Re: [Full-disclosure] Buying Web Malware Samples
He would be better off starting up a VirusTotal / Anubis clone then report all the viruses to be undetectable while he keeps all the samples ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] University of Central Florida Multiple LFI / Dirty Indian rant
Don't worry with your grasp of English, you will grace AOL tech support with your wonderful communication skills. Maybe one day, they'll make you Level 2. Why do you keep on using homosexual slurs towards me? Do you get your advances declined in India? You are exactly correct with your statement that "I am out of it" because you are. You are out of your mind. Please stop butchering the English language. We already have MustLive and his Engrish skills hard at work. Maybe you guys could chip in on splitting the costs of an Engrish to English class. On 02/21/2011 03:14 PM, Nikhil Mittal wrote: > > You really seems to be robbed by some Indian from your job. Anyways, I > am a regular reader of FD and know idiots like you who poke their noses > _only_ in nonsense. I talk only Info Sec here and I am a LOT better than > fags like you. My mistake I got into argument with waste like you. I am > out of it. > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] University of Central Florida Multiple LFI / Dirty Indian rant
I apologize. When I said "third world" I meant to say "terd world" due to India's lack of toilets. It's sad to think Romania is a step up from India with the advancements in toilet and sewage treatment. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] University of Central Florida Multiple LFI / Dirty Indian rant
My name is Endia Pakistan. I am from Pakistan I want to know why you dirty, dirty Indian mud people are doing here in America. I violate the corpses floating in the Ganges River. Why does India have so many people but so few toilets and they waste their money by putting the likes of you online? On 02/21/2011 08:48 AM, Nikhil Mittal wrote: > > >>Madhur Ahuja and "Hack Talk" are obviously from third world countries > >>and are only doing this for publicity > > > So fag, what you would have done it for ? Free gay sex with > Administrators from the University ? > > You felt bad if kids from so called "Third World" countries used FD for > some adventure. Come on get past this "Third World" mentality. > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] University of Central Florida Multiple LFI
Shawn, "Hack Talk" would rather fire off 5 emails than pick up a phone, make a phone call and call someone from the WHOIS information since by his own admission he's a Florida resident who lives near UCF or maybe he's worried about law enforcement after all ;-) On 02/19/2011 12:46 PM, Hack Talk wrote: > Hey Shawn, > > I typically follow the Rain Forest Puppy Responsible Disclosure Policy > which I'm sure many people have read. I even extended the contact time > to 2 weeks since Universities are quite busy places. During those 2 > weeks I personally emailed them back 5 times and did not get a single > response back. This is not the first time the University has neglected > to respond to vulnerabilities affecting their sites and as such I > decided that enough was enough and that by publicly disclosing these > vulnerabilities they would be forced to patch their code. I've worked > with many Universities in the past to patch there vulnerabilities and > they have responded typically within 12 hours of me sending my initial > email alerting them to the issue. Being a .edu does not exempt you from > hackers wanting into your system and it does not mean you can get away > with having gaping holes in security for months without patching them. > > Full Disclosure as a methodology is about forcing people to fix their > holes which is exactly what I was hoping would happen to UCF. > > Thanks for doing your best to extinguish the flamewar that was starting :D. > > > Luis Santana > > > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] University of Central Florida Multiple LFI
Might as well register a new email account too because "hacktalkblog" is just as obvious as posting a link to your site. I hope UCF calls FDLE and you can explain to Special Agent Veazy and others about your "research" On 02/19/2011 12:04 PM, Hack Talk wrote: > I actually live close to the University of Central Florida and after > countless attempt to contact both their infosec team, the "tech > rangers", and their personal web developers with no contact back or > patching of these vulnerabilities I decided to post these up on FD. > There are still many, _many_ more vulnerabilities which I have yet to > disclose as I'm still giving them a chance to patch them. > > Also, I usually remove my website from the email as it's part of my > standard email signature, guess I just couldn't be bothered to do it > when I sent in this vulnerability. I'll be sure to be better about > removing it so people aren't so butthurt. > > > Luis Santana > > > > On Sat, Feb 19, 2011 at 11:48 AM, Eyeballing Weev > mailto:eyeballing.w...@gmail.com>> wrote: > > Madhur Ahuja and "Hack Talk" are obviously from third world countries > and are only doing this for publicity, much like how Turks and Romanians > "hack" into websites for defacement purposes. Same concept just applied > differently. > > On 02/19/2011 11:45 AM, Shawn Merdinger wrote: > > Hi, > > > > At the risk of being ridiculed here, I'll point out that UCF does > have > > a Infosec office and a incident response POC. > > > > https://publishing.ucf.edu/sites/itr/cst/Pages/IncidentResponse.aspx > > s...@mail.ucf.edu <mailto:s...@mail.ucf.edu> > > > > fwiw, security folks in .edus are at the low-end of this industry's > > pay-scale and it's difficult to find/retain qualified people, not to > > mention adequate budget for purchasing (even more) crappy security > > products and almost no budget for professional development like > > training and conferences. > > > > I would expect there are more challenging targets out there, were one > > inclined... > > > > Cheers, > > --scm > > > > > > On Sat, Feb 19, 2011 at 06:04, Madhur > Ahujamailto:ahuja.mad...@gmail.com>> wrote: > >> > > http://chemistry.cos.ucf.edu/belfield/index.php?page=../../../../../../../../../../../../../../../etc/passwd%00 > >> > >> On Sat, Feb 19, 2011 at 11:38 AM, Hack > Talkmailto:hacktalkb...@gmail.com>> wrote: > >>> > >>> Found these and thought I'd share: > >>> > >>> -==- > >>> > >>> > > http://excel.ucf.edu/index.php?p=../../../../../../../../../../../../../../../../../../../../etc/apache2/apache2.conf%00 > >>> > >>> > > http://chemistry.cos.ucf.edu/belfield/index.php?page=../../../../../../../../../../../../../../../etc/httpd/conf/httpd.conf%00 > >>> -==- > >>> Let me know if you do anything fun with 'em > >>> > >>> Luis Santana - Security+ > >>> Administrator - http://hacktalk.net > >>> HackTalk Security - Security From The Underground > >>> > > > > ___ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] University of Central Florida Multiple LFI
Madhur Ahuja and "Hack Talk" are obviously from third world countries and are only doing this for publicity, much like how Turks and Romanians "hack" into websites for defacement purposes. Same concept just applied differently. On 02/19/2011 11:45 AM, Shawn Merdinger wrote: > Hi, > > At the risk of being ridiculed here, I'll point out that UCF does have > a Infosec office and a incident response POC. > > https://publishing.ucf.edu/sites/itr/cst/Pages/IncidentResponse.aspx > s...@mail.ucf.edu > > fwiw, security folks in .edus are at the low-end of this industry's > pay-scale and it's difficult to find/retain qualified people, not to > mention adequate budget for purchasing (even more) crappy security > products and almost no budget for professional development like > training and conferences. > > I would expect there are more challenging targets out there, were one > inclined... > > Cheers, > --scm > > > On Sat, Feb 19, 2011 at 06:04, Madhur Ahuja wrote: >> http://chemistry.cos.ucf.edu/belfield/index.php?page=../../../../../../../../../../../../../../../etc/passwd%00 >> >> On Sat, Feb 19, 2011 at 11:38 AM, Hack Talk wrote: >>> >>> Found these and thought I'd share: >>> >>> -==- >>> >>> http://excel.ucf.edu/index.php?p=../../../../../../../../../../../../../../../../../../../../etc/apache2/apache2.conf%00 >>> >>> http://chemistry.cos.ucf.edu/belfield/index.php?page=../../../../../../../../../../../../../../../etc/httpd/conf/httpd.conf%00 >>> -==- >>> Let me know if you do anything fun with 'em >>> >>> Luis Santana - Security+ >>> Administrator - http://hacktalk.net >>> HackTalk Security - Security From The Underground >>> > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] HBGary Mirrors?
Cryptome.org is your friend. John Young is pretty much bulletproof when it comes to file hosting and laughs at DMCA takedown requests. On 02/18/2011 11:24 AM, ck wrote: > So, the FEDs shut down all mirrors of the HBGary files - or didn't they? > > ck > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Vulnerability in reCAPTCHA for Drupal
It's either he floods f-d with his "vulnerabilities" or he has to go out in the real world to farm dirt for export to the West. On 02/17/2011 12:54 PM, Zach C. wrote: > fucking *two days*? Is that even enough time for the vendor to acknowledge? > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] from hbgary: stuxnet, WL attack, Psyop and Anonymous trackdown
My affectionate nickname for you was and currently still is "Blowjob Becki" On 02/17/2011 10:36 AM, Kain, Rebecca (.) wrote: > I had sex with him, obviously. that's how he got my picture to post here > -becki ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] from hbgary: stuxnet, WL attack, Psyop and Anonymous trackdown
What's up you HPOA? Hot Piece Of Ass On 02/16/2011 02:54 PM, Kain, Rebecca (.) wrote: > Can we get a picture of that like we all got of me? > > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] from hbgary: stuxnet, WL attack, Psyop and Anonymous trackdown
You look really good in heels and a skirt, nice legs also. On 02/15/2011 04:08 PM, Kain, Rebecca (.) wrote: > Of course that's where I got it from. A woman couldn't be *that* > creative > > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] from hbgary: stuxnet, WL attack, Psyop and Anonymous trackdown
How about under threat of receiving a shiner? On 02/15/2011 04:02 PM, Kain, Rebecca (.) wrote: > Only if you call me "your little sudo" > > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] from hbgary: stuxnet, WL attack, Psyop and Anonymous trackdown
What do you expect from a woman? Rebecca, kindly make me a sandwich On 02/15/2011 03:44 PM, Cal Leeming [Simplicity Media Ltd] wrote: > I did apologise, no need to drag it out into the yard and beat it with a > stick lol. > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [AntiSnatchOr] Drupal <= 6.20 insecure Captcha defaults PoC
Some guys pay more for women with "extra hardware". What are you doing later? ;-) > What the hell :) > I'm a man mate. > > Michele is like Michael. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] from hbgary: stuxnet, WL attack, Psyop and Anonymous trackdown
Wanna hang out later, Rebecca? I got some cocaine, LSD and pills that if we get caught I will claim they are not mine and the police planted them on us. On 02/15/2011 10:30 AM, Kain, Rebecca (.) wrote: > I haven't understood a word of this so far > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [AntiSnatchOr] Drupal <= 6.20 insecure Captcha defaults PoC
On Mon, Feb 14, 2011 at 4:54 PM, MustLive wrote: > Hello Michele! > > Few days ago I saw your advisory about Drupal's captcha. It's interesting > advisory, but I have one note concerning it - your research is very close > to > mine ;-) (it concerns similar holes which I found before you). > Quit being sexist. Is this because of a woman disclosed this? > Second, in your PoC (bruteforce exploit for Drupal) you're talking about > Brute Force hole. But in title you said about insecure Captcha (which is > Insufficient Anti-automation). These are different classes of > vulnerabilities, like in WASC TC - Brute Force (WASC-11) and Insufficient > Anti-automation (WASC-21). So your title is not fully correct. > Again, more sexism by you. > All these holes in Drupal (from my 4 advisories concerning Drupal) will be > disclosed soon. It was planned for February, so at this week I begun > disclosing these holes. > > So, Michele, good luck in your security researches. > Good luck to anyone reading your Engrish ridden "advisories" ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Multiple vulnerabilities in SimpGB
You did not have relations with the site? If you did, I would trust you wore protection. On 02/07/2011 04:35 PM, MustLive wrote: > Hello antisnatchor! > > No, I've not :-). > > When some mothefucker hacked ANOTHER site (to which I had no relations) on > the same server, rooted the server of my hoster and put lame and lying > message to my web site and also to the mailing list - I not considering it > as a deface ;-). It's only lame lying bullshit. > > And when Laurent is believing in such bullshit and trying to use it as an > argument, then it just shows his level of "intelligent". About which I've > told already. So, antisnatchor, don't believe in bullshits and nonsense. > > Best wishes& regards, > MustLive > Administrator of Websecurity web site > http://websecurity.com.ua > > - Original Message - > From: Michele Orru > To: laurent gaffie > Cc: MustLive ; full-disclosure@lists.grok.org.uk > Sent: Sunday, February 06, 2011 12:43 PM > Subject: Re: [Full-disclosure] Multiple vulnerabilities in SimpGB > > > ahaah. > Nice reply Sparky. > MustLive, seems you've been defaced :-) > > antisnatchor > > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Multiple vulnerabilities in SimpGB
If you announce you're going to block someone, doesn't that just entice them to just register throw away email accounts to send you messages because your first reaction is to block it? How about signing you up for gay porn? Political mailing lists? On 02/04/2011 04:49 PM, MustLive wrote: > 5. I don't need any not serious letters from you, so don't waste your time > writing me anymore, because I've put your e-mail into blacklist. Spend your > time for good things. > > Best wishes& regards, > MustLive > Administrator of Websecurity web site > http://websecurity.com.ua > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] [VIDEO] Keylogger, RecordMic and Shell
$ host insecurityresearch.com insecurityresearch.com has address 201.235.253.16 inetnum: 201.235.128/17 status: allocated owner: CABLEVISION S.A. ownerid: AR-CASA10-LACNIC 20 sfa16.servidoraweb.net (201.235.253.16) Are you hosting this on your home cable connection? What are your costs? You can get an unlimited 10Mbps connection (3.3TB) with 20gb of disk space on a VPS for $5 per month ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Career Criminal Andrew Auernheimer / Weev Is In Jail Right Now
I guess you didn't get the memo about weev being in jail. http://online.wsj.com/article/SB10001424052748703954004576089791547299456.html On 01/18/2011 12:48 PM, coderman wrote: > On Sun, Jan 2, 2011 at 3:57 AM, phocean wrote: >> Here we go again ! This list looks so crazy... >> ... >> Or, my 2 cents : one schizophrenic guy is behind all this : n3td3v, >> Musntlive, Dave Nett, Andrew, Weev, ... > > hah, you wish! at least it will be a little more quiet without > Augmammer spamming for a while ... > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] How long was the twitter outage?
See also Xanga after Myspace came into town and Myspace when Facebook appeared on the scene. Better cash in on Twitter ASAP and move on to your next startup. On 12/24/2010 09:15 AM, Josey Yelsef wrote: > As much as your revenue stream. > > Is their a security 0day for being a spoiled, rotten manchild? > > http://valleywag.gawker.com/5317292/twitter-co+founder-moving-out-of-minimalist-poets-cottage/gallery/ > > Enjoy your bubble while it lasts moron. Google the definition of fad. > It'll be sweet justice when you're homeless and the next ghost town. > > You are a worthless piece of shit. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] How long was the twitter outage?
More like Justin Beiber's nodes failed On 12/23/2010 04:39 PM, John Adams wrote: > A small number of users were affected by the failure of specific > database node. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Linux kernel exploit
Admitting you will not feed the trolls show that you have fed the trolls at some point in time and have fell for a troll. There is no way to properly "damage control" this statement. YHBT YHL HAND On 12/13/2010 04:19 PM, Cal Leeming [Simplicity Media Ltd] wrote: > > No more troll feed for you! > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Bug on Facebook
Has a large 11mb .avi file in it, a text file with what looks like phished Facebook credentials and looks like a copy of a Facebook phishing site. I haven't looked at the HTML nor the avi. On 12/13/2010 08:23 AM, Martin Aberastegue wrote: > I would be nice if you provide additional information about this > instead of just a link. > > > -- > Martín Aberastegue > http://www.martinaberastegue.com/ > > > > On Sun, Dec 12, 2010 at 7:08 PM, Jbyte Security wrote: >> hi I find an bug ne Facebook here is the POC >> >> http://www.mediafire.com/?2mfvk2emjfk1mpq >> Saludos Jbyte >> >> ___ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ >> > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] New Source Code Vulnerability Scanner (Free 30 Day Trial)
Good job. When I saw the patch and what was in there, I got a good laugh. Merry Christmas to the ProFTPD crew! ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Android and malware
Some people are entitled to their valid opinion while others should keep
their mouths shut to look less stupid. Mr. Walton should heed the second
piece of advice.
On 11/24/2010 06:03 AM, Jeffrey Walton wrote:
> Public officials usually deserve all the misfortune they receive due
> to their {mal|mis}feasance.
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Android and malware
I have found Mobile Spy off of a Google result. It sounds like how he was infected - the attachment opened and nothing happened. My friend said he opened the attachment multiple times, which might explain the bad echo. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Android and malware
Hello My friend is a public official and he believes his Android (HTC Dash) was bugged/infected by someone through a text message attachment. Has anyone seen anything commercially available or available online to do this? I don't know anything about smartphones but was wondering if anyone has Android experience with something like this. Does the Android have startup functions like Windows's Startup folder where we can investigate? The issues are a real bad echo, the phone acting really weird such as the battery life going bad and the phone lighting up on the table during it being idle. Thank you ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Hijack SSL with a Man-In-The-Middle Attack
LOL I guess the README in sslstrip was too hard for some people On 11/23/2010 04:35 PM, Adam Behnke wrote: > Hello pen testers, if you are interested in learning how to Hijack SSL > with a Man-In-The-Middle attack, check out the latest InfoSec Institute > article on the subject: > > http://resources.infosecinstitute.com/mitm-using-sslstrip/ > > Our instructor covers how to perform the SSL attack, which tools you > will need, how to configure them, and the technical details of how the > attack works. > > This article is a follow up to our tutorial on Man-In-The-Middle attacks: > > http://resources.infosecinstitute.com/video-man-in-the-middle-howto/ > > I hope this is useful for you guys! > > > > ___ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Open Letter to Lee Vartan, Assistant United States Attorney in regards to the Goatse Security iPad case.
Notice how weev fails to mention his drug charges, like always, and if he does he claims it's some kind of FBI setup like the FBI put LSD in his house plus crack cocaine but he was high as a kite at Toorcon on LSD claiming Firefox bugs for media attention. Did you know most oxycotin addicts smoke crack cocaine when they cannot get their pills? ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] New tool for pentesting
I was just commenting on the Wordpress page, with the ugly theme, the weird URLs (page ID), and the lack of an image slideshow.. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] New tool for pentesting
Looking at that webpage is making me rage. I'm sending him an invoice for a new keyboard. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Project Vigilant
Cryptome has been following it very closely http://cryptome.org/0002/vigilant-fraud.htm http://cryptome.org/isp-spy/vigilant/vigilant-spies.htm http://cryptome.org/0002/vigilant-snitch.htm ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Congratulations Andrew
It's funny to watch this self-proclaimed "brilliant" attention whore beg for money on IRC with the help of his enablers who cannot even grasp reality. He's saying AT&T is behind his current charges, he's looking at a few years in jail, etc. However he won't take responsibility that it was HIS drugs in HIS possession at HIS house. Granted, precipitating what he did at AT&T did lead up to the search warrant and according to media reports, Andrew LEAD the agents to his drug stash. I was thinking lines of cocaine and a bag of pills were on the coffee table next to the still warm crack bong. Not the case. He's screaming on IRC that the law enforcement officials involved planted the drugs on him. Seriously? Agents had a half gram of cocaine, less than 20 hits of LSD, and two pills, a MDMA pill and an Oxycotin pill. Seriously? Some agent reached in his pocket, pulled out all of this and went "hey guys, look what I found in Andrew's bedroom" What he is betting on is the hatred and mistrust of the media by the lesser intelligent IRC underbelly and his crazy stories, like he's in Fayetteville Arkansas trying to get hired by the Wal-Mart corporation so he can have access to their massive amounts of data. This man of a self-proclaimed "lavish" lifestyle, living in an apartment above a lawyer's office, in all the places in the world - he had to pick Fayetteville. His mother is right - he is delusional, on drugs which blurs his thinking and thinks he is something that he is not. He's begging for $3500 for his drug case, when usually a drug case is handled by a public defender for much cheaper than $3500. Is he going to hire zombie Johnnie Cochran to use his infamous "if the glove doesn't fit, you must acquit" legal argument or is he going to line his pockets one last time for a run out of the country (rumors said Brazil) to avoid getting a year or two in a fine Arkansas correctional facility, hopefully full of inmates who would gladly make him feel at home? In closing, Andrew - it's time to man up. We love to hear your wild stories about you running from the men in black and how you're such a brilliant computer hacker, involved in operations we hear about months later after they happen. We love for you to claim you hacked Amazon and delisted all those items, without no claim whatsoever. Sadly, even a Turk or a Romanian would take a screenshot of a website defacement, however something happens, you take credit and your enablers cheer another victory for you. If you are sentenced to a term of a few years in jail, expect my shipment of soap on a rope to be sent immediately to protect you from the other inmates. On 06/29/2010 03:53 AM, huj huj huj wrote: > except that weev has had malicious intentions from day 1 > he is all about ruin and nothing else > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Weev, in his own words, in an interview
http://www.mediafire.com/?gw4njjyflj2 Begging for $3500 from channers, EDtards, and anyone else sucked into the idea that he is some kind of midget crusader on the Internet. 07:54 < weev_> murphysec2...@gmail.com 07:54 < weev_> is the new donation paypal 07:54 < weev_> that you can like 07:54 < weev_> spread around far and wide Momma needs a new crackpipe and some drugs, the feds took them all :-( Police reportedly seized less than half a gram of cocaine, one suspected Ecstasy pill, one oxycodone pill and 19 tabs of suspected LSD from Auernheimer’s upstairs bedroom. Auernheimer admitted to possessing the drugs and helped police identify them. Source: http://www.arkansasonline.com/news/2010/jun/17/ipad-hacking-suspect-arrested-drug-charges/ 09:50 i gotta get some money 09:50 my cashflow sucks 09:51 whores 09:51 lavish cars 09:51 gigantic places to live I guess so, Andrew Alan Escher Auernheimer... "There are references to his lavish lifestyle on this thread but the sad truth is he is paranoid schizophrenic and has been homeless a number of times." -Mrs. Auernheimer ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Eyeballing Weev (Updated)
Eyeballing Andrew Alan Escher Auernheimer Delusional - IRC warrior - crack smoker - drug addict - bullshitter - jail bitch - dwarf - hypocrite - idiot Proverbs 13:3 "Whoever controls his mouth protects his own life. Whoever has a big mouth comes to ruin." Contents: 1. Personal Info 2. Family 3. WHOIS info 4. Emails Introduction: Andrew, better known as weev, is a delusional young man who think he is greater than he actually is. He hibernates on IRC, babbles when smoked up on moon rocks, makes insane claims without any evidence nor anyone calling him out about it, and encourages others to join in his self-destructive behavior. His family hates him and have not had contact with him for over 2 years. Pictures of Andrew, which are widely available, show his decline from his NY Times days (clean shaved), to some of his pictures with long hair, and all the way up to his drug arrest on 06/15/2010 where he looks like some flavor of street bum begging you for the change you hear in your pocket but you tell the bum it's your car keys just so you can make a quick getaway. Andrew, you should spend time in jail, which will detox your body of moon rocks and your other drugs of preference. I'm sure after a year or two of detox, avoiding prison rape, and begging for protection from skinhead prison gangs - you'll realize that your delusional life on IRC is not worth it so you will come out of jail and live a normal, productive, drug-free life. --Personal Info Full name: Andrew Alan Escher Auernheimer aka "weev" According to LinkedIn, Weev is "White", Native-American, and "other" Aliases: Joseph Evers Andrew Wbeelsoi Escher Auernheimer DOB: 09/01/1985 (Confirmed by arrest and "Vinelink" notification service for when he is released) Eyes: Brown Hair: Brown Height: 5'4" Weight: 150lbs (Source: 06/15/2010 drug arrest) Education: James Madison University "Auernheimer, Andrew A. attended JMU from the fall of 1998 to the spring of 2000 studying Anthropology" -Registrar Office of JMU Last known addresses: 505 N SHADY AVE. FAYETTEVILLE, AR 72701 (Source: 06/15/2010 arrest) *Note: Address belongs to - McElveen & Rush Plc. 505 N Shady Ave. Fayetteville, AR 72701. 479-973-2900 Phone numbers: 323-879-8007 (Source: SealPAC WHOIS) 479-363-1488 (Source: LinkedIn) Email addresses: glutt...@gmail.com and weev...@yahoo.com Criminal Record: 06/15/2010 - Washington County, Arkansas. Booked for possession of LSD, cocaine, MDMA (ecstasy), and various controlled pills by Fayetteville PD. ??/??/2010 - Giving a false name to authorities. URLs: http://www.facebook.com/people/Joseph-Evers/1208740546#!/profile.php?id=1208740546 http://www.okcupid.com/profile/weev/pictures http://www.linkedin.com/in/josephevers (known alias) http://www.encyclopediadramatica.com/index.php/weev http://weev.livejournal.com Online Aliases: - Weev - Wbeelsoi - Uchiha Weevlos - Weevlar - Andrew wbeelsoi - Andrew weevlos - The iProhet - TheiProphet - The-iProphet Media sightings: -iPad/AT&T Drama Initial iPad/AT&T story: http://news.cnet.com/8301-27080_3-20007309-245.html AT&T criticism of weev: http://news.cnet.com/8301-1009_3-20007564-83.html Weev's response: http://news.cnet.com/8301-27080_3-20007407-245.html Arrest for drug possession: http://news.cnet.com/8301-27080_3-20007827-245.html Confirmed FBI involvement in search: http://online.wsj.com/article/SB10001424052748704198004575310634055906968.html?mod=WSJ_Tech_LEADTop Toorcon2111, Cybercrime: http://video.google.com/videoplay?docid=-5643217366887354926&ei=iOzHSvzBOpbWrQKvlu2KDg&q=andrew+wbeelsoi http://www.jewishreview.org/local/Police-question-two-men-about-threats-to-Jewish-community *Note: Weev was raged about being named. Source: http://www.webcitation.org/5jnP71qsD NYTimes "Mawebulence" Expose: http://www.nytimes.com/2008/08/03/magazine/03trolls-t.html?_r=1&hp&oref=slogin *Note: NYTimes article is typical of Andrew's ranting- making claims with no proof to back it up. Hilarious Logs: 09:50 i gotta get some money 09:50 my cashflow sucks 09:51 whores 09:51 lavish cars 09:51 gigantic places to live 15:05 does anybody know these russians 15:06 that they are buying up hacked macs for 43 cents an install 15:26 i have access to like 15:26 8k rooted macs 15:26 right now 15:26 and i would like to make a quick $3500 22:02 im all for white people cleaning up the nigger problem 22:03 i hate niggers 22:03 i hate niggers. (Note: Chelsea and Anthony Auernheimer, his siblings, are African-American) 02:23 i read what the kikes did to you 02:23 i raged :( 02:24 lol 02:24 i dont mind 02:24 theyre doin me a favor "seriously. we need a sysop faq that is sure to state that the only person we are allowed to mention when talking about ED ownership is joseph evers." -- weev, 20080531, correspondence "yes please scrub realnames from ED" -- weev, 20080531, correspondence --Family: Latest home address: 2038 W Grace
