[TUT]How to Search/Hack a SCADA system.[TUT]

[H@CK3R_ADI]

Today I got a idea as we all know that IIS 7.5 have authentication bypass vulnerability and when you will search shodanhq.com you will find many SCADA systems have IIS 7.5 installed but wee will use shortcut see enter this URI(Url) in your browser:

SHODAN - Computer Search Engine

You will find many SCADA systems with IIS 7.5 installed now I hope you know about proxy bouncing now after doing proxy bouncing connect to the SCADA system(you can choose anyone you want to hack).

Now by using authentication bypass vulnerability in IIS 7.5 you can run any php script like shell script and you can get admin privilege or you can execute your own malicios .php,.cs,.vb script to get access or execute your own scada virus.
I hope you all will like this tut

Note: This tut is not completely based on SCADA hacking.In this tut I'm trying to say that by using IIS 7.5 authentication bypass vulnerability you can execute a malicious script to get you admin privilege or by using script to download/execute you bot/virus to completely Hack scada system

Note: before writing SCADA virus you should know about and have do some experiment with it(at home).I'm also trying to know about PLC(s) and one thing more that some viruses can be executed internally I mean that you cannot execute from outside.In SCADA you to sometimes exploit it Internally

Credits
H@CK3R_ADI

[H@CK3R_ADI]

@AnantSri : I updated this tut.

[Noter]

using authentication bypass vulnerability in IIS 7.5 ?

have you IIS 7.5 Bypass exploit ?

[Narcissus]

Hay ... an Idea here.

How about a section for Google, Shodan dorks ?
Admins, please think about it.

-

Narcissus

[fb1h2s]

@narcissus, we can open it up only condition u will have to keep it updated