2008 February | techian.com

Archive for February, 2008

wsScanner Web Services Footprinting, Discovery and more

Posted on February 13, 2008 by admin | No Comments

wsScanner is a toolkit for Web Services scanning and vulnerability detection.

This tool has the following functions:

Discovery tool

By leveraging search engine this tool helps in discovering Web Services running on any particular domain or with certain name pattern.

Vulnerability detection

It is possible to enumerate and profile Web Services using this tool and one can follow it up by auto auditing (.NET only). .NET proxy gets dynamically created for audit module. One can do vulnerability scan for data type, SQL injections, LDAP/Command injections, Buffer checks, Bruteforing SOAP etc. It is also possible to leverage regex patterns for SOAP analysis.

Fuzzing

This tool helps in fuzzing different Web 2.0 streams like SOAP, XML-RPC, REST, JSON etc. This module helps in assessing various different Web Services.

UDDI scan

It is possible to scan UDDI servers using this tool for footprinting and discovery of Web Services.

This tool is still in beta and they are planning to add some more features and support. Stay tuned for future releases as well.

More information and download details:

You can download wsScanner here:

wsScanner.zip

Or read more here.

Popularity: 1% [?]

Data Leakage Bug in Mozilla Firefox Confirmed

Posted on February 13, 2008 by admin | No Comments

It seems a data leakage bug has struck Firefox recently and has been confirmed by Window Snyder the security bod at Mozilla.

It’s basically a Chrome directory traversal bug (It seems a lot of the Firefox issues have had to do with chrome?).

It’s rated as low risk, but it can give away the existence of files (if the attacker knows the name and location).

The bug resides in Firefox’s chrome protocol scheme and allows for a directory traversal when certain types of extensions are installed. Attackers could use it to detect if certain programs or files are present on a machine, gaining information to use in perpetrating another, more malicious exploit.

Normally, Firefox’s chrome package is restricted to a limited number of directories, but a bug in the way it handles escaped sequences (i.e. %2e%2e%2f) allows attackers to escape those confines and access more sensitive parts of a user’s computer. The exploit only works if a user has made use of Firefox extensions that are “flat,” this is, those that don’t package their files in a jar archive. Examples of flat add-ons include Download Statusbar and Greasemonkey.

You can protect yourself by using NoScript, which I would guess most of you guys are using already.

The open bug can be found here.

Source: The Register

Popularity: 1% [?]

Nikto 2 Released – Web Server Scanning Tool

Posted on February 13, 2008 by admin | No Comments

Another one that has been a long time coming, but finally here it is! Nikto 2.

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).

Nikto is not designed as an overly stealthy tool. It will test a web server in the shortest timespan possible, and it’s fairly obvious in log files. However, there is support for LibWhisker’s anti-IDS methods in case you want to give it a try (or test your IDS system).

Not every check is a security problem, though most are. There are some items that are “info only” type checks that look for items that may not have a security flaw, but the webmaster or security engineer may not know are present on the server. These items are usually marked appropriately in the information printed. There are also some checks for unknown items which have been seen scanned for in log files.

Version 2 adds a ton of enhancements, including:

Fingerprinting web servers via favicon.ico files
404 error checking for each file type
Enhanced false positive reduction via multiple methods: headers, page content, and content hashing
Scan tuning to include or exclude entire classes of vulnerability checks
Uses LibWhisker 2, which has its own long list of enhancements
A “single” scan mode that allows you to craft an HTTP request manually
Basic template engine so that HTML reports can be easily customized
An experimental knowledge base for scans, which will allow regenerated reports and retests (future)
Optimizations, bug fixes and more…

You can download Nikto 2 here:

nikto-current.tar.gz

Or read more here.

Popularity: 1% [?]

Inguma 0.0.6 Released for Download – Free Pen-testing

Posted on February 13, 2008 by admin | No Comments

Quite a few people seem to be interested in this tool, so here is the latest revision – Inguma 0.0.6.

For those that don’t know, Inguma is a free penetration testing and vulnerability discovery toolkit entirely written in python. Framework includes modules to discover hosts, gather information about, fuzz targets, brute force usernames and passwords, exploits, and a disassembler.

Inguma Penetration Testing Toolkit

In this new version various things have been added like new modules and improvements in the existing ones. For example the Oracle modules. The Oracle payloads now uses the Cursor Injection method when possible so CREATE PROCEDURE system privilege is not needed to become DBA.

The support for InlineEgg, added in version 0.0.5.1, have been removed and a new completely free library have been added (PyShellCodeLib).

The static analysis framework OpenDis have been enhanced and now you can use the API exposed by OpenDis to write your own binary static analysis tools. As an example of the API, a tool to make binary diffs have been added. Take a look to the file $INGUMA_DIR/dis/asmdiff.py and to the README stored in the same directory.

New 5 exploits for Oracle Databases have been added and the module “sidguess” have been enhanced to retrieve the SID of the database instance from the Enterprise Manager/Database Control banner when possible.

The new modules added to the discover, gather and brute sections are the following:

brutehttp: A brute forcer for HTTP servers.
extip : A tool to known your external IP address. Very useful to check anonymous proxies.
nmbstat : A tool to gather NetBIOS information.
ipscan : A tool to make IP protocol scans. The tool check what IP protocols are enabled in the target.
arppoison: A tool to poison target’s ARP cache

You can download Inguma 0.0.6 here:

Inguma 0.0.6

Or read more here

Popularity: 1% [?]

Remove: Shut Down Virus

Posted on February 13, 2008 by admin | No Comments

if your Getting

“svchost.exe” errors with RPC messeges and reboots

“NT Authority…shut down in 1 min”

Soundslike youve got the “Blaster Worm”
http://securityresponse.symantec.com/avcenter/venc/data/w32.blaster.worm.html

This is the hole it exploits
Your computer is being accessed. Download the MS03-026 patch from Microsoft.
http://www.microsoft.com/security/security_bulletins/ms03-026.asp

Fixes Available here
http://support.microsoft.com/?kbid=823980

More Links
http://www.cert.org/advisories/CA-2003-19.html

Automatically Remove the Virus with
http://www.sophos.com/misc/blastsfx.exe

Download and run it, it will create a directory called SOPHTEMP

From Command line type

C:SOPHTEMPRESOLVE.COM -DF=BLASTERA.DAT -NOC

How do I remove W32/Blaster-A manually?
To remove W32/Blaster-A manually on Windows 95/98/Me and Windows NT/2000/XP:

ensure you have installed Microsoft patch MS03-026 and implemented as many of the steps mentioned above as is feasible.
press Ctrl+Alt+Del
in Windows NT/2000/XP click Task Manager and select the Processes tab
look for a process named msblast.exe in the list
click the process to highlight it
click the ‘End Process’ (in Windows 95/98/Me ‘End Task’) button
close Task Manager.
Search for the file msblast.exe in the Windows system folder (usually a subfolder of Windows or WINNT) and delete it.

In Windows NT/2000/XP you will also need to edit the following registry entry. The removal of this entry is optional in Windows 95/98/Me. Please read the warning about editing the registry.

At the taskbar, click Start|Run. Type ‘Regedit’ and press Return. The registry editor opens.
Before you edit the registry, you should make a backup. If in doubt, contact your network administrator. Incorrect editing of the Windows Registry can cause system failure.
Locate the HKEY_LOCAL_MACHINE entry:
HKLMSoftwareMicrosoftWindowsCurrentVersionRun

in the righthand pane select

windows auto update = msblast.exe

and delete it if it exists.
Close the registry editor.
You should reboot your computer and repeat the above process to ensure all traces of the worm have been removed from your system.

Which systems are affected?
Windows 95/98/Me and Windows NT/2000/XP are potentially affected
Apple-based workstations, Unix and other platforms (including PDAs and games consoles) cannot be infected with W32/Blaster-A
If a W32/Blaster-A file is found on a computer, it has been dropped there by an infected computer, or it has been executed locally.

How did my computer become infected?
W32/Blaster-A scans the internet and local networks looking for computers vulnerable to Microsoft’s DCOM RPC security exploit. When it finds one it causes the remote computer to use TFTP to download a copy of the worm. This is saved as msblast.exe in the Windows system folder and the registry on that computer is changed so that the worm will be run when the computer restarts.

My computer is continuously rebooting, how can I download RESOLVE?
Often when a computer is infected with W32/Blaster-A it restarts every few minutes, usually with a message similar to “Windows must now restart because the Remote Procedure Call (RPC) Terminated Unexpectedly”. This prevents the required patches and files from being downloaded.

On Windows XP you may be able to prevent the computer from rebooting by turning on the inbuilt firewall.

To do this:

go to Network Connections
click on your internet connection (LAN or dial-up)
on the lefthand window click ‘Change settings of this connection’
click Advanced
click ‘Protect my computer…..’
you will probably then be able to download the files you need.
Where possible, download the RESOLVE W32/Blaster-A self-extractor on another computer. Save it to floppy disk and run the self-extractor on the affected computer.

If you cannot download on another computer, disable Distributed COM to prevent this rebooting.

Windows XP

Select Start|Run and type
dcomcnfg.exe.
Select Console Root|Component services.
Open the Computers subfolder.
Right-click on My Computer|Properties.
Click the Default Properties tab.
Deselect ‘Enable distributed COM’, click Apply then click OK.
Restart the computer.
Set the options back to normal after applying relevant patches

Windows NT/2000

Select Start|Run and type
dcomcnfg.exe.
Select the Default Properties tab.
Deselect ‘Enable distributed COM on this computer’, click Apply then click OK.
Restart the computer.i
Set the options back to normal after applying relevant patches

Safe Computing (-:

Popularity: 1% [?]

NMAP New Major Version Released

Posted on February 13, 2008 by admin | No Comments

At last a new major release of Nmap!

If for some odd reason you don’t already know what Nmap is, it is a free and open source utility for network exploration or security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics.

The changelog shows 320 changes since 4.00 with a lot of great stuff in this release! It has a brand new GUI and results viewer (Zenmap), a scripting engine allowing you to write your own scripts for high-performance network discovery (or use one of the 40 scripts shipped with it), the 2nd generation OS detection system (now with more than a thousand fingerprints), nearly 1,500 more version detection signatures, and a lot more!

Zenmap is the official Nmap Security Scanner GUI. It is a multi-platform (Linux, Windows, Mac OS X, BSD, etc.) free and open source application which aims to make Nmap easy for beginners to use while providing advanced features for experienced Nmap users. Frequently used scans can be saved as profiles to make them easy to run repeatedly. A command creator allows interactive creation of Nmap command lines. Scan results can be saved and viewed later. Saved scan results can be compared with one another to see how they differ. The results of recent scans are stored in a searchable database.

Zenmap for Nmap

More on Zenmap here:

Zenmap – the Nmap GUI

More information and download details:

You can download the new Nmap here:

Nmap 4.50

Or read more here.

Popularity: 1% [?]

CEH Ethical Hacking: Videos.Tools.and.Slax.CD version 5

Posted on February 13, 2008 by admin | No Comments

CEH Ethical Hacking: Videos.Tools.and.Slax.CD version 5 guide and instruction inside,

VMware recommended!

If you want to stop hackers from invading your network, first you’ve got to invade their minds.
Computers around the world are systematically being victimized by rampant hacking. This hacking is not only widespread, but is being executed so flawlessly that the attackers compromise a system, steal everything of value and completely erase their tracks within 20 minutes.

The goal of the ethical hacker is to help the organization take preemptive measures against malicious attacks by attacking the system himself; all the while staying within legal limits. This philosophy stems from the proven practice of trying to catch a thief, by thinking like a thief. As technology advances and organization depend on technology increasingly, information assets have evolved into critical components of survival.

If hacking involves creativity and thinking ‘out-of-the-box’, then vulnerability testing and security audits will not ensure the security proofing of an organization. To ensure that organizations have adequately protected their information assets, they must adopt the approach of ‘defense in depth’. In other words, they must penetrate their networks and assess the security posture for vulnerabilities and exposure.

The definition of an Ethical Hacker is very similar to a Penetration Tester. The Ethical Hacker is an individual who is usually employed with the organization and who can be trusted to undertake an attempt to penetrate networks and/or computer systems using the same methods as a Hacker. Hacking is a felony in the United States and most other countries. When it is done by request and under a contract between an Ethical Hacker and an organization, it is legal. The most important point is that an Ethical Hacker has authorization to probe the target.

The CEH Program certifies individuals in the specific network security discipline of Ethical Hacking from a vendor-neutral perspective. The Certified Ethical Hacker certification will fortify the application knowledge of security officers, auditors, security professionals, site administrators, and anyone who is concerned about the integrity of the network infrastructure. A Certified Ethical Hacker is a skilled professional who understands and knows how to look for the weaknesses and vulnerabilities in target systems and uses the same knowledge and tools as a malicious hacker.

To achieve the Certified Ethical Hacker Certification, you must pass the CEH exam 312-50

* Cisco Corporation
* Novell
* Canon
* Hewlett Packard
* US Air Force Reserve
* US Embassy
* Verizon
* PFIZER
* HDFC Bank
* University of Memphis
* Microsoft Corporation
* Worldcom
* Trusecure
* US Department of Defense
* Fedex
* Dunlop
* British Telecom
* Cisco
* Supreme Court of the Philippines
* United Nations
* Ministry of Defense, UK
* Nortel Networks
* MCI
* Check Point Software
* KPMG
* Fleet International
* Cingular Wireless
* Columbia Daily Tribune
* Johnson & Johnson
* Marriott Hotel
* Tucson Electric Power Company
* Singapore Police Force
* PriceWaterhouseCoopers
* SAP
* Coca-Cola Corporation
* Quantum Research
* US Military
* IBM Global Services
* UPS
* American Express
* FBI
* Citibank Corporation
* Boehringer Ingelheim
* Wipro
* New York City Dept Of IT & Telecom – DoITT
* United States Marine Corps
* Reserve Bank of India
* US Air Force
* EDS
* Bell Canada
* SONY
* Kodak
* Ontario Provincial Police
* Harris Corporation
* Xerox
* Philips Electronics
* U.S. Army
* Schering
* Accenture
* Bank One
* SAIC
* Fujitsu
* Deutsche Bank
* Symantec
* Sun Microsystems
* Google Corporation
* McAfee
* Dell Corporation
* Verizon
* Motorola
* Singapore Airlines
* Infosys
* TATA Consultancy
* Wipro
* Deloitte
* Oracle

More Information and Download Details:

http://rapidshare.com/files/82897471/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part01.rar
http://rapidshare.com/files/82571635/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part02.rar
http://rapidshare.com/files/82529321/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part03.rar
http://rapidshare.com/files/82498437/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part04.rar
http://rapidshare.com/files/82507374/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part05.rar
http://rapidshare.com/files/82663576/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part06.rar
http://rapidshare.com/files/82666332/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part07.rar
http://rapidshare.com/files/82526248/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part08.rar
http://rapidshare.com/files/82897449/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part09.rar
http://rapidshare.com/files/82661093/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part10.rar
http://rapidshare.com/files/82897430/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part11.rar
http://rapidshare.com/files/82718958/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part12.rar
http://rapidshare.com/files/82897448/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part13.rar
http://rapidshare.com/files/82764792/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part14.rar
http://rapidshare.com/files/82897469/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part15.rar
http://rapidshare.com/files/82897444/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part16.rar
http://rapidshare.com/files/82560846/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part17.rar
http://rapidshare.com/files/82720259/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part18.rar
http://rapidshare.com/files/82548160/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part19.rar
http://rapidshare.com/files/82897439/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part20.rar
http://rapidshare.com/files/82897438/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part21.rar
http://rapidshare.com/files/82555618/Ethical.Hacking.Videos.To
ols.and.Slax.CD.5.0.part22.rar
http://rapidshare.com/files/82639580/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part23.rar
http://rapidshare.com/files/82897459/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part24.rar
http://rapidshare.com/files/82501130/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part25.rar
http://rapidshare.com/files/82748237/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part26.rar
http://rapidshare.com/files/82716346/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part27.rar
http://rapidshare.com/files/82677341/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part28.rar
http://rapidshare.com/files/82773160/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part29.rar
http://rapidshare.com/files/82643946/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part30.rar
http://rapidshare.com/files/82669156/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part31.rar
http://rapidshare.com/files/82757335/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part32.rar
http://rapidshare.com/files/82504276/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part33.rar
http://rapidshare.com/files/82745542/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part34.rar
http://rapidshare.com/files/82640835/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part35.rar
http://rapidshare.com/files/82670704/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part36.rar
http://rapidshare.com/files/82538436/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part37.rar
http://rapidshare.com/files/82754081/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part38.rar
http://rapidshare.com/files/82713776/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part39.rar
http://rapidshare.com/files/82662057/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part40.rar
http://rapidshare.com/files/82564140/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part41.rar
http://rapidshare.com/files/82768982/Ethical.Hacking.Videos.Tools.and.Slax.CD.5.0.part42.rar

CEH Ethical Hacking: Videos.Tools.and.Slax.CD version 5
guide and instruction inside, VMware recommended!
size: 4.52 GB after extracting
content: 8 file .iso
42 files on rapidshare

Password : namdatviet

Popularity: 1% [?]

170 hacking videos from video.antichat.net

Posted on February 13, 2008 by admin | 1 Comment

1. Installation of soks of proxy of server on vulnerable the system
http://video.antichat.net/file1.html

2. XSS- vulnerability in forums SMF 1.05
http://video.antichat.net/file2.html

3. XSS on Wapbbs. Forum vbulletin. Obtaining the password of the privileged user.
http://video.antichat.net/file3.html

4. XSS on mail Yandex.Ru
http://video.antichat.net/file4.html

5. Sql injection in cursor php_.fusion
http://video.antichat.net/file5.html

6. XSS in forums FastBB
http://video.antichat.net/file6.html

7. XSS in forums XMB
http://video.antichat.net/file7.html

8. Interception of session on server pochta.ru
http://video.antichat.net/file8.html

9. Seizure IRC of the channel
http://video.antichat.net/file9.html

10. We rock mp3 free of charge
http://video.antichat.net/file10.html

11. COSMO chat. admin it did not advance the right
http://video.antichat.net/file11.html

12. Breaking of cursor new sploytom (ZENER)
http://video.antichat.net/file12.html

13. ExBB 1.9.1. PHP-inklhding into adminke and other vulnerabilities
http://video.antichat.net/file13.html

14. zmail.ru: Sniffer and session. We read strange letters.
http://video.antichat.net/file14.html

15. Service of the virtual postcards Vcard Lite. Part of 2.
http://video.antichat.net/file15.html

16. Service of the virtual postcards Vcard Lite. Part 1.
http://video.antichat.net/file16.html

17. [ FLASH ] rues on IBM AIX
http://video.antichat.net/file17.html

18. [ FLASH ] sequential of rues ispravlenym eksploytom
http://video.antichat.net/file18.html

19. Is utilized short hyphen. We make no invisible.
http://video.antichat.net/file19.html

20. Vulnerability www.chatmoscow.ru
http://video.antichat.net/file20.html

21. IRC. Mockery above Slader-Non
http://video.antichat.net/file21.html

22. Vulnerabilities SetccMS (XSS)
http://video.antichat.net/file22.html

23. Installation Apache, Php, Perl, Mysql to localhost
http://video.antichat.net/file23.html

24. Php- injection in the script of news CuteNews v1.3.1
http://video.antichat.net/file24.html

25. Method of the interpretation of khesha IPB 2..x and breaking the forum
http://video.antichat.net/file25.html

26. Breaking Invision Power Board sploytom
http://video.antichat.net/file26.html

27. New vulnerability PunBB
http://video.antichat.net/file27.html

28. cuz uze google’n’yandex before askin ‘ stupid questions %)
http://video.antichat.net/file28.html

29. WWWThreads Bug
http://video.antichat.net/file29.html

30. Breaking phpBB 2.0.15 new sploytom
http://video.antichat.net/file30.html

31. Active XSS in LiveJournal.com
http://video.antichat.net/file31.html

32. Installation of proxy to unix the machine
http://video.antichat.net/file32.html

33. XSS in phpBB with use phpNuke
http://video.antichat.net/file33.html

34. Idea of defeysa of the site through the search demands!
http://video.antichat.net/file34.html

35. Defeys of the site through the vulnerability in PunBB (php include)
http://video.antichat.net/file35.html

36. Breaking OF LARGE BROTHER – tntbrat.ru. SQL – injection.
http://video.antichat.net/file36.html

37. Breaking hack-info.net through PHP injection and GIF the file
http://video.antichat.net/file37.html

38. Breaking of the mailbox through the holes on the server
http://video.antichat.net/file38.html

39. SQL- Eng. in IPB 1. *, 2. *. Obtaining khesha of admina
http://video.antichat.net/file39.html

40. History of the breaking of one site
http://video.antichat.net/file40.html

41. XSS in MercuryBoard. New.
http://video.antichat.net/file41.html

42. Vulnerability IkonBoard. Reading it is file
http://video.antichat.net/file42.html

43. Error of khostera in tuning of system.
http://video.antichat.net/file43.html

44. Obtaining administrative privelegiy in paBugs
http://video.antichat.net/file44.html

45. Vulnerability phpBB in module downloads.php
http://video.antichat.net/file45.html

46. XSS in many search with- swing. It is in detail.
http://video.antichat.net/file46.html

47. Breaking phpBB new sploytom
http://video.antichat.net/file47.html

48. XSS in PunBB 1..x
http://video.antichat.net/file48.html

49. XSS in MercuryBoard 1..x
http://video.antichat.net/file49.html

50. Vulnerability in SR Guestbook
http://video.antichat.net/file50.html

51. Breaking of box on e-mail.ru (part of 2)
http://video.antichat.net/file51.html

52. Breaking of box on nm.ru (part 1)
http://video.antichat.net/file52.html

53. Seizure of the site through the injection in Zorum
http://video.antichat.net/file53.html

54. SQL injection in forums Minibb 1.6
http://video.antichat.net/file54.html

55. XSS in forums phorum
http://video.antichat.net/file55.html

56. XSS in forums He11.net and LedForums
http://video.antichat.net/file56.html

57. XSS in vBulletin 2..kh.kh
http://video.antichat.net/file57.html

58. XSS in forums zorum
http://video.antichat.net/file58.html

59. Bases of work with John The Ripper
http://video.antichat.net/file59.html

60. Analysis vzlomanoy BD
http://video.antichat.net/file60.html

61. Registration KeySpy Generator
http://video.antichat.net/file61.html

62. Vulnerability in phpBB 2.0.12 (KEZ)
http://video.antichat.net/file62.html

63. Vulnerability in phpBB 2.0.12 (max_.pain89)
http://video.antichat.net/file63.html

64. We obtain seriynik for progi through ArtMoney
http://video.antichat.net/file64.html

65. We read strange letters on mail.ru through the sessions
http://video.antichat.net/file65.html

66. SQL injection in LedForums
http://video.antichat.net/file66.html

67. Example Post- Flood through DenyoLaunch III
http://video.antichat.net/file67.html

68. SQL injection in search.php in phpBB 2.0.6
http://video.antichat.net/file68.html

69. SQL injection in MercuryBoard 1.1.0
http://video.antichat.net/file69.html

70. Study of protection WinRAR 3..0b =)
http://video.antichat.net/file70.html

71. Second method of the theft of nikov in the chat room
http://video.antichat.net/file71.html

72. CHAT ROOM. Seizure of nikov.
http://video.antichat.net/file72.html

73. Presence s/n for WinZIP 8..0b
http://video.antichat.net/file73.html

74. We make patch for BlueFace (CodeFusion)
http://video.antichat.net/file74.html

75. We make patch for WinZIP 8..0b (CodeFusion)
http://video.antichat.net/file75.html

76. We penetrate in strange comp. through Remote Administrator
http://video.antichat.net/file76.html

77. Pincha no longer catches the antivirus
http://video.antichat.net/file77.html

78. Survey of bagov in cgi scripts.
http://video.antichat.net/file78.html

79. Idea of brutoforsa amperesecond through HTTP demands.
http://video.antichat.net/file79.html

80. As to drive away as’ku. One of the methods.
http://video.antichat.net/file80.html

81. By vlom with the aid of rAdmin Of brutforsera!
http://video.antichat.net/file81.html

82. one additional method to skachat’ paid mp3 c of site mp3search.ru.
http://video.antichat.net/file82.html

83. Defeys on the rapid. Bagi on the server. Admin did not advance right on the folders.
http://video.antichat.net/file83.html

84. Vulnerability of site on cursor runcms
http://video.antichat.net/file84.html

85. Story about troyane pinch 1.0
http://video.antichat.net/file85.html

86. The new vulnerability Mybb. XSS works in all browsers.
http://video.antichat.net/file86.html

87. Breaking IcrediBB (SQL-injection)
http://video.antichat.net/file87.html

88. Baga in the the guest MPM Guesbook Pro
http://video.antichat.net/file88.html

89. As to rock mp3 for free from site mp3search.ru
http://video.antichat.net/file89.html

90. Sql-injection on cursor Php-Nuke
http://video.antichat.net/file90.html

91. SQL-injection in forum Zorum
http://video.antichat.net/file91.html

92. XSS and SQL-injection MyBB the forum
http://video.antichat.net/file92.html

93. Seizure Flesch chat room (part of 2)
http://video.antichat.net/file93.html

94. Seizure Flesch chat room (part 1)
http://video.antichat.net/file94.html

95. XSS in the forums in sparenykh BB tags VBulletin 3.0. *
http://video.antichat.net/file95.html

96. As to become adminom of forum ITA V1.49.
http://video.antichat.net/file96.html

97. Vulnerabilities in Zeroboard.
http://video.antichat.net/file97.html

98. Video about the the new XSS in the forums in sparenykh BB the tags
http://video.antichat.net/file98.html

99. UNION in SQL demands. Example of work.
http://video.antichat.net/file99.html

100. Vozmozhye vulnerabilities in scripts Manlix.
http://video.antichat.net/file100.html

101. As to become adminom on the site made in Flat-nuke.
http://video.antichat.net/file101.html

102. Error of adminov with installation Guestbook v1.1. Defeys on the rapid.
http://video.antichat.net/file102.html

103. Defeys for the small. Defeys on the rapid.
http://video.antichat.net/file103.html:

104. Again PHPBB. if the provider of dull.
http://video.antichat.net/file104.html

105. XSS vulnerability in forum forum.antichat.ru (vbulletin 3.0.3)
http://video.antichat.net/file105.html

106. To the article about mail.ru. We steal Cooks in the chat room. More detailed video.
http://video.antichat.net/file106.html

107. To the article about mail.ru. We steal Cooks in the chat room. We become moderators chat.mail.ru.
http://video.antichat.net/file107.html

108. php inklyuding KorWeblog
http://video.antichat.net/file108.html

109. Breaking e-mail’ov 2. Sorting of passwords. Is utilized Brutus (under Windows).
http://video.antichat.net/file109.html

110. Breaking e-mail’ov. Is utilized THC – Hydra.
http://video.antichat.net/file110.html

111. Vulnerability Ultimate PHP Board (UPB) v1.9
http://video.antichat.net/file111.html

112. Forum Russian Board Or as it is not necessary to write authorization system. (found Max_.pain)
http://video.antichat.net/file112.html

113. As to obtain strange letters on ramblere
http://video.antichat.net/file113.html

114. LiteForum 2 (SQL-injection)
http://video.antichat.net/file114.html

115. We look passwords on forum Powered by Web Wiz Forums.
http://video.antichat.net/file115.html

116. Overcrowding of buffer. Theory.
http://video.antichat.net/file116.html

117. We steal UIN, having a base of the users
http://video.antichat.net/file117.html

118. As to steal the Internet on 445 port
http://video.antichat.net/file118.html

119. Baga ConfYmi 2.1
http://video.antichat.net/file119.html

120. We obtain root, I use sploita.
http://video.antichat.net/file120.html

121. Practitioner Flood
http://video.antichat.net/file121.html

122. VIDEO SQL Injection IPB 2.0. *
http://video.antichat.net/file122.html

123. Bagi of white resist- site mag.su
http://video.antichat.net/file123.html

124. Real breaking PHPBB
http://video.antichat.net/file124.html

125. SQL injection in forum IbProArcade
http://video.antichat.net/file125.html

126. Breaking PHPBB
http://video.antichat.net/file126.html

127. Fraud Online of games.
http://video.antichat.net/file127.html

128. Breaking of forum MiniBB
http://video.antichat.net/file128.html

129. SQL injection in the forum * He11.net Forums v1.0 *
http://video.antichat.net/file129.html

130. Seizure of the site through through cosmo-chat. Continuation…
http://video.antichat.net/file130.html

131. XSS in forum ExBB 1.9.1 THE II rocking shell- A
http://video.antichat.net/file131.html

132. XSS in forum ExBB 1.9.1
http://video.antichat.net/file132.html

133. SQL-injection in forum phpBB 2.0.6
http://video.antichat.net/file133.html

134. XSS in forum Web Wiz Forums v7.7 on securitylab.ru
http://video.antichat.net/file134.html

135. SQL-injection in the popular forum UBB threads 6.2.3
http://video.antichat.net/file135.html

136. Fulfillment shell- commands through curved perl- script (sendmail)
http://video.antichat.net/file136.html

137. We obtain seriynik for progi (php-injection)
http://video.antichat.net/file137.html

138. XSS in the chat room on kc-camapa.ru
http://video.antichat.net/file138.html

139. Breaking of the site through cgi- error: paypy
http://video.antichat.net/file139.html

140. Seizure of the site through cosmo-chat
http://video.antichat.net/file140.html

141. We drive away paid script free of charge (ezUpload pro 2.2)
http://video.antichat.net/file141.html

142. Yuzayem random cgi-telnet =)
http://video.antichat.net/file142.html

143. XSS in the chat room on muz-tv.ru
http://video.antichat.net/file143.html

144. Breaking of the site through cgi- error: of the byte
http://video.antichat.net/file144.html

145. Breaking of the site through php-injection and knowledge SQL
http://video.antichat.net/file145.html

146. We penetrate adminku of the news script Absolute Engine
http://video.antichat.net/file146.html

147. Breaking of site on cursor shad0wed portal 5
http://video.antichat.net/file147.html

148. Difeys through the injection in Advanced Guestbook 2.2
http://video.antichat.net/file148.html

149. Breaking of the school site through the vulnerability on home page of teacher.
http://video.antichat.net/file149.html

150. Breaking of the site through standard PHP- injection.
http://video.antichat.net/file150.html

151. Obtaining root rights on server yargsm.ru
http://video.antichat.net/file151.html

152. 6 video recordings about the recent attack on the living periodical.
http://video.antichat.net/file152.html

153. The fulfillment of the arbitrary code in Microsoft Windows with working WMF it is file.
http://video.antichat.net/file153.html

154. Demonstartsiya of the filling of shela to forums IPB of version 2.0.4 when the password of administrator is present.
http://video.antichat.net/file154.html

155. Breaking of program XoftSpy.
http://video.antichat.net/file155.html

156. Vparivaniye of troyana. Operation of vulnerability “not complete way to the processor” Windows (total) commander.
http://video.antichat.net/file156.html

157. Obtaining adminki and the filling of shela in cursor e107
http://video.antichat.net/file157.html

158. Installation IRC of boat under Windows.
http://video.antichat.net/file158.html

159. Registration of program Advanced Security Level.
http://video.antichat.net/file159.html

160. interesnya idea about how it is possible to flood Shell to forums phpBB of any versions, if there is access to the administratorskoy panel.
http://video.antichat.net/file160.html

161. Breaking of paid hosting- provider with the use of old vulnerability in phpBB on one of the sites of hosting and the curvedly disposed server under control FreeBSD.
http://video.antichat.net/file161.html

162. “Admin Password Exploit” (author)
http://video.antichat.net/file162.html

163. Breaking e107 with use ImageManager/manager.php – the built-in file is manager.
XSS is not used!
http://video.antichat.net/file163.html

164. Khalyavnyy Internet in the local network.
http://video.antichat.net/file164.html

165. Seizure of the IRK- boat, which repeats phrases =)
http://video.antichat.net/file165.html

166. Video about the breaking of server under control Windows 3.1
http://video.antichat.net/file166.html

167. Theft of the 6- marking icq through that attached to it e-mail.
http://video.antichat.net/file167.html

168. Use wwwhack based on example vBulletin.
http://video.antichat.net/file168.html

169. One additional hole in cursor e107.
http://video.antichat.net/file169.html

170. Theft it is no in the chat room through breaking e-mail’a (by brutoforsom).
http://video.antichat.net/file170.html

Popularity: 6% [?]

Page 3 of 10«1 234 5 »10...Last »

techian.com

Archive for February, 2008

wsScanner Web Services Footprinting, Discovery and more

Data Leakage Bug in Mozilla Firefox Confirmed

Nikto 2 Released – Web Server Scanning Tool

Inguma 0.0.6 Released for Download – Free Pen-testing

Remove: Shut Down Virus

NMAP New Major Version Released

CEH Ethical Hacking: Videos.Tools.and.Slax.CD version 5

170 hacking videos from video.antichat.net

Twitter

Advertisement

Categories

Sponsors

Recent Posts

Most Popular

Recent Comments

Most Commented

Tags