BackTrack Linux

BackTrack Linux (2)

解决backtrack5无法ssh登录问题

backtrack5安装完毕后,使用putty远程登录时显示network error:Connection refused
解决方法:

登录系统(系统默认用户名密码是root/toor,startx可以进入图形界面)

在命令终端输入命令,

#sshd-generate (系统可能会询问是否覆盖,全部选Y)。

或者

#ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key

密码置空

#ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key

密码置空

然后

:~# /etc/init.d/ssh restart

问题解决。

Read more...

How to use Joomscan to find the Joomla Vulnerability in Backtrack 5 Linux?

Joomscan is one of penetration testing tool that help to find the vulnerability in Joomla CMS.   TheUpdated version can detects 550 Vulnerabilities. Let me show how to use this joomscan in Backtrack5.

 

Download the Joomscan from here:

 http://web-center.si/joomscan/joomscan.tar.gz


 

Step 1: Moving to PenTest folder

Copy/Move the downloaded files in directory

/pentest/web/scanners/joomscan/



Step2: Set Permission

Now you have to set permission for the Joomscan file. In order to this, Type the following command in Terminal(if you don't know how to open terminal at all, please stop reading this and start it from basics of Linux).

CHMOD 0777 joomscan.pl



Step 3: Update

Update the scanner to latest version. To do this, enter the following command in Terminal:

./joomscan.pl update



Step 4: Scanning for Vulnerability

Now everything ok, we have to scan our joomla site for vulnerability. To do this, enter the following command in Terminal:

./joomscan.pl -u www.YourJoomlasite.com





Wait for a while, and it will list of the vulnerability found.

 

This tutorial is completely for Educational purpose only. This tutorial is for PenTester and Ethical Hackers .

Read more...
Subscribe to this RSS feed
( ! ) Warning: count(): Parameter must be an array or an object that implements Countable in /var/www/vhosts/shan.info/httpdocs/templates/gk_publisher/html/com_k2/templates/default/category.php on line 191
Call Stack
#TimeMemoryFunctionLocation
10.0003398024{main}( ).../index.php:0
20.03301348464Joomla\CMS\Application\SiteApplication->execute( ).../index.php:49
30.03301348464Joomla\CMS\Application\SiteApplication->doExecute( ).../CMSApplication.php:196
40.13462778408Joomla\CMS\Application\SiteApplication->dispatch( $component = ??? ).../SiteApplication.php:233
50.13512800280Joomla\CMS\Component\ComponentHelper::renderComponent( $option = 'com_k2', $params = ??? ).../SiteApplication.php:194
60.13582855632Joomla\CMS\Component\ComponentHelper::executeComponent( $path = '/var/www/vhosts/shan.info/httpdocs/components/com_k2/k2.php' ).../ComponentHelper.php:377
70.13592872688require_once( '/var/www/vhosts/shan.info/httpdocs/components/com_k2/k2.php ).../ComponentHelper.php:402
80.14213004928K2ControllerItemlist->execute( $task = 'category' ).../k2.php:64
90.14213004928K2ControllerItemlist->display( $cachable = ???, $urlparams = ??? ).../BaseController.php:710
100.14643028528K2ControllerItemlist->display( $cachable = TRUE, $urlparams = ['limit' => 'UINT', 'limitstart' => 'UINT', 'id' => 'INT', 'tag' => 'STRING', 'searchword' => 'STRING', 'day' => 'INT', 'year' => 'INT', 'month' => 'INT', 'print' => 'INT', 'lang' => 'CMD', 'Itemid' => 'INT', 'ordering' => 'CMD', 'm' => 'INT', 'amp' => 'INT', 'tmpl' => 'CMD', 'template' => 'CMD'] ).../itemlist.php:49
110.14643028528K2ControllerItemlist->display( $cachable = TRUE, $urlparams = ['limit' => 'UINT', 'limitstart' => 'UINT', 'id' => 'INT', 'tag' => 'STRING', 'searchword' => 'STRING', 'day' => 'INT', 'year' => 'INT', 'month' => 'INT', 'print' => 'INT', 'lang' => 'CMD', 'Itemid' => 'INT', 'ordering' => 'CMD', 'm' => 'INT', 'amp' => 'INT', 'tmpl' => 'CMD', 'template' => 'CMD'] ).../controller.php:19
120.14763036040Joomla\CMS\Cache\Controller\ViewController->get( $view = class K2ViewItemlist { public $document = class Joomla\CMS\Document\HtmlDocument { public $_links = [...]; public $_custom = [...]; public $template = NULL; public $baseurl = NULL; public $params = NULL; public $_file = NULL; protected $_template = ''; protected $_template_tags = [...]; protected $_caching = NULL; private $_html5 = NULL; public $title = 'BackTrack Linux'; public $description = ''; public $link = ''; public $base = 'https://www.shan.info/component/k2/itemlist/category/92-backtrack-linux.html'; public $language = 'en-gb'; public $direction = 'ltr'; public $_generator = 'Joomla! - Open Source Content Management'; public $_mdate = ''; public $_tab = '\t'; public $_lineEnd = '\n'; public $_charset = 'utf-8'; public $_mime = 'text/html'; public $_namespace = ''; public $_profile = ''; public $_scripts = [...]; public $_script = [...]; protected $scriptOptions = [...]; public $_styleSheets = [...]; public $_style = [...]; public $_metaTags = [...]; public $_engine = NULL; public $_type = 'html'; protected $mediaVersion = '15dbf078d61dbbf76811992dd0143dd9' }; protected $_name = 'itemlist'; protected $_models = ['item' => class K2ModelItem { ... }, 'itemlist' => class K2ModelItemlist { ... }]; protected $_basePath = '/var/www/vhosts/shan.info/httpdocs/components/com_k2'; protected $_defaultModel = 'itemlist'; protected $_layout = 'category'; protected $_layoutExt = 'php'; protected $_layoutTemplate = '_'; protected $_path = ['template' => [...], 'helper' => [...]]; protected $_template = '/var/www/vhosts/shan.info/httpdocs/templates/gk_publisher/html/com_k2/templates/default/category_item.php'; protected $_output = '\n<article class="itemView groupLeading"> \t\n\t\t<time datetime="2013-09-02T23:30:58+02:00">\n\t\t02 Sep\t</time>\n\t\t\t\n\t<section>\t\t\n\t\t<header>\n\t\t\t\t\n\t\t\t\t\t\t<h2>\n\t\t\t\t\t\t\t\t\t\t<a href="/component/k2/item/534-how-to-use-joomscan-to-find-the-joomla-vulnerability-in-backtrack-5-linux.html">How to use Joomscan to find the Joomla Vulnerability in Backtrack 5 Linux?</a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t</h2>\n\t\t\t\t\t\t\n\t\t\t<ul>\n\t\t\t\t\t\t\t\t<li class="itemCategory"> <span>Published'; protected $_escape = 'htmlspecialchars'; protected $_charset = 'UTF-8'; protected $_errors = []; public $baseurl = ''; public $now = '2021-12-07 12:29:01'; public $nullDate = '0000-00-00 00:00:00'; public $category = class TableK2Category { public $id = '92'; public $name = 'BackTrack Linux'; public $alias = 'backtrack-linux'; public $description = ''; public $parent = '0'; public $extraFieldsGroup = '0'; public $published = '1'; public $image = '/components/com_k2/images/placeholder/category.png'; public $access = '1'; public $ordering = '4'; public $params = '{"inheritFrom":"0","theme":"","num_leading_items":"2","num_leading_columns":"1","leadingImgSize":"Large","num_primary_items":"4","num_primary_columns":"2","primaryImgSize":"Medium","num_secondary_items":"4","num_secondary_columns":"1","secondaryImgSize":"Small","num_links":"4","num_links_columns":"1","linksImgSize":"XSmall","catCatalogMode":"0","catFeaturedItems":"1","catOrdering":"","catPagination":"2","catPaginationResults":"1","catTitle":"1","catTitleItemCounter":"1","catDescription":"1","catImage":"1","'; public $trash = '0'; public $plugins = ''; public $language = '*'; protected $_tbl = '#__k2_categories'; protected $_tbl_key = 'id'; protected $_tbl_keys = [...]; protected $_db = class JDatabaseDriverMysqli { ... }; protected $_trackAssets = FALSE; protected $_rules = NULL; protected $_locked = FALSE; protected $_autoincrement = TRUE; protected $_observers = class JObserverUpdater { ... }; protected $_columnAlias = [...]; protected $_jsonEncode = [...]; protected $_errors = [...]; public $metaDescription = NULL; public $metaKeywords = NULL; public $metaRobots = NULL; public $metaAuthor = NULL; public $link = '/component/k2/itemlist/category/92-backtrack-linux.html'; public $text = ''; public $jcfields = [...]; public $event = class stdClass { ... } }; public $user = class Joomla\CMS\User\User { protected $isRoot = FALSE; public $id = 0; public $name = NULL; public $username = NULL; public $email = NULL; public $password = NULL; public $password_clear = ''; public $block = NULL; public $sendEmail = 0; public $registerDate = NULL; public $lastvisitDate = NULL; public $activation = NULL; public $params = NULL; public $groups = [...]; public $guest = 1; public $lastResetTime = NULL; public $resetCount = NULL; public $requireReset = NULL; protected $_params = class Joomla\Registry\Registry { ... }; protected $_authGroups = NULL; protected $_authLevels = [...]; protected $_authActions = NULL; protected $_errorMsg = NULL; protected $userHelper = class Joomla\CMS\User\UserWrapper { ... }; protected $_errors = [...]; public $aid = 0; public $gid = 1 }; public $feed = 'https://www.shan.info/component/k2/itemlist/category/92-backtrack-linux.html&format=feed'; public $leading = [0 => class stdClass { ... }, 1 => class stdClass { ... }]; public $primary = []; public $secondary = []; public $links = []; public $params = class Joomla\Registry\Registry { protected $data = class stdClass { ... }; protected $initialized = TRUE; public $separator = '.' }; public $pagination = class Joomla\CMS\Pagination\Pagination { public $limitstart = 0; public $limit = 14; public $total = 2; public $prefix = ''; public $pagesStart = 1; public $pagesStop = 1; public $pagesCurrent = 1; public $pagesTotal = 1; public $hideEmptyLimitstart = FALSE; protected $viewall = FALSE; protected $additionalUrlParams = [...]; protected $app = class Joomla\CMS\Application\SiteApplication { ... }; protected $data = NULL }; public $item = class stdClass { public $id = '534'; public $title = 'How to use Joomscan to find the Joomla Vulnerability in Backtrack 5 Linux?'; public $alias = 'how-to-use-joomscan-to-find-the-joomla-vulnerability-in-backtrack-5-linux'; public $catid = '92'; public $published = '1'; public $introtext = '<p style="line-height: 1.559765625; margin-top: 0pt; margin-bottom: 0pt;" dir="ltr"><span style="font-size: 13px; font-family: Arial; color: #333333; vertical-align: baseline; white-space: pre-wrap;">Joomscan is one of penetration testing tool that help to find the vulnerability in Joomla CMS. &nbsp;&nbsp;The</span><a href="http://www.ehackingnews.com/2011/11/update-released-for-joomscan-security.html"><span style="font-size: 13px; font-family: Arial; color: #a91b33; vertical-align: baseline; white-space: p'; public $fulltext = ''; public $video = NULL; public $gallery = NULL; public $extra_fields = '[]'; public $extra_fields_search = ''; public $created = '2013-09-02 21:30:58'; public $created_by = '63'; public $created_by_alias = ''; public $checked_out = '63'; public $checked_out_time = '2013-09-02 21:31:30'; public $modified = '0000-00-00 00:00:00'; public $modified_by = '0'; public $publish_up = '2013-09-02 21:30:58'; public $publish_down = '0000-00-00 00:00:00'; public $trash = '0'; public $access = '1'; public $ordering = '1'; public $featured = '0'; public $featured_ordering = '0'; public $image_caption = ''; public $image_credits = ''; public $video_caption = ''; public $video_credits = ''; public $hits = '1975'; public $params = class Joomla\Registry\Registry { ... }; public $metadesc = ''; public $metadata = 'robots=\nauthor='; public $metakey = ''; public $plugins = ''; public $language = '*'; public $categoryname = 'BackTrack Linux'; public $categoryid = '92'; public $categoryalias = 'backtrack-linux'; public $categoryparams = '{"inheritFrom":"0","theme":"","num_leading_items":"2","num_leading_columns":"1","leadingImgSize":"Large","num_primary_items":"4","num_primary_columns":"2","primaryImgSize":"Medium","num_secondary_items":"4","num_secondary_columns":"1","secondaryImgSize":"Small","num_links":"4","num_links_columns":"1","linksImgSize":"XSmall","catCatalogMode":"0","catFeaturedItems":"1","catOrdering":"","catPagination":"2","catPaginationResults":"1","catTitle":"1","catTitleItemCounter":"1","catDescription":"1","catImage":"1","'; public $itemGroup = 'leading'; public $category = class TableK2Category { ... }; public $link = '/component/k2/item/534-how-to-use-joomscan-to-find-the-joomla-vulnerability-in-backtrack-5-linux.html'; public $printLink = '/component/k2/item/534-how-to-use-joomscan-to-find-the-joomla-vulnerability-in-backtrack-5-linux.html?tmpl=component&amp;print=1'; public $tags = [...]; public $imageXSmall = ''; public $imageSmall = ''; public $imageMedium = ''; public $imageLarge = ''; public $imageXLarge = ''; public $rawTitle = 'How to use Joomscan to find the Joomla Vulnerability in Backtrack 5 Linux?'; public $author = class Joomla\CMS\User\User { ... }; public $text = '<p style="line-height: 1.559765625; margin-top: 0pt; margin-bottom: 0pt;" dir="ltr"><span style="font-size: 13px; font-family: Arial; color: #333333; vertical-align: baseline; white-space: pre-wrap;">Joomscan is one of penetration testing tool that help to find the vulnerability in Joomla CMS. &nbsp;&nbsp;The</span><a href="http://www.ehackingnews.com/2011/11/update-released-for-joomscan-security.html"><span style="font-size: 13px; font-family: Arial; color: #a91b33; vertical-align: baseline; white-space: p'; public $event = class stdClass { ... }; public $jcfields = [...]; public $image = ''; public $imageWidth = '600' } }, $method = 'display', $id = ???, $wrkarounds = ??? ).../BaseController.php:663
130.15133056728K2ViewItemlist->display( $tpl = ??? ).../ViewController.php:102
140.19415867872K2ViewItemlist->display( $tpl = NULL ).../view.html.php:1407
150.19415867872K2ViewItemlist->loadTemplate( $tpl = NULL ).../HtmlView.php:230
160.19485944696include( '/var/www/vhosts/shan.info/httpdocs/templates/gk_publisher/html/com_k2/templates/default/category.php ).../HtmlView.php:701