Are We Sexy?

"When security is not your beretta"

Fri Dec 30 12:46:28 CET 2005

New release of unhide that includes scanner for detecting busy pids that are being used by the "ev1l" processes (pids space ocupation bruteforcing). We want to thanks ICEHOUSE for releasing a new version of this nice tool. Try unhide now!

Mon Dec 19 16:59:34 CET 2005

dab proudly presents an advisory + tool for xmas. The advisory shows some new Cerberus Helpdesk vulnerabilities (blind sql injection), you can read it clicking HERE. The new tool is a blind sql injection bruteforcer, useful for finding usernames, versions and other stuff, it supports dictionary lists and bruteforce attack, it's a really nice tool, try it!. A presentation is also available. It explains the bugs and how to use the tool video demo

Thu Nov 17 15:03:11 CET 2005

ICEHOUSE released a new version of unhide. Unhide is a forensic tool for detecting hidden process in Unix systems by two ways, one of them is to compare /proc vs /bin/ps output (like chkrootkit) and the other one is a new teeqneeq using syscalls. The new version is also able to detect hidden UDP & TCP ports hidden by the rootkit. You can fetch unhide clicking here

Wed Nov 11 21:42:23 CET 2005

Available rpm package of kernel 2.6.14 grsec without modules support. Please read carefully the instructions (readme.txt) and dont istall it before build your own system configuration. Download area

Thu Nov 10 11:36:24 CET 2005

We want to thanx again our friend df@etnies for the website design. Seems everybody wanna look like !dSR. Here we have some gruppies: mbytesecurity and teamsecurity

Note: We have no relationship with those n00bs, we just spanked them a little. More info mbytesecurity and

Tue Sep 27 10:38:12 CEST 2005

Released the advisory about a denial of service vulnerability against some nokia devices. The bug was found by dab and presented on the bluetooth security talk in the NcN congress ( The advisory is available at the explt+advs section: nokia-DoS-obex.txt . The NcN presentation will be publish very soon, in /stuff/texts/

NcN Martial Arts Kombat (Military Part); after serverals beers, some Hax0rcito's crew members died unexpectly, despite several of our soldiers disapeared we do not know if in company of Tito's gogo or in some battle. We also remember an exconvict mexican haxor trying to pen-test some chicks at the disco (regards alt3kx). Note: No animals have been harmed during the tests

Fri Aug 26 09:20:13 CEST 2005

RoMaNSoft: I tested existing exploits for PnP bug on my W2k SP4 machine (Spanish) and they didn't work ("services" process is crashing but I got no shell). So I did a quick review with Olly and I realized that umpnpmgr.dll is being loaded at a different base address. In Spanish systems this base address is 0x76770000 but current exploits are assumming (I guess) 0x767a0000. Then I did a quick hack to HOD's exploit and it worked perfectly. I also modified Metasploit's module and included a target for Spanish systems. File name and location: ms05_039_spanish.tgz in explt+advs section.

Wed Aug 24 15:42:47 CEST 2005

We changed folder distribution in /stuff/ section, to make easier finding the stuff, maybe one day we will add some html with descriptions of each file...

Tue Aug 23 16:02:20 CEST 2005

Bruteforce tool for Oracle databases, coded in perl by dab. Filename: in /stuff/olds section. Enjoy!

Wed Jul 27 00:16:48 CEST 2005

Some "funny" shit about phrack information leak is published in stuff/fun/phrack. Enjoy!

Fri Jul 22 14:29:39 CEST 2005

Hugo V. Caramés of INFOHACKING (lol) contacted !dSR and asked us about deleting all his personal data and pictures. We reacted very kindly removing tlf number, address and his pic... More info stuff/fun/fishface/hugo.txt (in spanish).

Wed Jul 6 21:44:48 CEST 2005 its an exploit for the Drupal Code Injection vulnerability (SA-2005-002) you can download it from the /STUFF/olds section. Author: dab

Fri Jul 1 03:02:51 CEST 2005

WTF? xmlrpc exploit released by ilo-- ¿?¿? This exploit should work against drupal, postnuke, tikiwiki, b2evolution ... and other stuff that use xmlrpc implementation. As ussual you can get it in /STUFF/olds ( Sorry to the blackhat community, but its summer and skiddies should have fun after exams.

Thu Jun 30 17:10:46 CEST 2005

"Skype for Windows - Now anti-debug free!" Yep, Skype is still free. Don't panic! :-) But people who have installed debuggers like SoftICE cannot enjoy Skype. Why? Blame Skype authors: "Skype is not compatible with system debuggers like SoftICE". Oh my God! They don't trust crackers! No problem, we have released a patch to solve this ;-)". You can download it in /STUFF/olds section.

Thu Jun 30 00:44:28 CEST 2005

Exploit for new phpbb vulnerability done by dab, you can fetch it in /STUFF/olds/ filename:

Thu Jun 23 20:13:00 CEST 2005

Unhide is a forensic tool for detecting hidden process in Unix systems (tested on Lnx, Sol and BSD). It implements two ways, one of them, comparing /proc VS /bin/ps and the other one is a new teeqneeq using syscalls. Unhide.tgz is available in /STUFF/olds/, unhide.c works on *Unix* and Linux 2.4 and unhide-linux26.c is specific for linux 2.6. This tool was coded by ICEHOUSE. Thx bro.

Mon Jun 20 19:57:04 CEST 2005

Latest bash+syslog rpm for fedora core 4 is available in /STUFF/rpms/ .

Fri Jun 17 01:20:11 CEST 2005

Released "Quick Tunneling IP over DNS guide" v0.2 by dab (thx feeble). Versions in spanish and english are available in: /STUFF/txt/ dns-tunnelingv0.2 -es.txt and -en.txt.

Mon May 30 10:57:25 CEST 2005

!dSR released 2 proof of concept cracking tools for fwbuilder 2.0.3 and sawmill 7.1.5. The keygen and patcher, are for educational pourposes only. Please, if you like the software buy it! ;). !dSR cannot be responsible of any bad use of this tools. The files are in STUFF/olds; fwbcrack_2_0_3_patch_by_dSR.rar and Sawmill_7_1_5_keygen_by_dSR.rar.

Sat May 28 14:58:34 CEST 2005

RewritingProxyTME is a powerful Perl module intended to be used with Apache + Mod_perl in order to provide a full "Reverse Proxy" implementation. Available in /STUFF/olds Thx to RoMaNSoFt.

Fri May 27 11:51:35 CEST 2005

Some of our guys will be in both of this next events; NcN - and tecnoatlantico - .

Wed May 25 16:52:41 CEST 2005

The Spring c0n was celebrated with lot of assistants; Pluf, dreyer, ICEHOUSE, NAISMITH, Talli, YeYu, g0tx0, zeroxt, Pci, ergosum, RoMaNSoFt, bladi, dab, DS, hgates, k4dy, GriYo, keenan, NunoTreez, Patrice, Ana, Piere, Isabella, at4r, Mari, mitrein, Mabel, jaxp, Crg and a strange fake-chinesse-girl... We still missed some guys.

Some of them are representative staff of; 7a69ezine, 29A, whitehack, viejaguardia, NocOnName, haxorcitos and !dSR. Pics are available in the internal mailing list.

Wed May 11 13:02:52 CEST 2005

The next !dSR c0n (Spring c0n) is scheduled to 21th of May, please assistants should confirm by mailing list.

Tue Apr 12 23:00:54 CEST 2005

awstats.php available in STUFF/olds/, (configdir xpl with proxy support, thx DS).

Mon Apr 11 20:00:41 CEST 2005

DS`s PNphpBB.php xpl, is available now in STUFF/olds/PNphpBB.php

We deleted news from year 2004, main page is starting from Jan 2005. Olds are available in

Mon Apr 11 03:54:37 CEST 2005

Kernel SRPM Updated (/STUFF/rpms/kernel)

New paper released in STUFF/txt section. Name=dns-tunneling.txt Author=dab LANG=es

Thur Apr 7 22:54:24 CEST 2005

Last official c0n (or not ...) more info:

Wed Jan 26 19:02:18 CET 2005 was owned by the pr0j3kt m4yh3m -> mirror /STUFF/fun/sindominio

Sun Jan 2 13:55:56 CET 2005

RainbowCrack project is over, so no more mails are accepted.

  • /2004 news/