Hello There, Guest! Login Register
Logo
Dismiss this notice
MaDLeeTs is not responsible for any attacks that are carried out on networks, websites or servers.
MaDLeeTs staff members cannot be held responsible.
All information on this forum is for educational purposes only.


WebsitePanel 0day And ByPass Methods

  • 0 Vote(s) - 0 Average


03-17-2017, 08:20 AM #1
b0x Offline b0x *******
Administrators
Posts:78 Threads:34 Joined:Jul 2012 Reputation: 4
Mood: None
Hello MADs

I Miss everyone of you @MadLeets  Thumbsupsmileyanim 

I recently have published  websitepanel 0day , this panel for windows servers to manage accounts

our 0d4y will give you an System-Administrator Privilege as a (Local Root)

How to know that server is using WebsitePanel ??

Easy way ,, just track the path of files you'll see it like this

Quote:C:\HostingSpaces\siteuser\siteuser.com.sa\

Ok That's Awesome 25

The port of panel is : 9001

And This is screenshot of Panel

[Image: iXA27581.png]

The Local Privilege Escalation needs to have a shell on server Whistle

After Getting a Shell you have to go to this path

Quote: C:\Program Files (x86)\FileZilla Server

Note : If IIS < 7 or using old version of windows server you may go to


Quote: C:\Program Files\FileZilla Server
This is the difference between 64/32 bit system

[Image: nyu27789.png]

After Getting path and see FileZilla Server is on system , we'll read file which used to store accounts on server Clapping

The file name :  FileZilla Server.xml

And you'll get access on server - FTP Access

[Image: q4X27850.png]

And now you notice  password in md5 , you may decrypt it Nice  but what if there is a hard MD5 ??
which can't be decoded :Sadsmiley

Ok Don't Worry We've a solution 99

You just Go here

Quote:C:\\Program Files (x86)\\WebsitePanel Installer
[Image: jg827996.png]

In this folder the panel saves logs about server and user/password in setup-time , So we can use them and access administrator privielge

now read that file : WebsitePanel.Installer.log

[Image: CrF28083.png]

And as you can see in 1st line

Quote:[1/31/2014 4:02:03 PM] WebsitePanel.Installer 2.0.0.274 Started by WIN-F2UH6VH88PD\Administrator
This is a privilege you get after logging / using a shell

now go deep in file and search for a password

[Image: al828177.png]

And now enjoy RDP Admin Thumbsupsmileyanim

what if i can't access all that ?!?!

you may use another 0d4y music

copy your shell to Websitepanel's Path , sometimes it's allowed to write a file/copy a file to it's path 99


The path in picture

[Image: NU428397.png]

After that you may browse your shell

Quote:http://ip:9001/shell.asp
or

Quote:http://ip:9003/shell.asp
[Image: mXL28645.png]

The screenshot on Saudi Server which uses no port for a panel 25

You may revision this thread in order to make a dot net work as administrator shell Clapping

Quote:http://www.madleets.com/Thread-Windows-P...Privileges

With Love to all my borthers <3

./b0x


03-17-2017, 08:36 AM #2
drTrojan Offline Junior Member **
Registered
Posts:2 Threads:0 Joined:May 2013 Reputation: 0
Mood: None
Wow wow awesome and amazing sir....

03-17-2017, 01:13 PM #3
1337 Offline Don't PM me for help, post it on forum ! *******
Administrators
Posts:520 Threads:106 Joined:Jun 2012 Reputation: 21
Mood: Hacker
This is so evil! 
Awesome share brother Biggrinsmiley

[Image: 28jeale.jpg]
[Image: 2mzgpld.jpg]
------------------------------------------------
[#] CodeName: 1337
[#] Email: [email protected]
[#] Zone-H: http://zone-h.org/archive/special=1/notifier=1337
[#] Facebook: https://www.facebook.com/MaDLeeTs.phtm

-------------------------------------------------

[Image: o8rq6s.jpg]

03-17-2017, 01:38 PM #4
Silent_L0v3R Offline Silent L0v3R ***
TeaM MaDLeeTs
Posts:3 Threads:0 Joined:Mar 2017 Reputation: 0
Mood: Sad
Wao Nice Heart

03-17-2017, 02:50 PM #5
H4x0rl1f3 Offline Commander In Cheif *******
Administrators
Posts:1,126 Threads:25 Joined:Jun 2012 Reputation: 15
Mood: Stoned
mantabs bro

Always Aspect Reward from the Creator and not anyone or anything Created.
For Complaints & Help Contact:- [email protected]
Zone-h
http://zone-h.org/archive/notifier=H4x0rL1f3
I am the orphan of Gaza & Kashmir. Ruins of Iraq,Syria & Palestine Bombarded of Pakistan,Afghanistan, Mali & Yemen Change of Libya and Egypt Discriminated of Bahrain & Turkey Freedom of Earth's paradise and Al-AQSA. I am the hunger stricken child of Somalia, Ethopia, & rest of Africa I am the suffering of each and every single corner of the world. But Listen!!! Hope is what I am!!


03-17-2017, 09:23 PM #6
vvv Offline TeaM MaDLeeTs ***
TeaM MaDLeeTs
Posts:10 Threads:1 Joined:Dec 2013 Reputation: 0
Mood: Crazy
awesome share, thanks Biggrinsmiley

That was my sin. And this...this is my punishment.:blush:

03-17-2017, 09:53 PM #7
b0x Offline b0x *******
Administrators
Posts:78 Threads:34 Joined:Jul 2012 Reputation: 4
Mood: None
You all are welcome brothers <3

03-17-2017, 10:04 PM #8
AhmadRaza.1337 Offline Leet **
Registered
Posts:5 Threads:1 Joined:Mar 2017 Reputation: 0
Mood: Alone
ThanX bro...

03-17-2017, 10:27 PM #9
Hunter PCA Offline Junior Member **
Registered
Posts:25 Threads:6 Joined:Mar 2017 Reputation: 0
Mood: Thinking
Nice Share Mate.

-- I know, I am something, because GOD never creates garbage --






Forum Jump:


Users browsing this thread:1 Guest(s)