ok many peps probaly have said oo ok i really want to start hacking but this is not like that
all i want to know i how to hacka simple free forum in a few mins any have a way?
ok many peps
- CommonStray
- Forum Assassin
- Posts: 1215
- Joined: 20 Aug 2005, 16:00
- 18
Re: ok many peps
mo2332 wrote:ok many peps probaly have said oo ok i really want to start hacking but this is not like that
all i want to know i how to hacka simple free forum in a few mins any have a way?
There is no simple or easy way.
"The best place to hide a tree, is in a forest"
- Losing_grip
- Fame ! Where are the chicks?!
- Posts: 485
- Joined: 22 Apr 2007, 16:00
- 17
- Location: Behind Socks5
Well it all depends on some things
1: What kind of forum is it?
2: Do you know of any exploits/vulnerabilities on their forum?
3: Do you know how to use exploits/vulnerabilities?
4: If it is the right type of forum do you know of any tools to make your life easier?
5: If you do not know the admin of the forum are you willing to deal with the possible repercusions?
So before you try this figure out if you can do all of this.
1: What kind of forum is it?
2: Do you know of any exploits/vulnerabilities on their forum?
3: Do you know how to use exploits/vulnerabilities?
4: If it is the right type of forum do you know of any tools to make your life easier?
5: If you do not know the admin of the forum are you willing to deal with the possible repercusions?
So before you try this figure out if you can do all of this.
- CommonStray
- Forum Assassin
- Posts: 1215
- Joined: 20 Aug 2005, 16:00
- 18
well you have to know what the forum is called, its version number, popularity, if its a well supported web application or if its scratch/custom built, is it in PHP or ASP or another format of web-language, what kind of database does it use, then check it for SQL injections and XSS attacks, to see if its susceptible to attacks like that, bruteforcing admin logins can work, but take a lot longer or could take forever, check the forum for HTTP inclusions, older web-apps are more insecure alot of the time...remember all these things you can do are gonna light up IDS logs instantly on the server or in the administrators area if it handles that too, so lookup proxy chaining...
this isnt all you can try theres all sorts of other methods, these are just a few popular ones
hope this helps a bit
this isnt all you can try theres all sorts of other methods, these are just a few popular ones
hope this helps a bit