CarderPlanet
Professional
- Messages
- 2,549
- Reaction score
- 746
- Points
- 113
Hi, in this article I want to talk about ways to hack onion sites. The easiest way to find a vulnerability on a website is to use a vulnerability scanner, but how to configure it for onion is another matter. Let's use the popular sqlmap scanner, to run it to scan the onion of the site, just run the command:
But with the nmap scanner, we have to tinker. So, first we need:
1) Download and install a special version of nmap-nseportscan-socks4a.
2) Add an entry "127.0.0.1 .onion" to the hosts file, this avoids the .onion name resolution error
3) Download and run Tor.
4) Run nmap as root using the following parameters:
And what if not one of the scanners did not work? There are two options:
1) Search for vulnerabilities manually.
2) Do build Ddos attack.
I think it's not worth describing how to manually search for vulnerabilities, the process itself will not differ in any way from searching for vulnerabilities on a regular website .
But with Ddos attacks it will be much more interesting here. If you succeed in making a successful ddos attack (and with the necessary tactics, you will succeed), you can merge the database, demonize the site ( this tactic was used by the FBI), look at the site code, and the most obvious thing is to make it inaccessible. It is easier to disable an onion site than a regular one .
To do this, you need 2 tools: https://github.com/DefWolf/Http-Tor-ddos/blob/master/DosTor.py and https://github.com/dotfighter/torshammer/blob/master/torshammer.py
To get the greatest effect from an attack you need:
1) Send an attack to the search form.
2) Send an attack on the registration form (this is a sore point of many sites, especially Runion).
These two attacks can be carried out with 1 tool, because of its simplicity, we will not consider it.
Now let's look at 2 of the Torshammer tool. The tool allows you to display large sites with a slowpost attack at low power.
Let's configure it for attack:
1) In the file itself, use "find and replace" to change the three values "9050" to "9150" and save;
2) Open CMD or Terminal and without quotes enter: cd Desktop, and then: cd torshammer;
now open the TOR browser and wait for the new values to be assigned. To double-check if that worked, go to at least two different sites;
3) In CMD or Terminal, enter (again without quotes): ./torshammer.py -t example.com -r 300 -T.
I think this article can be finished.
Code:
python sqlmap.py -u ".onion / qwertyqwerty.php" --data = "id = 1" --tor --tor-port = 9050 --tor-type = SOCKS5But with the nmap scanner, we have to tinker. So, first we need:
1) Download and install a special version of nmap-nseportscan-socks4a.
2) Add an entry "127.0.0.1 .onion" to the hosts file, this avoids the .onion name resolution error
3) Download and run Tor.
4) Run nmap as root using the following parameters:
Code:
sudo ./nmap -sK --script connectscan, <script list> --proxy socks4a: //127.0.0.1: 9050 cx7b2vy6foxjlzsh.onion -F.And what if not one of the scanners did not work? There are two options:
1) Search for vulnerabilities manually.
2) Do build Ddos attack.
I think it's not worth describing how to manually search for vulnerabilities, the process itself will not differ in any way from searching for vulnerabilities on a regular website .
But with Ddos attacks it will be much more interesting here. If you succeed in making a successful ddos attack (and with the necessary tactics, you will succeed), you can merge the database, demonize the site ( this tactic was used by the FBI), look at the site code, and the most obvious thing is to make it inaccessible. It is easier to disable an onion site than a regular one .
To do this, you need 2 tools: https://github.com/DefWolf/Http-Tor-ddos/blob/master/DosTor.py and https://github.com/dotfighter/torshammer/blob/master/torshammer.py
To get the greatest effect from an attack you need:
1) Send an attack to the search form.
2) Send an attack on the registration form (this is a sore point of many sites, especially Runion).
These two attacks can be carried out with 1 tool, because of its simplicity, we will not consider it.
Now let's look at 2 of the Torshammer tool. The tool allows you to display large sites with a slowpost attack at low power.
Let's configure it for attack:
1) In the file itself, use "find and replace" to change the three values "9050" to "9150" and save;
2) Open CMD or Terminal and without quotes enter: cd Desktop, and then: cd torshammer;
now open the TOR browser and wait for the new values to be assigned. To double-check if that worked, go to at least two different sites;
3) In CMD or Terminal, enter (again without quotes): ./torshammer.py -t example.com -r 300 -T.
I think this article can be finished.
