TEGAL1337

*************************************************** # Exploit Title: Registration Pegawai Vulnerability Upload # Google Dork: intext:"Registrasi Pegawai" ext:php inurl:registrasi.php intext:"Registrasi Pegawai" Etc. # Exploit: /registrasi.php # Date: 07/02/2018 # Author: Gord1 # Team: Our Struggle Team # Tested on: Kali linux - Android 5.1.1 *************************************************** Proof of Concept : [+] Search the dork in Google [+] Open target [+] Registration and upload your shell in profil picture. [+] Login with your NIP and Password [+] Call your shell in profile picture [+] You shell usually in directory /images_peg/ [+] Use your brain its easy :c [+] Done Greetz my friend : xfc0re - S3ctor Cr3w Ref :  https://cxsecurity.com/issue/WLB-2018020129

Salam.. kali ini saya mau share tentang cara mengatasi error atau muncul tulisan Unable to locate packages pada saat ingin menginstall sesuatu melalui terminal linux, banyak yang mengeluhkan tentang hal ini Ok langsung saja cara mengatasinya... buka terminal kalian kemudian ketikan perintah leafped /etc/apt/sources.list Nahh maka otomatis leafped terbuka... delete semua tulisan yang ada, tenang aman kok.. kemudian pastekan sources ini di leafped tadi. deb http://http.kali.org/kali kali-rolling main contrib non-free # For source package access, uncomment the following line # deb-src http://http.kali.org/kali kali-rolling main contrib non-free deb http://http.kali.org/kali sana main non-free contrib deb http://security.kali.org/kali-security sana/updates main contrib non-free # For source package access, uncomment the following line # deb-src http://http.kali.org/kali sana main non-free contrib # deb-src http://security.kali.org/kali-security sana/updates main contrib non-free de...

Apa kabar semua... kebetulan nihh masih kuat begadang saya nyempetin lagi nulis tutorial, kali ini saya mau nulis tentang bagaimana cara menggunakan tool SQLiv. Apa itu SQLiv ? SQLiv merupakan tool untuk mempermudah dorking untuk mencari site yang vuln terhadap sql injection. so hampir mirip-mirip lahh kaya grenox di windows menurut ane. cuman tool ini dibangun dengan bahasa pemograman python, so keren lahhh pasti :'v Untuk penginstalanya : $ git clone https://github.com/the-robot/sqliv.git $ sudo python2 setup.py -i Dependencies bs4 termcolor google nyawc Untuk cara menggunakanya : Multiple domain scanning menggunakan SQLi dork : python sqliv.py -d -e python sqliv.py -d "inurl:index.php?id=" -e google Targetted scanning python sqliv.py -t python sqliv.py -t www.example.com python sqliv.py -t www.example.com/index.php?id=1 Reverse domain and scanning  python sqliv.py -t -r Dumping scanned result  python sqliv.py -d -e -o...