Cheers, will be back not so soon :-|
.bmp)
5 weeks ago
10.14.2009
To Be Considered OWNED..
Hi there..I am busy for the moment patching flaws in my own system so that i do not get owned by the Extra Offensive attack vectors designed by CIE for my HSC exams..
So am trying as i can to cover up vulnerabilities and i just hope that they don't have any 0days for Maths..
Cheers, will be back not so soon :-|
Cheers, will be back not so soon :-|
9.26.2009
Maurice Ile Durable Website hacked
Maurice Ile Durable project's website was launched i think in March and a short time after, the Website was found to have been hacked.
MIR project grabbed the domain www.maurice-il-durable.com for this purpose, but for quite an extended period of time instead of the actual website,the website hoster's advertising was displayed on the site. I find it strange that it was OVH web services. A web solution provider from France.
http://www.ovh.com/fr
I suppose a defacement was made and MID decided to remove the contents from the actual hoster. But no atempt was made to implement a backup copy or another version of the website untill recently. Indeed a simple banner indicating that the website will be migrated is being displayed actually on www.maurice-il-durable.com
That would mean that nothing was done in this whole time to come up with a solution after the defacement.
Anyways, that showz how much MID cares about its online presence and it's only window to the online world. No wonder they implemented a shitty website full of vulns that lead to the easy defacement of it, or maybe not..
When you think of it, who would take the painstaking task of searching for vulns and deface the MID project website. Who would be against the project..
i maybe thinking that the hack may have come from the implementers themself. They got paid less or not at all or something like then then they decided to blow the fuck up. And why they fuck they hosted it with a foreign hoster and not on the government servers.
Actually the website is still hosted (atleast the banner :) ) on a dedicated server at OVH (France)
Anywayz we'll see where they migrate to..
9.06.2009
Finding the IP address of your friend on MSN.
This does not only work for MSN but for also any other messengers : Digsby/Google talk ect...
While several ways exist, i will focus on this one, which i think is the easiest and doesn't require any third party software/script.
What you will need: MSN messenger (of course) and a Command Prompt Window.
1# First close all internet applications like your browser or any other IM softwares you use. (To reduce the number of connections on your box)
2# Login into your Messenger.
3# Copy this line : netstat -n -o 3 >>c:\MSN-iplog.txt
4# Open a command prompt window
5# Get ready to initiate a file transfer to the friend.
(any file that will take atleast 30 seconds to transfer is fine)
6# Paste the line you copied in step 3 to the command prompt and press Enter.
(The window will be idle, thats normal becuase its writting to disk)
7# Initiate the file transfer to your friend
8# Once the file transfer is complete, wait for 10 seconds and type (control+c) in the command prompt window (that will stop the logging)
9# Now open the log file named MSN-IPlog created in c:\
10# Search for an IP that was not here at the beginning and at the end of the log but was constantly logged throughout the middle of the log.
Thats all for now, i may post other methods for finding ips when i have time :))
While several ways exist, i will focus on this one, which i think is the easiest and doesn't require any third party software/script.
What you will need: MSN messenger (of course) and a Command Prompt Window.
1# First close all internet applications like your browser or any other IM softwares you use. (To reduce the number of connections on your box)
2# Login into your Messenger.
3# Copy this line : netstat -n -o 3 >>c:\MSN-iplog.txt
4# Open a command prompt window
5# Get ready to initiate a file transfer to the friend.
(any file that will take atleast 30 seconds to transfer is fine)
6# Paste the line you copied in step 3 to the command prompt and press Enter.
(The window will be idle, thats normal becuase its writting to disk)
7# Initiate the file transfer to your friend
8# Once the file transfer is complete, wait for 10 seconds and type (control+c) in the command prompt window (that will stop the logging)
9# Now open the log file named MSN-IPlog created in c:\
10# Search for an IP that was not here at the beginning and at the end of the log but was constantly logged throughout the middle of the log.
Thats all for now, i may post other methods for finding ips when i have time :))
Skype Users Targeted by Trojan
You all know of Skype.. That app that allows calls to be made from PC to PC..I used it once, but didn't like the layout and was doughty about it's security.
Well, TrendLabs researchers were alerted of a newly released Proof-of-Concept (PoC) that listens and records voice calls carried out via Skype. Trend Micro detects this as TROJ_SPAYKE.C. Skype is a popular application used for making voice over IP (VoIP) calls.
Upon execution, the DLL component (also detected as TROJ_SPAYKE.C) intercepts Skype traffic and hooks the send and receive APIs. This is done before Skype encrypts the traffic it sends to other users. This enables the Trojan to save all gathered information as audio files, which could then be sent to a malicious user.
This poses no threat as of the moment; it only collects information but does not decrypt the said information and consequently send it to a remote user. However, future attacks that do engage in information theft cannot be rules out.
Users are advised not to give away any crucial information when conversing online to prevent info theft. Trend Micro protects users from this attack through the Trend Micro Smart Protection Network.
Source from: TrendLabs | Malware Blog
Well, TrendLabs researchers were alerted of a newly released Proof-of-Concept (PoC) that listens and records voice calls carried out via Skype. Trend Micro detects this as TROJ_SPAYKE.C. Skype is a popular application used for making voice over IP (VoIP) calls.
Upon execution, the DLL component (also detected as TROJ_SPAYKE.C) intercepts Skype traffic and hooks the send and receive APIs. This is done before Skype encrypts the traffic it sends to other users. This enables the Trojan to save all gathered information as audio files, which could then be sent to a malicious user.
This poses no threat as of the moment; it only collects information but does not decrypt the said information and consequently send it to a remote user. However, future attacks that do engage in information theft cannot be rules out.
Users are advised not to give away any crucial information when conversing online to prevent info theft. Trend Micro protects users from this attack through the Trend Micro Smart Protection Network.
Source from: TrendLabs | Malware Blog
My favourite Forum Hacked ? Government Security.Org
Was Governmentsecurity.org, my favourite security forum hacked?
I do not care for my user credentials that i used there, but i do care for the skills of the hacker that put this up.
But it's not so sure that the forum was hacked but Security Shell did post the stuff on its blog :
Apparently from an el8 hacker named JustRulz
Another underground forum defaced by JustRulz.Think at an new IPB 0-day ?
How I hacked governmentsecurity.org ?
Director: JustRulz ~ naylonsebeke(at)hotmail(dot)com
####################################################################################
-[0x11]- Intro
It was very rainy day haha : xD. . . ı was checking recent exploits and testing some of latest kernel bugs on my boxes.
Than,ım entered governmentsecurity.org web page.Their web design is very cool (H) :lol , finally ı decided to test
their server security and test my own 0day exploit.
0day exploit for Power Board!!! Dude if that is true, therez practically nothing that could be done against that.
Mari bon li bon ca.. :-|
I do not care for my user credentials that i used there, but i do care for the skills of the hacker that put this up.
But it's not so sure that the forum was hacked but Security Shell did post the stuff on its blog :
Apparently from an el8 hacker named JustRulz
Another underground forum defaced by JustRulz.Think at an new IPB 0-day ?
How I hacked governmentsecurity.org ?
Director: JustRulz ~ naylonsebeke(at)hotmail(dot)com
####################################################################################
-[0x11]- Intro
It was very rainy day haha : xD. . . ı was checking recent exploits and testing some of latest kernel bugs on my boxes.
Than,ım entered governmentsecurity.org web page.Their web design is very cool (H) :lol , finally ı decided to test
their server security and test my own 0day exploit.
0day exploit for Power Board!!! Dude if that is true, therez practically nothing that could be done against that.
Mari bon li bon ca.. :-|
Facebook : SQL Injection Flaw
Facebook, a website with an estimated of 5 to 10 Million in US Dollars, a number of 250-1000 employees, a website ranked number 8 GLOBALLY by alexa.com’s traffic standards, is not capable of securing their data base. Millions (LOTS OF MILLIONS) of accounts, email addresses and passwords up for grabs by anyone. Let me show you a few concrete examples of vulnerable parameters.
Source: Hacker Underground
Not only is the website vulnerable to sql injection but it also allows load_file to be executed making it very dangerous because with a little patience, a writable directory can be found and injection a malicious code we get command line access with wich we can do virtualy anything we want with the website: upload phpshells, redirects, INFECT PAGES WITH TROJAN DROPPERS, even deface the whole website.
Basically, Facebook is no safer than any other site, but given the huge benefits it makes, it got the resources to pay its attackers so that the info is not made public. But nevertheless, those who are not interested in money but security do make these info public.
Facebook has also been found to be vulnerable to Blind SQL.
Subscribe to:
Posts (Atom)
