Holla XSS!
I love to share my [ out of the box ] findings
I love to share my [ out of the box ] findings
when your at home and hack your router Apk and get ssh access over host 
lets make it long short
downloaded a router online config apk , run it on LD Player and activated burp suite .
RUN BURP AND CHECK REQUEST ...
checking the request and sending it to repeater .
response got a filter "0.0.0.0\n"
changed a bit in it and play again and i was able to remote command !
i was thinking to get reverse shell and all failed ( i guess due to iptables )
Got my attention ...
did my key (ssh-keygen) locally and decided to inject it !
Injecting by echo..
Volla we got ssh session active!
downloaded a router online config apk , run it on LD Player and activated burp suite .
RUN BURP AND CHECK REQUEST ...
checking the request and sending it to repeater .
response got a filter "0.0.0.0\n"
changed a bit in it and play again and i was able to remote command !
i was thinking to get reverse shell and all failed ( i guess due to iptables )
Got my attention ...
did my key (ssh-keygen) locally and decided to inject it !
Injecting by echo..
Volla we got ssh session active!
------------------------------------------------------------
Note : after my last thread i got contacted to do some pen-testing
[ i got paid for my time not my findings ]
AND ANY DEAL have to be in XSS , i dont do stuff like dump a db for me !!!
------------------------------------------------------------
./0x0
Credits Please if Copied never shared in other forums!
show some love to keep this going by reaction or whatever support !
any translation to Russian is appreciated from experienced user !
Note : after my last thread i got contacted to do some pen-testing
[ i got paid for my time not my findings ]
AND ANY DEAL have to be in XSS , i dont do stuff like dump a db for me !!!
------------------------------------------------------------
./0x0
Credits Please if Copied never shared in other forums!
show some love to keep this going by reaction or whatever support !
any translation to Russian is appreciated from experienced user !