Monday, December 06, 2010

Cari Jiwamu ....

Kenapa kamu mencari jiwa ??? ...

Hampir saja domain ini expired sampai saya lupa dengan blog yang satu ini , maklum lagi mesra mesranya dengan si dia :)

Tekad sabar dan tawakal sering saya coba untuk memikirkannya , itulah jiwa dan ruh dimana saya berada ..

mungkin inilah digambarkan tentang ini semua

1. Kuda Terbang Putih : Tekad harus dikuatkan seperti kuda yang gagah dalam melangkah berlari menuju harapan.

2. Merpati putih : Sabar menunjukkan keindahan dan pola pikir manusia seperti merpati dalam berjalan memancarkan kesabaran dan kehati hatian dalam melangkah.

3. Anjing putih : inilah sebuah tawakal , karena pada dasarnya binatang yang satu ini menurut kepada empunya , siapa empu kita ??? , yaitu pemilih ruh dan jiwa ini.

Mungkin ketiga definisi itu digambarkan oleh saya dan itulah tentang kehidupan ini , bukankah Allah mendefiniskan dalam bentuk yang disampaikan ilham dan mimpi yang berguna untuk manusia ....

Wallahu Wa'allam Bissalam

Monday, September 20, 2010

penetrasi itu tegang :D

Pagi Pagi ada temen pastein link http://blog.iweb.com/en/2010/09/64bits-linux-important-security-vulnerability-identified/5437.html , hmmm menarik , langsung coba remote beberapa server

[iqbal@server ~]$ ./diagnose-2010-3081
Diagnostic tool for public CVE-2010-3081 exploit -- Ksplice, Inc.
(see http://www.ksplice.com/uptrack/cve-2010-3081)

$$$ Kernel release: censored
$$$ Backdoor in LSM (1/3): checking...not present.
$$$ Backdoor in timer_list_fops (2/3): not available.
$$$ Backdoor in IDT (3/3): checking...not present.

Your system is free from the backdoors that would be left in memory
by the published exploit for CVE-2010-3081.

:) , selamat penetrasi deh

Thursday, August 19, 2010

Terbang

11.45 starting point alias point awal mulai ketik disini :P

Abis makan otak otak gak sadar ternyata abis sambil nyemil, puasa di bulan ini terasa begitu cepat mungkin di sela sela kesibukan sebagai system engineer + network engineer biasanya bekerja 24 jam, telepon juga harus on terus, rajin rajin ngecheck server, memang sudah amanah jika memegang semua system yang ada, kerja memang ibadah plus sekaligus hobi dan ketertarikan saya dengan linux dan cisco ( bahasa kerennya kotak item - shellbox ) , apalagi 2 situs ini terbilang besar, pekerjaan ini saya lakoni sejak tahun 2002 ketika itu masih sebagai admin warnet, Jam terbang mungkin memang sudah lama, tapi sepertinya masih ada kurangnya, ya ingin belajar terus dari pengalaman.

Hal pengalaman yang paling mengasikkan adalah ketegangan dan penyelesaian jika terdapat gangguan, dulu pernah menangani gangguan radius server adsl di jakarta barat dengan teman-teman, gangguan di beberapa server skala besar, semua berawal dari sini aku mempelajari.

Saya pernah mempelajari Hitamnya dunia maya, mungkin dengan kata *Tobat , karena bagi saya semua adalah untuk belajar. Pengalaman yang mengasikkan dan senang mempunyai teman teman yang hebat dalam bidangnya. Membangun komunitas bahkan sampai terlibat project yang tidak di danai oleh siapapun.

Disamping itu bekerja sebagai karyawan memang sebuah tugas yang harus dilaksanakan, tak terlepas dari unsur pengalaman dan kepercayaan dari beberapa orang sekeliling saya.

Terima kasih untuk setiap orang yang sudah mempercayai saya sebagai pemegang amanah ini.

Hakikat :

Kacang tidak pernah lupa akan kulitnya.
Jadilah seperti padi. Semakin berisi semakin menunduk.
Satu guru satu ilmu dilarang saling mengganggu.

Sunday, August 15, 2010

Begajul

Terlihat seperti bodoh, keyboard ini *mendem , tapi ya sudah lah karena lagi diwarnet , hari ini ingin menenangkan diri dan menyenangkan diri sendiri dulu , memang enak seperti bolang , menjelajahi sendirian , ingin rasanya keliling indonesia walau agak lebay sedikit , modal nya cuma GPS di nokia , next target surabaya mau ketemuan sekalian brainstorming. Edan nih warnet sepertinya ada keylogger , sucks undeepfreeze nya gak jalan. Bagusnya cuma buka blogspot.

*sendiri

Wither

Let it out, let it out
Feel the empty Space
So insecure find the words and let it out

Staring down, staring down
Nothing comes to mind
Find the place turn the water into wine

But I feel I'm getting nowhere
And I'll never see the end

So I wither
And render myself helpless
I give in and everything is clear
I breakdown
And let the story guide me

Turn it on
Turn it on
Let the feelings flow
Close your eyes
See the ones you used to know

Open up open up
Don't struggle to relate
Lure it out
Help the memory escape
Still transparantness consumes me
And I feel like giving up

So I wither
And render myself helpless
I give in
And everything is clear
I breakdown
And let the story guide me

I wither
And give myself away

Light reflections on the page
The worlds want to create

I drown in hesitation
My words come crashing down
And all my best creations
Burning to the ground

The thought of starting over
Leaves me paralysed
Tear it out again
Another one that got away

I wither
And render myself helpless
I give in
And everything is clear

I wither
And render myself helpless
I give in
And everything is clear
I breakdown
And let the story guide me
I wither
And give myself away

Light reflections on the page
The worlds want to create
The worlds which you create

Let it out let it out

==========================================

Black without Wings , Like an Blue and Red Angel , Like An Right and Left angel beside me , How this secret for me , thats im choice to be Blue angel , i miss that moment when i greeting to blue , just wanna alone ....

Thursday, August 12, 2010

Hari ini Puasa

Puasa hari ke dua - membuat sempet drop kmaren di puasa pertama sepertinya kecapean karena malam sebelum itu asyik ngoprek 2 situs yang lumayan membooming di Indonesia , saya kerap sekali bandel* alias suka lupa sama waktu , eh besoknya tepar mungkin butuh istirahat , untungnya masuk kantor walau agak sedikit memaksa :) , hari kedua puasa ini pagi pagi sudah dikantor , semalem tidur puas banget 8 jam baru kali ini tidur cepet lantaran agak drop , paginya sahur sama orang tua , jam setengah 9 sampai kantor , benerin jaringan di bagian CS , oprek mikrotik sedikit , restart modem , 3 load balancer - cek jaringan seluruh kantor dan test ping di tiap tiap node , ternyata aman.

Huammmm , nguap terus mirip ikan koki puasa kali ini , kmaren hampir bablas mau minum air putih , hari ini aktifitas seperti biasa lagi.

Tidak terasa memang 4 tahun saya memiliki blog ini

Selamat menunaikan ibadah puasa

Monday, August 09, 2010

Hotel Keycard Hacking

Apa yang membuat menarik tentang card ini , begini pengalamannya teman teman.

Pernah gak sih cek in ke hotel , kebetulan waktu itu sempet check in lantaran ada urusan di luar kota , setiap kita check in kan selalu saja diberikan kalau hotel ini menerapkan "Magnetic stripe card" semacam kartu kalau kita mau masuk ke kamar room , biasanya kita gesek terlebih dahulu seperti layaknya atm , letaknya di sekitar kunci dan gagang pintu. ukurannya juga standard , kira kira begini



* Lupa Capture cardnya saat itu

Hal yang menarik apa jadinya bila card ini didekatkan ke HP atau blackberry jawabnya adalah error.

Jangan Usil :) ---->

Pernah terpikir kalau kita dalam suasana rame rame sama temen-temen iseng nih pinjem cardnya lalu tanpa sepengetahuan dia kita dekatkan di ponsel atau BB , paling enak sih pagi saat breakfast hehehehe yang pasti gak bisa masuk lagi ke room nya , ujung ujungnya bolak balik ke resepsionis dan yang pasti akan membuat sibuk :P korban , tapi jangan coba coba ya , just share experience aja

Wednesday, August 04, 2010

We'LL

We'll shine like stars in the summer night/We'll shine like stars in the winter light/One heart, one hope, one love .

this is howto install suricata

Open a root terminal, copy, paste, and press enter for each of the following lines:

sudo apt-get -y install libpcre3 libpcre3-dbg libpcre3-dev build-essential autoconf automake libtool libpcap-dev libnet1-dev libyaml-0-2 libyaml-dev zlib1g zlib1g-dev libcap-ng-dev libcap-ng0

sudo apt-get -y install libnetfilter-queue-dev libnetfilter-queue1 libnfnetlink-dev libnfnetlink0

wget http://people.redhat.com/sgrubb/libcap-ng/libcap-ng-0.6.4.tar.gz

tar -xzvf libcap-ng-0.6.4.tar.gz

cd libcap-ng-0.6.4

./configure && make && sudo make install

apt-get install libhtp1

apt-get install libhtp-dev

wget http://www.openinfosecfoundation.org/download/suricata-1.0.0.tar.gz

tar -xvzf suricata-1.0.0.tar.gz

cd suricata-1.0.0

./configure --enable-nfqueue

sudo mkdir /var/log/suricata/

make

make install

mkdir /etc/suricata

apt-get install checkinstall

checkinstall

dpkg -i suricata_1.0.0-1_i386.deb

cp classification.config suricata.yaml /etc/suricata/

mkdir /etc/suricata/rules

cd /etc/suricata/rules

wget http://www.emergingthreats.net/rules/emerging-attack_response.rules

wget http://www.emergingthreats.net/rules/emerging-scan.rules

wget http://www.emergingthreats.net/rules/emerging-exploit.rules

wget http://www.emergingthreats.net/rules/emerging-current_events.rules

wget http://www.emergingthreats.net/rules/emerging-voip.rules

wget http://www.emergingthreats.net/rules/emerging-malware.rules

wget http://www.emergingthreats.net/rules/emerging-dos.rules

wget http://www.emergingthreats.net/rules/emerging-drop.rules

wget http://www.emergingthreats.net/rules/emerging-compromised.rules

wget http://www.emergingthreats.net/rules/emerging-dshield.rules

wget http://www.emergingthreats.net/rules/emerging-botcc.rules

wget http://www.emergingthreats.net/rules/emerging-rbn.rules

wget http://www.emergingthreats.net/rules/emerging-virus.rules

cd /etc/suricata/

sudo vi suricata.yaml

suricata -D -c /etc/suricata/suricata.yaml -s /etc/suricata/classification.config -i wlan0

source : http://doc.emergingthreats.net/bin/view/Main/SuricataUbuntuSetup

Tuesday, August 03, 2010

Semua dimulai dari sini

Tempat cucian motor ini begitu luas, tempat ini menjadi tempat favorit bagi kendaraan yang lalu lalang, karena letaknya yang cukup strategis dan jalan utama menuju pusat kota, setelah sekian lama menunggu seorang bapak sibuk menawarkan dagangannya, sibuk mendekati orang yang mencuci motor dan menawarkan cairan anti bocor untuk ban, akhirnya bapak itu mendekati saya dan menawarkan dagangannya.

Cairan anti bocor ini cukup menarik memang, saya telah mencobanya sekitar 1 tahun lalu, hingga ban saya pecah. Bapak itu bersalaman dengan saya sebagai tanda perkenalan. Dia bercerita tentang barang dagangannya dan asalnya dari solo hingga akhirnya pembicaraan itu aku ajak kedalam sebuah media "internet".

Bisnis di internet cukup menggiurkan hingga banyak orang-orang sukses yang terlahir dari sini, media jejaring social "facebook" , web gratis alias "blogspot" dan "wordpress" , aku jelaskan panjang lebar tentang metode penyampaian ini kepada bapak itu. Bagaimana pesatnya dunia internet ini menjamah orang orang awam, mungkin disinilah peran sebagai "technopreneur" memperkenalkan kepada mereka dan mengajak ke dalam dunia ini. Memang salah satu kekurangan adalah kurangnya edukasi dan skill individu dari tiap seseorang mengenai bisnis di internet, padahal bisa saja orang itu cukup kompeten produknya. Tanyalah orang disekitar anda cara membuat website, blogspot dan facebook dll, "jika malas" mungkin penyedia situs "Ecommerce" yang bisa dijadikan media promosi produk.

Sudah 1 jam berlalu, motor saya sudah bersih, cukup lama memang mencuci motor disini, karena inilah banyak orang yang ingin mencuci di tempat ini. Hingga salam perpisahan terucap dari saya dan bapak itu menanyakan nomor hp saya. Saya berikan kartu nama saya dimana tempat saya mencari "sepiring nasi" dan disitu tertera salah satu situs ECommerce di Indonesia.

Point :

"Semua dimulai dari sini"
"Jangan sungkan sungkan memberikan informasi kepada orang sekitar"
"Welcome to Internet Business Strategies"

Monday, August 02, 2010

Jakarta Timur

Ia mimpiku, mimpi burukku
Ia egoku, rasa takutku
Ia

Bermain bersamaku permainkan hatiku
Ia ‘kan selalu menunggu permainkan hatiku
Bermain bersamaku permainkan hatiku
Ia ‘kan selalu menunggu dalam tragis akhirku

Kugenggam hatiku hanya satu
Satu dan dalam genggamanku
Kuberikan padamu, seutuhnya untukmu
Kuambil serpihannya, kedua kalinya kurasakan akhir
Kau bentangkan indah sayapmu
Menutup tirai kisah usai sudah
Aku takkan terbangun pagi nanti
Tak ingin tertidur malam ini
Menyaksikan matahari bersinar
Di tempat yang mereka,
Mereka sebut timur...........

===================================

This place - east jakarta , tempat aku dibesarkan , tempat ini selalu menjadi inspirasi ku , dimana aku menghadapinya dengan penuh ke ego an :)

Wednesday, July 28, 2010

Tentang Findtoyou.com

Sudah setahun berdiri akhirnya ada juga yang mereview situs ini , suka duka memulai semua dari awal membawa situs ini mengalami perubahan , memberikan terbaik untuk semua pengunjung dan semoga tidak sia-sia , bermanfaat untuk khalayak umum

Findtoyou.com adalah mesin pencarian yang berguna penggunanya agar lebih mudah , lebih spesifik dan lebih praktis.
Sebagai mesin pencari untuk Mesin Pencari untuk Music, Video, Images, Software, Ebook,
Document, Powerpoint, Excel, File Sharing, Torrent dan Social Networking.
Keunikan dari Search Engine Findtoyou adalah dapat mengklasifikasikan pencarian, sehingga
user dapat mudah memilih jenis File yang ingin dicari berbeda dengan search engine sejenisnya yang hanya mampu mencari 1 atau 2 file.

Sejarah :
Awal mulanya berdiri pada bulan 9 juli 2009 dan berbasiskan di Surabaya dan Jakarta

pendiri : Dian Arif Sutejo - founder
Teuku Iqbal Maulana - co-founder - CIT
setiadi - co-founder - CEO

Walau baru seumur jagung meramaikan situs pencarian, trafik untuk indonesia sudah berhasil menembus peringkat ke 617 untuk daftar
pencarian situs di indonesia, data tersebut berdasarkan dari http://www.alexa.com/siteinfo/www.findtoyou.com


Umumnya pengguna findtoyou adalah kalangan pelajar dan perkantoran dengan memudahkan pengguna internet apa yang dibutuhkan,
Findtoyou menggunakan link ke beberapa pencarian beberapa situs di dunia , sehingga dijadikan satu halaman website ,
saat ini total pengunjung mencapai 23000 perhari ,menggandeng jejaring facebook sebagai media apresiasi penggunanya,
semua dibangun atas opensource karena akan lebih mudah membangun dan mengembangkannya.

Findtoyou berusaha menjadi profesional dalam bidang pencarian, beberapa perubahan yang sudah dilakukan :
1. Logo & Design mengalami perubahan
2. Perpindahan server ke t4 yang lebih stabil, aman & terpercaya
3. upgrade Server terus menerus untuk kenyamanan Member Findtoyou
4. Pembuatan untuk Support Mobile Version / Hp, berupa file .JAR...
5. Audit System berkala setiap bulan untuk memastikan sistem Findtoyou aman
6. Feedback dari Member Untuk koreksi Findtoyou

Disini kami curahkan segenap kreatifitas untuk memajukan karya anak bangsa semoga akan berguna untuk masa yang akan datang bagi kami, anda, dan dunia !!!


salam,
F.T.Y

kami berterima-kasih kepada semua pengguna internet yang telah memanfaatkan situs
ini sebagai tempat mencari segala hal , semoga bermanfaat ...

Tuesday, July 27, 2010

Nkiller2

Onerepublic - Secrets

I need another story
Something to get off my chest
My life gets kinda boring
Need something that I can confess
Til' all my sleeves are stained red
From all the truth that I've said
Come by it honestly I swear
Thought you saw wink, no
I've been on the brink, so

Tell me what you want to hear
Something that were like those years
Sick of all the insincere
So I'm gonna give all my secrets away
This time, don't need another perfect line
Don't care if critics never jump in line
I'm gonna give all my secrets away

My god, amazing how we got this far
It's like we're chasing all those stars
Who's driving shiny big black cars
And everyday I see the news
All the problems that we could solve
And when a situation rises
Just write it into an album
Singing straight, too cold
I don't really like my flow, no, so



Lagu ini The Sorcerer’s Apprentic soundtrack nya

sambil nyalain blackbox , malam ini iseng browsing ke situs http://www.phrack.com/issues.html?issue=66&id=9 , menarik mengenai penjelasan nkiller2 dari ithilgore , coba iseng mencoba seberapa pengaruh ke server dan install beberapa pendukung file nya


iqbal@fty:~$ sudo apt-get install sudo apt-get install libpcap0.8-dev
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package apt-get
iqbal@fty:~$ sudo apt-get install libpcap0.8-dev
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages were automatically installed and are no longer required:
jsvc libcommons-pool-java libecj-java libecj-java-gcj libcommons-collections-j
libcommons-daemon-java
Use 'apt-get autoremove' to remove them.
The following NEW packages will be installed:
libpcap0.8-dev
0 upgraded, 1 newly installed, 0 to remove and 44 not upgraded.
Need to get 230kB of archives.
After this operation, 811kB of additional disk space will be used.
Get:1 http://dl2.foss-id.web.id jaunty/main libpcap0.8-dev 1.0.0-1 [230kB]
Fetched 230kB in 1s (178kB/s)
Selecting previously deselected package libpcap0.8-dev.
(Reading database ... 81713 files and directories currently installed.)
Unpacking libpcap0.8-dev (from .../libpcap0.8-dev_1.0.0-1_amd64.deb) ...
Processing triggers for man-db ...
Setting up libpcap0.8-dev (1.0.0-1) ...
iqbal@fty:~$ gcc nkiller2.c -o nkiller2 -lpcap -lssl -Wall -O2
iqbal@fty:~$ ls
gnump3d-3.0.tar.gz iscanner-0.5 iscanner-0.5.tar.gz nkiller2 nkiller2.c nki
iqbal@fty:~$ ./nkiller2
nkiller2 [-t addr] [-p ports] [-k key] [-n total probes]
[-N probes/rnd] [-c msec] [-l payload] [-w path]
[-s sleep] [-d level] [-r vhost] [-T template]
[-P probe-interval] [-hvyg]
Please use `-h' for detailed help.

iqbal@fty:~$ nkiller2 -t -p80 -w -n0 -T0 -P100 -s0 -v -N100
-bash: target: No such file or directory


iqbal@fty:~$ sudo -s
root@fty:~# ls
gnump3d-3.0.tar.gz iscanner-0.5 iscanner-0.5.tar.gz nkiller2 nkiller2.c nki


root@fty:~# ./nkiller2 -t 118.97.67.84 -p80 -p80 -w /file -v -n1 -T1 -P120 -s0 -g

Starting Nkiller 2.0 ( http://sock-raw.org )
Probes: 1
Probes per round: 100
Pcap polling time: 100 microseconds
Sleep time: 0 microseconds
Key: Nkiller31337
Probe interval: 120 seconds
Template: BSD | Windows
Guardmode on
^C
root@fty:~# nslookup www.findtoyou.com
Server: 8.8.8.8
Address: 8.8.8.8#53

Non-authoritative answer:
Name: www.findtoyou.com
Address: 204.74.212.238

root@fty:~# ./nkiller2 -t 204.74.212.238 -p80 -p80 -w /file -v -n1 -T1 -P120 -s0 -g

Starting Nkiller 2.0 ( http://sock-raw.org )
Probes: 1
Probes per round: 100
Pcap polling time: 100 microseconds
Sleep time: 0 microseconds
Key: Nkiller31337
Probe interval: 120 seconds
Template: BSD | Windows
Guardmode on

next lanjutkan lagi deh ... sudah malam waktunya pulang , "All my secrets away"

Wednesday, July 14, 2010

lemahnya keamanan situs *.go.id

Pagi ini berangkat ke kantor, motor ini kupacu dengan kecepatan yang sedikit berkurang dari biasanya, sambil melihat gedung-gedung tinggi yang bertingkat, pertanyaan ini melintas dikepalaku ??, seperti apakah IT disana, amankah, cepatkah ??? ....

Semalaman suntuk memonitoring sebuah infrastruktur, akibat gangguan down, membuat mata ini cepat lelah, ribuan situs *.go.id biasanya menjadi target dari penyampaian sebuah aspirasi, mungkin inilah attitude dari seorang hacker dalam menyusupi, sering kali seroang etika hacker mengirim email ke admin pemerintahan, tetapi terkadang tidak membalas maupun menutup hole , mungkin penyebabnya adalah :

1. Minimnya dana infrastruktur
2. SDM itu sendiri

iah malah minta bantuin suruh tutup tuh holena, bisa aja tapi ya itu, minimal dananya keluar :)
==============
from xxxx@xxxx.go.id
to hacker@hacker.xxx
date Wed, Jul 14, 2010 at 7:28 AM
subject Re: Ur site called sql injection !!!
Iya Pak,
benar memang ada bug disitu, tapi website ini memang kekurangan dana dan
SDM. maklum saja untuk versi korannya masih dibagi2 gratis jadi securitynya
website ala kadarnya. menurut bapak bagaimana caranya untuk menambal celah
tersebut?

terima kasih sebelumnya
Admin
================
xxxx@xxxx.go.id
to hacker@hacker.xxx
date Wed, Jul 14, 2010 at 8:36 AM
subject Re: Ur site called sql injection !!!
maaf pak, saya mau tanya agi, kok bisa tahu kalau ada celahnya di URL tsb?
soalnya udah saya coba gakeluar pesan error

maklum masih amatiran :)

thanks sebelumnya

beberapa pesan yang disampaikan teman saya di fb nya .... , ribuan site *.go.id pun tak luput , daripada "malu" lebih baik sediakan 2 permintaan diatas :)

Regards

kemana lagi aku mencari
bisakah kamu memberi tahu padaku ??
sedang cinta itu sudah menghadap aku.
mengakhiri semuanya ...
kenapa aku tidak bisa diberi kesempatan untuk mencurahkan isi hatiku sepenuh hatiku
sekali lagi kulakukan untuk kebahagiaan dunia dan akhirat.

1:33

Telepon + SMS bertebaran di Handphone N82 ini , backbone down sepertinya masalah link di router gateway , selesai pukul 1 malam , jadi gak bisa tidur deh , blog ini sepertinya perlu sedikit angin segar sudah lama banget gak kesentuh , cuma sendirian di kamar , pake pc quadcore mumpuni banget buat server , jadi inget www.inetholic.com expirednya kapan ya ???
, paste kesini deh ....

Domain Name: INETHOLIC.COM
Registrar: DIRECTI INTERNET SOLUTIONS PVT. LTD. D/B/A PUBLICDOMAINREGISTRY.COM
Whois Server: whois.PublicDomainRegistry.com
Referral URL: http://www.PublicDomainRegistry.com
Name Server: DNS1.MASTERWEBNET.COM
Name Server: DNS2.MASTERWEB.NET
Name Server: DNS3.MASTERWEB.NET
Name Server: DNS4.MASTERWEB.NET
Status: ok
Updated Date: 10-jan-2010
Creation Date: 11-nov-2009
Expiration Date: 11-nov-2010

masih lama 11 november , oktober lalu november

lagi lagi mata tertuju pada situs packetstormsecurity , nih situs gak mati dimakan jaman gak kaya milw0rm yang sudah pensi, intip web server ala kadarnya dari whatweb

authornya nulis gini

Andrew Horton

Description:
WhatWeb is a next generation web scanner that identifies what websites are running. Flexible plugin architecture with over 80 plugins so far. Passive plugins use information in the headers, cookies, HTML body and URL. Aggressive plugins can identify versions of Joomla, phpBB, etc by making extra requests to the webserver. Screenshots on the homepage.


http://www.packetstormsecurity.com/UNIX/scanners/whatweb-0.4.4.tar.gz

inetholic whatweb-0.4.4 # ./whatweb www.findtoyou.com
http://www.findtoyou.com [200] X-Powered-By[PHP/5.2.10], Title[Search and Find], Google-Analytics[urchin][10168477], HTTPServer[nginx/0.7.63], Header-Hash[f392ad253765a97748805c489ac3ee36], MD5[7f0c44c3ee2290966761e4ef83425484], Footer-Hash[8b81b0097e1ba62d4325abee23bd0584], Div-Span-Structure[ce219d4624e8a49ff3d26372f3d06989]

inetholic whatweb-0.4.4 # ./whatweb www.plasa.com
http://www.plasa.com [200] Cookies[BIGipServerPool_FrontEnd_HTTP,PHPSESSID], UncommonHeaders[x-pvinfo], Title[plasa.com - Index], Google-Analytics[GA][12090527], HTTPServer[Apache/2.2.11 (Ubuntu) PHP/5.2.6-3ubuntu4.5 with Suhosin-Patch mod_ssl/2.2.11 OpenSSL/0.9.8g mod_wsgi/2.3 Python/2.6.2], X-Powered-By[PHP/5.2.6-3ubuntu4.5], MD5[bb592aee03bfed37cdef1fa503a062a4], Footer-Hash[3935ca16318e5519d5cf3019f194df02], Div-Span-Structure[4a3d7c16fca885e74cc7ff3eff596456], Header-Hash[2da29806e3a12d3f7a2459c5dd5eb484]

coba deh tuh , ini menarik untuk di kembangin , mungkin ide yang agak liar dan sedikit ekstrim : Penggabungan mass scanner , whatweb dan exploit , bisa membuat seantero jagad maya ini terguncang :D , ujung-ujungnya sysadmin yang bergerak untuk mempatching sebelum semua itu terjadi , mata mulai agak ngantuk , 1:49 , akhir nya ngantuk itu sebuah anugrah yang tidak ternilai ........

Regards

Friday, June 18, 2010

3v4

Thank you for the inspiration

Thank you for the smiles

All the unconditional love

That carried me for miles

It carried me for miles

But most of all thank you for my life

These were the best of times

I'll miss these days

- 3v4 -

Friday, May 14, 2010

Findtoyou Project

As new fast search engine , have goal to increase a traffic , 19000 visitor every day make me think how to tuning webserver and the solution is nginx as webserver.

www.findtoyou.com is the simple and faster search engine , Search Engine For Music, Video, Images, Software, Ebook, Document, Powerpoint, Excel, Rapidshare, Megaupload, Torrent and Social Networking.

this project run 8 months ago and now we have about 5700 users in social facebook , our mission is help people around the world to find faster what they need with simple method . next roadmap we build for mobile version. our demo is running well but need fix in mobile resolution.

Writer :
CIT : T.Iqbal Maulana ST, CCNA - www.findtoyou.com

Friday, April 16, 2010

Just write what i see

hmm so bored today , so lonely day , without my love beside me ... just write ...

Burn my brain today , but i want format my brain :D , wanna weekend and no one disturb me , just sleep in my room and monitoring all i ve and that is black box
black box usually became friend for me , with dream theater music and simbadda speaker.

what ive done ....

1. Remote Black Box
2. Music
3. Call by phone
4. Tunneling
5. See Traffic
6. Analysis IPS
7. apt-get and yum
8. Warcraft
9. Drink a Milk
10. Pidgin
11. Facebook
12. TroubleShooting

Monday, March 08, 2010

Public DNS Servers

Google

8.8.8.8
8.8.4.4
Level 3 Communications (Broomfield, CO, US)

4.2.2.1
4.2.2.2
4.2.2.3
4.2.2.4
4.2.2.5
4.2.2.6
Verizon (Reston, VA, US)

151.197.0.38
151.197.0.39
151.202.0.84
151.202.0.85
151.202.0.85
151.203.0.84
151.203.0.85
199.45.32.37
199.45.32.38
199.45.32.40
199.45.32.43
GTE (Irving, TX, US)

192.76.85.133
206.124.64.1
One Connect IP (Albuquerque, NM, US)

67.138.54.100
OpenDNS (San Francisco, CA, US)

208.67.222.222
208.67.220.220
Exetel (Sydney, AU)

220.233.167.31
VRx Network Services (New York, NY, US)

199.166.31.3
SpeakEasy (Seattle, WA, US)

66.93.87.2
216.231.41.2
216.254.95.2
64.81.45.2
64.81.111.2
64.81.127.2
64.81.79.2
64.81.159.2
66.92.64.2
66.92.224.2
66.92.159.2
64.81.79.2
64.81.159.2
64.81.127.2
64.81.45.2
216.27.175.2
66.92.159.2
66.93.87.2
Sprintlink (Overland Park, KS, US)

199.2.252.10
204.97.212.10
204.117.214.10
Cisco (San Jose, CA, US)

64.102.255.44
128.107.241.185

Friday, February 05, 2010

Wither

Let it out, let it out
Feel the empty Space
So insecure find the words and let it out

Staring down, staring down
Nothing comes to mind
Find the place turn the water into wine

But I feel I'm getting nowhere
And I'll never see the end

So I wither
And render myself helpless
I give in and everything is clear
I breakdown
And let the story guide me

Turn it on
Turn it on
Let the feelings flow
Close your eyes
See the ones you used to know

Open up open up
Don't struggle to relate
Lure it out
Help the memory escape
Still transparantness consumes me
And I feel like giving up

So I wither
And render myself helpless
I give in
And everything is clear
I breakdown
And let the story guide me

I wither
And give myself away

Light reflections on the page
The worlds want to create

I drown in hesitation
My words come crashing down
And all my best creations
Burning to the ground

The thought of starting over
Leaves me paralysed
Tear it out again
Another one that got away

I wither
And render myself helpless
I give in
And everything is clear

I wither
And render myself helpless
I give in
And everything is clear
I breakdown
And let the story guide me
I wither
And give myself away

Light reflections on the page
The worlds want to create
The worlds which you create

Let it out let it out

song by : DREAM THEATER - Wither

Tuesday, February 02, 2010

IPS + blade + storage

getting high with this , we put and learn in data centre , see the storage in cold room , hmm more fun with it , when i see the rules in white board , first : you cant borrow anythink , but im stubborn to borrow my nokia n-82 , break the rules .. LOL

Ive got some picture our ips + blade + storage when running and up in there ... , 5 hours... freeze you know ??? , because im thin :) not like my friend and he like giant tower :p

right now i'm still learn about it ... learn and learn , but sometimes is lazy and so bored ....

Simple Config in cisco

Intermezo

My body not delicious today , im not going to work today , fiuh .... , this blog never close and im write for all to learn about this world , miss my SO community , never and ever close to my heart to join and know each other all of you , wanna back in the glory to be the one ... together ...


Cisco IOS Software, 2800 Software (C2800NM-SPSERVICESK9-M), Version 12.4(22)YB2, RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2009 by Cisco Systems, Inc.
Compiled Tue 26-May-09 20:24 by prod_rel_team

ROM: System Bootstrap, Version 12.4(13r)T, RELEASE SOFTWARE (fc1)

Router#show running-config
Building configuration...

Current configuration : 992 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router
!
boot-start-marker
boot-end-marker
!
logging message-counter syslog
enable password putussambung
!
no aaa new-model
!
dot11 syslog
ip source-route
!
!
ip cef
!
!
no ipv6 cef
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
voice-card 0
!
!
!
!
!
archive
log config
hidekeys
!
!
!
!
!
!
interface FastEthernet0/0
ip address 192.168.1.7 255.255.255.0
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 192.168.2.2 255.255.255.0
duplex auto
speed auto
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 192.168.2.1
no ip http server
no ip http secure-server
!
!
!
!
!
!
!
control-plane
!
!
!
ccm-manager fax protocol cisco
!
mgcp fax t38 ecm
!
!
!
!
!
line con 0
password putussambung
login
line aux 0
line vty 0 4
password putussambung
login
line vty 5 15
password putussambung
login
!
scheduler allocate 20000 1000
end

Router#

Monday, February 01, 2010

Cleaning up your Logs

1. Introduction

Maintaining your logs is essential to keep your hard drive partitions healthy and to avoid potential problems that occur when partitions become 0 full. There is nothing worse then your /var partition filling up completely because you didn’t keep an eye on your logs. When a partition fills up, all kinds of weird things can happen which is why we strongly recommend you keep an eye on them as part of your daily routine.

We will go over the different logs, what they are used for, and how you can maintain them.
2. Maintaining Your Logs

There are several logs that you should monitor on a daily basis and they are as follows:

- /usr/local/apache/logs/error_log & /usr/local/apache/logs/access_log

- /usr/local/apache/domlogs/

- /var/log/

- /var/spool/exim/input/ & /var/spool/exim/msglog/

These are the most common logs likely to cause dedicated server owners a headache. We will go over each one and how to keep them in order.
2.1 Error_log & Access_log

This is the most common log to fill up your /usr partition. If some morning you log into WHM and notice a flashing red light for the /usr partition and it’s reading at over �, the first thing you should do is log into your server via SSH and go to that directory:

cd /usr/local/apache/logs/

ls –l

This will list the contents of the directory along with the size of each file. You will most likely notice your error_log is quite large. If so, delete this log, restart apache and then check your disk usage again using the command:

df

This command will show you all your partitions and the disk spaced used/available for each. You should notice the /usr partition has more disk space available now.
2.2 Domlogs

Domlogs is a directory located at /usr/local/apache/domlogs which contains 2 logs for each domain located on your server. The logs are named using the following format:

domain.com

domain.com-bytes_log

The first log contains all your hits, which is used to calculate the daily Webalizer and Analog stats in cpanel. The second log contains ever byte transferred from the account domain.com, and is used to calculate the HTTP bandwidth on a monthly basis.

While we do not recommend you delete these logs too often since your stats and bandwidth stats may get slightly skewed, sometimes it is necessary to remove them in order to free up space on your /usr partition. To delete these logs use the command:

rm –f /usr/local/apache/domlogs/*

Then restart apache using:

/etc/rc.d/init.d/httpd stop

/etc/rc.d/init.d/httpd start

These logs will be recreated from scratch by Apache.
2.3 /var/log

This directory contains important logs such as exim_mainlog, messages, and chkservd.log. While these logs are rotated regularly, archived logs are not deleted. You can safely delete any log that has a .1, .2, .3, or .4 extension, as these are the ‘old’ archived logs. You can remove these archived logs very easily using the command:

rm –f /var/log/*.1

rm –f /var/log/*.2

rm –f /var/log/*.3

rm –f /var/log/*.4

This will delete any file in that directory which is an archived log and free up disk space on your /var partition.
2.4 /var/spool/exim/input/ & /var/spool/exim/msglog/

These files are generated by Exim (the mail server) from bounced emails, or emails waiting to be delivered and are in the message queue. If you notice your /var partition filling up and you have removed your archived logs from section 2.3, then you most likely have a lot of entries in these directories. You should verify the size of this directory to see if it is a problem:

du -h /var/spool/exim/input

du -h /var/spool/exim/msglog

If any of these directories is very large chances are they are the culprit. Remove the contents using:

rm –rf /var/spool/exim/input/*

rm –rf /var/spool/exim/msglog/*

You might not notice an immediate difference in ‘disk space used’ after deleting these logs, but after a few minutes your partition information should be updated which you can view using the command:

df
3 Rearranging/Moving Your Logs

Sometimes your logs are just too big and fill up too fast for the current partition they are on. A simple solution to this is to move them to a different partition. For example, let’s say your /usr partition is over � and every time you delete your logs, within a few hours it is back at � again. The solution is simple and we will discuss how to do this.

First thing you need to do is to move your logs. We recommend you shut down the service that uses this log along with the chkservd daemon which checks your services. In this example you would want to shutdown chkservd followed by Apache:

/etc/rc.d/init.d/chkservd stop

/etc/rc.d/init.d/httpd stop

Then you would move the two directories to a different partition. Most people use their /home partition, but if you have a backup drive in your server you may want to use it. I prefer to use my backup drive (for logs, since I don't consider my logs to be critical data) as this takes some of the work off the main drive, so I would create a directory on my backup drive:

mkdir /backup/usr/

Then I would move the directories over:

mv /usr/local/apache/domlogs /backup/usr/

mv /usr/local/apache/logs /backup/usr/

That will move the two major log directories from your /usr partition to your /backup partition. The last thing you need to do is create the symbolic links in the ‘old’ locations so that Apache can find where you have moved these logs.

cd /usr/local/apache/

ln –s /backup/usr/domlogs/ domlogs

ln –s /backup/usr/logs/ logs

This will create the links in the ‘old’ location to point to the ‘new’ location. The last thing to do is restart Apache and chkservd:

/etc/rc.d/init.d/httpd start

/etc/rc.d/init.d/chkservd start

And that’s it! Your logs are now stored on your backup partition and will never hassle your /usr partition again.
4 Conclusion

Monitoring your logs is all part of owning a dedicated server and is essential to keeping your server running smoothly. If you are familiar with crontab and how to use it then I’m sure you can see how easy it would be to automate log maintenance.

We recommend that you verify your logs daily to avoid any unusual events such as a partitions filling up. It’s also important to understand your logs and the wealth of information they can offer you. Chances are the answer to your questions when troubleshooting a problem can be found in your logs.

source : http://www.servermanual.com/Articles/175.html