All About Hacking & Cybersecurity

Ethical Hacking & Cyber Security How to Upload shell from admin panel Steps To Do. 1. Access to admin panel of website. 2. A shell(You can download it from google). 3. Mozilla Firefox browser. 4. Live http headers(You can download it from google) 1. First login to the admin panel to the website and then try to find a place where we can upload a file like image,pdf,doc etc. In my case I found gallery in my victim website where I can upload images. 2. Now we will gonna upload a shell, but we have to change the extension of the our shell to 'shell.php.jpg' because we are uploading our shell as an image. 3. Before uploading the 'shell.php.jpg' open Live Http Headers and minimize it and then click on upload button. Like I did in following image.  4. Now we have uploaded 'shell.php.jpg' , after that maximize the Live Http Headers and find 'shell.php.jpg' in HTTP headers box like I did in image given below.  5. Now

Google Dorks To Find Web Admin Panels (Unsecured) “inurl:admin/addmember.asp” “inurl:admin/addinfo.asp” “inurl:admin/addcat.asp” “inurl:admin/cp.asp” “inurl:admin/productshow.asp” “inurl:admin/addjob.asp” “inurl:admin/addjob.???” “inurl:admin/addpic.???” “inurl:admin/viewproduct.???” “inurl:admin/addaccount.php” “inurl:admin/manage.php” “inurl:admin/addcontact.???” “inurl:admin/viewmanager.???” “inurl:admin/addschool.???” “inurl:admin/addproject.???” “inurl:admin/addsale.???” “inurl:admin/addcompany.???” “inurl:admin/payment.???” “inurl:user/emp.???” “inurl:admin/addmovie.???” “inurl:admin/addpassword.???” “inurl:admin/addemployee.???” “inurl:admin/addcat.???” “inurl:admin/admin.???” “inurl:admin/admincp.???” “inurl:admin/settings.???” “inurl:admin/addstate.???” “inurl:admin/addcountry.???” “inurl:admin/addmedia.???” “inurl:admin/addcode.???” “inurl:admin/addlinks.???” “inurl:admin/addcity.???”