Audit

A place where newbies can post without (much) fear of reprisal. All mission posts should still go in the applicable forum.
Forum rules
Older HTS users: Be nice to the new people.

NEW USERS: This is NOT the place to post about missions! Refer to "Missions" category.

Audit

Post by chubakueno on Tue Feb 05, 2013 4:05 pm
([msg=73452]see Audit[/msg])

Failroot recently hacked my home domain : rinucom.com
It is basically empty because there is little to no information there, it was more of a placeholder than a website.
The problem is not regaining the control, is that I want to know is HOW it was hacked, it really riddles me.
chubakueno
New User
New User
 
Posts: 2
Joined: Fri Feb 17, 2012 6:21 pm
Blog: View Blog (0)


Re: Audit

Post by limdis on Tue Feb 05, 2013 8:28 pm
([msg=73472]see Re: Audit[/msg])

Well, FailRooT just got busted recently. Thought you might want to know that...

Have you been through your logs? We can take a look around your site for you but you will need to add in somewhere that HTS is allowed to pentest. Just to keep things legal.
"The quieter you become, the more you are able to hear..."
"Drink all the booze, hack all the things."
User avatar
limdis
Moderator
Moderator
 
Posts: 1166
Joined: Mon Jun 28, 2010 5:45 pm
Blog: View Blog (0)


Re: Audit

Post by chubakueno on Tue Feb 05, 2013 8:46 pm
([msg=73478]see Re: Audit[/msg])

Yeah, I knew about that, but I have no problems with him :lol: .It was a dummy site and he didn't upload pornograohic photos or whatsoever, it more gives me a kind of curiosity on how it was done.And you are free to do whatever you want to the web page except defacing and DDOS, as I said, the site is filled with the Joomla default information, and it is not even publicized.What I don´t want is to mess up with the subdomains, there is private information there.
Last edited by chubakueno on Tue Feb 05, 2013 8:55 pm, edited 1 time in total.
chubakueno
New User
New User
 
Posts: 2
Joined: Fri Feb 17, 2012 6:21 pm
Blog: View Blog (0)


Re: Audit

Post by limdis on Tue Feb 05, 2013 8:52 pm
([msg=73481]see Re: Audit[/msg])

limdis wrote:...you will need to add in somewhere that HTS is allowed to pentest.

Source code is where most put this. Post a link to the page it's on when you have it posted. We can't do anything until you do that.
"The quieter you become, the more you are able to hear..."
"Drink all the booze, hack all the things."
User avatar
limdis
Moderator
Moderator
 
Posts: 1166
Joined: Mon Jun 28, 2010 5:45 pm
Blog: View Blog (0)


Re: Audit

Post by LoGiCaL__ on Tue Feb 05, 2013 8:54 pm
([msg=73483]see Re: Audit[/msg])

chubakueno wrote:Yeah, I knew about that, but I have no problems with him :lol: .It was a dummy site and he didn't upload pornograohic photos or whatsoever, it more gives me a kind of curiosity on how it was done.And you are free to do whatever you want to the web page except defacing and DDOS, as I said, the site is filled with the Joomla default information, and it is not even public.What I don´t want is to mess up with the subdomains, there is private information there.


There still needs to be proof of ownership, which if you don't have control of the site may be a little hard to do. Without something on the page stating that HTS is free to test out your site then there is no proof it is yours no matter what you say.
User avatar
LoGiCaL__
Addict
Addict
 
Posts: 1060
Joined: Sun May 30, 2010 12:33 pm
Blog: View Blog (0)



Return to NZone

Who is online

Users browsing this forum: No registered users and 0 guests