Hello There, Guest! Login Register
Logo
Dismiss this notice
MaDLeeTs is not responsible for any attacks that are carried out on networks, websites or servers.
MaDLeeTs staff members cannot be held responsible.
All information on this forum is for educational purposes only.


cPanel/WHM - CloudLinux Symlink Bypass

  • 2 Vote(s) - 5 Average


01-15-2014, 04:06 AM #11
pscript Offline Noob **
Registered
Posts:41 Threads:3 Joined:Aug 2013 Reputation: 0
Mood: None
nice bypass bro Biggrinsmiley !!

01-15-2014, 10:10 AM #12
l4m3r Offline Stupid Goverment *****
Moderators
Posts:770 Threads:71 Joined:Apr 2013 Reputation: 2
Mood: Zombie
Hohohoho.. awesome sir (Y)

+ If you want help, PM me +
[Image: pGKfq5R.png]

01-16-2014, 11:06 AM #13
dark_code Offline Junior Member **
Registered
Posts:28 Threads:1 Joined:Aug 2013 Reputation: 0
Mood: None
Great work bro thanks for the sharing

believe in yourself

01-16-2014, 05:57 PM #14
elmagico Offline Junior Member **
Registered
Posts:11 Threads:0 Joined:Dec 2013 Reputation: 0
Mood: None
u rock , thx for share my brother :-)

01-20-2014, 07:00 AM #15
3thicaln00b Offline MadLeets Vip ******
V.I.P
Posts:33 Threads:2 Joined:Sep 2012 Reputation: 0
Mood: None
Nice catch buddy Smiley1

02-25-2014, 03:06 AM #16
PAK_Haxor Offline Junior Member **
Registered
Posts:17 Threads:3 Joined:Dec 2013 Reputation: 0
Mood: None
(01-15-2014, 12:38 AM)1337 Wrote:  [Image: CLWebinar.png]
Hi guys, I had a target few days back but the target was on a CloudLinux server.
Couldn't bypass symlink due to high server security BUT just as I was about to give up, I tried to use port 2077 (YES, I'm sure many of you know's this trick HOWEVER it did not work Sadsmiley )
I then tried port 2078, as I did. It bypassed Tonguesmiley
You just need to login to 2078 with https and it may bypass.
You will need to login at https://serverip.com:2078 with cPanel details on the same server and open symlink dir of your target and walah. I tried it on 2 servers. One of the server was not bypassing the configuration.php with port 2077 but it bypassed with port 2078 for some reason Biggrinsmiley


Regards,
1337

Bro Nice Share Biggrinsmiley
Bro Can u Tell me
How we can Check it
The server is CloudLinux or Another Tonguesmiley
Regards

02-25-2014, 03:26 AM #17
ali ahmady Offline Sheller *****
Respected
Posts:247 Threads:15 Joined:Jun 2013 Reputation: 3
Mood: None
(02-25-2014, 03:06 AM)PAK_Haxor Wrote:  Bro Nice Share Biggrinsmiley
Bro Can u Tell me
How we can Check it
The server is CloudLinux or Another Tonguesmiley
Regards

just check passwd file and u will see there's just one user (ur target's user)

for more info google Cage-Fs technology

ali ahmady

http://zone-h.org/archive/notifier=ali%20ahmady

[Image: 78445698726923881361.gif]
skype : snip3r_ir[At]hotmail.com
jabber : [email protected]

02-26-2014, 04:13 AM #18
PAK_Haxor Offline Junior Member **
Registered
Posts:17 Threads:3 Joined:Dec 2013 Reputation: 0
Mood: None
Thanx For Reply ali ahmady Bro <3
If Could Linux Server Have Only One user in Passwd file. so,
What is Advantage of Symlink bypass Tonguesmiley
I have also These Server wink but i dont think it is helpFull for me Tonguesmiley

Maybe There is Another Way Tonguesmiley from this We can check wethere or not its is Cloud linux server Tonguesmiley

Regards!

02-26-2014, 05:25 AM #19
ali ahmady Offline Sheller *****
Respected
Posts:247 Threads:15 Joined:Jun 2013 Reputation: 3
Mood: None
its a little bit complicated but professional hackers have invented some bypass for findin all users and b0x is one of those persons Smiley1

ali ahmady

http://zone-h.org/archive/notifier=ali%20ahmady

[Image: 78445698726923881361.gif]
skype : snip3r_ir[At]hotmail.com
jabber : [email protected]

03-07-2014, 03:30 PM #20
xkullx Offline Junior Member **
Registered
Posts:2 Threads:0 Joined:Mar 2014 Reputation: 0
Mood: None
nice broo






Forum Jump:


Users browsing this thread:1 Guest(s)