11-09-2012, 05:18 AM
In this tutorial, I will write about SSI Injection hope you like it. =)
-Wikipedia
Server-side Include Injection gives us the power to execute OS commands or include a restricted files contents the next time the page is served.
First, you need to find vulnerable site. =D
Here are some dorks:
Hope those are enough!
Time to test sites for vulnerability.
To find if the site is vulnerable, you should enter OS command.
Here are some example commands.
Write one of those commands in text box, login/registration fields etc...
![[Image: ssiy.jpg]](http://img838.imageshack.us/img838/6051/ssiy.jpg)
So when, you have find and test site for vulnerability its time to exploit it.
We are going to upload shell, you can download shells from my
Ok, now you need .txt extension to your shell and you should upload it some where (hacked site, hosting...).
And, you should download it to the site who is vulnerable to SSI Injection. This is the command you should use.
So, if the text file is downloaded execute this command.
This coomand will show every file in the directory.
Now its time to change the extension to .php .
Now run listen command again.
And, your shell should be .php run it if every thing is OK, you have successful exploit the site.
Hidden Content
-Wikipedia
Server-side Include Injection gives us the power to execute OS commands or include a restricted files contents the next time the page is served.
First, you need to find vulnerable site. =D
Here are some dorks:
Hidden Content
Hope those are enough!
Time to test sites for vulnerability.
To find if the site is vulnerable, you should enter OS command.
Here are some example commands.
Hidden Content
Write one of those commands in text box, login/registration fields etc...
![[Image: ssiy.jpg]](http://img838.imageshack.us/img838/6051/ssiy.jpg)
So when, you have find and test site for vulnerability its time to exploit it.
We are going to upload shell, you can download shells from my
[To see links please register here]
.Ok, now you need .txt extension to your shell and you should upload it some where (hacked site, hosting...).
And, you should download it to the site who is vulnerable to SSI Injection. This is the command you should use.
Hidden Content
So, if the text file is downloaded execute this command.
Hidden Content
This coomand will show every file in the directory.
Now its time to change the extension to .php .
Hidden Content
Now run listen command again.
Hidden Content
And, your shell should be .php run it if every thing is OK, you have successful exploit the site.