Merhaba dostlarım bir myanmar üniversitesine öyle bir ufak çaplı bir pentest yaparken ip adresinden başka sql açıklı bir siteye denk geldim o açıklı siteye shell atılabilirse altdomainlerde 78 site var ve asıl hedef site hacklenerek mükemmel bir iş olabilir.bilgisayarda çok vaktim olmuyor genelde mobilim.Bazı topladığım bilgileri paylaşayım istedim.
--------------
Bilgiler ;
--------------
Açık Portlar ;
------------------
Bahsettiğim açıklı sql site ;
sunucuya girilebilirse iyi bir iş olacaktır.
--------------------
Site Alt Domainleri ;
--------------------
Host,name,mail servisleri ;
--------------
Bilgiler ;
Kod:
[COLOR="SeaGreen"]Site :[/COLOR] [COLOR="Orange"]http://www.cumandalay.edu.mm[/COLOR]
[COLOR="SeaGreen"]Site İP Adress :[/COLOR] [COLOR="Orange"]67.222.158.172[/COLOR]
[COLOR="SeaGreen"]NameServer[/COLOR]: [COLOR="Orange"]ns0.nic.net.mm[/COLOR]
[COLOR="SeaGreen"]Dns admin :[/COLOR] [COLOR="Orange"][email protected][/COLOR]
[COLOR="SeaGreen"]Reverse DNS :[/COLOR] [COLOR="Orange"]ns1c.netscriper.com[/COLOR]--------------
Açık Portlar ;
Kod:
PORT STATE SERVICE
21/tcp open ftp
26/tcp open rsftp
53/tcp open domain
80/tcp open http
110/tcp open pop3
143/tcp open imap
443/tcp open https
465/tcp open smtps
587/tcp open submission
993/tcp open imaps
995/tcp open pop3s
2200/tcp open ici
3306/tcp open mysql------------------
Bahsettiğim açıklı sql site ;
Kod:
http://www.grandelectronicsmyanmar.com/detail.php?id=51sunucuya girilebilirse iyi bir iş olacaktır.
--------------------
Site Alt Domainleri ;
Kod:
cetobeto.com
casasalem.org
alexdesignerwear.com
bracketmyanmar.com
http://ccu.edu.mm/
ceanalysisofrates.com
dhammaschool.org.mm
edumyanmar.org
fmi.com.mm
itcmandalay.com
itstudiomm.com
moeahsan.com
morningglorysilver925.com
myanmarbanksassociation.org
myanmaritc.com
oceangloryleeco.com
penetratetechnologies.com
positivetravels.com
royalandamanseafood.com
shweconstruction.comshwetaungsarr.com
silverwavetrading.com
venwirathu.com
wailukyawfoundation.com
www.ayemyamingalar.com
www.celestial-myanmar.com
www.cleanpro.com.mm
www.fame-education.com
www.hnnlogisticsmyanmar.com
www.itcsinde.com
www.itstudiomm.com
www.miraculoustravel-mm.com
www.myanmardesigners.com
www.newzeroartspace.com.mm
www.sanlwintrading.com
www.stepbystepmm.com
www.swesinchanthar.com
www.venwirathu.com
www.winsometravels.com
yangonairportgroup.com.mm
aungkhant.net
brandedcollections.com
cdes.org.mm
cleanpro.com.mm
cvmyanmar.com
easternpalacehotels.com
feb91.com
heavenpizza-mm.com
itcsinde.com
mcb.com.mm
moimm.com
myanmar3wi.com
myanmardesigners.com
newsovereignmyanmar.edu.mm
paoyouth.org
plushpedia.com
preciousmyanmartravel.com
shweconstruction.com
shwetaungsarr.com
tripinmyanmar.com
vintageflowers-mm.com
www.agribizmm.com
www.beautyofmyanmar.com
www.certifigroup.com
www.computechmyanmar.com
www.dhammaschool.org.mm
www.gvmyanmarartcentre.com
www.itcmandalay.com
www.itcthagaya.com
www.kolaymachinery.com
www.moimm.com
www.newsovereignmyanmar.edu.mm
www.pureandhealth-myanmar.com
www.sca-uk.org.uk
www.sweetymm.com
www.thsconstruction.com.mm
www.wailukyawfoundation.com
www.yangonairportgroup.com
yinmarbin.org--------------------
Host,name,mail servisleri ;
Kod:
--------------
Host,name ve mail servisleri ;
Host's addresses:
__________________
cumandalay.edu.mm. 41599 IN A 67.222.158.172
Name Servers:
______________
ns3.mtalk.net.mm. 43200 IN A 203.81.168.58
ns2.mtalk.net.mm. 4189 IN A 203.81.168.81
ns4.mtalk.net.mm. 43200 IN A 203.81.168.59
ns1.mtalk.net.mm. 38497 IN A 203.81.168.80
Mail (MX) Servers:
___________________
mail.cumandalay.edu.mm. 43200 IN A 203.81.168.58
