STEP 1 :- RUN WEBDAVLINKCRAWLER AND LET IT SCAN! [DOWNLOAD LINK IS GIVEN BELOW THE
POST]
STEP 2 :- WHEN YOU THINK IT'S ENOUGH, PRESS 'STOP',THEN 'REMOVE DOUBLE' TO REMOVE
DOUBLE IP'S.
STEP 3 :- RIGHT CLICK ONE OF THE IPS AND PRESS 'ALLE IPS KOPIEREN'. THEN OPEN UP
NOTEPAD AND PASTE THE IP'S, SAVE AS WHATEVER YOU WANT.
STEP 4 :- OPEN UP IP SCANNER, LOAD UP THE IP'S TXT FILE, AND PRESS 'SCAN'.
STEP 5 :- NOW, THE FIRST COLUMN ARE THE LOADED IP'S, THE SECOND ONE THE EXPLOITABLES
AND THE THIRD ONE ARE THE SCANNED IP'S.
STEP 6 :- NOW, AFTER A TIME THERE WILL BE MORE AND MORE IPS IN THE MIDDLE COLUMN.
COPY/PASTE THOSE IN NOTEPAD. LET'S SAY FIRST ONE IS 111.222.333.444, GO TO YOUR WEB-
BROWSER. FIREFOX REOMMEND, AND PASTE THE IP, WITH /WEBDAV" AFTER IT. SO IT'S
111.222.333.444/WEBDAV. IF IT SAYS 'WEBDAV TESTPAGE', IT'S VULNERABLE. INSTALL
BITKINEX, OPEN IT UP. PRESS CTRL + 2. TYPE ANYTHING AS NAME, THEN A WINDOWS WILL POP
UP. AS SERVER ADRESS PUT THE IP OF THE VULNERABLE SERVER. AS USER PUT "WAMPP" AND AS
PASSWORD PUT "XAMPP". THEN GO TO 'DATA SOURCE' ON THE LEFT OF THE WINDOW, AND PUT
"/WEBDAV" AS DEFAULT DIRECTORY. PRESS OK, THEN RIGHT CLICK YOUR SERVER ON THE
HTTP/WEBDAV TAB, AND CLICK BROWSE. IT WILL CONNECT TO IT, THEN YOU CAN UPLOAD YOUR
SHELL.PHP. AFTER IT'S UPLOADED, GO TO THE HTTP://IPHERE/WEBDAV AGAIN, ONLY PUT
SHELL-NAME-HERE.PHP AFTER /WEBDAV. SO IT'S 111.222.333.444/WEBDAV/SHELL.PHP OR
SOMETHING LIKE THAT. THEN EXECUTE FOLLOWING COMMANDS:
NET USER USERNAME /ADD
NET USER USERNAME PASSWORD
NET LOCALGROUP "ADMINISTRATORS" "USERNAME" /ADD
INSTEAD OF USERNAME, PUT THE DESIRED USERNAME, I RECOMMEND SOMETHING LIKE
"SQLOPERATOR".
INSTEAD OF PASSWORD PUT YOUR PASSWORD IN THIS LAYOUT -> SOMETHING!NUMBERS.
OTHERWISE IT WON'T WORK.
STEP 7 :- THAT'S IT. NOW YOU ONLY NEED TO OPEN UP REMOTE DESKTOP CONNECTION OR
SOMETHING SIMILAR, AND CONNECT.
Comments
Post a Comment