Follow us on Twitter!
You cannot teach a man anything; you can only help him find it within himself. - Galileo
Monday, April 21, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 26
Guests Online: 24
Members Online: 2

Registered Members: 82857
Newest Member: varshith_kh
Latest Articles
View Thread

HellBound Hackers | Computer General | Increasing Security

Page 1 of 2 1 2 >
Author

help with website security.....

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 16-08-08 04:49
hello, its been a while since i have been to this site and i dont know where to start but, there is a guy who keeps hacking into my site and i cant seem to figure out how he does it....i have patched teh sql inj. vulns, but i cant seem to find antoher way in and i was hoping someone would be able to tell me how he does it?...i kinda dont wanna post the site here cause the last time i posted something, i got flammed.....and i probably will get flammed again but i would really appreciate it if someone would be able to help me.....pm me if you can help


thnx in advance

cy
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....

hellboundhackersok
Member



Posts: 353
Location:
Joined: 20.09.07
Rank:
Moderate
Warn Level: 95
Posted on 16-08-08 04:53
run a port scan a good one is http://www.t1shop. . .t-scanner/


i.imgur.com/qBWHo0R.png
Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-08-08 05:04
Got any logs you'd be able to post?
Also, is this running on a box you own?


Author

RE: help with website security.....

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 16-08-08 05:06
yea i have looked through the logs and i know his ip address...but it dont show n e thing and no its not on my box....its through a hosting company
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....

hellboundhackersok
Member



Posts: 353
Location:
Joined: 20.09.07
Rank:
Moderate
Warn Level: 95
Posted on 16-08-08 05:13
Block the IP.


i.imgur.com/qBWHo0R.png
Author

RE: help with website security.....

Infam0us
Member



Posts: 153
Location: 0x080484c6
Joined: 06.09.07
Rank:
Apprentice
Posted on 16-08-08 05:15
hellboundhackersok wrote:
Block the IP.


Then he just uses another proxy.


"Never memorize what you can look up in books." -Albert Einstein
www.rohitab.com/discuss/style_emoticons/default/suicide_anim.gif
[img]http://www.hellboundhackers.org/fusion_infusions/buddy_panel/buddy_delete.php?id=2783[/img]


[img]javasc ript:alert(document.cookie);[/img]
Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-08-08 05:17
Well, could you post all logs pertaining to their ip address then?
Through hosting company can be tricky and possible for the attack to have not even come from your site.
But you said they had hacked you before through your site and you fixed the vulnerability? Now it is very possible the first time they hacked it, they had placed some piece of code in any of your pages that allow them to manipulate the content of your site whenever they want.

The lack of information I have right now makes it hard to troubleshoot such a problem in which there are an infinite amount of ways they could have done this.


Author

RE: help with website security.....

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 16-08-08 05:25
ok will a raw access log work????? if so.....ill post 1
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....

Infam0us
Member



Posts: 153
Location: 0x080484c6
Joined: 06.09.07
Rank:
Apprentice
Posted on 16-08-08 05:27
nights_shadow wrote:
Well, could you post all logs pertaining to their ip address then?
Through hosting company can be tricky and possible for the attack to have not even come from your site.
But you said they had hacked you before through your site and you fixed the vulnerability? Now it is very possible the first time they hacked it, they had placed some piece of code in any of your pages that allow them to manipulate the content of your site whenever they want.

The lack of information I have right now makes it hard to troubleshoot such a problem in which there are an infinite amount of ways they could have done this.


Exactly. Without more information we have no way of knowing. But its definitely possible he put a backdoor, or maybe if you have a php shell with no authentication on your server for some reason?


"Never memorize what you can look up in books." -Albert Einstein
www.rohitab.com/discuss/style_emoticons/default/suicide_anim.gif
[img]http://www.hellboundhackers.org/fusion_infusions/buddy_panel/buddy_delete.php?id=2783[/img]


[img]javasc ript:alert(document.cookie);[/img]
Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-08-08 05:27
Any type of log will help. Post whatever you got.


Author

RE: help with website security.....

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 16-08-08 05:56
n e 1 know of a good online file hosting site so i can post it?
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-08-08 06:03
Yeah. ANY. Just go with megaupload.



Author

RE: logs

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 16-08-08 06:10
REMOVED

Edited by alldatizholy on 16-08-08 06:36
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-08-08 06:20
Wow is this a sick joke. You actually purchased a domain named "gangsta-lords". That shows character.
And as for uploading the logs... Your truly not the brightest cookie.


Author

RE: help with website security.....

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 16-08-08 06:34
u see what i mean....i expected people to start actin like that.....everytime i come and ask for help i get people like u.....so if you arent gonna help, then dont bother posting
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-08-08 06:45
By chance, what browser are you using?
I have an exploit that will allow me to jack your session. I'm guessing there are many more in the way you implemented your system. Get in touch with me via AIM if you want to talk a little more.


Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-08-08 14:01
No one said their not going to help you, I was merely implying that there are infinite combination's of letters and numbers and with the ones you happen to choose... Catch my drift.
On the flip side (flip it), I am not the one out of all these people who is most familiar with your issues, and there are plenty other people to help you. Just relax.
Plus you really need to keep in mind that once someone hacks you they will install their own backdoor and get in whenever that feel the want.
I believe nights_shadow mentioned that.


Author

RE: help with website security.....

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 16-08-08 17:12
Filter. All. Input.

You're probably hooked up to a free webhost? You can't access the hosting box? Good for you, easier job. Just filter ALL input. Everything.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: help with website security.....

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 18-08-08 06:10
mo im not hooked up to a free webhost.....
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....

Mr_Cheese




Posts: 2468
Location: Brighton, UK
Joined: 30.11.04
Rank:
Uber Elite
Posted on 18-08-08 14:06
chances are he has a backdoor from the first time he got in.

as spyware said, sanatize ALL your input. cookies, sessions, post, get, etc.... that way majority of exploits will be prevented. plus its good coding practice. if you don't sanitize your variables, your asking for problems.

secondly, there's little we can suggest with the current information.

have you checked all the pages he is visiting?

If not, post a log that shows all pages he has visited that way we can see if he is exploiting a GET variable or using a backdoor.

narrows down the search a little.

also, run a quick scan on your site files for "system(", "exec(", "eval(", etc.. try find any possible backdoors.

Edited by Mr_Cheese on 18-08-08 14:08
http://www.hellboundhackers.org/
Page 1 of 2 1 2 >