![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg1f8tDmtLwCziE_g2xBvgeDYXcOrb5CbgAc-3EpN7uKP4i5T16TJHP06rielUEVvx7J2f9WfnYN6eMuJP3jwW7LjfdJFdbl9_5DmSUAtUvGTQvBisDzJ2DcHahZOg8zSGStOei/s400/0.jpg)
here are "old kind of backdooring script", that always work for me along time ago,
![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgxwJOXECaJwfRqEhEtQAgKVyXQ37-EpNL_5BJZaiTBWWDOIoKKr8QpI9Bh08CF24Ro7hwDZAAQzCkc06bnWyY9do_BZr8ueS6eBRG2ZP5E7mSm647g09DM1lhn1elfaC0mpfk1/s400/1.jpg)
the idea is just copying root shell to user directory so the user coule execute "root shell" (in this case bash-root), then it should work arent it?
![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgQ2K7gz-HwEbvGxfpGG95gJc5nvknRSbyIuvyfPKVFx00mNq-l3bsppsFfbHabpUp-WPIzIeriXiRsUzrKALrjEr_UG_LLYJDJJ54O2iXAqCAdFxQiHzLIY2mwRI111n_afxav/s400/3.jpg)
![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhxb3I6q76U504tRc7gjbyWJvUhaEms_qFTMojPuC5Hq2nQcn8-aJrdKMGq7bxdX6B7RcRieIlV885hZBfYL15nhQr1wQcrJQdiGw_pmC3DHXdEwAG1D3ditiCb0y6u8AtaZz9_/s400/9.jpg)
Ok, the file are "hot" and ready to execute with "root" SID
![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgn_JYCgYBd_uMKeDVUnEyzkTMDhsxGdwJi1agNLepmpybH_-nmHITCBXe1V_0b7LOyk6Eg3RCbnHw4P4FyV9nX-tzQ4_yNuBfaYc-5dIzN1pvd-RXkK-giEfHEgg6AFysxPXkm/s400/2.jpg)
gyahh, WTF .. :P, then i try to copy manually from the root via "terminal window", using "su-" to subtitute as root
![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgd7sE79h_Pf0rh6qSt1HSddJENW60QvTxtWgQ9abFG74-P-LF6BWQmmswpQOWJQocQY3egW1arsuLbiElMo5xr7jf1pzwfuh11D9ZaNiXoHLc_mvQqil_Vui2Yt5oZuDMnJF0f/s400/4.jpg)
And then i execute that "bash-kopi" as a copy of root shell (/bin/bash)
![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi2bsVBMwk5ajQ5ga7_O1wArETdpmrzVprpHQcwotwWXJaf_lQYkMokUteywymhTRjcD2LIu6dU-4Kg2TjRatqJ7MQBrkGgy36wtvMSnITSIFy39XMZEdwB-C88-oOXB__CDCOn/s400/5.jpg)
Gyaaaah for 2nd time :P, Then i change to real-"konsole" by pressing CTRL+ALT+F1, n do the same things,
root@tarantula:~# cp /bin/bash /home/y3dips/bash-konsolen then,
root@tarantula:~# chmod 4755 /home/y3dips/bash-konsole
![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjgpx84WJpMzEO4iCZI3CN6IwtUy97D4SAKEU7-ymPPUAsockiI3q5HDHwMIY5G2sGNo-UZdp3nc9PKUfusXXo6-P4dfQJCVd2IQptZryfkcbuz5DQmMLwR7pIjAO6dWoN5hCMQ/s400/6.jpg)
Gyaaaaah for 3rd time, .... hueheuheuheuhe :p Tanya Kenapa :lol: ,-
mas y3dips, ini maksudnya backdooring bgmn yah?? apakah disini mas y3dips dah berhasil jadi root??
ReplyDeleteMantep euy tutorialnya.. tetep berkarya ya mas.. :D
cuma file yang berisi perintah untuk mengkopikan "shell" user yang mengeksekusi ke tempat "kita" dan bisa kita gunakan untuk mendapat kemampuan user tsb. Gak berhasil tuh :P, mau tau kenapa ? coba aja dulu :P, ok thx
ReplyDeleteI had the same problem.
ReplyDeleteI found a fix for it.
Instead of:
$./bash-kopi
use:
$./bash-kopi -p
then you will have your root shell as desired.