[TuT] – Hack a site through FTP

[TuT] – Hack a site through FTP


Here I am again, posting a tutorial on web-penetration. I will be explaining how to crack and hack an FTP server.
What is “FTP”?
FTP stands for File Transfer Protocol. As you can see by the name, you can manage files through the FTP. The FTP port, is very-well known, but is rarely open on big websites. The FTP port is Port 21. There are multiple ways to connect to an FTP server/port, especially thanks to technology, such as FileZilla.
There are of course other ways, which are the manual ways. Which is connecting to the FTP through a DOS Command line. You can do this from Ubuntu, Backtrack, (All linux), and also Windows. I’ve never tried it on Mac, but I’m sure it’s possible.
When you have access to the FTP, you’re the king of the website. Mostly because you can manage all of the files and directories on the site. So you can upload and delete. If you upload your PHP or ASP shell, you could root the server, and possibly hack other sites.
How do I know if the FTP port is open?
Well, you don’t know until you scan. The most popular port scanner would be Nmap. You can download Nmap at http://www.nmap.org/
How do I connect to FTP?
Like I said, there are a couple options. Personally, I would choose the command line first, because you learn from it. In a program like FileZilla, with all the fancy shit, it’s got it all. Easy to work with, etc. But the method we will be using to connect, is with “Telnet”.
Telnet is a network protocol that you can use to connect to certain ports on hosts. You would either need the website name, or IP to connect. You would also have to make sure the port that you want to connect to, is open.
To do that, we need a program called “Nmap”. Nmap is a free Port-Scanner tool, it is very useful to many hackers for multiple reasons.
To connect to FTP on a site, an IP, or a computer, you need to have Telnet installed. Telnet is already installed on all Windows and Linux operating systems. But in Windows 7 & Vista, you have to change some settings.
This can be done very easily, simply go to Control Panel ==> Programs and Features ==> Turn windows features on or off ==> Check off the Telnet Client.
Now we can successfully connect to a port through Telnet.
So open CMD (Command Prompt(Start => Run => CMD)). Now in the command prompt, type:
Code:
telnet
And hit enter. Now we’re on Telnet, so we can connect to a port. If you would like to get familiar with the commands, simply type in “HELP” in the command prompt.
Now, let’s connect to our site (First make sure the FTP port is open (Port 21). Now, let’s type in:
Now it should display some information on the FTP, we can use that information against the site, by simply googling some exploits for it.
Example: “ProFTPD 1.3.3c Exploit”.
How do I hack a site through FTP?
There are a couple ways to do this, my favorites are looking for exploits in the FTP client and version, and Bruteforcing/Dictionary attack. The first method is very simple, just read the above section to figure out how to do it.
Bruteforcing is when you attack a target by using somtimes MILLIONS of passwords. Bruteforce uses random combinations, whereas a Dictionary Attack uses words. The Dictionary Attack goes MUCH faster, but will not always work. I only bruteforce when I have no other choice.
The second way, is still pretty easy, but requires a little bit more brain :P. If you want to do it more “Advanced-ly” then download “Hydra”. Hydra is a program that will perform a dictionary attack on any open port on your target site, or IP.
The easy way to do it, is by downloading “Brutus”. It does the same thing, but it’s easier to navigate and use. You can get both programs by googling them. If you can’t find any, PM me and I’ll send you a good link.
If you already have the credntials, you can login to the FTP over Telnet, by doing the following:
Code:
http://www.site.com 21
-
PASV
-
USER -USERNAMEHERE-
PASS -PASSWORDHERE-
Epilogue
This is a tutorial for beginners, but if I missed something PLEASE notify me by PM or by replying in the comment section. This tutorial does seem very brief to me, but I can’t explain EVERY exploit there is for FTP, otherwise the tutorial would be too long and boring.

Post a Comment