How does swim hack into good websites??? I think most good websites don't have any real vulnerabilities in them I don't know :confused::confused::confused: How od I hack like CNN and deface it??? :confused::confused::confused:

http://googlehacks.on.nimp.org

Should tell you all you need to know.

http://googlehacks.on.nimp.org

Should tell you all you need to know.


Thanks bro, not a bad start but I'm looking for step by step tutorials. Thanks.

Thanks bro, not a bad start but I'm looking for step by step tutorials. Thanks.

Every website operates on a combination of the follow...


Different hardware.
Different operating system.
Different server software versioning.
Different implementation of design patterns.
Different and large variation of programming languages.


How can you expect a step by step tutorial Clover?
Say one exists - Is that site not going to patch?

Come on man...

http://googlehacks.on.nimp.org

Should tell you all you need to know.

Dude, did you know that links to nimp.org which aren't declared as malicious script links can get you infracted? It's true.

Please don't do that again. We'll consider my post here to be the warning this time.

I would hope that everyone would know about it by now, but you can never tell.

Anyone found any tutorials? :confused::confused::confused:

There are no tutorials. Best thing to do is look up SQL injection (or as some apparently call it, MySQL Injection ;)) and XSS/XSRF stuff.

Anyone found any tutorials? :confused::confused::confused:

Each one of these levels is an attacking point:



Different hardware.
Different operating system.
Different server software versioning.
Different implementation of design patterns.
Different and large variation of programming languages.



What you should do is pick one and think of a way to exploit it...

One idea I came up with the other day was this:


Write a very simple PHP tutorial like "How to code a secure login". Be honest and open about its vulnerabilities and be forward about the fact it is for demostration purposes only - but is a simple solution for the beginner. Obviously know how to compromise your script.
Have the source code output a unique string maybe but way of a html comment tag or uniquely named div.
Post it around 50+ "Beginner Programming Forums".
Wait 6 months then google for the unique string.
You'll have 10's of servers that you know how to compromise.


Alternatively: look for tutorials on google that you know how to compromise - then find a unique string in the script and google that... A lot of people copy and paste code to hack together a site and use a security by obscurity policy...

Dude, did you know that links to nimp.org which aren't declared as malicious script links can get you infracted? It's true.

Please don't do that again. We'll consider my post here to be the warning this time.

I would hope that everyone would know about it by now, but you can never tell.
Well they should at least know that they're going to get owned for asking how to hack, it was a matter of time before the link was posted.

He's trolling, you fags.

He's trolling, you fags.

How is this not obvious...wtf?

I want to hack website!>!>!?!?

This is the same gay shit as "hack this girls myspace for me" and "how do i hack hotmail"

Well, I was trying to give it a chance in case he simply didn't know how to phrase his question (and because the place was slow, so maybe some lulz/whatever could come of it somehow). But as of now, this has gone on long enough.