ionut97 Posted September 9, 2012 Report Posted September 9, 2012 (edited) [#] Author : Shadow008[#] Reported On : HackersMedia.com[#] Country : Pakistani HackerNew BlogDNS 0day, Discovered By Shadow008Lets just say, any site pointing to Google server can Be Hacked and Defaced1st) Find a target where as its subdomain or its main domain is pointing to google or blogger server I.P2nd) If it is pointing to Google Server I.P, You will see a page 100% like this >> http://ghs.google.com/404. That’s an error.The requested URL / was not found on this server. That’s all we know.If that shows, That means its vul to BlogDNS 0day3rd) Go to http://www.blogger.com/ and Login / Create an account4th) Create a Blog5th) Name it anything you want as a subdomain for blogger.6th) Once blog is created, Go to Settings > Publishing > Switch To Advanced Mod and add that site URL domain. (example: direct.site.com) Please note that it MUST be pointing to google or blogger server I.P.and Save it.Clear You cache and go to that sites subdomain which you added. You will see its in your control .Now go to Design > Edit HTML > Revert to Classic Template > Add Deface Code There (Switch of Navbar to OFF) and Hit Save, Clear Cache and check site will be defaced .Note: I have used Old Blogger Interface, I don't use the New Blogger Interface as I find the old one more easyI hope it was clear and understoodHave fun and don't share.Sites which are hacked using this method:The Hacker News [ THN ] - Best Security BlogMirror: direct.thehackernews.com hacked. Notified by Shadow008Hacked: http://mail.sec4ever.com/Mirror: mail.sec4ever.com hacked. Notified by Shadow008 http://direct.pkhackerz.com/Mirror: direct.pkhackerz.com hacked. Notified by Shadow008http://mail.dl4hacks.net/Mirror: ::::::Add Your Deface::::::Sursa: RW Edited September 9, 2012 by ionut97 Quote
