monit
+ Reply to Thread
Results 1 to 9 of 9

Thread: Hei Mike

  1. #1
    Join Date
    Apr 2006
    Posts
    23

    Hei Mike

    Can you supply any online exploit websites?


    ----
    Hacxx
    [url]http://second-search.co.nr[/url]

  2. #2
    Join Date
    Sep 2005
    Posts
    2,050
    Quote Originally Posted by Hacxx
    Can you supply any online exploit websites?


    ----
    Hacxx
    [url]http://second-search.co.nr[/url]
    [url]http://www.packetstormsecurity.org/[/url]
    [url]http://evuln.com/[/url]
    [url]http://secunia.com/advisories/[/url]
    [url]http://www.securityfocus.com/archive/*[/url]
    [url]http://www.insecure.org/[/url]
    [url]http://www.securiteam.com/[/url]
    [url]http://www.milw0rm.com/[/url]
    [url]http://www.securityfocus.com[/url]

    Btw, are you fabioejp from a few months ago? Why were you banned?
    Last edited by Ezekiel; 05-12-2006 at 02:23 PM.
    Who needs drugs when you have electrons?

  3. #3
    Join Date
    Apr 2006
    Posts
    23

    Post ...

    Because of you and the syntax****** decided to change the rules about advertising in the time i was banned.

    Nevertheless thanks for the info provided.
    The publication of the img has anything to do with me in any particular case?
    Last edited by Hacxx; 05-13-2006 at 03:17 PM. Reason: ...

  4. #4
    Join Date
    Sep 2005
    Posts
    2,050
    Quote Originally Posted by Hacxx
    Because of you and the syntax****** decided to change the rules about advertising in the time i was banned.

    Nevertheless thanks for the info provided.
    I may hate spam, but syntax****** is the only one here with banning priveleges. I am just a regular user like you.

    The publication of the img has anything to do with me in any particular case?
    What image?
    Who needs drugs when you have electrons?

  5. #5
    Join Date
    Apr 2006
    Posts
    23

    ...

    [url]http://img*6*.imageshack.us/img*6*/5**4/fullanim*4ut.gif[/url]
    Or is it your signature?

    Also do you know how some people encode their url?
    For example *2*455678* that will actually lead to their website.

    My ideia is to encode via several methods, one of them is the google.com url which keeps the actual url encoded in hex and this hex will lead to the above url "codification".
    Last edited by Hacxx; 05-14-2006 at 02:08 PM.

  6. #6
    Join Date
    Sep 2005
    Posts
    2,050
    Quote Originally Posted by Hacxx
    Or is it your signature?

    Yes, that is my signature, it's just some userbars that I made into a GIF.

    Also do you know how some people encode their url?
    For example *2*455678* that will actually lead to their website.

    My ideia is to encode via several methods, one of them is the google.com url which keeps the actual url encoded in hex and this hex will lead to the above url "codification".
    URLs can be encoded in many ways, read [URL="http://en.wikipedia.org/wiki/IPv4"]this[/URL] page to learn about them. The decimal number URL you mentioned is formed by converting each octet of an IP number into it's hex equivalent, then concatenating these hex values into one long hex number. Then, this hex number is converted directly into decimal. It's hard to explain, but you can use [URL="http://www.allredroster.com/iptodec.htm"]this[/URL] tool to convert IP numbers into many other forms that work in a browser:

    Also, a normal URL such as [url]www.google.com[/url] can be converted into another browser compatible form of URL. This is done by taking each character of the URL (such as w w w . g o o g l e . c o m) and replacing them with the hex equivalent of the ascii value, then separating them with a %. So [url]www.google.com[/url] would be:

    [URL="http://%77%77%77%2e%67%6f%6f%67%6c%65%2e%6*%6f%6d/"]http://%77%77%77%2e%67%6f%6f%67%6c%65%2e%6*%6f%6d[/URL]

    Try clicking that link, and it will take you to google. If you know hex, you will understand what I just said, if you don't, then you will not. I can explain more if you don't understand.
    Who needs drugs when you have electrons?

  7. #7
    Join Date
    Apr 2006
    Posts
    23

    Arrow ...

    Quote Originally Posted by mike*0*
    Also, a normal URL such as [url]www.google.com[/url] can be converted into another browser compatible form of URL. This is done by taking each character of the URL (such as w w w . g o o g l e . c o m) and replacing them with the hex equivalent of the ascii value, then separating them with a %. So [url]www.google.com[/url] would be:

    [URL="http://%77%77%77%2e%67%6f%6f%67%6c%65%2e%6*%6f%6d/"]http://%77%77%77%2e%67%6f%6f%67%6c%65%2e%6*%6f%6d[/URL]
    The hex entry that you post does not mask the actual url in the status bar so here is the encoding that i was saying "google + url".

    [url]http://google.com/url?sa=p&pref=ig&pval=2&q=%68%74%74%70%*A%2F%2F%77%77%77%2E%6*%6C%6C%2D%6E%65%74%74%6F%6F%6C%7*%2E%6 *%6F%6D[/url]

    This will redirect to [url]www.all-nettools.com[/url] and the status bar points to a page inside google since google is considered by most users as a trusted website you can spoof a link easily. The decimal encoding that was discussed is to avoid using / showing the direct IP or domain name after.

    After some reading and testing i think that this decimal scheme may not work out as i tested a few free webhosting companies and they all fail in pointing to the right page. Well it work out only with my NO-IP account.

    Do you have any ideas?

    If you know hex, you will understand what I just said, if you don't, then you will not. I can explain more if you don't understand.
    I happen to be a OllyDBG fan and a HEX Editing addicted.

  8. #8
    Join Date
    Sep 2005
    Posts
    2,050
    Quote Originally Posted by Hacxx
    The hex entry that you post does not mask the actual url in the status bar so here is the encoding that i was saying "google + url".

    [url]http://google.com/url?sa=p&pref=ig&pval=2&q=%68%74%74%70%*A%2F%2F%77%77%77%2E%6*%6C%6C%2D%6E%65%74%74%6F%6F%6C%7*%2E%6 *%6F%6D[/url]

    This will redirect to [url]www.all-nettools.com[/url] and the status bar points to a page inside google since google is considered by most users as a trusted website you can spoof a link easily.
    I never knew google had this functionality, but when redirecting someone through a google link, the hex encoding will still appear decoded in the status bar; [url]www.google.com[/url] will be at the start, but the real website will still be easy to see for users. But I suppose it's still better than having a normal hex encoded URL.

    The decimal encoding that was discussed is to avoid using / showing the direct IP or domain name after.

    After some reading and testing i think that this decimal scheme may not work out as i tested a few free webhosting companies and they all fail in pointing to the right page. Well it work out only with my NO-IP account.

    Do you have any ideas?
    Yes, this is because a lot of web hosts use virtual hosting, a way of hosting many websites/host names from one IP address. This is useful to have when they provide service to a lot of users, but it relies on the domain name to redirect to the correct page; each website can only be accessed by typing in the correct domain name of the site, and not through entering an IP number. This means that any type of IP number you enter will not redirect to the correct page, whether it is decimal, dotted decimal, or hex. This is a limitation of virtual hosting, which makes hosting anything other than a website very difficult. The reason you could enter a decimal IP to access your no-ip dynamic dns host name is because that points directly to your IP, and not a server using virtual hosting.


    I happen to be a OllyDBG fan and a HEX Editing addicted.
    It's good to finally have some more intelligent users. I don't think syntax****** should have banned you, a warning probably would have been enough, but whatever, you know the rules now.
    Who needs drugs when you have electrons?

  9. #9
    Join Date
    Apr 2006
    Posts
    23

    Arrow

    Quote Originally Posted by mike*0*
    I never knew google had this functionality, but when redirecting someone through a google link, the hex encoding will still appear decoded in the status bar; [url]www.google.com[/url] will be at the start, but the real website will still be easy to see for users. But I suppose it's still better than having a normal hex encoded URL.
    A side note:
    There seem to have diferent effects in diferent browsers for example in IE and Firefox it shows the actual address after "q=" as you were saying, but in Opera the encoded URL stay the same. (value in hex)

+ Reply to Thread

Similar Threads

  1. Spytector not working? Mike *0*
    By 797979 in forum Internet Privacy
    Replies: 9
    Last Post: 09-27-2006, 04:07 PM
  2. Hei Mike
    By Hacxx in forum Internet Privacy
    Replies: 2
    Last Post: 06-20-2006, 09:32 AM
  3. Hei Mike
    By Hacxx in forum Internet Privacy
    Replies: 3
    Last Post: 06-05-2006, 12:15 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts