[prev in list] [next in list] [prev in thread] [next in thread]
List: full-disclosure
Subject: [FD] Getting the server ip from a hosted XenForo CMS
From: Hacxx Under 2 <hacxx20 () gmail ! com>
Date: 2019-11-13 10:56:26
Message-ID: CAHEi47A19cZbmbSNZZxRutkw=BZhJ-SHeAMjhddkRFQ1ERw8XA () mail ! gmail ! com
[Download RAW message or body]
The reason why use this trick is to determine the ip for the server of
a XenForo CMS and bypass cloudflare or any DDOS protection. The user
uses a ip logger in combination with the Preview Thread feature of
XenForo to log the ip. This ip is the direct ip to the server without
protection.
Keep in mind that this feature can be used to determine the location
for a server even if the admin has strict rules to hide it's true
location (May work with TOR/Onion addresses, but i don't have any at
hand to test).
IP logger service
https://iplogger.org
Example of a Preview Thread feature of XenForo
https://images2.imgbox.com/0d/ab/Hrp4q0oi_o.jpg
Server logged ip[/b]
https://images2.imgbox.com/74/6b/u6gQlzJ5_o.jpg
https://spyhackerz.org/forum/
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic