New Site?
Page 1 of 3 123 LastLast
Results 1 to 10 of 21

Thread: New Site?

  1. #1

    New Site?

    Hey Can Anyone tell me about astalavista.com its sems to be good-Site www.astalavista.com

  2. #2
    Banned
    Join Date
    Apr 2004
    Posts
    843
    Why don't you try agian... only this time make it seem as if you've got a real question to ask other-wise im just going to blurt out random things about it. Now then...

    You posted a link to it here...
    It has downloads...
    People such as yourself seem to like it...
    |The|Specialist wouldn't give these *******s money...
    It has been a few years since |The|Specialist has seen that site...
    Oh yeah, and |The|Specialist quickly remembers why he doesn't browse it...
    |The|Specialist is bored and is running out of things to say about it...

  3. #3
    Senior Member
    Join Date
    Oct 2004
    Posts
    122
    They ask for membership fee to provode you exploits and tools i think that is like saying hey you don't know how to use google ok here is a site with all the exploits at a single place.now you don't have to search.
    Although i must add here that i have never been a member of that site so i don't know what type of exploits they provide or any such information.
    But as far exploitation goes even if they provide you a more then POC exploit then also you won't be able to use it in most of situations.
    There are various reasons for that when you design you have to consider :
    1)software itself
    2)OS
    3)port number
    4)type of connection between attacker and shell after success exploitation of vulnerability.

    ok so say you wish to use that exploit that they provide now software is no problem OS is OK(lets say)port number is same

    but what about 4th constraint?firewalls are every where on internet today.
    they may be configured to block:
    1)all incoming requests to any port number other then used by allowed services.
    2)all outgoing requests (reverse shell becomes useless here)

    etc.....
    now in this simple case you can't use a bind shell exploit as you are not allowed to bind to any port number other then used by legal services allowed on that system.
    You can't use reverse shell in which you send a shell to a perticular IP on a perticular port.

    SO............?
    this are the two vary basic POC exploits provided by various sites and attackers online i don't think astalavista will provide any thing more then that.
    One solution is rebind shell which bind shell to same port number as used by service being exploited but they can't provide a universal shellcode for everyone as there are constraints related to prot number and IP check(to check ip address of requesting party so that any one trying to telnet on that port doesn't get a shell)

    If you need more information about what i said above see this http://phrack.org/show.php?p=62&a=7

    SO my answer to what i think you wanted to ask is don't waste your money.get a book on exploit programming read about buffer overflow and try to exploit simple known vulnerabilities on some old box this may take time(as you need to know c,asm,network programming in c) but once you master that you will be able to write your own exploits for any advisory released.
    nobody is perfect i am nobody

  4. #4
    Senior Member
    Join Date
    Jul 2003
    Posts
    813
    Umm NEW site??? I've been visiting that thing for quite a few years, albeit admittedly not on a regular basis. They have some good papers once in a while about various things... I don't know anything about memberships and what have you though.
    /\\

  5. #5
    Did someone said Pizza :) FanacooL's Avatar
    Join Date
    Oct 2004
    Location
    Karachi , Pakistan
    Posts
    466
    You call it a new website i used to visit it almost 5 years ago if i am not mistaking..... The feature i like about this website is cracks & Serials..... Other than that nothin great in it for me after joinning with AO.
    One machine can do the work of fifty ordinary men. No machine can do the work of one extraordinary man!

  6. #6
    Senior Member
    Join Date
    Mar 2004
    Posts
    557
    Hi

    Well, astalavista.com. As mentioned, it's already out there for quite a while and had
    its start in the context of serials/cracks. But anyway, I want to add the following thing.
    And apologize for this single-sided, simplistic "argument", but I could not resist...


    Today[1], a publication about
    "Reverse code engineering: An in-depth analysis of the bagle virus"[2]
    has been published there.


    Remarkable, that this one was published here by the author himself, and
    discussed a long time ago[3].




    Cheers

    [1] http://www.astalavista.com/
    [2] http://www.astalavista.com/?section=...d=file&id=3322
    [3] http://www.antionline.com/showthread...hreadid=263687
    If the only tool you have is a hammer, you tend to see every problem as a nail.
    (Abraham Maslow, Psychologist, 1908-70)

  7. #7
    Senior Member
    Join Date
    Oct 2004
    Posts
    122
    Originally posted here by sec_ware
    Hi

    Well, astalavista.com. As mentioned, it's already out there for quite a while and had
    its start in the context of serials/cracks. But anyway, I want to add the following thing.
    And apologize for this single-sided, simplistic "argument", but I could not resist...


    Today[1], a publication about
    "Reverse code engineering: An in-depth analysis of the bagle virus"[2]
    has been published there.


    Remarkable, that this one was published here by the author himself, and
    discussed a long time ago[3].




    Cheers

    [1] http://www.astalavista.com/
    [2] http://www.astalavista.com/?section=...d=file&id=3322
    [3] http://www.antionline.com/showthread...hreadid=263687
    You don't have to apologise.That is a really good example of what i was trying to say above.
    nobody is perfect i am nobody

  8. #8
    StOrM™
    Join Date
    Aug 2004
    Posts
    1,003
    Greeting's

    Well just before you go to that site or even download any file, better check for these

    1. your OS and other important software like antivirus, firewall are up-to-date

    2. If you can switch to firefox browser or set security settings to high (or better add this site to restricted zone).

    3. Run a complete scan of your system and the files you downloaded from that site.

    anyway the site is old like most of the members said and if you really want to know what the site is about the best thing is you visit it personally just check that you have atleast a good anti-virus installed and a well configured firewally (not one that you have configured to "allows everything")


    Happy surfing.
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  9. #9
    Senior Member
    Join Date
    Jul 2003
    Posts
    813
    Originally posted here by ByTeWrangler
    atleast a good anti-virus installed and a well configured firewally (not one that you have configured to "allows everything")
    That's not called a firewall, but a resource hog. It doesn't perform any functions that a firewall would be expected to [PEBKAC].
    /\\

  10. #10
    Senior Member
    Join Date
    Oct 2002
    Posts
    1,130
    Yes, the infamous PEBKAC error (I always spelled it PEBCAK)...

    The cause of all my problems.
    Government is like fire - a handy servant, but a dangerous master - George Washington
    Government is not reason, it is not eloquence - it is force. - George Washington.

    Join the UnError community!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •