lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <4b6ee9310607290556y2164f26bma5702e866d14a58c@mail.gmail.com>
Date: Sat, 29 Jul 2006 12:56:57 +0000
From: n3td3v <xploitable@...il.com>
To: n3td3v <n3td3v@...glegroups.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: A remote administration web server written in
	.JS files

On 7/29/06, n3td3v <xploitable@...il.com> wrote:
> [snip]
> You can have a server written in javascript, if the hacker knows his
> javascript well.
> [/snip]
>
> http://news.com.com/5208-7349-0.html?forumID=1&threadID=19764&messageID=169318&start=-1
>
> I'm not one to scare monger, but yeah.
>
> n3td3v

Hello n3td3v list,

Here is an example:

http://www.acme.com/software/js_httpd/

It would be useful if the above can be hacked to run on Windows
systems as a remote administration tool.

Don't just copy and paste though, write your own server, the link
should just be used as a proof of concept.

Have fun.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ