Kamu Ingin Request Artikel? Klik Oke :)
Beranda
Bypass
Deface

Cara Deface Poc Bypass Admin

Easy Deface Bypass Admin Upload Shell Backdoor _<

Baca Juga

Deface Bypass Admin Upload Shell

Assalamualaikum Brother

Halo  Broo kali ini saya akan membagikan bagaimana Cara Deface Poc Bypass Admin Login..

Oke langsung saja ngedork dulu.. Kamu bisa gunakan dork di bawah ini _<

Dork :

  1. inurl:admin.php
  2. inurl:admin/login.php
  3. inurl:adminlogin.php
  4. inurl:adminhome.php
  5. inurl:admin_login.php
  6. inurl:administratorlogin.php
  7. inurl:/Manager/index.php
  8. inurl:login/administrator.php
  9. inurl:administrator_login.php 
  10. inurl:admin/addproduct.asp
  11. inurl:admin/user.asp
  12. inurl:admin/ addpage.php
  13. inurl:admin/ gallery.asp
  14. inurl:admin/image.asp
  15. inurl:admin/adminuser.asp
  16. inurl:admin/productadd.asp
  17. inurl:admin/addadmin.asp
  18. inurl:admin/add_admin.asp
  19. inurl:admin/add_admin.php
  20. inurl:admin/addnews.asp
  21. inurl:admin/addpost
  22. inurl:admin/addforum.???
  23. inurl:admin/addgame.???
  24. inurl:admin/addblog.????
  25. inurl:admin/admin_detail.php
  26. inurl:admin/admin_area.php
  27. inurl:admin/product_add.php
  28. inurl:admin/additem.php
  29. inurl:admin/addstore.php
  30. inurl:admin/add_Products.???
  31. inurl:admin/showbook.???
  32. inurl:admin/selectitem.???
  33. allinurl:admin/addfile.???
  34. inurl:admin/addarticle.asp
  35. inurl:admin/addfile.asp
  36. inurl:admin/upload.php
  37. inurl:admin/upload.asp
  38. inurl:admin/addstory.php
  39. inurl:admin/addshow.php
  40. inurl:admin/addmember.asp
  41. inurl:admin/addinfo.asp
  42. inurl:admin/addcat.asp
  43. inurl:admin/cp.asp
  44. inurl:admin/productshow.asp
  45. inurl:admin/addjob.asp
  46. inurl:admin/addjob.???
  47. inurl:admin/addpic.???
  48. inurl:admin/viewproduct.???
  49. inurl:admin/addaccount.php
  50. inurl:admin/manage.php
  51. inurl:admin/addcontact.???
  52. inurl:admin/viewmanager.???
  53. inurl:admin/addschool.???
  54. inurl:admin/addproject.???
  55. inurl:admin/addsale.???
  56. inurl:admin/addcompany.???
  57. inurl:admin/payment.???
  58. inurl:user/emp.???
  59. inurl:admin/addmovie.???
  60. inurl:admin/addpassword.???
  61. inurl:admin/addemployee.???
  62. inurl:admin/addcat.???
  63. inurl:admin/admin.???
  64. inurl:admin/admincp.???
  65. inurl:admin/settings.???
  66. inurl:admin/addstate.???
  67. inurl:admin/addcountry.???
  68. inurl:admin/addmedia.???
  69. inurl:admin/addcode.???
  70. inurl:admin/addlinks.???
  71. inurl:admin/addcity.???
  72. inurl:admin/login.asp
  73. inurl:adminlogin.asp
  74. inurl:adminhome.asp
  75. inurl:admin_login.asp
  76. inurl:administratorlogin.asp
  77. inurl:login/administrator.asp
  78. inurl:administrator_login.asp
  79. intext:"please login" site:in
  80. intext:"login succesfuly" site:in
  81. intext:"login succesfuly" site:id
  82. intext:"login succesfuly" site:za
  83. intext:"login succesfuly" site:in
  84. intext:"login succesfuly" site:pl
  85. inurl:/admin/index.htm site:in
  86. intitle:"dashboard" 
  87. inurl:/dashboard.php
  88. intitle:"dashboard" 
  89. inurl:/daintitle:"dashboard" 
  90. inurl:/dash.php
  91. inurl:/admin/index.php?id=?
  92. inurl:/admin/index.php?r=site/login
  93. Inurl:login[4"admin"] site:
  94. Inurl:admin ["Userlogin"]**site:
  95. inurl:/admin.php 
  96. intext:login intext:adminsitrator
  97. inurl:/admin/index.php intext:username
  98. inurl :/admin/Admin.php intext:login
  99. inurl:/administrator/login.php 
  100. intext:username site:.com
  101. inurl:/login.php 
  102. intext:administrator intext:login
  103. inurl:/admin/upoload/
  104. inurl:/admin/login.php/ intitle:Administrator
  105. inurl:/admin/login.php intitle: Panel Admin
  106. inurl:/admin/login.php site:in
  107. inurl/mnux=login kampus
  108. inurl/mnux=login akademik
  109. inurl/mnux=login powered by sisfo
  110. inurl/?mnux=login "powered by sisfo kampus"
  111. inurl/mnux=login sisfo kampus
  112. inurl/mnux=login admin
  113. inurl/mnux= akademik
  114. inurl/mnux=login powered by sisfo
  115. inurl:/?mnux login
  116. inurl/mnux=login id /?mnux=login=frm siakad
  117. inurl/mnux=login akademik administrasi akademik - universitas sisfokampus

Baca Juga : Cara Deface Bypass Admin Aspx Upload Shell

Nah Jika sudah dapet target langsung saja bypass


Contoh :

User : admin

Pass : admin


User : admin

Pass : admin123


User : superadmin

Pass : superadmin


User : administrator

Pass : administrator


User : admin(bisa ganti dg email dari web nya target)

Pass : admin(terserah kamu kasih payload juga gpp)


View Payload Bypass

Kumpulan Payload Bypass Admin


Kalau vuln password nya maka kamu akan otomatis masuk ke dashboard admin,,

Jika sudah masuk kamu bisa tanem shell kamu atau add artikel deface kamu..


Dan boom udah terdeface


Live Target + Hasil Bypass :

https://polisipati.com

http://polrestasorong.com

http://polres-kaimana.com

https://bagsumda.polrespati.com

https://polisipati.com/node/19759

https://frontergroup.com/1337.php


Sekian dari saya semoga bermanfaat..

Dan Jangan Lupa Share.. Trimaksih


Posting Komentar