Saturday 22 | 09:21:PM
It was a day when I was bored and decided to hack a government website of my country:
as I did?
I started by finding all the subdomains I tried and tried until I found:
admin.target.com
then I decided to scan and found that there were 3 open ports ssh,ftp,http
well in the ssh, ftp I didn't find anything interesting but, in the http: I did find a route like this:
https://target.com?viewPDF="pdf-file-here"
LFI
I decided to create a python script with many lfi wrappers, if you want the script I use let me know
well until with the following wrapper :
%252e%252e%252f%252e%252e%252f/etc/passwd;index.html
I corrupted it then passed it to RCE and end of story
PS: "no system is secure"
as I did?
I started by finding all the subdomains I tried and tried until I found:
admin.target.com
then I decided to scan and found that there were 3 open ports ssh,ftp,http
well in the ssh, ftp I didn't find anything interesting but, in the http: I did find a route like this:
https://target.com?viewPDF="pdf-file-here"
LFI
I decided to create a python script with many lfi wrappers, if you want the script I use let me know
well until with the following wrapper :
%252e%252e%252f%252e%252e%252f/etc/passwd;index.html
I corrupted it then passed it to RCE and end of story
PS: "no system is secure"