News
Added new exploit
for Qualcomm Qpopper
<=
3.0beta29 by Zhodiac.
As you've probably noticed, we've done a little redesign of the
site.
Jfs, in "Phorum 3.0.7 vulnerabilities"
explains how to exploit the Phorum 3.0.7 message board package.
Renegade Master, in "Programming
a shellcode in SCO" explains how to set up our own shellcode in
this system, that lacks good ones. Doing it yourself is always the
best way !
We're back. As you may know, the hackpcweek contest set by PcWeek a
fewl days ago was won by Jfs. In the WebZine section you'll
find the explanation of the hack, including the programs used for it, titled
'A practical vulnerability
analysis (the PcWeek crack)'.
Finally, on June 2nd, the judge pronounced the sentence in the trial against a member of !Hispahack, and the sentence said, as we were all waiting, that Jfs was not guilty. This was the first sentence in a case of Hacking in our country. In the spanish section of the web, we've released a bounch of info relating the case, that has been reduced to one of the articles in english, in wich we do a little summary on everything, with all the criticism against those who deserve it.. Expect more updates from now, as we've returned with many projects in
mind !
There haven't been many updates lately. We're waiting for the near trial to one of our members, and working in several docs. In the meanwhile, make sure that you check out the Chaos
Computer Club site to read about the Chaos
Communication Camp , that's going to take place on August 1999.
You'll find the best european underground groups and a lot of knowledge
sharing.
It's time for a little update, or not so little, as we're talking about
the most dynamic project that we have, this is the former ICMP, now known
as ICMPush 2.2 by
Slayer,
a not so generic name at least. It has been redesigned, and is now more
user friendly. More ICMP types supported, size of pattern data up
to 64 Kb (including a garbage option, and supporting fragmentation) and
a brand new man page are some of the new features for this fully customized
version. Get it and check them out by yourself!
Well, here you'll find the info about the site updates: articles, programs, projects or any other new in relation with the WebZine or the group. As we've said, we aren't going to translate all the original spanish-written
articles, just the ones we think that can be shared . That's why
some of them could look outdated, but at least they can be interesting
to the underground community.
These are the Articles we have at the moment : - 'Cracking Unix Passwords', by Zebal, that explains
how a password cracker works, where to find
- 'DNS Abuse' explains a couple ways to do IP spoofing. - 'Silent Carriers and Link Protocols' by BadreL. This explains what is behind several carriers found when doing phone scanning/wardialing, and how to find info on these systems that don't have a prompt. - 'Restricting a restricted FTP' by Flow, that
bases in one of the most common configuration errors involving FTP and
permissions.
Relating the programs : -'UDPShell 1.0' by Flow, is a bindshell that uses UDP as its transport protocol, with a data crypt option. -'SMBScanner' by Flow. Util that scans IP ranges looking for samba/netbios shared resources, gives you direct access to them and also includes a brute force cracker in case a password is set. -'ICMP v2.1' by Slayer is a program that sends
icmp error packets and obtains remote info throught icmp packets. Supports
spoof and broadcasting.
Well, that's all for now. Keep on checking this section if you want
to know what's new at Mentes Inquietas!
|
|||||||||||