Hello everyone, today I am going to tell you about zone-h ranking system and how easily it can be achieved … Before starting, I would like to say that, this note is only useful for someone who is a zone-h attacker and dreaming to get into top 50 and there is no exploits url being shared to follow. The main intention of this note is to show a quick guide to zone-h attackers on how they can achieve a good zone-h rank. Not everyone are capable of doing that and only the bests can make it happen. So, let me inform you that, zone-h ranks a notifier depending on the total number of single IP notification done by a notifier and ranks them accordingly. So you see that, the total number of mirror actually does not matter for zone-h ranking. Single IP can be found if each of the domains mirrored in zone-h has a dedicated IP address for it and the IP address has not been mirrored yet in zone-h within last 365 days. So, let’s come to the point on how easily can someone get ranked in zone-h top 50? It’s easy for one if he is good at defacing but pretty much harder for someone if he cannot manage to get good amount of single IP for zone-h. The ultimate target to get ranked can be gathering some good exploits which exists in core of a popular CMS thus causing massive number of attack on that specific CMS. Currently zone-h has removed the restriction on ‘/uploads/’ keyword that was previously banned in zone-h and thus it is helping a lot of hackers to exploit several wordpress and other popular CMS + plugins etc. and mirror them in zone-h. To be informed that, zone-h approves image defacements and there exists huge number of vulnerable websites those are regularly being exploited. If you analyze the zone-h website(zone-h.org), you will notice that image defacement helps a lot of hackers to get huge amount of single IP faster than any other exploits can give. So, if someone follows some strategies, it is possible for them to get ranked in zone-h top 50 even more faster than others. There are several exploits for image uploading that were ignored by the zone-h defacers but now a days, these catches the attraction of the hackers just to get a good amount of single IP in zone-h. So far I have talked with different hackers from different countries, those who are both defacer and spammer, they do not like to get single IP rather than getting shell access for spamming. I also have seen a lot of hacker having no idea about zone-h ranking system but still they wills to get into top 50. Actually the amount of total defacement does not matter but it matters how much single IP you get. And, in order to get into the top 50, you should make a plan and go according to it. Then it’s possible to be achieved. You can try some exploits those were used in previous but now are not used due to shortage of availability of vulnerable websites. Still there exists some sites which can be exploited by those exploits and can be mirrored in zone-h. So, why are you still sitting? Go for it There needs to be some more techniques required to be used before mirroring websites those are defaced using image upload vulnerability. First of all, make some amount of defacements and then make a list. use mass zone-h poster to send them to zone-h and and there will be more possibilities of mirrored to be archived. In case you mirror defaced websites one by one, the admin panel of zone-h are not going to check your mirrors. Also note that, whenever you mirror, in case of mass posting of defacements and if there are chance of mirror going to onhold, you should avoid mirroring any website that is not actually defaced. In most cases, such kind of submission in zone-h leads mirrors from onhold to be deleted even if there exists any or more valid defacements. You can consider it as a punishment for fake mirroring. Anyway, most hackers of different countries likes to show their skills and passion by their own. So, rather forming any team, they works individual. So, that some time it gives the best of the bests to come in the top 50 alone and most often they cannot afford much to be in top 50. If you analyze the top 50 ranking of zone-h, you will notice that there are hardly 3-4 teams and rest other are single attackers! They made it happen alone. But in Bangladesh, most people likes to form teams to get good rank in zone-h that is pretty hard for someone single to achieve it. Ultimately hacking does not give anything rather it is used as abusively for making money by the spammers. So, if I skip that, hacking gives nothing but fun! So, summary is, to be in the top 50, you need to focus on image upload vulnerability in massive manner and you gonna catch yourself up in top 50 of zone-h. While zone-h offered you a bonus, why not grab it! Best of luck. In our case, we started mirroring in zone-h from 2014 and then most of our defacer started to become active in 2015 and then we started getting success. We never stopped and thus the final outcome led us to the 18th position in zone-h top 50. Most of the hackers stops by often due to shortage of exploits they had and most feels this boring after a certain amount of time. And most dies. So, someone who never stops get higher and higher achievements. Being a white hat is good but not everyone can become like that. So, I am talking about black hat stuffs and hope for your better luck in future life. Thanks for reading … ./3XPL0173R~X3D./TeaM_CC
source http://b4byb0y.com/uncategorized/3427/
Comments