hello guys, i'm here to talk about websites security you know there is kids have a small hack program can close / open the website and really i got bored from this, but i dun know how to security the website well so i just requesting from any pro coder or anyone who can help me in this and sorry for this strange thread thank you.
about website security
09/17/2012 14:47
Spider*#1
09/17/2012 15:58
鳳凰城#2
09/17/2012 16:42
PortalDark#3
cherno's exploit pack(look on release section) f*** up if IIS is open(ports)Quote:
hello guys, i'm here to talk about websites security you know there is kids have a small hack program can close / open the website and really i got bored from this, but i dun know how to security the website well so i just requesting from any pro coder or anyone who can help me in this and sorry for this strange thread thank you.
as for a website, is just matter of injections
09/17/2012 16:45
LastThief*#4
@Portal
Who have told you those things ?
Overlimit is hosted on iis port 80 and no one can harm it the only thing could get you fucked is opening billing port
Who have told you those things ?
Overlimit is hosted on iis port 80 and no one can harm it the only thing could get you fucked is opening billing port
09/17/2012 16:54
PortalDark#5
i meant without any kind of securityQuote:
Who have told you those things ?
Overlimit is hosted on iis port 80 and no one can harm it the only thing could get you fucked is opening billing port
if you get the default IIS files and not protecting it(75% of noob servers)
but is an example as he asked about a website security
since all websites are made on php, i can only think on injections(maybe some engine flaws but not sure about his one)
09/17/2012 16:59
LastThief*#6
There are scripts which can crash appserv in less than second not only injectionsQuote:
if you get the default IIS files and not protecting it(75% of noob servers)
but is an example as he asked about a website security
since all websites are made on php, i can only think on injections(maybe some engine flaws but not sure about his one)
09/17/2012 17:01
鳳凰城#7
Portal , You're my friend but , check your words before saying. SPRUT could make the job done.Quote:
as for a website, is just matter of injections
:handsdown:Quote:
09/17/2012 17:06
PortalDark#8
im not that "skilled" on any kind of hacking ways(only windows password hack XD) so i dont really know much on how the IIS exploit works
09/17/2012 17:10
鳳凰城#9
Let me explain it to youQuote:
You run your website (HTML-PHP-SHIT)
Appserver host it after you set the settings as should be
OMQ YOUR WEBSITE IS WORKING W-O PROBLEM
I(Hacker) Wanna down your website ,
I get your website IP by using ping yourwebsitedomain.com -t
I run the script , Write your IP
1 missing part , check your website port.
Portchecker ftw
I now get your port which you've hosted the website on.
I write the port and running the threads (200~5m thread)
Start it
less than min. your website is down :eek:
You:Omg what should I do
You:Let me run appserver again
You:You run , get instant crash =))
Even you have firewall , not all firewalls are good.
The script crashes appserver due the too-much load on it :)
Solution: IIS. (Wont explain because idiots will fix their websites)
Any missing part you didnt got it?
09/20/2012 21:01
PortalDark#10
#cleaned
if you are gonna give suggestions, do it, this is not a "I'm better than you" threads
if you are gonna give suggestions, do it, this is not a "I'm better than you" threads
09/20/2012 21:32
Mykha*#11
Your post doesn't specify any specific problem but in general.Quote:
Specify whether you want to protect your sites against flood attacks and such...
Either against vulnerabilities/SQLi and all other attacks that could lead to several things ranging from stealing users data and such to injecting shells.
So that i could help you further.