Invitation for DEF-CON Chennai (DC602028) Meet

Invitation for DEF-CON Chennai (DC602028) Meet

We like to invite all the Like Minded People, who are interested in Cyber Security to attend the meet.

We are DEF-CON registered Group. 

Our Group ID is DC602028

[ Tickets for the Meet]

We have very limited tickets for the DEF-CON Chennai(DC602028) Meet.

For General Public 700 INR 

For Students 500 INR

To book the ticket mail to dc602028@gmail.com

[ Time of the Meet ]

On 11th September 2011

From 2:30 PM to 7PM

[ Venue of the Meet ]

The Venue is going to be at Le Waterina Hotel, a 4 Star Resort.

Le Waterina – The Boutique Hotel

No 35 Kaveri Nagar (near Bella Ciao)

Waterland Drive,Thiruvanmiyur

Kottivakkam Beach.Chennai 600041.

Kernel.org Server Rooted and 448 users credentials compromised

Kernel.org Server Rooted and 448 users credentials compromised

The main kernel.org page is currently carrying a notice that the site has suffered a security breach. "Earlier this month, a number of servers in the kernel.org infrastructure were compromised. We discovered this August 28th. While we currently believe that the source code repositories were unaffected, we are in the process of verifying this and taking steps to enhance security across the kernel.org infrastructure." As the update mentions, there's little to be gained by tampering with the git repositories there anyway. The infection occurred no later than August 12 and wasn't detected for another 17 days. The systems were infected by an off-the-shelf, a self-injecting rootkit known as Phalanx that has attacked sensitive Linux systems before.
What happened?

• Intruders gained root access on the server Hera. We believe they may have gained this access via a compromised user credential; how they managed to exploit that to root access is currently unknown and is being investigated.
• Files belonging to ssh (openssh, openssh-server and openssh-clients) were modified and running live.
• A trojan startup file was added to the system start up scripts
• User interactions were logged, as well as some exploit code. We have retained this for now.
• Trojan initially discovered due to the Xnest /dev/mem error message w/o Xnest installed; have been seen on other systems. It is unclear if systems that exhibit this message are susceptible, compromised or not. If developers see this, and you don't have Xnest installed, please investigate.
• It *appears* that 3.1-rc2 might have blocked the exploit injector, we don't know if this is intentional or a side affect of another bugfix or change.

What Has Been Done so far:

• We have currently taken boxes off line to do a backup and are in the process of doing complete reinstalls.
• We have notified authorities in the United States and in Europe to assist with the investigation
• We will be doing a full reinstall on all boxes on kernel.org
• We are in the process of doing an analysis on the code within git, and the tarballs to confirm that nothing has been modified.

Read More at https://www.kernel.org

Slowhttptest (HTTP DoS Vulnerability Testing Tool)

Slowhttptest is a Slow HTTP DoS attacks rely on the fact that the HTTP protocol, by design, requires requests to be completely received by the server before they are processed.

Supported features for Slowhttptest:-

• Slowing down either the header or the body section of the request
• Any HTTP verb can be used in the request
• Configurable Content-Length header
• Random size of follow-up chunks, limited by optional value
• Random header names and values
• Random message body data
• Configurable interval between follow-up data chunks
• Support for SSL
• Support for hosts names resolved to IPv6
• Verbosity levels in reporting
• Connection state change tracking
• Variable connection rate

Detailed statistics available in CSV format and as a chart generated as HTML file using Google Chart Tools. This tool actively tests if it’s possible to acquire enough resources on an HTTP server by slowing down requests to get denial of service at the application layer. Thanks to Sergey Shekyan, Developer Web Application Scanning at Qualys 

How to Use:- 

./slowhttptest -c 1000 -B -g -o my_server_stats -i 110 -r 200 -s 8192 -t FAKEVERB -u https://example/resources/index.html -x 10

To Download Slowhttptest Click Here

A Man Has Been Busted While Hacking Into BJP Leaders Facebook Account

A man has been arrested in connection with the hacking of Facebook accounts of the son and daughter of a BJP leader, who was slapped by local SSP Raghubir Lal after he complained of delay in police action, an official said on Sunday. Jagan Bansal, a resident of Panipat, was apprehended on Saturday and sent to 14-day judicial custody for allegedly breaking into the Facebook accounts of the offsprings of BJP media executive SP Singh two months ago, SHO Kotwali Vivek Ranjan Rai said. 
Rai said police are searching for Bansal’s son Vishal, who is also suspected to be involved in the crime. SSP Ghaziabad Raghubir Lal on Friday had slapped Singh who went to the former’s office to complain about delay in the police action in the case. The incident sparked protests by partymen following which Lal rendered an unconditional apology.

SQl-i Vulnerability Found By Chirag Singh on 7 Websites (Govt Of Pakistan, Nepal & Bhutan)

SQl-i Vulnerability found by Chirag Singh on 7 websites including Pakistan University, Pakistan Govt. Nepal Govt. Nepal TV, Bhutan Govt. and so on. 


Bahauddin Zakariya University, Multan, Pakistan
Vulnerable Website:- 
http://www.bzu.edu.pk/
Vulnerable link:- 
http://www.bzu.edu.pk/departmentindex.php?id=48

Gender Justice through Musalihat Anjuman Project(GJTMAP)

Vulnerable Website:-
http://gjtmap.gov.pk/
Vulnerable link:- 
http://gjtmap.gov.pk/ngos/sb_bro_ngo.php?id=14


Mercantile Communication Pvt. Ltd.
Vulnerable Website:- 
http://www.mos.com.np/
Vulnerable link:- 
http://www.mos.com.np/description.php?id=115


Nepali Videos-Live TV
Vulnerable Website:- 
http://www.npvideo.com/
Vulnerable Link:- 
http://www.npvideo.com/channel.php?id=1


National Statistic Bureau of Bhutan
Vulnerable Website:- 
http://www.nsb.gov.bt/
Vulnerable link:-
http://www.nsb.gov.bt/index.php?id=11


Small & Medium Enterprises Development Authority of Pakistan
Vulnerable Website:- 
http://www.smeda.org.pk/
Vulnerable link:- 
http://www.smeda.org.pk/main.php?id=34


Travelling Birder-Travel agency of Nepal
Vulnerable Website:- 
http://www.travellingbirder.com/
Vulnerable link:- 
http://www.travellingbirder.com/tripreports/view_birding_tripreport.php?id=220

Threat:- 
1700+ user data have been dumped and have been uploaded to pastebin here is the link
link of pastebin- http://pastebin.com/yKhASf28

63 Website's Defaced By PakH3X0r

63 Website's Defaced By PakH3X0r

A Pakistani Hacker Called PakH3X0r Has Defaced 63 Website's The Sites Which Where Defaced Are Below:

1. http://myproperty.co.ke/hacked.html
2. http://www.bofsource.com/hacked.html
3. http://cottonsnshades.com/hacked.html
4. http://oriyatoday.com/hacked.html
5. http://namgreentech.com/hacked.html
6. http://onlineseoreports.com/hacked.html
7. http://www.riturajgroup.com/images/eventsimage/9/hacked.html
8. http://demandoffer.com/hacked.html
9. http://bstoursworld.net/hacked.html
10. http://alphastonegallery.com/hacked.html
11. http://daniawholesale.com/hacked.html
12. http://florescent.in/hacked.html
13. http://glensteasandspices.com/hacked.html
14. http://hariharanhospitals.com/hacked.html
15. http://kdandi.com/hacked.html
16. http://medicaldevicesinternational.net/hacked.html
17. http://morgannasalchemy.com/hacked.html
18. http://nasunlimiteddoors.com/hacked.html
19. http://thegracefulconnection.com/hacked.html
20. http://uniqueandtrendyjewelry.com/hacked.html
21. http://www.cityproperties.info/hacked.html
22. http://www.makemycareer.com/hacked.html
23. http://www.mafixfoods.com/multi_files/hacked.html
24. http://blueart.in/admin/upload/hacked.html
25. http://alphamortgage.ca/hacked.html
26. http://appearancebeautyclinic.com/hacked.html
27. http://atgraphia.com/hacked.html
28. http://canadawaterfall.com/hacked.html
29. http://citypaving.ca/hacked.html
30. http://www.csttrucking.com/hacked.html
31. http://fairdealtentrental.com/hacked.html
32. http://fastcomputerrepairs.ca/hacked.html
33. http://frimusic.com/hacked.html
34. http://goldleafinsurance.ca/hacked.html
35. http://gpxi.ca/hacked.html
36. http://harjinderdairyfarm.com/hacked.html
37. http://ibmsindia.com/hacked.html
38. http://idealsign.ca/hacked.html
39. http://idealsignltd.com/hacked.html
40. http://indiauktalent.com/hacked.html
41. http://iworkgrafix.com/hacked.html
42. http://jaldsa.com/hacked.html
43. http://jmgcarrier.com/hacked.html
44. http://lahomeestates.com/hacked.html
45. http://luckygrafix.com/hacked.html
46. http://mipsedu.com/hacked.html
47. http://niiaht.com/hacked.html
48. http://oyedesidesioye.com/hacked.html
49. http://pecabroad.com/hacked.html
50. http://ramatools.com/hacked.html
51. http://richmondcabsltd.com/hacked.html
52. http://sandyssalon.ca/hacked.html
53. http://saraikhas.com/hacked.html
54. http://signstrader.com/hacked.html
55. http://speedierautobody.com/hacked.html
56. http://sukhjitkhaira.com/hacked.html
57. http://surreyfinedining.com/hacked.html
58. http://surreypartyrentals.com/hacked.html
59. http://surreysign.com/hacked.html
60. http://tejahomes.com/hacked.html
61. http://turbancoach.com/hacked.html
62. http://virkkitchens.com/hacked.html
63. http://yahoodeking.com/hacked.html