Security Alert to BamarTalk.com (Web Vulnerability)

Hi, BamarTalk.com’s Webmaster This is PlanetCreator’s Security [email protected] & Hackers Group, PlanetCreator has reported Critical SQL Injection vulnerability on Bamar Talk International Calling Cards – Cheap Call to Myanmar’s Website. Informed to : ‘[email protected]’; ‘[email protected]’; ‘[email protected]’; ‘[email protected]’; ‘[email protected]email.com’ Sent Wed 2/24/2010 7:12 AM Some of your Web’s Data Information are as follow, Applications: ————PlanetCreator’s_Universal_Advanced_Internet_Security_T00L System […]

Chinese schools deny Google cyber-attack links

Two Chinese schools have denied the New York Times inform which they were involved in the much-discussed cyber attacks upon Google as good as during slightest 33 alternative outfits sometime last year. On Thursday, The Times reported which the attacks had been traced to Shanghai Jiaotong University as good as Lanxiang Vocational School, claiming which […]

Several avast sites were defaces

Last month, eight sites at once well-known anti-virus solutions avast!  Were defaces: http://www.avast.co.za/ (mirror; date: 2010-01-22 15:06:28) http://awast.org/ (mirror; date: 2010-02-18 18:57:27) http://www.avast.de/ (mirror; date: 2010-02-18 18:58:01) http://shop.avast.de/ (mirror; date: 2010-02-18 18:58:24) http://www2.avast.de/ (mirror; date: 2010-02-18 18:59:51) http://partner.avast.de/ (mirror; date: 2010-02-18 19:03:59) http://demoshop.avast.de/ (mirror; date: 2010-02-18 19:03:14) http://forum.avast.de/ (mirror; date: 2010-02-18 19:01:33) Breaking these sites […]

Online Services

Gathering information: (set) http://www.subnetonline.com/ (set) http://ping.eu/ (ping, dns_tools, traceroute, web_tools) http://serversniff.net/ (DIG / nslookup, whois, traceroute) http://networking.ringofsaturn.com/Tools/ (whois, dns_tools, service_scan, traceroute) http://centralops.net/co/DomainDossier.aspx (whois, dns_tools, domain_search) http://www.whois.ws/ (whois, dns_tools) http://www.robtex.com/ (whois) http://www.ripn.net:8080/nic/whois (whois) http://whois-search.ru/ (domain_search) http://searchdns.netcraft.com/ (ping and traceroute from all continents) http://www.wipmania.com/ru/tools/ Search Engines: (exploit_search) http://exploitsearch.com/ (search_on_daemon) http://shodan.surtri.com/ Network scanning: (nmap, openvas, sqlix, sqlmap, nikto, […]

Selection of tools to automate an attack SQL Injection

sqlmap (http://sqlmap.sourceforge.net/) Full support: MySQL, Oracle, PostgreSQL and Microsoft SQL Server. Partially supported: Microsoft Access, DB2, Informix, Sybase and Interbase. SQL Power Injector (http://www.sqlpowerinjector.com/) Implemented support for: Microsoft SQL Server, Oracle, MySQL, Sybase / Adaptive Server and DB2. Absinthe (http://www.0x90.org/releases/absinthe/index.php) Implemented support for: Microsoft SQL Server, MSDE, Oracle, and Postgres. bsqlbf-v2 (http://code.google.com/p/bsqlbf-v2/) Implemented support: MySQL, […]