asp_kit v0.1 by The Dark Raver

The t0s team, made public the first version, of asp_kit. asp_kit is a little pack of ASP scripts. It's main target is to help in hacking or pentesting webservers with ASP support ( IIS webservers ).

Source Code

The source of this scripts is based in various code examples from Internet and from myself ,and has some little modifications, for reducing his size and for tunning it for pentesting.

Tested On Platforms

- IIS 4.0 over Windows NT
- IIS 5.0 over Windows 2000
- IIS 5.1 over Windows XP

New web design! by t0s staff

We have a new website design! You can now choose from three flavours based on your perception of security and life in general.

Choose the "blank minds" if you live in a bubble and feel that field research in security, proof of concept code and websites with a dark background are evil.
Advisories spring to life spontaneously.
Product security improvements are due to vendor good will.
Vulnerability impact is measured by its media coverage.
You have already learnt everything there is to learn. After all, what you don’t want to see does not exist and thus can’ t hurt you, right? Maybe someone should get you a badge.

For those specially gifted people that think that life is all about babbling, stealing, publishing other people’s work without giving proper credit, trying to fuck with other people’s lives, being the coolest being on earth and having people believe it, please, please, please - pick the "gay pimp" style and get a life.

And, if you have realised that, as life, this trade should see no colours just pick the "dark side" style or pick no style at all.

We want to send our best wishes to everyone, even those who hate us just for being the way we are. We love you all.

ShivaDecrypt by jfs

The Shiva encrypted user passwords are saved to the configuration along with the key used to encrypt them (!). They are then encoded using base64 with a shuffled translation table.

ShivaDecrypt decodes the pseudo-base64 string, extracts the key and then uses it to decrypt the password.

mod_nocache: Apache 2 module to avoid proxy caching by jfs

Caching proxies (including transparent proxies) store web pages in order to speed up the client browsing experience. Unfortunately, this means that some users will never get to see your updated web page as they fed off the proxy cache or even worse, an evil proxy administrator can browse the web pages you have been retrieving through the proxy. If your ISP happens to be using a transparent proxy there is no way you can avoid it (regardless of what some Spanish political sources might tell you :P) and although they can still know what sites you have visited and build your web usage profile, there are ways to stop the proxy from caching the downloaded data.

Proxies (at least most of them) do not cache dynamically generated data. As the proxy can not tell whether a web page has been generated dynamically, they try to guess it by looking at the client request and the server response. If the user sends parameters in the request (via POST or embedded in the URL) or sends a Cookie, the response will not be cached. This module will automatically add a randomly generated cookie to every page sent out, so that the proxy will not cache it, thus disallowing caching of web pages hosted on the server where the module is installed.

The module mod_nocache can be found here.

DIRB - Url Bruteforcer by The Dark Raver

What is DIRB?

DIRB IS a Web Content Scanner. It looks for existing (and/or hidden) Web Objects. It basically works by launching a dictionary basesd attack against a web server and analizing the response.

What is NOT DIRB?

DIRB IS NOT a Web Vulnerability Scanner. It doesn't look for bugs. But it's designed for helping in web vulnerability assessment.
DIRB IS NOT a Web Spider. It doesn't follow HTML links (by now). It searches content by rules and dictionary based attacks.
DIRB IS NOT a Web Downloader. It doesn't download Web Pages (by now), only test they existence for later manual analysis.

Why DIRB?

DIRB main purpose is to help in professional web application auditing. Especially in security related testing. It covers some holes not covered by classic web vulnerability scanners.
DIRB looks for specific web objects that other generic CGI scanners can't look for. It doesn't search vulnerabilities nor does it look for web contents that can (maybe) have vulnerabilities.

New member by t0s staff

We are enchanted to announce the incoporation of "jfs" into the t0s team.

jsp_kit v0.2 by The Dark Raver

The t0s team, made public the second version, of jsp_Kit. jsp_kit is a little pack of JSP scripts. It's main target is to help in hacking or pentesting webservers with JSP support.

Sock_Kit v0.2 by The Dark Raver

The t0s team, made public the second version, of Sock_Kit. Sock_kit is a tool set of 3 proxy tools designed for helping in pentest works (specially in firewall bypassing tests). What are the Sock_kit design concept? Sock_kit wants to be: - Simple - Portable - Robust - Modular - Easly modificable... How it works? Sock_kit proxies are standard socket-to-socket proxies, but each one cover one posible connection combination: 1) c2c - Connect to Connect = Joins 2 connecting (outgoing) sockets. 2) l2c - Listen to Connect = Joins 1 listening socket (incoming) with a connecting socket (outgoing). 3) l2l - Listen to Listen = Joins 2 listening (incoming) sockets. Tested on Platforms Sock_kit has been tested and comes with compiled binaries for the next platforms: - Windows XP - Windows 2000 - Linux 2.4 (I86) - Windows NT 4.0 - Solaris 8 (Sparc) - AIX 4.3.3 - HP/UX 11.00 - OpenBSD 3.1 (I86)

Win32 Shellcodes by The Dark Raver

The t0s team, offers you the first version of his win32 shellcodes collection (NT, 2000 and XP). The design of the shellcodes has been made with the authentic style of the old school of exploits and shellcodes coders (These ones come from the UNIX world). The shellcodes can be used easily on your exlpoits. A lot of them have the code documented so, doing it easily the modification or adjustment. The "hardcoded" versions, has the offset for the API calls of Windows XP, so it doesn't work in other platforms.

Manifest against A.I.H. (in Spanish) by t0s staff

MANIFIESTO CONJUNTO SOBRE LA AIH Hasta ahora, la aparición de la "Asociación para la Información de Hackers", en adelante AIH, sólo nos había provocado una cierta indiferencia, pero, en estos últimos días, una serie de acontecimientos en relación a la AIH, han terminado con la publicación en su página web (http://www.infohackers.org, http://www.infohackers.com, http://www.informativos.info) de un comunicado por parte de esta asociación que nos afecta directamente. Es por ello, que nos hemos visto obligados a aclarar una serie de puntosrelacionados con dicha asociación. En su comunicado, entre otros, se puede leer el siguiente apartado: "10. La A.I.H. no tiene ningun problema con grupos undergroung de la Scene internacional o hispana. La A.I.H. tiene relaciones con los escasos grupos espanoles, y muy buena simpatia con estadounidenses, rusos o brasilenos, por mencionar algunos, pese a quien le pese." En relación a este punto 10, los grupos y personas firmantes del presente manifiesto queremos exponer una serie de hechos: 1: La AIH, no tiene ni ha tenido ningún tipo de relación con nosotros. Tampoco tenemos interés alguno en mantener relaciones con dicha asociación. 2: No existe ninguna vinculación por nuestra parte con la AIH, ni apoyamos sus actividades, objetivos, acciones o cualquier otro aspecto de dicha asociación. 3: Ninguno de los abajo firmantes nos sentimos representados en forma alguna ni por la AIH, ni por ninguno de sus miembros, incluyendo su presidente. 4: La mención a "escasos grupos españoles", en ningún momento hace referencia a los grupos que firmamos este manifiesto, aunque formemos parte de la scene española. 5: No descartamos la posibilidad de que existan otras personas o grupos, no firmantes de este manifiesto, que puedan estar relacionados o vinculados con la AIH de algún modo, aunque desconocemos su existencia. Así mismo, queremos expresar nuestro deseo de que en próximas declaraciones, de esta misma asociación, o de cualquier otra persona o colectivo, en las que pudieran aparecer referencias del estilo a la citada en el punto 10, se intente dejar a un lado la ambigüedad y hacer referencia a grupos y personas concretas, para no confundir ni inducir a apreciaciones que no sean ciertas. Por último, esperamos que estas líneas sean lo mas aclaratorias posibles, y despejen cualquier tipo de duda que pudiera haber surgido a raíz de la postura mantenida por la AIH sobre nuestra posible relación con ellos. Reciban cordiales saludos. Firmado: Kernel PaniK !Hispahack PhonePhreakPhun 7a69 ezine CPNE Akelarre Undersec TDD t0s