Re: PHP based defacing tool usage continue to rise

[Christopher Kunz <chrislist () de-punkt de>]

Mark Ryan del Moral Talabis schrieb:
> Hi,
> We have a copy of the "Defacing tool 2.0", would like to see a copy of
> the 2.5 too though.

The kids got their versioning wrong, perhaps to evade any filters for tool2 or
similar. All files are named *25 (tool25, style25, therules25), and some contain
version strings like "//The rules of Dtool - 2.5
". Yet the header for the original tool25.dat says

<!--
Defacing Tool 2.0 by r3v3ng4ns
revengans () gmail com
se for modificar o codigo, por favor, mantenha o nome de seus autores originais
e por favor, entre em contato comigo...

ae galera, serio, tem mta gente fdp q simplismente usa, nao seja soh um sucker
do script,
n seja um lammer imbecil, n seja o merda dum script kiddie, n seja um babaca,
ajude a melhora-lo tambem!!
-->

I will wait another 24 hours for the last requests to drip in, and then send out
the tarball to anyone who is interested in it.

--ck

-- 
http://www.de-punkt.de   [ chris () de-punkt de ]    http://www.stormix.de
PHP-Anwendungen sind gefährdet! SQL-Injection, XSS, Session-Angriffe,
CSRF, Commandshells, Response Splitting,... böhmische Dörfer? Dann gleich
"PHP-Sicherheit" direkt beim Verlag vorbestellen! http://www.php-sicherheit.de/

-------------------------------------------------------------------------
This List Sponsored by: Watchfire

Watchfire's AppScan is the industry's first and leading web application 
security testing suite, and the only solution to provide comprehensive 
remediation tasks at every level of the application. See for yourself. 
Download AppScan 6.0 today.

https://www.watchfire.com/securearea/appscansix.aspx?id=701300000003Ssh
--------------------------------------------------------------------------