Here is the Click-jacking Proof Of Concept video made by me. On the video, I show you how to pawn or hack a joomla powered site using click-jacking.
How it works :
- First a victim logged into his Joomla Powered site Administration Control Panel
- He didn’t logged out from the service
- He visited a malicious site
- He clicked on something (anything on the page)
- By the time he clicked, his Joomla Powered site password has been changed without his notice
Been pissed off several weeks, until my blog is UP few days ago. A long story to be told. Moved hosting server several times and can’t get my domain added. Traffic went down drastically, people are running away, less than 50 visitors a day, that’s what I’ve been through.
Well enough for the sad thingies. I am very happy to announce that there is a site for you guys to test your hacking skills LEGALLY !! Don’t worry, it’s 100% legal, the site is mine 
Your mission is to take out 3 hidden pictures stored on this server, and email me to see if you got the correct one. It’s not a hard task tough, I estimated people can own it within an hour. Just take it as a challenge 
Here is the Challenge site : http://www.sekuriti.info/challenge/
Tell me your progress and let me know if you have beaten it!
WINNERS :
1. Tukimin, Singapore. 30 November 2008.
