Jump to content

Dragos

Moderators
 View Profile  See their activity

  • Posts

    2653

  • Joined

  • Last visited

  • Days Won

    73

 Content Type 

Posts posted by Dragos

  6. Anti add block script

    in Programe utile

    Posted

    Macar un beautifier pe script.

    <style>
        #q155 {
            position: fixed !important;
            position: absolute;
            top: 0px;
            top: expression((t=document.documentElement.scrollTop?document.documentElement.scrollTop: document.body.scrollTop)+"px");
            left: -2px;
            width: 98%;
            height: 100%;
            background-color: #fff;
            opacity: .95;
            filter: alpha(opacity=95);
            display: block;
            padding: 20% 0
        }
        #q155 * {
            text-align: center;
            margin: 0 auto;
            display: block;
            filter: none;
            font: bold 14px Verdana, Arial, sans-serif;
            text-decoration: none
        }
        #q155 ~ * {
            display: none
        }
    </style>
    <div id="q155"><span>Please enable / Bitte aktiviere JavaScript!<br>Veuillez activer / Por favor activa el Javascript!<a href="http://ow.ly/lZZNF">[ ? ]</a></span>
    </div>
    <script>
        window.document.getElementById("q155").parentNode.removeChild(window.document.getElementById("q155"));
        (function (l, m) {
            function n(a) {
                a && q155.nextFunction()
            }
            var h = l.document,
                p = ["i", "s", "u"];
            n.prototype = {
                rand: function (a) {
                    return Math.floor(Math.random() * a)
                },
                getElementBy: function (a,  {
                    return a ? h.getElementById(a) : h.getElementsByTagName(
                },
                getStyle: function (a) {
                    var b = h.defaultView;
                    return b && b.getComputedStyle ? b.getComputedStyle(a, null) : a.currentStyle
                },
                deferExecution: function (a) {
                    setTimeout(a, 250)
                },
                insert: function (a,  {
                    var e = h.createElement("span"),
                        d = h.body,
                        c = d.childNodes.length,
                        g = d.style,
                        f = 0,
                        k = 0;
                    if ("q155" ==  {
                        e.setAttribute("id", ;
                        g.margin = g.padding = 0;
                        g.height = "100%";
                        for (c = this.rand(c); f < c; f++) 1 == d.childNodes[f].nodeType && (k = Math.max(k, parseFloat(this.getStyle(d.childNodes[f]).zIndex) || 0));
                        k && (e.style.zIndex = k + 1);
                        c++
                    }
                    e.innerHTML = a;
                    d.insertBefore(e, d.childNodes[c - 1])
                },
                displayMessage: function (a) {
                    var b = this;
                    a = "abisuq".charAt(b.rand(5));
                    b.insert("<" + a + '><img src="data:image/png;base64,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" height="63" width="432" alt="" /> <a href="http://ow.ly/lZZNF">[ ? ]</a>' + ("</" + a + ">"), "q155");
                    h.addEventListener && b.deferExecution(function () {
                        b.getElementBy("q155").addEventListener("DOMNodeRemoved", function () {
                            b.displayMessage()
                        }, !1)
                    })
                },
                i: function () {
                    for (var a = "AdAuth1,adSlot02,adimg,adv-left,adv-x37,footer-adv,subbgad,ad,ads,adsense".split(","), b = a.length, e = "", d = this, c = 0, g = "abisuq".charAt(d.rand(5)); c < b; c++) d.getElementBy(a[c]) || (e += "<" + g + ' id="' + a[c] + '"></' + g + ">");
                    d.insert(e);
                    d.deferExecution(function () {
                        for (c = 0; c < b; c++)
                            if (null == d.getElementBy(a[c]).offsetParent || "none" == d.getStyle(d.getElementBy(a[c])).display) return d.displayMessage("#" + a[c] + "(" + c + ")");
                        d.nextFunction()
                    })
                },
                s: function () {
                    var a = {
                        'pagead2.googlesyndic': 'google_ad_client',
                        'js.adscale.de/getads': 'adscale_slot_id',
                        'get.mirando.de/miran': 'adPlaceId'
                    }, b = this,
                        e = b.getElementBy(0, "script"),
                        d = e.length - 1,
                        c, g, f, k;
                    h.write = null;
                    for (h.writeln = null; 0 <= d; --d)
                        if (c = e[d].src.substr(7, 20), a[c] !== m) {
                            f = h.createElement("script");
                            f.type = "text/javascript";
                            f.src = e[d].src;
                            g = a[c];
                            l[g] = m;
                            f.onload = f.onreadystatechange = function () {
                                k = this;
                                l[g] !== m || k.readyState && "loaded" !== k.readyState && "complete" !== k.readyState || (l[g] = f.onload = f.onreadystatechange = null, e[0].parentNode.removeChild(f))
                            };
                            e[0].parentNode.insertBefore(f, e[0]);
                            b.deferExecution(function () {
                                if (l[g] === m) return b.displayMessage(f.src);
                                b.nextFunction()
                            });
                            return
                        }
                    b.nextFunction()
                },
                u: function () {
                    var a = "ad&ad_classid=,/adflash.,/adserv/ad,/adsoverlay_,/images2/ads/ad,/invideoad.,/prerollads.,_google_ad.,/336x280_,_80x468.".split(","),
                        b = this,
                        e = b.getElementBy(0, "img"),
                        d, c;
                    e[0] !== m && e[0].src !== m && (d = new Image, d.onload = function () {
                        c = this;
                        c.onload = null;
                        c.onerror = function () {
                            p = null;
                            b.displayMessage(c.src)
                        };
                        c.src = e[0].src + "#" + a.join("")
                    }, d.src = e[0].src);
                    b.deferExecution(function () {
                        b.nextFunction()
                    })
                },
                nextFunction: function () {
                    var a = p[0];
                    a !== m && (p.shift(), this[a]())
                }
            };
            l.q155 = q155 = new n;
            h.addEventListener ? l.addEventListener("load", n, !1) : l.attachEvent("onload", n)
        })(window);
    </script>

  12. Ce e cu acest BLOG RST?

    in Off-topic

    Posted

    Sa zicem ca e pe bune asta si ca omul a fost unul din cei care au fost arestati inainte de defcamp-ul din 2012. De unde stia el ca va urma sa il reinvie Nytro pe rstforums.com? :))

    Postul cu crownjb e postat in noiembrie (rstcenter.blogspot.ro/2012/11/rstcentercomrst-romanian-security-team.html) si domeniul s-a luat in decembrie (who.is/whois/rstforums.com). Daca asta care a facut blogul mananca cacat, macar sa-l manance pana la capat.

  15. SerialeTv.net - V2

    in Linkuri

    Posted

    Cred ca ti-a intrat carne de porc de la craciun in ochii si nu mai vezi sa citesti ce am scris mai sus, opreste in P@@@ mea adblock-ul si intra pe site sa vedem daca ti se deschide ceva, am scris mai sus ca am pus un iframe esti idiot sau prost ? din cauza la acelui iframe care duce catre niste site-uri porno care doar contorizeaza traficul nu face nimic alceva, daia iti arata tie in adblok 10 request-uri.

    Singura chestie care apare pe site-ul meu si este deranjant este scriptul de Clickjacking, si Da, ma atac, pentru ca am muncit 7 luni de zile la cacatul asta de site, pentru dobitoci saraci ca tine care nu isi permit sa mearga la cinema sa plateasca 15 ron pe un bilet si vor sa vada moca pe net si mai si comenteaza ca nui convine lui nu stiu ce pe site, si Da fata de alte site-uri am ceva in plus ... cine vrea sa vada bine cine nu iarasi bine,

    Referitor la ce a postat NeK si FarSe, chiar nu am avut nici o problema, am cerut pareri pro si contra, si am explicat ce si cum, trebuia sa te bagi si tu ca musca in rahat ....

    PS* mai bine ti-ai vedea de site-ul tau din semnatura, daca vrei iti dau eu 10$ sa iti platesti domeniul ca vad ca ti-a expirat

    Ai perfecta dreptate. :)

    Sa-ti cada degetele pentru clickjack-ul de facebook.

  17. Wordlist generator Kali Linux

    in Tutoriale in romana

    Posted

    Da blech dar ce am facut eu este din Kali Linux (backtrack 6) nu windows ... Mi-am postat si eu metoda chiar daca crezi ca nu e asa buna eu am reusit sa sparg doua conturi ftp mega usor :)

    Un script din asta ti-l scriu in ce limbaj de programare vrei. Nu e cine stie ce lucru nou si nu-i confera nimic special daca e comanda din kali.

    Daca tot vrei sa faci ceva util, fa un wordlist din baza de date de la dex.ro.

  20. [chall] Criptografie

    in Challenges (CTF)

    Posted

    Bazat pe ideile lui Hertz de la DefCamp, am venit cu urmatorul challenge.

    Hint: 0=%20

    101010101010101010101010101010101010101
    101010101010101010101010101010101010101
    1010101
    10101010101010101
    101010101010101010101
    1010101010101
    1010101010101010101
    1010101010101010101010101010101
    1010101010101010101010101010101
    1010101
    10101
    1010101010101010101
    101010101010101010101010101010101
    10101
    1010101010101010101
    1010101010101010101
    1010101010101010101010101
    101010101010101010101
    10101010101010101010101
    10101010101

    10101
    101010101010101010101010101
    1010101
    10101010101010101010101010101010101010101
    1010101010101010101010101
    1010101010101010101010101010101
    1010101010101010101
    10101010101010101010101010101
    1010101010101010101010101
    10101010101

    1010101
    10101010101010101010101010101010101
    101
    101
    10101010101010101
    101010101010101010101
    10101010101

    101
    101010101010101010101
    1010101010101
    10101010101010101010101
    10101010101

    10101010101010101010101
    10101
    10101010101010101010101
    1010101010101
    10101010101010101010101
    10101010101

    1010101010101010101
    10101010101010101010101010101010101010101010101010101010101010101010101010101
    10101
    101010101010101
    101010101010101010101
    10101010101

  21. Testeri hosting web

    in Off-topic

    Posted

    Spune-ne ce configuratii ai la server, ce panou de administrare ai (cpanel, plesk, personalizat), ce baze de date permiti (mysql, mssql, sql, postgresql), cate baze de date permiti (1? 10? 100?), cate spatiu oferi, cat trafic lunar permiti, cate emailuri permiti, daca permiti smtp sau doar acces pe web, suport pentru htaccess, cronjob, ssh, cate subdomenii oferi, unde e serverul hostat, etc.

    Invata sa-ti vinzi marfa.

  22. Filelist.ro, no protection on delacct.php

    in Exploituri

    Posted

    Well, nytro, fara sa mi-o iei in nume de rau, este.

    In 5 minute iti fac un script care sa-mi ia toate usernameurile de pe site si in alte 5 minute fac un bruteforcer. Un dictionary pe RO si 30% din conturi sunt sterse.

    ~Later edit: Ok, inca un lucru. Ca atacator cunosc mailul si contul filelist al unui anumit x-ulescu. Desi este o gandire prepubertina(ideea de bruteforce) cred ca e cunoscut faptul ca multi dintre noi folosesc aceiasi parola peste tot. Poate nu aici, dar un utilzator obisnuit cam asa face. Fac bruteforce la filelist.ro pana primesc ok-ul. Am sanse sa aflu si parola mailului asa, pe langa faptul ca ii sterg contul lui x-ulescu. In fine, intradevar mare lucru nu se poate face, dar e o scapare.

    Daca tot vrei sa faci nebunii, fa un stealer, baga-l intr-o poza, urco pe net si pune linkul de la ea intr-unul din topicurile cu concursuri pe FL

    //testat acum vreo 3-4 ani pe GH0S7

  24. generare keyword-uri

    in Black SEO & monetizare

    Posted

    M-a rugat un prieten in seara asta sa-l ajut cu un script de generare de keyworduri pentru seo.

    In scriptul de mai jos aveti doua campuri, lista 1 de cuvinte si lista 2 de cuvinte. Fiecare cuvant se trece pe linie noua. Spre exemplu

    Lista 1

    masini second hand

    jaluzele

    Lista 2

    brasov

    bucuresti

    pitesti

    constanta

    Scriptul ia fiecare cuvant din lista a doua si il combina cu cuvantul din lista 1. Daca in lista 2 exista o sintagma (mai multe cuvinte), scriptul muta cuvantul din lista 2 pe langa fiecare cuvant din lista 1.

    Spre exemplu, rezultatul la ce e sus

    brasov masini second hand

    masini brasov second hand

    masini second brasov hand

    masini second hand brasov

    bucuresti masini second hand

    masini bucuresti second hand

    masini second bucuresti hand

    masini second hand bucuresti

    pitesti masini second hand

    masini pitesti second hand

    masini second pitesti hand

    masini second hand pitesti

    constanta masini second hand

    masini constanta second hand

    masini second constanta hand

    masini second hand constanta

    jaluzele brasov

    brasov jaluzele

    jaluzele bucuresti

    bucuresti jaluzele

    jaluzele pitesti

    pitesti jaluzele

    jaluzele constanta

    constanta jaluzele

    <form action="" method="post">
    <table>
    <tr><td>Lista 1 de cuvinte</td><td><textarea name="lista1" style="width:500px;height:300px"><?php echo $_POST['lista1']; ?></textarea></td></tr>
    <tr><td>Lista 2 de cuvinte</td><td><textarea name="lista2" style="width:500px;height:300px"><?php echo $_POST['lista2']; ?></textarea></td></tr>
    </table>
    <input type="submit" value="Fa">
    </form>
    <?php
    	echo "<br /><br />";
    	$lista1 = explode("\n",$_POST['lista1']);
    	$lista2 = explode("\n",$_POST['lista2']);
    	for($i=0;$i<=count($lista1)-1;$i++)
    	{
    		for($j=0;$j<=count($lista2)-1;$j++)
    		{
    			$l1 = trim($lista1[$i]);
    			$l2 = trim($lista2[$j]);
    			if(stristr($l1," "))
    			{
    				$l1 = explode(" ",$l1);
    				for($q=0;$q<=count($l1)-1;$q++)
    				{
    					for($x = 0; $x <= count($l1)-1;$x++)
    					{
    						if($x == $q){
    							echo $l2 . " " . $l1[$x] . " ";
    						}else{
    							echo $l1[$x] . " ";
    						}
    					}
    					echo "<br />";
    				}
    				$l11 = implode(" ", $l1);
    				echo $l11 . " " . $l2 . "<br />";
    			}else{
    				echo $l1 . " " . $l2 . "<br />";
    				echo $l2 . " " . $l1 . "<br />";
    			}
    		}
    	}
    ?>

×
×
  • Create New...