack 5 RC2 Symlink Bypass user by zarabyte MySQL Interface Shell GNY Shell ZaraByte File UploaderDisclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.Original Source: Quote
FaramirSV Posted August 2, 2012 Report Posted August 2, 2012 asta este... thx friend ... te felicit!,RST are oameni de valoare aici ... Quote
DarkPanda Posted August 4, 2012 Report Posted August 4, 2012 (edited) Interesant? chestie...abia a?tept s? îmi explice .CameLoT mai pe române?te c? nu le prea am cu hacking-ul...sunt la început oricum el controleaz? tot smshosting.ro cu aceast? metod?... Edited August 4, 2012 by DarkPanda Quote
