Current WordLists Release : 20111129
I have created some lists of words based on common web directory and file names. These wordlists are for web security testing purpose.
29/11/11: 20111129 More words, more fun. Updated with some fresh new critical words. 28/11/11: 20111128 Updated and cleaned Extra/Crazy words. WordLists are smaller and better. 27/11/11: 20111127 Initial release.
Most of you might already know that hidden does not mean secure nor unreachable . I tried to include a maximum of sensitive filenames and directories into these auto-generated wordlists. I’ll try to update these files time to time.
- All = Common + Extra + Crazy
- Common = Very frequently used words ONLY
- Extra = Some extra words for lucky and patient people (Does not contain Common nor Crazy wordlists)
- Crazy = Extremely rare words ONLY (Does not contain Extra nor Common wordlists) (continue reading…)
Incoming search terms:
Hack the web, the russian way
Let me introduce you some of my favorite Web Backdoors, most of them are well known since 2005.
I personally know C99Shell since 2007, when some lamers attempted to hack DareYourMind. But now I’m most used to R57shell, which works very well when Safe-mode is OFF (not secure).
Most of these scripts have been coded by some real good hacker teams, and three of them, the most known, by some Russian h4x0rs :
perl -p -i -e 's/^safe_mode\s*=\s*on/safe_mode =off/i;' /etc/php.ini /etc/init.d/httpd restart
Today, newest versions of these scripts are hard to find, but fortunately there is a website called Sh3LL.Org where a little collection of these backdoors is available. BackDoor scripts are divided in two categories PHP and ASP scripts.
Do not forget to read the source code of these scripts before using them to prevent any pwnage of your backdoor by their authors . I also recommend you to hide your backdoor, and secure the access. For example you can give your backdoor a common name such as “common.php”, do not forget to change the date of creation of your backdoor file and chmod/chown it
Hack safe my friends! And as always, have a nice day.