YourSite.com

Chinese Arabic French German Italian Japanese Korean Portuguese Russian Spanish Chat!

Hacker's Database

This site is dedicated as a repository for "hacking" programs for Windows and Linux. Please note that hacking means nothing but tweaking or cleverly resolving a problem. Use the programs as you wish, but this site or its provider are not responsible in terms of how you use these programs, (i.e. for educational purposes only).

The way this site works is as follows. I will update the database to the best of my capability, to a point. You, the community, may upload whatever you feel is relevant to the site in terms of security, docs/videos, etc. Then, I will eventually review each submitted item, and add it to the database.

READ THE T.O.A. BEFORE PROCEEDING! It contains valuable information!

News Updates - Subscribe to the RSS Feed

Yes, Hacked - But Fixed

Ah, sadly enough, the day has finally come. Our site was indeed infiltrated, but corrected shortly thereafter. Though, I thought that the exploitation method was somewhat of a cop-out, and a smidge bit clever at the same time. Wordpress had recently messed up and gave an alert to all their users stating to update yet again to another version that corrected the exploitation. In short, what had happened is that the attacker changed one of the “required” files to one of his own, and forwarded it to my header.php. You see, wordpress includes to very important files, which calls the header, footer, or what have you. In this case, he rewrote over wp-blog-header.php, which is one of the required() files. This is what the manipulated data looked like:

http://pastebin.ca/908212

In short, he added a javascript function to read through “encrypted” text that redirected my page to said IP address/directory of a script that randomly generates a *.exe file to download to C:\, thus crashing firefox, IE, or what have you.

In short (I will have updates later) his IP address to his is: 79.135.181.138 and he got his code from this site: http://www.clxp.net.cn/article.asp?id=837

Do what you like to his site, I have no qualms over what happens to him. We don’t need anymore malicious sites such as his.

Continue Reading

Published Feb 17, 2008 - Comments? None yet

 
Support Us
This link kills spam

News Archive - Pre 06.25.07

 
Links
Moved to Affiliates Page
Your Ad Here
  • Register
    • Log in
  • Archives:
  • May 2008
  • March 2008
  • February 2008
  • January 2008
  • December 2007
  • November 2007
  • September 2007
  • August 2007
  • July 2007
  • June 2007

    • Archive for February, 2008

    Yes, Hacked - But Fixed

    Sunday, February 17th, 2008

    Ah, sadly enough, the day has finally come. Our site was indeed infiltrated, but corrected shortly thereafter. Though, I thought that the exploitation method was somewhat of a cop-out, and a smidge bit clever at the same time. Wordpress had recently messed up and gave an alert to all their users stating to update yet again to another version that corrected the exploitation. In short, what had happened is that the attacker changed one of the “required” files to one of his own, and forwarded it to my header.php. You see, wordpress includes to very important files, which calls the header, footer, or what have you. In this case, he rewrote over wp-blog-header.php, which is one of the required() files. This is what the manipulated data looked like:

    http://pastebin.ca/908212

    In short, he added a javascript function to read through “encrypted” text that redirected my page to said IP address/directory of a script that randomly generates a *.exe file to download to C:\, thus crashing firefox, IE, or what have you.

    In short (I will have updates later) his IP address to his is: 79.135.181.138 and he got his code from this site: http://www.clxp.net.cn/article.asp?id=837

    Do what you like to his site, I have no qualms over what happens to him. We don’t need anymore malicious sites such as his.

    Posted in Uncategorized | No Comments »