| Nov 21, 2009 |
You should read up on this kind of thing at www.hackthissite.com It's sort of a learning site for basic and semi-advanced hacking skills. From the webhacking missions I did, all I needed was some basic knowledge, like view source, and stuff like that and I was able to get like 4 levels into their webhacking mission. It's a good site for if you're curious or whatever. If you have space that supports PHP and MySQL, contact me and we'll talk about IPB 2.0 or whatever the latest ...
read more.
without knowing its not possable to detect the porblem. i assume you are using some kind of unix / linux / bsd as the server, have a look in the system logs of the running public servers. you should be able to determine the attackers IP address. run "whois <attackers ip>" in the command line, and read the output, you should get his ISP details, and an abuse email. send coppies of your system logs showing the hack to this abuse email. thn hopefully, his internet sevice provider should send him a letter, which will hopefully scare him enough to stop, especially if its just a script kiddy. also, look into securety software such as tripwire and snort. it is very possable that the first time he hacked your machine, he installed a root kit, which can be semingly invisable on the host system, the only real way to clean a good root kit is a complete format and re-install. you COULD ban his ip address in your firewall,, however he would probably just start using a proxie if you did that. consider using the following software... OpenBSD (the most secure OS available.. also free) Tripwire (intrusion detection system that acts on your filesystem) Snort (network intrusion detection that acts on the network cards) rkhunter (scans for root-kits) clam anti virus (virus scanner)
To be able to delete the forum files, your hacker has to gain access to your server hosting those files with administrative privileges... If it's windows based - there are about a million ways to get in - bt if it is a linux platform, ask your friend and post the version of kernel you are using and whether he has any DNS server namely BIND running on Linux (check if the version of BIND is 8.x) - coz anything below BIND 9 (minus patches) can be exploited using this thing known as Buffer Overflow, that can be used to your advantage to gain root access on the hosting server and remove all files. Just check on your friend with this list of querries and repost in here and we might be able to provide you with some way out... Also whether windows or linux based, ask your friend to check the system LOG Files, specially the connection logs and carefully notice all the incoming IP's - ie who all have connected to his system from the outside world and using WHAT protocol.. That might be a dead giveaway, unless your mysterious hacker was not being stupid and removed/modified those logs.. still its worth a try
 Alternatively, he might be using some other Invision Exploit. I don't know much about board softwares - maybe the admins here can provide you with some answers... All the best 
He deleted the old board, and now he hacked into my friend's friend's account and posted a PM to one of the members who has trouble with the admin who is my friend's friend, claiming that he can teach that member how to hack and the like, now the hacker slowed down the site by a heck load, it is just simply not working... It loads so slowly that its just a blank page...
I'm using a modem
there is nothing anybody can do to help you unless you give us information about the server.
lets start with Operating system... Windows2000 / WindowsXP / windows Server2003 / FreeBSD / OpenBSD / Solaris / GNU/Linux ???? Get your friend who runs the server to come and talk to us. whats the URL address of the board ??? there is alot you can tell about a server simply by looking at the page produced when you point your web browser at http://the.address.or.the.board.com/Give_me_a_404.html edit: dont click that link, i just made it up, it doesnt go anywhere.
Can you post some details over here:
1. Which OS (Windows/Linux) are you using and which version/brand ? 2. What web-server software (IIS/Apache) is installed and running the board? 3. What kind of connection does your server run on (ADSL/Dialup) ? 4. Which version of Invision are you using ? 5. Finally - check the system logs for unusual outside activity/connections and if you have any idea about the date of the hack, can you paste the logs in here for that date ? Regards..
Hm... Have not much to say, just this.
Most of the socalled 'hackers' are just people who run an openly available exploit found on the net. So maybe you could just use another version of the board and keep it updated. Btw. Most hackers delete the access/security logs, so I wonder if you can get 'm, if not, he should be easy to search and destroy ... Hmm played to much call of duty i think .Good luck.
I've had InvisionFree forums. I know the forum software is a modified version of IPB 1.3, don't know much else. A lot of InvisionFree fans claim that IF is invincible and is harder to hack than regular IPB, but the ACP is apparently much easier to hack into.
There's some psycho group that claims they don't hack, that they only ask to become admins (the group's entire exististence is for the sole purpose of getting rid of sites run by "n00bs"), but if that's all they do, why do they only hack InvisionFree boards?
All of us are using Windows XP Professional.
What web-server software (IIS/Apache) is installed and running the board?This i'm not really sure... Cause i'm just a mod there... Should be the same as all other invision free! What kind of connection does your server run on (ADSL/Dialup) ?Uhhh... Invision free? Which version of Invision are you using ?Don't really know but does the html code with a s6.invisionfree.com have anything to do with it? Cause there are other forums with a s7.invisionfree.com instead... The hacker came about... 4 days ago!
In order to hack INVISION BOARD, Unlike the other people here, I think the hacker has simply used SQL INJECTIONS.
If one searches for underground sites, it is quite easy to find underground hacks for these popular boards. The SQL Injection is enough to clear all the data and files. Because hacking a server is not easy. Because servers have a hell lot of protections. Consider my own server, IRC has been blocked, there are various ports which have been blocked. There is an option for DDOS attact protection which has been enabled etc.. All these things make it quite difficult for anyone to hack a server. The only easy way to get in is, SQL Injection. Which is what I think this person has done. In most of the cases, The Admin password is used to sneak in. Your friend must have made him a MOD or ADMIN and then he or someone else may have given him the access. I suggest him to Chose Admins wisely. The same had happended at AStahost. One of my admins ( x3rox) had accidently kept the admin CP open while his friend managed to mask his username with ADMIN access. He started abusing our board and luckily we found out. Anyway, these are just a few things which come into my mind regarding hacking of a board. If your friends site is not a major one then I am definately sure that the hacking was actually done by abusing the forum system. Latest Entries
You should read up on this kind of thing at www.hackthissite.com It's sort of a learning site for basic and semi-advanced hacking skills. From the webhacking missions I did, all I needed was some basic knowledge, like view source, and stuff like that and I was able to get like 4 levels into their webhacking mission. It's a good site for if you're curious or whatever. If you have space that supports PHP and MySQL, contact me and we'll talk about IPB 2.0 or whatever the latest official release is.
Invisionfree and IPB are way different. The ipb 2.0.3 and up has
the best security and is impossible to hack. My friend tried to hack me for a test and it didnt work. However we tested it on a invisionfree board (Mine) and it worked. Also yeah my friend owned ifgraphics and was hacked laready 2 times by a guy name Xenobia. I destroyed his email but its still not enough!
I see... I like using custom profile fields... Altering stuff is fun! Oh and for now we just moved to another back-up site and then sooner or later it will also get hacked then we try to move into Astahost! Hope it works!
The IF ACP is way better than the standard IPB version, but they removed some good features like custom profile fields, and security's horrible.
Guess so... People usually settle on something that works, and defend it until the horrible truth comes out. Like with invisionfree, so far, among my friends, around 10 out of 30 sites have been hacked... Makes it rather weak and we all filed complaints to invisionfree to introduce better security, but they don't do anything. We users are on our own!
Similar Topics
Keywords : hackers, invisionfree, urgently
Can you hack this? (1) I have a hacker's challenge for you guys. X-Rated Superstar (aka Brett)'s challenge today Such As Invisionfree (5) i have an invisionfree forum, and i'm curious if there's a way to create a custom login Looking for hackers, invisionfree, urgently
|
 Hackers In Invisionfree - Need help urgently |
Affordable Web Hosting, Low cost Web Hosting - ComputingHost.com
