>Dorks para scanner de RFI

> Remote File Inclusion (RFI) é um tipo de vulnerabilidade mais freqüentemente encontrados em sites, que permite a um atacante para incluir um arquivo remoto normalmente através de um script no servidor web . The vulnerability occurs due to the use of user supplied input without proper validation. A vulnerabilidade ocorre devido ao uso do […]

Explorando vulnerabilidade Fopen

Vamos falar de falhas. Deis uma volta no Google “Uma busca avançada”, percebi que 40% de alguns sites estão vulneráveis ao Attack FOPEN é algo simples e de certa forma avassalador se feito por alguém Mal-intencionado. Referencia: http://php.net/manual/pt_BR/function.fopen.php Dork:site:br inurl:download.php?file=site:br inurl:baixar.php?arquivo=inurl:dow.php?file=  Só exemplos de dorks use sua criatividade. Com Certeza alguns de vocês já fizeram algum download isso é #fato!.Hoje vamos dar uma olhada no como o código PHP se comporta no dow. […]

Lista com 170 site .gov possíveis brechas.

Ae vai uma lista com alguns possíveis vulneráveis.Dorks: site:gov. +inurl:php?pageid=Dorks: site:gov. +inurl:php?id=Dorks: site:gov.   result +inurl:php?id=Dorks: site:gov.    +inurl:php?item=Dorks: site:gov.    +inurl:php?  order  =Dorks: site:gov.    +inurl:php?  list =Dorks: site:gov.    +inurl:php?home =Dorks: site:gov.  home  +inurl:php?   *=Dorks: site:gov.  home  +inurl:pag?   *= http://www.legco.gov.vg/index.php?pageid=11′http://www.stc.gov.ae/en/transport-intercity-routes-result.php?id=112′http://www.hzsq.gov.cn/view1.php?id=7543′http://wnpop.gov.cn/detailed.php?id=3474’&cat_id=6′http://www.gov.ai/ministry.php?id=2′http://www.zshda.gov.al/index.php?id=84′http://www.akbn.gov.al/index.php?id=2&menu=md&lng=en&ak=g/view_gal’http://www.cadenasdevalor.gob.ar/Fuentes/destacado.php?n=1247′http://www.villaallende.gov.ar/va_mostrar.php?id=876′http://www.sancayetano.gov.ar/deporte-turismo/info.php?id=378’&c=AAGA’http://www.diputadosmisiones.gov.ar/perfiles.php?id=5′http://www.turismo.misiones.gov.ar/ampliar.php?id=37′http://www.shootingcentre.nsw.gov.au/calendar_detail.php?id=50’&cat_id=9′http://www.buenosaires.gov.ar/areas/ciudad/historico/calendario/destacado.php?menu_id=23203’&ide=309′http://www.mocat.gov.bd/personnel.php?id=1′http://www.bsfic.gov.bd/centerCont.php?id=8′http://chr.police.gov.bd/request_entry.php?category_id=1’&lang=en’http://www.mucurici.es.gov.br/imprimir.php?id=113′http://www.secult.es.gov.br/blogs/?id=/blog.php’http://paraibuna.sp.gov.br/noticia.php?id=662′http://www.sead.pi.gov.br/album.php?id=205′http://www.crbio03.gov.br/noticias/index.php?id=4645’&idcategoria=7′http://www.juatuba.mg.gov.br/vernoticias.php?id=1′http://www.ibate.sp.gov.br/index.php?id=25′http://www.arapora.mg.gov.br/imprimir.php?id=795′http://oeiras.pi.gov.br/noticias.php?id=132’&exibe=comentarios’http://www.pmcg.ms.gov.br/egov/downloadFile.php?id=4128’&fileField=arquivo_dow’&table=downloads’&key=id_dow’&sigla_sec=fundac’http://www.iac.sp.gov.br/noticiasdetalhes.php?id=748′http://www.ade.az.gov/arizonaheat/providers/provider_information.asp?id=354’&returnP=1′http://www.bhutan.gov.bt/government/ministries.php?min_id=16′http://webhosting.redsalud.gov.cl/transparencia/public/no_aplica.php?id=AO082’&item=121′http://www.ccpitzj.gov.cn/showlink_E.php?id=23′http://www.comic.gov.cn/news_show.php?id=7738′http://www.ykzzb.gov.cn/info.php?id=162′http://www.hzsq.gov.cn/news.php?id=154′http://wnpop.gov.cn/detailed.php?id=3474’&cat_id=6′http://www.dyjy.gov.cn/articleshow.php?id=12400′http://www.meda.gov.cn/en/newsshow.php?id=1719′http://www.tchjbh.gov.cn/news_display.php?id=148′http://www.cpae.gov.co/index.php?id=7′http://www.anh.gov.co/es/index.php?id=1′http://www.bogota.gov.co/equidad/newequi.php?id=1′http://www.fineart.gov.eg/arb/cv/cv.asp?IDS=380http://www.mfa.gov.et/Press_Section/publication.php?Main_Page_Number=3311′http://www.gibraltarlaws.gov.gi/view_article_a.php?group_id=000000244’&id=000001614′http://sinit.segeplan.gob.gt/sinpet/institucionlist.php?order=CORREO_ELECTRONICO’http://www.mkeh.gov.hu/index.php?name=OE-eLibrary’&file=download’&id=4191’&keret=N’&showheader’http://regionalinvestment.bkpm.go.id/newsipid/commodity.php?ic=2′http://pustaka.litbang.deptan.go.id/eng/dilanggan.php?id=3′http://spore.cta.int/index.php?option=com_content’&task=view’&lang=en’&id=24’&catid=7′http://www.uibm.gov.it/index.php?option=com_content’&view=article’&id=2004522’&menuMainType=menuServizi’&idmenu=11691’&lang=it’http://www.tenders.go.ke/view.tender.php?id=400′http://www.nscpeace.go.ke/108/media.php?id=459′http://www.nema.go.ke/index.php?option=com_content’&view=article’&id=104’&Itemid=561’&deoid=7′http://www.cljr.gov.kh/partners/index.php?option=com_partners’&task=detail’&id=4’&Itemid=’&lang=en’http://www.phnompenh.gov.kh/download_file.php?id=126440066890196′http://www.babymam.go.kr/kimson/home/jongno/bbs.php?id=preg_06′http://tour.geumsan.go.kr/_prog/_board/?code=tour_040201’&mode=V’&no=1978551’&upr_ntt_no=1978551’&site_dvs_cd=tour’&menu_dvs_cd=040205’&gubun=gubun_04′http://www.region.go.kr/news/record_read.php?id=44377′http://english.yangsan.go.kr/program/board/main/view.php?bid=eng_citynews’&id=6’&hid=’http://ru.ontustik.gov.kz/category.php?id=74′http://touristguide.ncp.gov.lk/bin/things-to-see/details/index.php?id=3′http://cbl.gov.ly/en/home/details.php?id=687′http://www.npc.gov.ly/experts/list/view.php?id=1876′http://www.ccist.gov.ma/contenu.php?id=3′http://www.mscl.gov.mg/organisme/organes.php?id=1′http://ohridler.gov.mk/soo/details.php?id=15’&lang=en’http://www.macautourism.gov.mo/en/main/highlight.php?id=3′http://www.primature.gov.mr/fr/index.php?link=0’&id=1′http://www.tvet.gov.mv/newspage.php?id=2′http://www.educacion.yucatan.gob.mx/showpubli.php?id=1429′http://www.sefomec-coahuila.gob.mx/modulo10.php?id=45′http://culturacolima.gob.mx/cms/nota.php?id=1373’&autor=62’&cat=1′http://www.gobiernodigital.inah.gob.mx/mener/index.php?contentPagina=33′http://programas.jalisco.gob.mx/detallePrograma_hac.php?id=794′http://www.naucalpan.gob.mx/comunicado_completo_web.php?id=444′http://www.congresomich.gob.mx/index.php?id=271′http://portal.sre.gob.mx/chicago/popups/articleswindow.php?id=64′http://seia.guanajuato.gob.mx/panel/document/phpver.php?id=1147′http://www.mec.gov.mz/forum/forum_topico.php?id_cat=7′http://www.moe.gov.na/m_pro_projects.php?id=2’&projectid=3′http://www.jigawastate.gov.ng/contentpage.php?id=255′http://www.nass.gov.ng/nass/news.php?id=157′http://www.mem.gob.ni/index.php?s=1’&idp=174’&idt=2’&id=424′http://www.nta.gov.np/en/aboutus/index.php?id=7′http://bhaktapur.gov.np/newsdetail.php?id=157′http://www.ncasc.gov.np/news.php?id=21′http://www.dwss.gov.np/dwss-pictures.php?id=28′http://www.ird.gov.np/ird/index/document_display.php?id=18′http://www.nepalntp.gov.np/content.php?id=206′http://www.mof.gov.np/demo/en/newsroom/detail.php?id=52′http://proinvex.mici.gob.pa/index.php?option=com_content’&view=article’&id=100’&Itemid=62’&lang=en’http://www.sistemapenitenciario.gob.pa/nosotros.php?id=1′http://www.projoven.gob.pe/institucional.php?id=15′http://www.munimarcona.gob.pe/ver_notasprensa.php?id=69′http://www.inpe.gob.pe/contenidosprensa.php?id=905’&direccion=1′http://www.drtcp.gob.pe/view_deta.php?display=encuesta’&id=’http://www.peru.gob.pe/transparencia/pep_transparencia_lista_planes.asp?id_entidad=13904’&id_tema=1′http://www.hospitalvitarte.gob.pe/cas.php?id=117′http://www.dole.gov.ph/list_of_holidays.php?id=95′http://archives.pia.gov.ph/wdavh2011/?m=3’&i=brazil’&sm=events’http://www.gjtmap.gov.pk/ngos/sb_bro_ngo.php?id=14′http://www.psf.gov.pk/staffdetail.php?id=10′http://multan.gov.pk/files.php?id=1′http://www.lhc.gov.pk/judges/jbiodata.php?id=132′http://profile.hec.gov.pk/?comp=registration.php’&return=des.hec.gov.pk’&param=CSEfsoNuNcdPScqen4RUk3/Y6zCjLwb6tb6XfCz9′http://www.multan.gov.pk/page.php?data=193′http://www.psf.gov.pk/abstract.php?id=5′http://www.ncsw.gov.pk/news-details.php?id=29′http://cnw.gob.pk/tenderview.php?id=19′http://www.sindhinformation.gos.pk/showpress_release.php?id=181′http://smart.ippt.gov.pl/index.php?id=research_conferences’http://fluid.ippt.gov.pl/ictam04/php/ext_www/abstract_view.php?id=1734′http://www.planonacionaldeleitura.gov.pt/clubedeleituras/download.php?s=elivros’&chave=T200en94’&id=200′http://www.seprelad.gov.py/contenido.php?id=21′http://www.sas.gov.py/xhtml/login/notisas.php?id=102′http://www.rosprom.gov.ru/snews.php?id=166’&vers=print’http://www.orinfor.gov.rw/printmedia/topstory.php?id=4258′http://tabukedu.gov.sa/ta31/send2.php?id=4605′http://www.parliament.gov.sd/en/presidents.php?id=1′http://www.pepam.gouv.sn/annuaire.php?id=95’&lang=fr’http://www.nombredejesus.gob.sv/pages/proyectos.php?id=50′http://www.sansalvador.gob.sv/comunicaciones/desc_comunicados.php?id=3′http://www.mahrukat.gov.sy/news.php?id=13′http://thailand.prd.go.th/view_around_thailand.php?id=6081′http://thainews.prd.go.th/en/news.php?id=255410140004′http://www.maerang.go.th/webboard_view.php?id=146′http://inter.mua.go.th/main2/news_detail.php?id=72′http://www.dmh.moph.go.th/news/view.asp?id=1008′http://www.ubon.go.th/dept/dtdetail.php?id=28971′http://www.sisaketedu1.go.th/nineboard/view.php?id=2877′http://www.nph.go.th/consult/nphboard/nphtopic.php?id=0000000046′http://www.oae.go.th/main.php?filename=index___EN’http://www.navy.mi.th/newwww/code/special/terminology/terminology.php?id=0′http://www.grandprix-tunis.gov.tn/en/index1.php?id=21′http://www.marchespublics.gov.tn/onmp/banniere/redirectb.php?id=810’&idb=78’&’http://www.finance.gov.tt/services.php?mid=10′http://www.tycc.gov.tw/mp_all.php?id=1′http://express.culture.gov.tw/events_detail.php?id=6761′http://tpeusar.tfd.gov.tw/inside_NewsList.php?id=71′http://tainan.cca.gov.tw/about_news_more.php?id=16′http://www.tcu.go.tz/info/news/view_news.php?id=56′http://www.marineparks.go.tz/parks_info.php?id=1′http://www.maji.go.tz/news_events/view_news_item.php?id=230’&intVariationID=1’&szTitle=Current’http://www.meac.go.tz/news_events/view_event.php?id=129’&intVariationID=1’&szTitle=Current’http://www.pmoralg.go.tz/news_events/view_news_item.php?id=385’&intVariationID=1’&szTitle=Current’http://www.vpo.go.tz/announcements/view_news_item.php?id=350’&intVariationID=1′http://www.meteo.go.tz/data.php?id=19′http://www.mem.go.tz/news_events/view_news_item.php?id=68’&intVariationID=1’&szTitle=Current’http://www.meteo.go.tz/news_events/view_event.php?id=326′http://www.tira.go.tz/news_events/view_news_item.php?id=56′http://www.zanzibarassembly.go.tz/news_events/view_event.php?id=755’&intVariationID=1’&szTitle=Current’http://www.mkurabita.go.tz/resource_centre/view_press.php?id=96’&chooselang=1′http://tender.ppra.go.tz/tender_details.php?id=4356′http://www.dabi.gov.ua/news_text.php?id=589′http://www.uaan.gov.ua/akademiki.php?id=112′http://dzz.gov.ua/CPOSI/style/page_2/templer_page2_en.php?id=2’&table=text_monitoring’http://www.unbs.go.ug/news.php?id=52′http://www.ugabif.go.ug/ncd/organisation_detail.php?id=41′http://hsc.go.ug/general/downloads.php?id=9′http://www.opm.go.ug/news.php?News_id=40′http://jlos.go.ug/page.php?p=curnews’&id=54′http://amuru.go.ug/districtprofile_category.php?id=18′http://www.mia.go.ug/pagex.php?p=news’&id=2′http://www.fonep.gob.ve/noticias.php?id=195′http://www.inzit.gob.ve/detalle_noticias.php?id=53′http://www.sisov.mpd.gob.ve/estudios/detalle.php?id=158′http://www.monteavila.gob.ve/mae/catalogo-resultado-detalle.php?id=225′http://www.fundayacucho.gob.ve/vistas/enterate.php?id=70′http://www.dpe.gov.za/home.php?id=581′http://www.mpuleg.gov.za/show.php?id=11’&menu=17′Somente estudos.

Dork busca shell ja upadas

Vamos procurar Shell Script upadas em servidores invadidos Dorks: “Safe Mode ” ip: cmd ~ inurl:php  ~~Whm Vai algumas shell que encontrei: http://corpus-ins.lit.auth.gr/dbxx/rsrc/jquery/plugins/jquery.uploadify/command.php http://vazio.com.br/cpanel.php?user=user&S1= http://www.futureinnoversity.edu.in/wp-content/plugins/mm-forms/upload/temp/1342466953-sec.php?act=f&f=a.pl&ft=phpsess&white=1&d=%2Fwebcorp1%2Fwww%2Fcorpusers%2Ff%2Fu%2Ffutureinnoversity.edu.in%2Fwp-content%2Fplugins%2Fmm-forms%2Fupload%2Ftemp%2F

XCode SQL Injection/Local File Inclusion/Cross Site Scripting/Webshell Scanner

[-] 4765 Dorks | 4714 dorks SQLI / LFI / XSS exploit | 51 dorks WebShell[-] LFI Detecção Aviso vuln[-] Formulário Google captcha para evitar endereço IP bloqueado[-] De busca do Google do usuário ajuda a caminho para mudar o módulo de caminho de procura Download: http://www.megaupload.com/?d=2Q3C09YQDownload: http://www.hyperfileshare.com/d/b4f976b4 Creditos:http://ferdianelli.wordpress.comhttp://ferdianelli.wordpress.com/2011/01/08/update-08-jan-2011-xcode-sqlilfixss-vulnurable-webshell-scanner/