I would like to know how can i gain access or "HACK" Apache/2.2.22, because i've tried but with no success.
Thanks, Dorin
Forum Thread: Help Exploiting Apache/2.2.22
- Hot
- Active
-
Forum Thread:
Gaining Access into the Victim's Whatsapp on Android
12
Replies
3 days ago -
Forum Thread:
Whatsapp Hack?
19
Replies
3 days ago -
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
6 days ago -
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
3 wks ago -
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
3 wks ago -
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
2 mo ago -
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
2 mo ago -
Metasploit Error:
Handler Failed to Bind
41
Replies
2 mo ago -
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
3 mo ago -
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
3 mo ago -
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
3 mo ago -
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
3 mo ago -
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
3 mo ago -
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
4 mo ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
4 mo ago -
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
5 mo ago -
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
6 mo ago -
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
6 mo ago -
Forum Thread:
How to Hack School Website
11
Replies
6 mo ago -
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
6 mo ago
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To:
Dox Anyone
-
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
-
How To:
Exploit EternalBlue on Windows Server with Metasploit
-
How To:
Crack SSH Private Key Passwords with John the Ripper
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How To:
Intercept Images from a Security Camera Using Wireshark
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Enumerate SMB with Enum4linux & Smbclient
-
How To:
Create a Persistent Back Door in Android Using Kali Linux:
-
How To:
Use Command Injection to Pop a Reverse Shell on a Web Server
-
How To:
Post to Null Byte [4.10.15 Revision]
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
-
BT Recon:
How to Snoop on Bluetooth Devices Using Kali Linux
11 Responses
We need more info to help. What have you tried? What was the systems response to your attempts?
What is your main goal? Control to the system, or transferring files, etc.?
Yes I had problems with that (like port 8180 should be open which is metasploitable and some other things like creating .war files etc.) but finally I did it. (though an ftp server)
You should search that in google.. with your knowledge OR tell us all the ports open, Type of Apache server, IP, server OS, and many more. (I prefer google)
{Trying to hack your school server ..huh?}
Open ports:
21/tcp open ftp
22/tcp open ssh OpenSSH 6.0p1 Debian 4 (protocol 2.0)
80/tcp open http Apache httpd 2.2.22 ((Debian))
http-generator: Joomla! - Open Source Content Management
443/tcp open http Apache httpd 2.2.22 ((Debian))
465/tcp open smtps
5060/tcp open tcpwrapped
8080/tcp open ssl/http Apache httpd 2.2.22 ((Debian))
Running (JUST GUESSING): Linux 3.X|2.6.X (98%)
OS CPE: cpe:/o:linux:linuxkernel:3 cpe:/o:linux:linuxkernel:2.6
Aggressive OS guesses: Linux 3.2 - 3.8 (98%), Linux 2.6.32 - 3.0 (94%), Linux 2.6.32 (90%), Linux 3.1 - 3.2 (89%), Linux 3.0 - 3.2 (89%), Linux 2.6.32 - 2.6.39 (89%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 7 hops
Service Info: OS: Linux; CPE: cpe:/o:linux:linuxkernel
Thanks, Dorin
You have FTP to crack as well as SSH. That'll give you both file access and system control. Hydra will be your new friend. ;)
So How can you do this exploit process?
Sorry, mail to me.
At first i made what FEAR did trying to see port 8180 for Tomcat, but with no success, as port 8180 does not exit in this target, so i would like to know how to FULL TAKE CONTROL on this server.
Thanks, Dorin
Dorin:
I see that there is Joomla on that server. There are several new and excellent exploits in Metasploit taking advantage of Joomla. That's where I would start. Joomla is very vulnerable to attack.
In addition, check Metasploit for Apache exploits as well.
OTW
Apache 2.2.22 exploit is very simple.
can you give me more details? what vulnerability/exploit?
How i can exploit apache Apache httpd 2.2.22 ?? with metasploit
Share Your Thoughts