Monday, April 2, 2012

Video Ways Website Deface

Video sharing website in various ways deface, deface websites with remote file inclusion (RFI), deface web with local file inclusion (LFI), deface websites by way of html injection, deface websites by way of SQL Injection, how to deface with tamper data, etc.. Immediately following important videos from youtube you can watch and learn:

Website defacement With RFI (Remote File Inclusion)
RFI (Remote File Inclusion) is a hole where the site permits an attacker to include the external file server. RFI is the most cool in doing the hacking, many websites have this weakness, so it can be accessed from other servers. Below are some videos that guide how to deface the RFI.





Deface Website with LFI (Local File Inclusion)
LFI (Local File Inclusion) is a hole at the site where the attacker can access all files on the server with only through the URL. Listed below are a few videos on how to deface and exploited by using information obtained from this LFI weaknesses.






Deface Website With HTML Injection
HTML Injection is the injection of HTML code to your web server. HTML code which should be dealt with in the last injected by a web server and turn it into a form of visual display, this is not much different from your use of XSS (Cross Site Scripting). Below are some video deface by using HTML injection on various websites.




Deface Website WithSQL Injection

SQL Injection is a technique that abusing a vulnerability that occurs in the database layer of an application. This vulnerability occurs when user input is not filtered for escape characters from a string formed by embedding in SQL statements or user input is not strongly typed and therefore do not run as expected. This is actually an example of a category of the more common vulnerabilities that can occur whenever one programming or scripting language is embedded inside another.




Deface the whole website with Tamper Data
Tamper Data is one of the Mozilla add-ons that are useful in web-hacking. Tools have been provided by default on the Back | Track 4. Tamper Data is a way of working to manipulate the data transmission system on the web (POST method). POST method is a Javascript function that activates when you click the submit button or the like. At the time the button is clicked, the system will send a value / values ​​that will determine the outcome of the clicks that we do. POST method is sometimes to be one weakness of a system website, because we can change the data to be sent. Tamper Data allows us to change the value / value of the POST method.


Entire Website With a Mass defacement defacing

Mass Deface the mass-defacement website, meaning that after you do the exploitation on a target website, then you will proceed to the hosting server, so it is not only defacing a domain, but you can find a lot of domains there, mass defacing it is intended that all domains can dideface.


Happy studying and good luck...

No comments:

Post a Comment