I dont wanna hack the page, I just wanna know wehere they put admin page.
limdis wrote:Right, kinda vague. Just going to take a stab in the dark here cause yes not really sure if you want someone to figure this out or explain it. Being you are getting both 302 and 402 it is possible that you have found what you want to find, but their .htaccess file only allows their specific range of IPs, thus resulting in those errors. Just my thoughts given your description.
Impossible. The reason why I posted this here its because its so strange. Havij simply test all common logon adresses. It got over 50 matches. But they result in 402 error when browsing them. So I thought that maybe the sceurity site is supermega awesome skilled and can fool programs like that just to mess with the hackers. But how? Maybe through letting ASP tell MySql when ha bot/program strikes and generate lots of fake pages? I dunno.
LOGICAL: Zenmap use to say WHICH ports are filtered, but it didnt in this case. A bit strange, because what website uses exactly 1000 ports?