.

Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

<<

mohaab

Jr. Member
Jr. Member

Posts: 59

Joined: Mon Oct 25, 2010 4:38 pm

Location: Egypt

Post Thu Jan 05, 2012 3:47 pm

Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

hi

please read our new article

http://resources.infosecinstitute.com/h ... ress-site/

Enjoy :)
Last edited by mohaab on Tue Jan 10, 2012 10:39 pm, edited 1 time in total.
http://attack-secure.com - CODENAME: Samurai Skills Course
<<

ChrisLaz

Newbie
Newbie

Posts: 2

Joined: Tue Jan 03, 2012 11:31 pm

Post Fri Jan 06, 2012 4:11 am

Re: Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

Very interesting approach. Thank you for sharing.
<<

j0rDy

User avatar

Hero Member
Hero Member

Posts: 591

Joined: Tue Feb 23, 2010 4:55 am

Location: Netherlands

Post Fri Jan 06, 2012 4:58 am

Re: Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

nice hack! I always enjoy reading hacks like this, there fun and still very informative.
CISSP, CEH, ECSA, OSCP, OSWP

earning my stripes appears to be a road i must travel alone...with a little help of EH.net
<<

vp75

Jr. Member
Jr. Member

Posts: 78

Joined: Tue May 01, 2007 6:46 am

Post Fri Jan 06, 2012 7:00 am

Re: Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

Thanks for sharing, also reading some of the articles which interests me......
eCPPT
<<

MrTuxracer

User avatar

Newbie
Newbie

Posts: 47

Joined: Fri Dec 30, 2011 4:25 am

Location: Germany

Post Fri Jan 06, 2012 9:34 am

Re: Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

That's the Hack-me "HackademicRTB1" provided by GhostInTheLab  :) I've posted a slightly different solution for it on my blog, but it works on this way too.

Thanks for sharing!
eCPPT, HP ASE (Networking), LPIC-1, OSCP, WCSP
http://www.rcesecurity.com
<<

Seen

User avatar

Full Member
Full Member

Posts: 137

Joined: Mon Aug 30, 2010 1:05 am

Post Fri Jan 06, 2012 5:15 pm

Re: Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

Interesting, I'll have to try this against my wordpress site, thanks.
Sec+, eCPPT
<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 570

Joined: Sat Apr 17, 2010 12:12 pm

Post Sat Jan 07, 2012 2:03 pm

Re: Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

Now I havent looked at the article yet, but my question is, what would be the approval for this? Would you need to contact WP or just have permission from the blog owner?
sectestanalysis.blogspot.com/‎
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Sat Jan 07, 2012 2:24 pm

Re: Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

@ SephStorm - you can host your own Wordpress site, so pentesting an individual's site wouldn't require any permission from Wordpress, just the owner of the site and / or the server owner / provider, if the site is hosted.
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

millwalll

Post Sun Jan 08, 2012 10:27 am

Re: Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

Yeah just download and maybe use WAMP kit
<<

MaXe

User avatar

Hero Member
Hero Member

Posts: 671

Joined: Tue Aug 17, 2010 9:49 am

Post Sun Jan 08, 2012 9:44 pm

Re: Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

Some constructive feedback:  ;D
* Hacking other sites on the same server and / or the Registrar is illegal unless you have explicit permission to hack any of these.

* The: "nmap -O" command will only make a "best guess" on what the target is running, and this highly depends on 1) The NMAP version, 2) The open ports, 3) Services

* Example: scanme.nmap.org can be anything from Windows to Linux, depending on if you use NMAP or Xprobe2, and of course also which version of NMAP. (This is just an example out of context.)


* About the hash(es) that were cracked, here's some notes.

All of these three hashes, is "admin" in cleartext:
$P$BknpJUI2S.F6oD9bsAjRgZKBrQ2ct60
$P$BOOqZK9L94G3iXsjBlWLO5RbMSsLqW/
$P$Bc/LbIyetpQ1O21TcSJIq7zHr22Eiz.

(Note: Wordpress version 3.3.1)

These three hashes are also "admin" in cleartext:
$P$BBZNzh4ejzux/Q1XJeYa4bMoXVbE0o1
$P$BHbYY6iira4PZGTbnQGj52DPaqfn3t0
$P$BXqXvkYvNkAM1b.N3qZXY6K5Y/mkj90

(Note: Wordpress version 2.8.4)

In case you wonder, $P$ comes from class_phpass.php:
$output = '$P$'; in the function gensalt_private($input); function.


* When an attacker comes across a kernel version like this: 2.6.31.5-127.fc12.1686, the last number (127) is often the distribution specific patch number. (Meaning security patches could've been applied nullifying known vulnerabilities for 2.6.31.5)


No offense intended of course, there's just a few loose ends  ;)
I'm an InterN0T'er
<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 570

Joined: Sat Apr 17, 2010 12:12 pm

Post Mon Jan 09, 2012 1:21 am

Re: Targeting and Hacking a WordPress Site (Ninja-Sec.com - Infosec Resources )

learning is occurring. Wait a minute... is ninja-sec affiliated with ISI? These guys are getting around...

OKAY, the answer is on the resources page:
"Mohamed Ramadan is a researcher for InfoSec Institute. He also teaches Penetration Testing at Ninja-Sec.com."
Last edited by SephStorm on Mon Jan 09, 2012 1:25 am, edited 1 time in total.
sectestanalysis.blogspot.com/‎

Return to Tutorials

Who is online

Users browsing this forum: No registered users and 2 guests

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software