Index for September, 2011

It’s far from over my firend.

Tuesday, September 20th, 2011

A friend of my is “retiring” and moving out from the scene. During a conversation he told me that Web bases exploration is soon over. And i said to him that i think the are more opportunities now then ever before and i think the future still looks bright.

If we look how the websites started out we see a lot of static pages with information. Not that many sites were making money and the functions of a website were limited. As the year passed we see a difference in how websites are created. Before there where people just wanting to put out something for the public to see. Now people wanting to put out something while earning money and with money comes competition over visitors and users. Just take gmail or hotmail for example how much high-tech aren’t they today compare to a few years ago. Another example if we look at a pron site from 2000-2002 we see a website with static HTML pages and if your lucky they where running some bad coded PERL script witch you could exploit. But likely the only option was to attack a service running on the server like FTP or the web server it self. If we now take a look at a pron site 2011. We see a sites that has dynamic code and likely has code running from a few different coders. The site has a function to bookmark your favorite videos or search for your pornstar and so on. Its a trend that will continue and the last few years we have seen a explosion in “handheld” (mobile) websites and i have noticed a lot of them are bad coded because who hacks from a mobile phone right? While the size and complexity grows in a website the error for mistakes and logic flaws grows as well. I think our time if far from over and if i am allowed to quote Sun Tzu: “Opportunities multiply as they are seized”.

Posted in Unfiltered | No Comments »

Sometimes iam a fat ninja.

Tuesday, September 6th, 2011

When you can been stuck coding or away a while for you get rusty and thinking to hard makes my brain hurt. I hadn’t been out on adventures in about a month and this late Friday night i decided to look closer on a site that had elude me in the past. After an hour or so i found an old sub-domain that had some shitty code on it. Everything went well, after another hour i realized it was just a matter of time before i had whole server the adrenaline started to hammer me. In my sleep deprived state i might have rushed a little bit to much. While i was busy looking through the database and planting a shell. I accidentally for got a ‘>’ less and wiped the whole footer-page. So much for being a ninja in the dark night. As some end div-tags and what not was in that file the site looked like shit and you could clearly see something was wrong. As i do some coding myself i started to feel kind of bad about the whole situation. As a poor programmer needs to fix this problem one early Monday morning or even worse Saturday morning. So i decided to leave a little massage for the webmaster. It said something in the line of: “//Sorry. I fucked up, hope it wont ruin your day.”
It was a stupid mistake that shouldn’t have happened. I have check up on it a day or so later. I know they have fixed the page now, they haven’t said anything to their members or about any intrusion occurring. I haven’t checked up on my backdoors. If they are still alive but i would be surprised, after my little message, but then again i get surprised all the time by people.

UPDATE:
This all happened some months ago. I just checked up on the backdoors and they are still there alive and kicking. People need to get a grip and stop to think about that files don’t wipe them self.

Posted in Adventure | No Comments »