Уеб трикове
16.01.2019 Vipe Team
Проверка на наличните PHP handlers
/usr/local/cpanel/bin/rebuild_phpconf --available
Уеб трикове
16.01.2019 Vipe Team
/usr/local/cpanel/bin/rebuild_phpconf --available
Уеб трикове
16.01.2019 Vipe Team
/usr/local/cpanel/scripts/easyapache --version
Уеб трикове
16.01.2019 Vipe Team
USE INFORMATION_SCHEMA; SELECT TABLES.table_name FROM TABLES LEFT JOIN KEY_COLUMN_USAGE AS c ON ( TABLES.TABLE_NAME = c.TABLE_NAME AND c.CONSTRAINT_SCHEMA = TABLES.TABLE_SCHEMA AND c.constraint_name = 'PRIMARY' ) WHERE TABLES.table_schema <> 'information_schema' AND TABLES.table_schema <> 'performance_schema' AND TABLES.table_schema <> 'mysql' AND c.constraint_name IS NULL;
Уеб трикове
16.01.2019 Vipe Team
1. Create imagick.php 2. Add the following code in it <?php error_reporting(E_ALL); ini_set( 'display_errors','1'); $im = new Imagick(); $im->newPseudoImage(50, 50, "gradient:blue-white"); $draw = new ImagickDraw(); $draw->pushPattern('gradient', 0, 0, 50, 50); $draw->composite(Imagick::COMPOSITE_OVER, 0, 0, 50, 50, $im); $draw->popPattern(); $draw->setFillPatternURL('#gradient'); $draw->setFontSize(52); $draw->annotation(20, 50, "Wordpress-bg.com confirms!"); $canvas = new Imagick(); $canvas->newImage(390, 70, "black"); $canvas->drawImage($draw); $canvas->borderImage('black', 1, 1); $canvas->setImageFormat('png'); header("Content-Type: image/png"); echo $canvas; ?> 3. Open in a browser domain.com/imagick.php . If it is enabled it will return 'Wordpress-bg.com confirms'.
Уеб трикове
16.01.2019 Vipe Team
UPDATE admin_user SET password = CONCAT(SHA2('xxxxxxxxNewPassword', 256), ':xxxxxxxx:1') WHERE username = 'admin';
Уеб трикове
16.01.2019 Vipe Team
UPDATE ps_employee SET passwd = MD5('<_COOKIE_>password') WHERE ps_employee.id_employee = 1;
Уеб трикове
16.01.2019 Vipe Team
RewriteCond %{HTTPS} off [OR] RewriteCond %{HTTP_HOST} ^www\.example\.co.uk* RewriteRule ^(.*)$ https://example.org.uk/$1 [L,R=301]
Уеб трикове
16.01.2019 Vipe Team
1. Access joom_users from db 2. Find the user. Under the password column, clear the value and replace with the following: d2064d358136996bd22421584a7cb33e:trd7TvKHx6dMeoMmBVxYmg0vuXEA4199 This will change your password to: secret 3. Using the new password, you can now login to the account to change the password to one of your choosing.
Уеб трикове
16.01.2019 Vipe Team
1. Grep for the user grep user /usr/local/maldetect/event_log 2. Take the number from the output and grep for it grep 843668 /usr/local/maldetect/event_log 3. Find the report number (report 180319-1343.843668). 4. Run sudo cat /usr/local/maldetect/sess/session.180319-1343.843668 where you replace the number with the one grepped.
Уеб трикове
16.01.2019 Vipe Team
RewriteEngine On RewriteCond %{HTTP_HOST} !^www\. RewriteRule ^(.*)$ http://www.%{HTTP_HOST}/$1 [R=301,L]
Уеб трикове
16.01.2019 Vipe Team
RewriteEngine On RewriteCond %{REQUEST_FILENAME} !-f RewriteRule ^([^\.]+)$ $1.php [NC,L] RewriteRule ^([^\.]+)$ $1.html [NC,L]
Уеб трикове
16.01.2019 Vipe Team
output_handler = Off zlib.output_compression = On zlib.output_handler = ob_gzhandler