API tools faq
paste
Advertisement
TeamBCA

www.dekin.kkp.go.id Breached ! DataBase By TeamBCA

TeamBCA
Dec 27th, 2012
1,261
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 8.39 KB | None | 0 0
raw download clone embed print report
  1. # WebSite Hacked Brazilian Cyber Army
  2. # https://twitter.com/TeamBCA
  3. # Please All Members Hackers Indonesia, You Not Hacked WebSites Of Brazil. Please No War ...
  4.  
  5. www.dekin.kkp.go.id ( Indonesian Maritime Council ) Breached ! DataBase By
  6.  
  7. Brazilian Cyber Army
  8.  
  9. @TeamBCA
  10.  
  11.  
  12. ###############
  13. ### dekindb ###
  14. ###############
  15.  
  16. Table Name Columns
  17. ip2c id begin_ip end_ip begin_ip_num end_ip_num country_code country_name
  18. tbl_anggota id nama website email icon keterangan urutan alamat telepon fax id_anggota_jenis status isi files
  19. tbl_anggota_jenis id judul urutan status
  20. tbl_berita id id_berita_jenis isi kutipan waktu hits icon status link jenis judul
  21. tbl_berita_jenis id judul keterangan urutan waktu
  22. tbl_berita_komentar id id_berita komentar waktu status ip email id_upper nama
  23. tbl_buku_tamu id nama instansi email komentar status waktu
  24. tbl_counter id waktu ip ref
  25. tbl_download id jenis file icon status waktu id_katagori level hits judul nama_file_asli keterangan sneak
  26. tbl_download_jenis id nama status urutan icon s aka icon_system
  27. tbl_download_katagori id judul waktu status icon tanggal_1 tanggal_2 keterangan id_jenis judul_arsip id_arsip
  28. tbl_events id nama isi website waktu waktu_1 tempat icon view waktu_2 icon2 icon3 banner icon4 owner banner_show banner_judul status hits kutipan
  29. tbl_flags id icon country_name
  30. tbl_forum id id_user id_topik waktu status komentar kutipan ts judul keterangan
  31. tbl_hubungi_kami id nama instansi email komentar status waktu
  32. tbl_index id status nama_table jenis sneak judul id_sumber upper_table upper_id
  33. tbl_info id judul isi kutipan waktu status urutan
  34. tbl_log id waktu ip negara
  35. tbl_operator id uid pass status nama_lengkap waktu
  36. tbl_polling id judul isi waktu status urutan keterangan icon hits
  37. tbl_polling_charge id id_polling id_polling_pilihan waktu status ip
  38. tbl_polling_pilihan id id_polling urutan nama
  39. tbl_text_berjalan id isi waktu
  40. tbl_topik id_topik id_forum id_user waktu status judul keterangan ts id
  41. tbl_users id username nama_asli jenis_kelamin agama waktu password icon tgl_lahir instansi negara email alamat telepon status jenis tanya jawab tgl_daftar aktifasi tgl_aktifasi status_aktifasi status_forum corespondent tgl_cencus citypostcode md5_stop md5_aktif foto
  42.  
  43. #############
  44. ### dmidb ###
  45. #############
  46.  
  47. Table Name Columns
  48. agenda acara id tgl_awal jamawal1 jamawal2 tgl_akhir2 jamakhir1 jamakhir2 alamat keterangan icon ts tgl_akhir
  49. berita id sneak ts icon judul isi tgl_turun tgl_tayang target userid tgl_upload
  50. bukutamu id nama email saran kritik ipaddress waktu ts
  51. download id nama file keterangan jenis sub_jenis icon katagori ts tgl_upload tgl_turun
  52. forum id idtopik ts userip idfile namafile komentar file namafileasli pengirim waktu
  53. info id jenis judul sneak isi target ts
  54. katagori id jenis sub_jenis nama keterangan icon ts
  55. komentar id ts nama komentar idberita waktu instansi ipaddress status judulberita
  56. tblcounter ipaddress waktu referer id ts
  57. tblkatagori id nama ts keterangan jenis sub_jenis icon
  58. user id nama password
  59.  
  60. #############
  61. ### mysql ###
  62. #############
  63.  
  64. Table Name Columns
  65. columns_priv Host Db User Table_name Column_name Timestamp Column_priv
  66. db Host Db User Select_priv Insert_priv Update_priv Delete_priv Create_priv Drop_priv Grant_priv References_priv Index_priv Alter_priv Create_tmp_table_priv Lock_tables_priv Create_view_priv Show_view_priv Create_routine_priv Alter_routine_priv Execute_priv Event_priv Trigger_priv
  67. event db name body definer execute_at interval_value interval_field created modified last_executed starts ends status on_completion sql_mode comment originator time_zone character_set_client collation_connection db_collation body_utf8
  68. func name ret dl type
  69. general_log event_time user_host thread_id server_id command_type argument
  70. help_category help_category_id name parent_category_id url
  71. help_keyword help_keyword_id name
  72. help_relation help_topic_id help_keyword_id
  73. help_topic help_topic_id name help_category_id description example url
  74. host Host Db Select_priv Insert_priv Update_priv Delete_priv Create_priv Drop_priv Grant_priv References_priv Index_priv Alter_priv Create_tmp_table_priv Lock_tables_priv Create_view_priv Show_view_priv Create_routine_priv Alter_routine_priv Execute_priv Trigger_priv
  75. ndb_binlog_index Position File epoch inserts updates deletes schemaops
  76. plugin name dl
  77. proc db name type specific_name language sql_data_access is_deterministic security_type param_list returns body definer created modified sql_mode comment character_set_client collation_connection db_collation body_utf8
  78. procs_priv Host Db User Routine_name Routine_type Grantor Proc_priv Timestamp
  79. servers Server_name Host Db Username Password Port Socket Wrapper Owner
  80. slow_log start_time user_host query_time lock_time rows_sent rows_examined db last_insert_id insert_id server_id sql_text
  81. tables_priv Host Db User Table_name Grantor Timestamp Table_priv Column_priv
  82. time_zone Time_zone_id Use_leap_seconds
  83. time_zone_leap_second Transition_time Correction
  84. time_zone_name Name Time_zone_id
  85. time_zone_transition Time_zone_id Transition_time Transition_type_id
  86. time_zone_transition_type Time_zone_id Transition_type_id Offset Is_DST Abbreviation
  87. user Host User Password Select_priv Insert_priv Update_priv Delete_priv Create_priv Drop_priv Reload_priv Shutdown_priv Process_priv File_priv Grant_priv References_priv Index_priv Alter_priv Show_db_priv Super_priv Create_tmp_table_priv Lock_tables_priv Execute_priv Repl_slave_priv Repl_client_priv Create_view_priv Show_view_priv Create_routine_priv Alter_routine_priv Create_user_priv Event_priv Trigger_priv ssl_type ssl_cipher x509_issuer x509_subject max_questions max_updates max_connections max_user_connections
  88.  
  89. #############################################################################################
  90.  
  91. XSS Vulnerability
  92.  
  93. Print: https://lh3.googleusercontent.com/-Q7ema_qDh0g/UNz5HkPcY7I/AAAAAAAAAac/vqqdj6QHkyY/s912/XSS%2520Print.jpg
  94.  
  95. #############################################################################################
  96.  
  97. PHPinfo page found
  98.  
  99. http://www.dekin.kkp.go.id/test.php
  100.  
  101. Uploaded
  102.  
  103. http://www.dekin.kkp.go.id/upload.php
  104.  
  105. PHPMyAdmin
  106.  
  107. http://www.dekin.kkp.go.id/phpMyAdmin/
  108.  
  109. #############################################################################################
  110.  
  111. Dump Users........
  112.  
  113. Table: user
  114.  
  115. password nama id
  116. 0507 yopi ertertert
  117. bl92 andy 20110930071037
  118.  
  119. ##############################################################################################
  120.  
  121. MySql
  122.  
  123. Host User Password
  124. 127.0.0.1 root *2172F075C4D08E34F351285B0FBD039804F88203
  125. linux-ten8 root *2172F075C4D08E34F351285B0FBD039804F88203
  126. localhost root *2172F075C4D08E34F351285B0FBD039804F88203
  127.  
  128. #############################################################################################
  129.  
  130. $$$$$$$ Nmap
  131.  
  132. PORT STATE SERVICE VERSION
  133.  
  134. 22/tcp open ssh OpenSSH 5.8 (protocol 2.0)
  135.  
  136. | ssh-hostkey: 1024 3a:eb:e7:bc:05:5c:e1:58:de:cf:f4:d2:ea:24:d4:2e (DSA)
  137.  
  138. | 1024 e6:1e:2e:d0:09:ba:5b:a3:32:95:e9:2b:ba:24:b2:f4 (RSA)
  139.  
  140. |_256 67:7e:c3:28:d9:c2:72:e3:2d:24:9d:fe:7f:25:b2:f8 (ECDSA)
  141.  
  142. 80/tcp open http Apache httpd 2.2.17 ((Linux/SUSE))
  143.  
  144. |_http-favicon: Unknown favicon MD5: 00F2E22774A2DBA595EA90B3CAD3486A
  145.  
  146. | http-methods: GET HEAD POST OPTIONS TRACE
  147.  
  148. | Potentially risky methods: TRACE
  149.  
  150. |_See http://nmap.org/nsedoc/scripts/http-methods.html
  151.  
  152. |_http-title: Site doesn't have a title (text/html).
  153.  
  154. Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
  155.  
  156. Aggressive OS guesses: Gemtek P360 WAP or Siemens Gigaset SE515dsl wireless broadband router (88%), Linux 2.4.18 (88%), OpenWrt 0.9 - 7.09 (Linux 2.4.30 - 2.4.34) (88%), OpenWrt Kamikaze 7.09 (Linux 2.6.22) (88%), Crestron XPanel control system (87%), Netgear DG834G WAP or Western Digital WD TV media player (87%), Comtrend CT536 wireless ADSL router (86%), OpenWrt White Russian 0.9 (Linux 2.4.30) (86%), Linux 2.6.15 - 2.6.27 (86%)
  157.  
  158. No exact OS matches for host (test conditions non-ideal).
  159.  
  160. Uptime guess: 56.146 days (since Thu Nov 01 18:50:30 2012)
  161.  
  162. Network Distance: 14 hops
  163.  
  164. TCP Sequence Prediction: Difficulty=187 (Good luck!)
  165.  
  166. IP ID Sequence Generation: All zeros
  167.  
  168. ##############################################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!