lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <6170a5450512090619y1a503ffbv8bee3e4eba480c1f@mail.gmail.com>
Date: Fri Dec  9 14:20:00 2005
From: tatercrispies at gmail.com (Tatercrispies)
Subject: Re: Google is vulnerable from XSS attack

Guys, don't be haters. n3td3v found a CRITICAL HOLE in one of the
worlds biggest online products. He may not be the most popular face on
this list, but his reputation stands firm. And now he's proven
himself. You can't argue with that. It's solid. Those of you casting
disparagements need to look carefully in the mirror and consider what
you have contributed to this list. Have you found any XSS holes? Have
you found any SQL holes. You be lucky to find your own pie holes. No?
What? You've found no SQL injections? You're not a haxer. Sitting on
this list riding on the backs of real researchers like our man here.

It's indisputable. He has proven contacts, a proven track record, and
an ever growing war belt with TINY SHRUNKEN HEADS of the biggest
companies today hanging from it. Google. Yahoo. IBM. Linux.

The fellow may be lacking in personal skills, but most eccentric high
flyers seem to share that trait. Einstein couldn't hold a marriage. Or
like da Vinci and his oftentimes hard relationships with his young
assistants. Nicolas Tesla held groundbreaking ideas but was
discredited by two-bit hacks shouting him down from the sidelines. Hmm
does that sound familiar? Yeah, without researchers like n3td3v
working on these things, the whole system would just be falling apart
all willynilly. So I think it's time to start acting like
professionals. You want some cred, you've got to plug some holes. And
then keep on plugging some more, even after you think they're
completely plugged. Like MC Hammer did.

"There was a while when I was feeling like, 'Damn, if I'd just been
born black, I would not have to go through all this'." - Eminems

On 12/8/05, ghost <ghosts@...il.com> wrote:
> lol, n3td3v, you are so pathetic. Exactly 1 lame XSS post and now
> you're some sort of elite h4x0r, everyone who's googled knows how lame
> you really are. You must be related to morning_wood. Lets post this
> one last time....
>
> --------------------------------------------------------
> google: xploitable site:chat-help.co.uk
> ---------------------------------------------------------
> ---------------------------------------------------------
> http://www.bigblueball.com/forums/showthread.php?p=159874#post159874
>
> 02-17-2005, 12:11 PM
> n3td3v
> Banned
> Join Date: Aug 2004
> Posts: 220
>
> Don't delete my posts again, without asking or giving warning. A quick
> e-mail to say your not happy with a post and ask me to modify or
> delete it myself is too much to ask??
>
> Trust me, if you want to be rude, i'll be rude back to you, and if you
> keep doing it, i'll make sure this website gets hacked.
>
> I've had enough of it, its happened more than once, I don't like being
> treated the way you treat people.
>
> You'll probably want to delete this thread too, cause you love
> controlling people so much.
>
> Last edited by DJHyperbyte : 02-17-2005 at 02:09 PM. Reason: Removed insults.
>
> ---------------------------------------------------------
> ---------------------------------------------------------
> http://lists.virus.org/full-disclosure-0411/msg00907.html
>
>
> FW: [Full-Disclosure] Shadowcrew Grand Jury Indictment
> n3td3v n3td3v <[EMAIL PROTECTED]>
> Wed, 17 Nov 2004 17:53:44 +0000
>
> On Wed, 17 Nov 2004 11:41:20 -0600, Todd Towles
> <[EMAIL PROTECTED]> wrote:
> > Well, it is given that posting to FD does give a
> site exposure (good and
> > bad). But I wouldn't say that FD was the cause of
> it..it was the illegal
> > activity that was the cause of it. We all know SCC
> does some underground
> > stuff and they post here each time they move. So...I
> wouldn't blame the
> > FD list for anything.
>
> I wouldn't use the word blame? I think its a good
> thing if
> Full-Disclosure is helping to catch online criminals.
> I don't know if
> you like malicious hackers and other criminals, but
> yeah.... I dislike
> them. I would do anything in my power to stop online
> crime, from
> scriptkiddie stuff, to sex stuff,spam,scams, fraud,
> terrorism and back
> again.
>
> I have no space for anyone thinking they are elite and
> all the other
> hacker scene crap. Its time to clamp down on the BS
> thats on the net.
>
> If I was in gov, I would shut a site down that looks
> remotely
> hax0rish, even if they've done nothing wrong. All
> these crews and
> hacker groups, fk them all. The net needs zero
> tollerence with online
> crime. Govs should have the authority to close
> anything done because
> they feel like it, without needing to prove shit.
>
> I would even close IRC channels. Hackphreak on
> undernet looks
> harmless, but fk that. Close it anyway, its time to
> get a tighter grip
> on things.
>
> Thanks,n3td3v
>
> ---------------------------------------------------------
> ---------------------------------------------------------
> http://archives.neohapsis.com/archives/dailydave/2004-q4/0221.html
>
> You know you're a moron if you have Dave Aitel laughing at you.
>
> ---------------------------------------------------------
> ---------------------------------------------------------
> forums.chat-help.co.uk
>
> n3td3v
> Member
> Member Group: Banned
> Joined: 28-August 04
> Active Stats
> Total Cumulative Posts  4
>
>
> Re-occuring theme...
>
> ---------------------------------------------------------
> ---------------------------------------------------------
> "carbonize" forums, banned again..
>
> n3td3v
> post Oct 11 2004, 03:08 PM
> Post #3
>
> QUOTE(carbonize @ Oct 10 2004, 03:29 AM)
> QUOTE(n3td3v @ Oct 9 2004, 08:18 PM)
> Suggestion: stop acting like a wanker on sites like chat-help and grow
> the fuk up.
> *
> Looked in a mirror lately?
> *
>
> Lamer you are a boring bastard with no skills. All you can post on
> homepage is about lame gmail accounts five years after the novelty of
> invites wore off.
>
> You cannot hack to save yourself homo.
>
> Running out of things to psot on homepage homo? Heh, i think so.
>
> This website will die a sorry death because you have nothing worth saying.
>
> ---------------------------------------------------------
> ---------------------------------------------------------
> * this is him, before being banned and using the name n3td3v
>
> http://ourchat.org/forums/index.php?showuser=930
>
> Viewing Profile: xploitable
> xploitable
>
> Everyone Needs A Cyber Security Pet In Life :)
> Group Icon
>
> Member Group: Banned
> Joined: 3-February 04
>
> ---------------------------------------------------------
> ---------------------------------------------------------
> nobody special
> post Feb 3 2004, 04:20 PM
> Post #6
> Unregistered
>
> ok, my email will be xploitable@...t.us if anyone wants to crack the
> password then go ahead.
>
> *** after people saying that was stupid, then:
>
> I know, i was being silly earlier. I was bored. I'll even give my IP
> out to the public... 62.31.***.*** :D
>
> ---------------------------------------------------------
> ---------------------------------------------------------
> HAHAHAHAHA
>
> http://66.102.7.104/search?q=cache:G41IIJ49DbAJ:www.chat-help.co.uk/forums/index.php%3Fshowtopic%3D989+email+xploitable+site:chat-help.co.uk&hl=en&client=firefox-a
>
> xploitable
> Posted: Mar 13 2004, 07:07 PM
>
> Yahelite while running All platform of Microsoft Windows to crash.
>
>
> YAHELITE caused an invalid page fault in
> module RICHED20.DLL at 015f:4800e4ef.
> Registers:
> EAX=00524b3c CS=015f EIP=4800e4ef EFLGS=00010246
> EBX=0052518c SS=0167 ESP=00734724 EBP=00734784
> ECX=00000000 DS=0167 ESI=00525180 FS=34b7
> EDX=00577e10 ES=0167 EDI=00000000 GS=0000
> Bytes at CS:EIP:
> 8b 01 f6 40 68 40 75 0b 8b 41 04 85 c0 75 ef 83
> Stack dump:
> 480102b7 00000000 00525180 00524b3c 00000000 00000000 00000000
> 00000000 00000000 00000000 00000000 00000000 00000000 00000000
> 00000000 00000000
>
>
> Have Fun ;-)
>
> xploitable
> Posted: Mar 13 2004, 09:42 PM
>
> QUOTE (Chat-Help @ Mar 13 2004, 08:14 PM)
> "i think he talking about the bug that was fixed not long"
>
> I don't post old bugs, this is 0-day.
>
>
>
> xploitable
> Posted: Mar 13 2004, 09:57 PM
>
>
> QUOTE (_chat_help_ @ Mar 13 2004, 09:50 PM)
> "it in no way indicates either a bug in YahElite, or any form of
> 'boot' to crash YahElite."
>
> Being ignorant will get you no where. This is caused by 0-day exploit.
> ---------------------------------------------------------
> ---------------------------------------------------------
>
>
>
>
>
> On 12/7/05, n3td3v <xploitable@...il.com> wrote:
> > No one has seen any vulnerabilities by you. You have no justification
> > to even being 100 miles near this list, let alone comment on other
> > people and their postings.
> >
> > On 12/7/05, InfoSecBOFH <infosecbofh@...il.com> wrote:
> > > Way to blow it out of perportion kiddie....
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ