illmob

finally got around to making my gentoo box… out of an old cd player.. heres the results ::HERE::
or you can look at all the pics ::HERE:: .. i know the floppy looks ghetto on the bottom but i got lazy.. the power button and cd tray really work too

newer version that now allows you to enter that password and port of your choosing

get it ::HERE::

well thanx to pingywon i found out that ghost admin 1.0 wasnt executing correctly so i released a newer version with the new fsg so now the server is only 1.18kb … so basically you edit the server and send it to the victim then you can remotely log into them using the radmin client

last night i recieved a instant message from someone claiming to be the famed phone hack Kevin Poulsen .. who also writes on security focus.com .. asking about the program we released on the site that takes advantage of the backdoor masster password the Optix trojan… after some convincing i found him to be legit , and i was asked a series of questions relating to the software… anyhow you can read the results :::HERE:::

posted by morning_wood
The US Patent and Trademark Office has granted a patent to Microsoft Corp. for a “time based hardware button for application launch” in which a click of a button can start different programs if it is clicked once, twice or held down for several seconds

links in full news
http://216.239.59.104/search?q=cache:Z0oG5DoK3w0J:www.smh.com.au/articles/2004/06/02/1086058889577.html+microsoft+patented+mouse+click&hl=it

or

http://www.smh.com.au/articles/2004/06/04/1086203602853.html

posted by pingywon
..:::UPDATE:::..
Look at bottom of post for new updates

There is a rather (not completely) new Cpanel exploit which will compromise Linux/Apache boxes (imagine that – IIS actually not being effected)

.:read Fullnews for story and link:.
:CpanelSploit:.

SEVERITY:

High, Arbitrary Execution as Arbitrary User

PROBLEM DESCRIPTION:

Flaws in how Apache’s suexec binary has been patched by cPanel when configured for mod_php, in conjuction with cPanel’s creation of some perl scripts that are not taint clean, allow for any user to execute arbitrary code as any other user with uid above UID_MIN ( uid >= 100).

IMPACT:

Unfortunately, cPanel comes with mod_php installed by default, so all systems are vulnerable right out of the box. Any local user can comprimise the whole system.

SYSTEMS AFFECTED:

All systems where Apache has been compiled WITHOUT mod_phpsuexec, (most systems using cPanel software), are vulnerable. Those configurations that compiled Apache WITH mod_phpsuexec are NOT

VULNERABLE.

Apache versions 1.3.31 and below are VULNERABLE.

All cPanel versions (STABLE, RELEASE, CURRENT, and
EDGE) up through and including 9.3.0-EDGE_95 are VULNERABLE.

RedHat 7.3, 8.0, 9, and Enterprise Linux, Fedora, and FreeBSD OS have been verified vulnerable. All others are probably vulnerable too.

PROOF OF CONCEPT:

See top of post for php download

~pingywon ya heard it hear second

ok so some people were bitching cuz cmdget executes the file after downloading
so now i give you the option to just dl it or dl and execute also it now injects into explorer to bypass most firewalls

can be used in a debug script to transfer itself through the shell and recompiled allowing you to then dl more files from a remote site

:::GET IT HERE:::

posting a new tool exe2txt which will convert your exe to a txtfile that you can paste into your shell line by line that will create a batfile that will recompile your exe :::: exe2txt::::

also re-upped the text file that i never finished that is the begining of a tutorial that will give you more insight on waht to do when you get a shell through some 0day sploit and you have no idea what to do next
::::r00t1n.txt::::

anyone that wants to submit more ideas for it either post in the comments or send me an email if its too long

also added cmdget 2.0 the commandline webdl , now with fwb
::::CMDget::::

and fsg 2.0
::::FSG::::

some things are just too cool not to share
roll up yer windows ala X ::winroll::

posted by pingywon
Check the full news for some interesting current events.

Cisco finally almost ready to go live with CRS-1

Mc Donalds to sign a Hot Spot Deal

Database the Immigrants

MS’s new idea for taking your ID fed with you

And finally for any of you MS certifed people ..MS has revamped the MCP mebers site. Its pretty damn cool actually

Login Here

While they manage to make the site a whole lot cooler…they still couldn’t seem to come up with a shorter name for the URL

Old one = https://partnering.one.microsoft.com/mcp
Newone = http://www.microsoft.com/Learning/mcp/mcpmembersite.asp

Thats all for now …yay