NOTE:-THIS TUTORIAL IS FOR EDUCATIONAL PURPOSES ONLY
You might want to disable your AV, it doesn't like PHP Shells.
First of all, you need to Download the PHP shell.
DOWNLOAD FROM HERE
Change the file extension from .php to .txt. You will have something like this:
Now, we need to host the Shell on a free hosting site. I use 110MB.com.
Now, onto the good stuff.
Now we must find an exploitable site. You can easily find one by putting this in Google:
inurl:"index.php?file=contact.php"
Note- You can remove Contact for more results
Okay, we will use this site for an example:
p0rnteddy.com
To make sure the site is exploitable, we will try to run google in it.
It's rather simple, all you do it remove the "tagwall.php" part, and type "http://www.google.com", like so:
http://p0rnteddy.com/?page=http://www.google.com
If you see somewhat of a page that looks like Google, congratulations, you have found an exploitable site! This is what you should see:
I advise you don't mess with the Index.html, you can get in legal trouble. But we're going to do something harmful, but cool. Make a .txt file with what you want the page to say. Upload it here, at the bottom of the page-
You have now hacked the site.
Dont Forget To Say Thanks..
