loading...
berbagi-itu-indah-dan-menyenangkan

12 Juni, 2012

JHead for fun


Jhead adalah sebuah tools yang dapat memanipulasi source foto. Program jhead adalah program open source. Tools ini sebenarnya hanya sebuah tohttp://www.blogger.com/img/blank.gifols yang tidak terlalu bahaya ( kali yaaa ),tapi untuk para hacker banyak digunakan sebagai alat menanamkan backdoor ke sebuah target web.



How to use
==========

Disini saya gunakan adalah Jhead versi windows, maklum hanya ini yang saya punya ini pun punya kantor hehehehe ... :D. Oke langsung saja kita download dari source nya : Download Jhead. Pilih sesuai dengan versi OS yang kita gunakan.

Setelah kita download kita letakkan file di folder yang kita suka. Disini saya letakkan di drive C:. Buka cmd kemudian masuk ke path yang dituju. setelah itu kita running programnya :

C:\>jhead_2.exe -h
Jhead is a program for manipulating settings and thumbnails in Exif jpeg header

used by most Digital Cameras. v2.95 Matthias Wandel, Mar 16 2012.
http://www.sentex.net/~mwandel/jhead

Usage: jhead_2.exe [options] files
Where:
files path/filenames with or without wildcards
[options] are:

GENERAL METADATA:
-te Transfer exif header from another image file
Uses same name mangling as '-st' option
-dc Delete comment field (as left by progs like Photoshop & Compupic)
-de Strip Exif section (smaller JPEG file, but lose digicam info)
-di Delete IPTC section (from Photoshop, or Picasa)
-dx Deletex XMP section
-du Delete non image sections except for Exif and comment sections
-purejpg Strip all unnecessary data from jpeg (combines -dc -de and -du)
-mkexif Create new minimal exif section (overwrites pre-existing exif)
-ce Edit comment field. Uses environment variable 'editor' to
determine which editor to use. If editor not set, uses VI
under Unix and notepad with windows
-cs Save comment section to a file
-ci Insert comment section from a file. -cs and -ci use same naming
scheme as used by the -st option
-cl string Insert literal comment string

DATE / TIME MANIPULATION:
-ft Set file modification time to Exif time
-dsft Set Exif time to file modification time
-n[format-string]
Rename files according to date. Uses exif date if present, file
date otherwise. If the optional format-string is not supplied,
the format is mmdd-hhmmss. If a format-string is given, it is
is passed to the 'strftime' function for formatting
In addition to strftime format codes:
'%f' as part of the string will include the original file name
'%i' will include a sequence number, starting from 1. You can
You can specify '%03i' for example to get leading zeros.
This feature is useful for ordering files from multiple digicams t

sequence of taking. Only renames files whose names are mostly
numerical (as assigned by digicam)
The '.jpg' is automatically added to the end of the name. If the
destination name already exists, a letter or digit is added to
the end of the name to make it unique.
The new name may include a path as part of the name. If this path
does not exist, it will be created
-a (Windows only) Rename files with same name but different extension
Use together with -n to rename .AVI files from exif in .THM files
for example
-ta<+|->h[:mm[:ss]]
Adjust time by h:mm backwards or forwards. Useful when having
taken pictures with the wrong time set on the camera, such as when
traveling across time zones or DST changes. Dates can be adjusted
by offsetting by 24 hours or more. For large date adjustments,
use the -da option
-da-
Adjust date by large amounts. This is used to fix photos from
cameras where the date got set back to the default camera date
by accident or battery removal.
To deal with different months and years having different numbers o

days, a simple date-month-year offset would result in unexpected
results. Instead, the difference is specified as desired date
minus original date. Date is specified as yyyy:mm:dd or as date
and time in the format yyyy:mm:dd/hh:mm:ss
-ts


POC
===


C:\>jhead_2.exe -purejpg galau.jpg
Modified: galau.jpg

Command line "-purejpg galau.jpg" untuk membersihkan/menghapus isi dari file aslinya gambar. Setelah itu kita mulai menginjekkan kaki kita .... lho mengetikkan source code yang kita sudah siapkan.


C:\>jhead_2.exe -ce galau.jpg


Command line "-ce galau.jpg" untuk membuka dokumen gambar yang akan di inject. Apabila berhasil maka akan muncul notepad kosong yang siap kita isi setelah itu tinggal kita masukkan source code yang kita sudah siapkan lalu tekan save dan exit. setelah itu lakukan pengecekan.


C:\>jhead_2.exe galau.jpg
File name : galau.jpg
File size : 27712 bytes
File date : 2012:05:29 11:24:19
Resolution : 506 x 337
Comment : Abina azkia
Comment : was
Comment : here


http://www.************.com/wp-content/uploads/2012/06/

Index of /wp-content/uploads/2012/06

Parent Directory
LightningSiluetgirl.jpg
cybermeong.JPG
galau.jpg <---- tuch dia
jari.jpg


Oke sekian dulu. Seperti yang sudah - sudah just for fun only... :)).


ref : www.sentex.net

0 komentar :

Posting Komentar