New Site?

[san_debo2]

Hey Can Anyone tell me about astalavista.com its sems to be good-Site www.astalavista.com

[TheSpecialist]

Why don't you try agian... only this time make it seem as if you've got a real question to ask other-wise im just going to blurt out random things about it. Now then...

You posted a link to it here...
It has downloads...
People such as yourself seem to like it...
|The|Specialist wouldn't give these *******s money...
It has been a few years since |The|Specialist has seen that site...
Oh yeah, and |The|Specialist quickly remembers why he doesn't browse it...
|The|Specialist is bored and is running out of things to say about it...

[littlenick]

They ask for membership fee to provode you exploits and tools i think that is like saying hey you don't know how to use google ok here is a site with all the exploits at a single place.now you don't have to search.
Although i must add here that i have never been a member of that site so i don't know what type of exploits they provide or any such information.
But as far exploitation goes even if they provide you a more then POC exploit then also you won't be able to use it in most of situations.
There are various reasons for that when you design you have to consider :
1)software itself
2)OS
3)port number
4)type of connection between attacker and shell after success exploitation of vulnerability.

ok so say you wish to use that exploit that they provide now software is no problem OS is OK(lets say)port number is same

but what about 4th constraint?firewalls are every where on internet today.
they may be configured to block:
1)all incoming requests to any port number other then used by allowed services.
2)all outgoing requests (reverse shell becomes useless here)

etc.....
now in this simple case you can't use a bind shell exploit as you are not allowed to bind to any port number other then used by legal services allowed on that system.
You can't use reverse shell in which you send a shell to a perticular IP on a perticular port.

SO............?
this are the two vary basic POC exploits provided by various sites and attackers online i don't think astalavista will provide any thing more then that.
One solution is rebind shell which bind shell to same port number as used by service being exploited but they can't provide a universal shellcode for everyone as there are constraints related to prot number and IP check(to check ip address of requesting party so that any one trying to telnet on that port doesn't get a shell)

If you need more information about what i said above see this http://phrack.org/show.php?p=62&a=7

SO my answer to what i think you wanted to ask is don't waste your money.get a book on exploit programming read about buffer overflow and try to exploit simple known vulnerabilities on some old box this may take time(as you need to know c,asm,network programming in c) but once you master that you will be able to write your own exploits for any advisory released.

[hypronix]

Umm NEW site??? I've been visiting that thing for quite a few years, albeit admittedly not on a regular basis. They have some good papers once in a while about various things... I don't know anything about memberships and what have you though.

[FanacooL]

You call it a new website i used to visit it almost 5 years ago if i am not mistaking..... The feature i like about this website is cracks & Serials..... Other than that nothin great in it for me after joinning with AO.

[sec_ware]

Hi

Well, astalavista.com. As mentioned, it's already out there for quite a while and had
its start in the context of serials/cracks. But anyway, I want to add the following thing.
And apologize for this single-sided, simplistic "argument", but I could not resist...


Today[1], a publication about
"Reverse code engineering: An in-depth analysis of the bagle virus"[2]
has been published there.


Remarkable, that this one was published here by the author himself, and
discussed a long time ago[3].




Cheers

[1] http://www.astalavista.com/
[2] http://www.astalavista.com/?section=...d=file&id=3322
[3] http://www.antionline.com/showthread...hreadid=263687

[littlenick]

Originally posted here by sec_ware
Hi

Well, astalavista.com. As mentioned, it's already out there for quite a while and had
its start in the context of serials/cracks. But anyway, I want to add the following thing.
And apologize for this single-sided, simplistic "argument", but I could not resist...


Today[1], a publication about
"Reverse code engineering: An in-depth analysis of the bagle virus"[2]
has been published there.


Remarkable, that this one was published here by the author himself, and
discussed a long time ago[3].




Cheers

[1] http://www.astalavista.com/
[2] http://www.astalavista.com/?section=...d=file&id=3322
[3] http://www.antionline.com/showthread...hreadid=263687

You don't have to apologise.That is a really good example of what i was trying to say above.

[ByTeWrangler]

Greeting's

Well just before you go to that site or even download any file, better check for these

1. your OS and other important software like antivirus, firewall are up-to-date

2. If you can switch to firefox browser or set security settings to high (or better add this site to restricted zone).

3. Run a complete scan of your system and the files you downloaded from that site.

anyway the site is old like most of the members said and if you really want to know what the site is about the best thing is you visit it personally just check that you have atleast a good anti-virus installed and a well configured firewally (not one that you have configured to "allows everything")


Happy surfing.

[hypronix]

Originally posted here by ByTeWrangler
atleast a good anti-virus installed and a well configured firewally (not one that you have configured to "allows everything")

That's not called a firewall, but a resource hog. It doesn't perform any functions that a firewall would be expected to [PEBKAC].

[Striek]

Yes, the infamous PEBKAC error (I always spelled it PEBCAK)...

The cause of all my problems.