turkhackteam.org research

06-29-2017


In late June of 2017 while investigating a compromised site I discovered a "hacked by" page. These pages are common and hackers love to use them. it's a bit a "fuck you" page, and an oppurtunity for hackers to sign their work by claiming credit for the hack. but signing one's work in this case can have a negative side effect. Amantine-Lucile-Aurore Dupin said it best with her position, "Vanity is the quicksand of reason.", and most common hackers are vain to a debilitating point. In this particular case, the signed it with their name, and their hacking community, leading me to turkhackteam.org.

The site is a community where people can go to aquire new hacking skill, learn site compromising techniques, and get general information about website security methods and possible issues. legally, this is perfectly okay, sharing this kind of information is actually useful in the research community and it's perfectly legal to learn and use against yourself or another party and gives you permission to do so. So if I just stumbled across the site itself without finding the hacked content, I wouldn't really have a leg to stand on. But since I disovered this through a compromised site with their tag on it, I'm hoping to have the hosting account disabled on grounds of a probable Terms of Service Violation.

below I've included their code snippet, a few things I discovered on their site, and relevant screenshots.

Code Snippets
View Full Code
  var mymessage = "HACKED BY T√úRK HACK TEAM";
  function rtclickcheck(keyp){
    if (navigator.appName == "Netscape" && keyp.which == 3) {
      alert(mymessage);
      return false;
    }
1 - to end our lives with our slice, our religion, our nation, our beliefs, our orphans, our customs, society morals and such values,

2 - Hack is not for pleasure but for mission.

3 - to be helpful and support those who make direct, honest, ethical and useful publications, and to support them without looking.

4 - turk hack team work for turk homeland.

5- There will be no need for help with the problems of the Turkish hack team who accept this mission.

If you are stepping into our land, you are considered to have accepted these conditions!
Noteable data
IP: 89.107.227.197
Host: http://www.dgn.net.tr
WHO IS data
  Domain Name: TURKHACKTEAM.ORG
  Registry Domain ID: D109510626-LROR
  Registrar WHOIS Server:
  Registrar URL: http://www.name.com
  Updated Date: 2017-05-05T23:12:41Z
  Creation Date: 2005-12-14T17:29:55Z
  Registry Expiry Date: 2020-12-14T17:29:55Z
  Registrar Registration Expiration Date:
  Registrar: Name.com, LLC
  Registrar IANA ID: 625
  Registrar Abuse Contact Email:
  Registrar Abuse Contact Phone:
  Reseller:
  Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibite
Crawl Data
.../
.../usercp.php
nofollow - .../misyon.html
.../ataturk-bolumu/
.../ataturk-bolumu/1537869-mustafa-kemal-ataturk-ve-19-rakaminin-sirlari.html
.../members/.html
.../turkiye-turkluk-ve-turk-tarihi/
.../turkiye-turkluk-ve-turk-tarihi/1538394-tarihte-bugun-seyh-said-haini-idam-edildi.html
.../members/709595.html
.../terore-lanet/
.../terore-lanet/1536777-ankara-emniyet-genel-mudurlugu-mail-adresi.html
.../members/471163.html
.../forum-kurallari/
.../forum-kurallari/25068-forum-kurallari.html
.../members/1.html
.../aramiza-yeni-katilanlar-tht/
.../aramiza-yeni-katilanlar-tht/1538375-2012den-beri-yoktum-tekrardan-selamin-aleykum.html
.../members/809318.html
.../tht-yardim-merkezi/
.../tht-yardim-merkezi/1538428-epin-satis-scrpit-kuracak-veya-scrpit-oneri.html
.../members/811373.html
.../siber-guvenlik/
.../yayinlar/
.../soru-ve-cevap/
.../kariyer/
.../siber-guvenlik/1538005-pentest-detayli-asamalari-araclari.html
.../members/802246.html
.../guvenlik-haberleri/
.../guvenlik-haberleri/1537775-wannacrydan-bile-daha-tehlikeli-bir-fidye-yazilimi-binlerce-bilgisayara-yayildi.html
.../members/749149.html
.../web-server-guvenligi/
.../guncel-aciklar/
.../elektronik-gadget/
.../hack-videolari/
.../web-server-guvenligi/1516943-dork-yazarken-kelime-bulmakta-zorlaniyormusun-oyleyse-gir-iceri-dikkat-kibrisli.html
.../members/488596.html
.../mail-guvenligi/
.../mail-guvenligi/1478357-spama-dusmeden-fake-mail-atmak-cem-adrian.html
.../members/622582.html
.../bilgisayar-guvenligi/
.../bilgisayar-guvenligi/1530788-bilgisayar-guvenligi-sanal-makina-leopic.html
.../members/808430.html
.../sosyal-medya-veya-sosyal-platformlar/
.../skype/
.../twitter/
.../youtube/
.../facebook/
.../instagram/
.../diger-medyalar/
.../instagram/1536755-instagram-hesap-calma-taktigi.html
.../members/782544.html
.../turkhackteam-ar-ge-tim/
.../ar-ge-egitim-kampi/
.../turkhackteam-ar-ge-tim/1538313-valhalla2-hack-asistani-yeni-surumde-turkce.html
.../members/765392.html
.../genel-guvenlik/
.../bilisim-hukuku/
.../genel-guvenlik/1538266-guncel-elit-proxy.html
.../members/803730.html
.../sosyal-muhendislik/
.../sosyal-muhendislik/1509808-cree-py-ile-siber-istihbarat-nogaygokturk.html
.../members/784248.html
.../exploitler/
.../bug-researchers/
.../exploitler/1537888-marvel-solution-sql-injection-vulnerability.html
.../members/811213.html
.../undetected/
.../undetected/1536287-razor-crypter-100-fud-crypter-source-code.html
.../members/811937.html
.../kriptografi-sifreleme/
.../kriptografi-sifreleme/1532306-md5-nedir-neden-kirilmaz-sessizkalpler.html
.../members/781348.html
.../trojan-ve-virusler/
.../trojan-ve-virusler/1530323-final-darkcomet-rat-5-3-1-full-turkce-final-resmi-konu.html
.../members/798025.html
.../govde-gosterisi/
.../onemli-operasyonlar/
.../accounts-database-dumps-yeni-bolum/
.../govde-gosterisi/1538426-2-site-hacked-gestapoefsane.html
.../members/811190.html
.../web-programlama/
.../web-programlama/1537579-html-dersi-bolum-2-a.html
.../members/767566.html
.../web-tabanli-uygulamalar/
.../smf/
.../joomla/
.../phpbb/
.../wordpress/
.../vbulletin/
.../diger-forum-scriptleri/
.../wordpress/1446091-populer-35-adet-2016-wordpress-temasi.html
.../members/810245.html
.../scripts-templates/
.../java-scriptler/
.../php-scriptler/
.../asp-scriptler/
.../diger-scriptler/
.../scripts-templates/1536553-instaweb-3-6-8-instagram-takipci-scripti-2017-a.html
.../members/737430.html
.../deep-web/
Screen Shots
















© 2019 Dixon Ryder All Rights Reserved.
Privacy & Terms