Results 1 to 5 of 5

Thread: [TUT]How to Search/Hack a SCADA system.[TUT] Share/Save - My123World.Com!

  1. #1
    Garage Member
    Join Date
    Jun 2012
    Location
    Unkn0wn City,Unkn0wn State,Unkn0wn Country,Unkn0wn Continent,PLanet Eart,Milkyway Galaxy,Virgo Super
    Posts
    51

    Lightbulb [UPDATED][TUT]How to Search/Hack a SCADA system.[TUT][UPDATED]

    Today I got a idea as we all know that IIS 7.5 have authentication bypass vulnerability and when you will search shodanhq.com you will find many SCADA systems have IIS 7.5 installed but wee will use shortcut see enter this URI(Url) in your browser:

    SHODAN - Computer Search Engine

    You will find many SCADA systems with IIS 7.5 installed now I hope you know about proxy bouncing now after doing proxy bouncing connect to the SCADA system(you can choose anyone you want to hack).

    Now by using authentication bypass vulnerability in IIS 7.5 you can run any php script like shell script and you can get admin privilege or you can execute your own malicios .php,.cs,.vb script to get access or execute your own scada virus.
    I hope you all will like this tut


    Note: This tut is not completely based on SCADA hacking.In this tut I'm trying to say that by using IIS 7.5 authentication bypass vulnerability you can execute a malicious script to get you admin privilege or by using script to download/execute you bot/virus to completely Hack scada system

    Note: before writing SCADA virus you should know about and have do some experiment with it(at home).I'm also trying to know about PLC(s) and one thing more that some viruses can be executed internally I mean that you cannot execute from outside.In SCADA you to sometimes exploit it Internally


    Credits
    H@CK3R_ADI
    Last edited by H@CK3R_ADI; 07-12-2012 at 08:29 AM.

  2. #2
    Garage Member
    Join Date
    Jun 2012
    Location
    Unkn0wn City,Unkn0wn State,Unkn0wn Country,Unkn0wn Continent,PLanet Eart,Milkyway Galaxy,Virgo Super
    Posts
    51
    @AnantSri : I updated this tut.

  3. #3
    using authentication bypass vulnerability in IIS 7.5 ?

    have you IIS 7.5 Bypass exploit ?
    Last edited by Noter; 10-20-2013 at 08:26 PM.

  4. #4
    Hay ... an Idea here.

    How about a section for Google, Shodan dorks ?
    Admins, please think about it.

    -

    Narcissus

  5. #5
    Security Researcher fb1h2s's Avatar
    Join Date
    Jul 2010
    Location
    India
    Posts
    616
    Blog Entries
    32
    @narcissus, we can open it up only condition u will have to keep it updated
    Hacking Is a Matter of Time Knowledge and Patience

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •