blis<=========|Gue_ni|=========>blis
| <====(( JATIMCREW )) Waktu Dimana Anak-anak Bangsa Menunjukkan Kreativitasnya-----------|
Darah_2Darah_1

Selasa, 18 Mei 2010

Gara2 maen Depes..

Ini gara2 aku suka maen depes2n ke berbagai situs,, situs apa ja pasti aku hajar...
tiba waktu hajar situs ini : http://___.eu/
ini mirrorny :

http://indonesiandefacer.org/mirror/2010/05/rn4cast.html

FB ku langsung di Add sama yg punya sever situs itu, orang itu namanya "Tom Standaert" dy katanya orang Belgium, tpi aku gk curiga kalau orang itu adalah yang punya sever situs itu, habis itu ya terjadilah obrolan2 di FB saling bales Coment. Berikut ini adalah obrolanku sama yg punya sever situs itu :


KidDevilz Hde : thanks for the add,,, ^_^, where are you from??

Monday at 11:06pm · Comment · Like · See Wall-to-Wall


Tom Standaert : Belgium. Nice to meet you.

Apparently you hacked a website hosted one one of my servers :p
Backups, so no harm done.
It was http://www._____.eu/

Not sure if it was really you off course. It was signed

KidDevilz

.::Hacked By KidDevilz::.
With a reference to HDE.

Ring a bell? I noticed the apache allowed .inc files and also found several other vulnerabilities, but my main concern is that this website runs a -very early- version of an open source generic CMS system I'm developing, and maybe there might be a serious security hole I missed.
Although I'm aware of several in this version of the program.

Regards,

Tom

Yesterday at 2:38am


Tom Standaert : ok, found it on your wall - yesterday 0:38
care to share how?
SQL injection, the inc files , php injection?

Yesterday at 2:59am


Tom Standaert : by the way: it 's a non-profit organisation for whom I work for free, so not a very nice thing to delete their data ;)

Yesterday at 3:38am


KidDevilz Hde : yea, indeed my actions at the site was hacked, but I did not destroy or delete all the files that exist on the site, just tells me that the site was still a hole Gap ...
I only use SQL injection..

I apologize if less polite ...

I am glad to be your acquaintance same..

Yesterday at 5:08am ·


Tom Standaert : no problem, and as I said, no real harm was done, only some data in the mysql replaced.
I was just wondering how you did it. It was build fast because I did it for free, so I'm aware there might be several severe security holes.
Could you give me some more details on where exactly the huge gap is?

Yesterday at 5:16am


KidDevilz Hde : I only use sql-injection,,,,

if I may I help you, then I will tell you how Patch Technique Common Simple Web Attack ..

but I want to go to bed, because I was sleepy heavy ...... See More
had two days I did not sleep ..

I'll send to your facebook message ..

Yesterday at 5:26am ·


Karena aku udah ngantuk berat jadi ya gak aku lanjutin ngobrol2nya sama org tu...
dari pada ilang obrolan itu makanya aku buat update d blogku tercinta ini, buat kenang2an,,

Buat temen2 yg suka maen depes2n, jangan mendelet semua file yg da d situs itu..
Tpi kalau situsnya Malingsial Hancurkan ja sampek ke akar2nya sampek Down, pokok nya jangan d kasih ampun buat Malingsial...


.::| Salam UnderGround |::.

2 komentar:

  1. wew ............ hebat mastah !

    ^_^ c_brut

    BalasHapus
  2. iya malingsial di hajar sampek remuk ajurrrrrrrrrr ae..

    BalasHapus