Full Disclosure mailing list archives

Re: Re: Google is vulnerable from XSS attack

From: Tatercrispies <tatercrispies () gmail com>
Date: Fri, 9 Dec 2005 09:19:51 -0500

Guys, don't be haters. n3td3v found a CRITICAL HOLE in one of the
worlds biggest online products. He may not be the most popular face on
this list, but his reputation stands firm. And now he's proven
himself. You can't argue with that. It's solid. Those of you casting
disparagements need to look carefully in the mirror and consider what
you have contributed to this list. Have you found any XSS holes? Have
you found any SQL holes. You be lucky to find your own pie holes. No?
What? You've found no SQL injections? You're not a haxer. Sitting on
this list riding on the backs of real researchers like our man here.

It's indisputable. He has proven contacts, a proven track record, and
an ever growing war belt with TINY SHRUNKEN HEADS of the biggest
companies today hanging from it. Google. Yahoo. IBM. Linux.

The fellow may be lacking in personal skills, but most eccentric high
flyers seem to share that trait. Einstein couldn't hold a marriage. Or
like da Vinci and his oftentimes hard relationships with his young
assistants. Nicolas Tesla held groundbreaking ideas but was
discredited by two-bit hacks shouting him down from the sidelines. Hmm
does that sound familiar? Yeah, without researchers like n3td3v
working on these things, the whole system would just be falling apart
all willynilly. So I think it's time to start acting like
professionals. You want some cred, you've got to plug some holes. And
then keep on plugging some more, even after you think they're
completely plugged. Like MC Hammer did.

"There was a while when I was feeling like, 'Damn, if I'd just been
born black, I would not have to go through all this'." - Eminems

On 12/8/05, ghost <ghosts () gmail com> wrote:

lol, n3td3v, you are so pathetic. Exactly 1 lame XSS post and now
you're some sort of elite h4x0r, everyone who's googled knows how lame
you really are. You must be related to morning_wood. Lets post this
one last time....

--------------------------------------------------------
google: xploitable site:chat-help.co.uk
---------------------------------------------------------
---------------------------------------------------------
http://www.bigblueball.com/forums/showthread.php?p=159874#post159874

02-17-2005, 12:11 PM
n3td3v
Banned
Join Date: Aug 2004
Posts: 220

Don't delete my posts again, without asking or giving warning. A quick
e-mail to say your not happy with a post and ask me to modify or
delete it myself is too much to ask??

Trust me, if you want to be rude, i'll be rude back to you, and if you
keep doing it, i'll make sure this website gets hacked.

I've had enough of it, its happened more than once, I don't like being
treated the way you treat people.

You'll probably want to delete this thread too, cause you love
controlling people so much.

Last edited by DJHyperbyte : 02-17-2005 at 02:09 PM. Reason: Removed insults.

---------------------------------------------------------
---------------------------------------------------------
http://lists.virus.org/full-disclosure-0411/msg00907.html


FW: [Full-Disclosure] Shadowcrew Grand Jury Indictment
n3td3v n3td3v <[EMAIL PROTECTED]>
Wed, 17 Nov 2004 17:53:44 +0000

On Wed, 17 Nov 2004 11:41:20 -0600, Todd Towles
<[EMAIL PROTECTED]> wrote:

Well, it is given that posting to FD does give a

site exposure (good and

bad). But I wouldn't say that FD was the cause of

it..it was the illegal

activity that was the cause of it. We all know SCC

does some underground

stuff and they post here each time they move. So...I

wouldn't blame the

FD list for anything.


I wouldn't use the word blame? I think its a good
thing if
Full-Disclosure is helping to catch online criminals.
I don't know if
you like malicious hackers and other criminals, but
yeah.... I dislike
them. I would do anything in my power to stop online
crime, from
scriptkiddie stuff, to sex stuff,spam,scams, fraud,
terrorism and back
again.

I have no space for anyone thinking they are elite and
all the other
hacker scene crap. Its time to clamp down on the BS
thats on the net.

If I was in gov, I would shut a site down that looks
remotely
hax0rish, even if they've done nothing wrong. All
these crews and
hacker groups, fk them all. The net needs zero
tollerence with online
crime. Govs should have the authority to close
anything done because
they feel like it, without needing to prove shit.

I would even close IRC channels. Hackphreak on
undernet looks
harmless, but fk that. Close it anyway, its time to
get a tighter grip
on things.

Thanks,n3td3v

---------------------------------------------------------
---------------------------------------------------------
http://archives.neohapsis.com/archives/dailydave/2004-q4/0221.html

You know you're a moron if you have Dave Aitel laughing at you.

---------------------------------------------------------
---------------------------------------------------------
forums.chat-help.co.uk

n3td3v
Member
Member Group: Banned
Joined: 28-August 04
Active Stats
Total Cumulative Posts  4


Re-occuring theme...

---------------------------------------------------------
---------------------------------------------------------
"carbonize" forums, banned again..

n3td3v
post Oct 11 2004, 03:08 PM
Post #3

QUOTE(carbonize @ Oct 10 2004, 03:29 AM)
QUOTE(n3td3v @ Oct 9 2004, 08:18 PM)
Suggestion: stop acting like a wanker on sites like chat-help and grow
the fuk up.
*
Looked in a mirror lately?
*

Lamer you are a boring bastard with no skills. All you can post on
homepage is about lame gmail accounts five years after the novelty of
invites wore off.

You cannot hack to save yourself homo.

Running out of things to psot on homepage homo? Heh, i think so.

This website will die a sorry death because you have nothing worth saying.

---------------------------------------------------------
---------------------------------------------------------
* this is him, before being banned and using the name n3td3v

http://ourchat.org/forums/index.php?showuser=930

Viewing Profile: xploitable
xploitable

Everyone Needs A Cyber Security Pet In Life :)
Group Icon

Member Group: Banned
Joined: 3-February 04

---------------------------------------------------------
---------------------------------------------------------
nobody special
post Feb 3 2004, 04:20 PM
Post #6
Unregistered

ok, my email will be xploitable () reet us if anyone wants to crack the
password then go ahead.

*** after people saying that was stupid, then:

I know, i was being silly earlier. I was bored. I'll even give my IP
out to the public... 62.31.***.*** :D

---------------------------------------------------------
---------------------------------------------------------
HAHAHAHAHA

http://66.102.7.104/search?q=cache:G41IIJ49DbAJ:www.chat-help.co.uk/forums/index.php%3Fshowtopic%3D989+email+xploitable+site:chat-help.co.uk&hl=en&client=firefox-a

xploitable
Posted: Mar 13 2004, 07:07 PM

Yahelite while running All platform of Microsoft Windows to crash.


YAHELITE caused an invalid page fault in
module RICHED20.DLL at 015f:4800e4ef.
Registers:
EAX=00524b3c CS=015f EIP=4800e4ef EFLGS=00010246
EBX=0052518c SS=0167 ESP=00734724 EBP=00734784
ECX=00000000 DS=0167 ESI=00525180 FS=34b7
EDX=00577e10 ES=0167 EDI=00000000 GS=0000
Bytes at CS:EIP:
8b 01 f6 40 68 40 75 0b 8b 41 04 85 c0 75 ef 83
Stack dump:
480102b7 00000000 00525180 00524b3c 00000000 00000000 00000000
00000000 00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000


Have Fun ;-)

xploitable
Posted: Mar 13 2004, 09:42 PM

QUOTE (Chat-Help @ Mar 13 2004, 08:14 PM)
"i think he talking about the bug that was fixed not long"

I don't post old bugs, this is 0-day.



xploitable
Posted: Mar 13 2004, 09:57 PM


QUOTE (_chat_help_ @ Mar 13 2004, 09:50 PM)
"it in no way indicates either a bug in YahElite, or any form of
'boot' to crash YahElite."

Being ignorant will get you no where. This is caused by 0-day exploit.
---------------------------------------------------------
---------------------------------------------------------





On 12/7/05, n3td3v <xploitable () gmail com> wrote:

No one has seen any vulnerabilities by you. You have no justification
to even being 100 miles near this list, let alone comment on other
people and their postings.

On 12/7/05, InfoSecBOFH <infosecbofh () gmail com> wrote:

Way to blow it out of perportion kiddie....

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Re: famouse n3td3v quotes!, (continued)
- - - Re: famouse n3td3v quotes! fok yo (Dec 08)
    - RE: famouse n3td3v quotes! Scott Schappert (Dec 08)
    - Re: famouse n3td3v quotes! InfoSecBOFH (Dec 08)
    - Re: famouse n3td3v quotes! Michael Tewner (Dec 08)
    - Re: famouse n3td3v quotes! Paul (Dec 09)
    - Re: famouse n3td3v quotes! Kevin Ponds (Dec 08)
    - Re: famouse n3td3v quotes! Micheal Espinola Jr (Dec 08)
    - Re: famouse n3td3v quotes! Jeff Rosowski (Dec 19)
    - Re: Re: Google is vulnerable from XSS attack Mike Hoye (Dec 07)
    - Re: Re: Google is vulnerable from XSS attack ghost (Dec 08)
    - Message not available
    - Re: Re: Google is vulnerable from XSS attack Tatercrispies (Dec 09)
    - Re: Re: Google is vulnerable from XSS attack sk / GroundZero (Dec 09)
    - Re: Re: Google is vulnerable from XSS attack n3td3v (Dec 09)
    - RE: Re: Google is vulnerable from XSS attack Paul (Dec 07)
    - RE: Re: Google is vulnerable from XSS attack Joseph Pierini (Dec 07)
- Re: Re: Google is vulnerable from XSS attack sk / GroundZero (Dec 07)