Welcome to Asyraf.org
Welcome to www.asyraf.org that is my personal web blog. Want to know bout me? Find it your self...Hakss...Actually, asyraf.org was publish in May 2008 with motif of information sharing and just as my hobby develop a website.
Asyraf.org contain several categories such as review section, tutorial section, blogging section, picture and video sharing zone & download section.
Home 
Tutorial Joomla! & Webmater Tips Protect Your Web from Hackers by Search Term
Tutorial Joomla! & Webmater Tips Protect Your Web from Hackers by Search Term
|
|
Have your web been HACKED or DEFACE by somebody? This happen when you have hole that can allow the hackers to access to your web directories. So, they can upload maybe kiddies script, or do SQL injection. After that, when you open your web page, you will say "OMG, my site been HACKED!!!" How to prevent these hacker from hacking your website? Actually, there lot of security issues regarding to the web security. Here I want to teach you how the hackers find a hole on your website by only using the popular search engine GOOGLE. You can search and close vulnerable holes in your website. Usually, this hole is cause by the 3rd party plugins especially the free one. It maybe developed by the hackers also. First, just open GOOGLE : www.google.com "index of" (private | privat | secure | geheim | gizli) site:youwebsitename.com Conedential directories and files can be revealed with the following query) "create table" "insert into" "pass|passwd|password" (ext:sql |ext:dump | ext:dmp | ext:txt) site:youwebsitename.com(Username and password pairs can be searched within sql dump files) intitle:"index of" inurl:/backup site:youwebsitename.com(Backup directories can contain also some sensitive data about users, organizations, companies, etc.) intitle:"Index of" .mysql_history site:youwebsitename.com(The .mysql_history file contains commands that were performed against a mysql database. A "history" of said commands. First, you shouldn't show this file to anyone, especially not a MAJOR SEARCH ENGINE! Secondly, I sure hope you wouldn't type anything sensitive while interacting with your databases, like oh say USERNAMES AND PASSWORDS...) allinurl:"/*/_vti_pvt/" | allinurl:"/*/_vti_cnf/" site:youwebsitename.comFrontpage extensions for Unix ...) So, try those search term to scan the vulnerable hole in your website. There lot others search term to be used for this purpose. So, keep up to date.
Set as favorite
Bookmark
Email This
Hits: 380 Comments (0)
 Write comment
You must be logged in to a comment. Please register if you do not have an account yet.
|
| Last Updated on Tuesday, 29 April 2008 11:44 |
Subscribe to this comment's feed