| subject | message | author | date |
|---|---|---|---|
| Thc_xc complete redesign | not that i usually think it's necessary to talk about module updates, however this is much different...will probably remove the screen.php iframe, create a new way to display results(jquery duh hello?) and use ajax calls to get the results. i might make some php file like taskbot.php that can be polled for results, will need to think how i will do that, could be that it won't show up until thc_hs 0.3, but as you might know i could also take a whole other step or even leave stuff the way it is to make this message even more confusing for you all. let's see later, still jetlag so my brain is kind of crashed as we speak. :p it's highly likely that all non bruteforce apps and other programs that make use of the screen.php will be rid of this. the bruteforce apps will stick to the iframe option as it's much faster than this method of course. | zomgwtfbbq | 24-09-2011 07:14 |
| $$$ looking for themes $$$ | yes you can earn money with it, if you want to make some themes and you're good with jquery feel free to contact me, i'm sure we can make a deal. | zomgwtfbbq | 02-04-2011 06:19 |
| How to code thc_ss callbacks in version 0.0.2+ | thc_ss (sscan) 0.0.2+ and callbacks summary: in this tutorial we'll go through the default thc_ss callback that can be used in order to to hack the test login. this is just an idea of how the callbacks look in the 0.0.2 and newer versions, it's way more code, but you get a lot more usability back. [b]note: be aware that thc_ss will only be fully functional when using thc_hs 0.1.1+ because in this version the testserver login will be fixed. otherwise the callbackbf.php callback will fail, even if you have the password correct.[/b] so what do callbacks do and why are they essential for this tool? by adding callbacks the way the hacksuite uses it, gives two major benefits: 1- dynamic values for callbacks (this was the only reason at first) 2- dynamic jquery for the html interface let me explain the 2nd here a little.. when i created thc_ss i quickly stumbled upon an ugly problem. when you setup a callback and want dynamic values, you don't want to fill in some fields on an html form if it's not necessary, right? so instead i threw in some jquery and php teamwork, the php writes the jquery and fills in default values for variables, both of these are based on the array $_cbackv in the callback file. the jquery hides the content you don't want to see and fill in. callbacks are essential because they give infinite possibilities to the user, you can easily create bots or bruteforce apps by just editing $_cbackv. now that we've had that, let's dive into the code, here's the full source of callbackbf.php, which you can use as a template in order to make your own callbacks. example: [code] [/code] let's move to the first portion of the code. [code] [/code] you start of with making sure that no one can access the files directly by checking if the constant in_script exists.. you should always validate like this with files that are included on any other page and aren't made to be directly accessed. after that you set the variable $_cbackd which is used to define the properties of the callback: $_cbackd[0]: label $_cbackd[1]: location of the file in the callbacks directory in the thc_ss module [code] [/code] this is the actual callback and will only be executed in a thc_ss scan session. you always need a function called callbck, this file is included once before sscan actually runs and depends on it in order to know what fields it has to send so it will (hopefully) get the right response of the target. with each curl connection you make and the query part is generated by the callback, so when passed back thc_ss knows what data must be send to the target, hence a callback always returns a string which is a query like value without the leading ? character. in this case callbck() returns: user=admin&pass=xxx where xxx is password on line $ioffsetkeyword in pw_a.txt. as you can see the callback function uses globals, one imports the wordlist into the function while the other allows you to keep track of the current line in the passwordlist. of course we're not going to open the file with each function call that's why the array is imported in the function. [code] [/code] this makes a copy of the query string so it won't be overwritten. i guess there's not much more to tell about this..just use your imagination and you can create almost anything with thc_ss aka sscan. cheers! | zomgwtfbbq | 21-02-2011 09:46 |
| Announcement of new module: sscan | and another update will be probably released this week, i've made the interface dynamic, created directories for templates, callbacks and logfiles. stay tuned.woah this tool is fucking awesome ice, why on earth don't you make a standalone product for this?? i like the jquery dynamic fields as well.. i will dig deeper into this tool, the callbacks are cleverly coded, especially the jquery script part. this is what i meant by adding useful tools that can't be found anywhere. :p the only two things i'd like to mention is that people want better documentation oh and the 'regex detection system' kind of sucks. originality: 10/10 lastability: 10/10 easy to use: 7/10 stability: ?/10 (seems quite stable, but can't judge if i didn't test it out very thoroughly) interface: 8/10 (i love the way callbacks can hide or show elements in the form) overall: 9/10 /thumbs up | Mandara | 04-03-2011 10:00 |
| Announcement of new module: sscan | well i'm only half way the validation stuff i think, atm i just did the form fields, html, css and used some jquery to display the proper fields when selecting an option from the selection fields. not sure, but maybe this weekend i can release it.. it depends on many factors, still busy atm with painting my house. :p | zomgwtfbbq | 04-02-2011 04:27 |
| jquery and other js framework inspiration and reference topic | here are some useful jquery code snippets, these may come in handy if you don't know how to get access to certain elements on your webpage. jquery-snippets-for-developers/" target="_blank">http://addyosmani.com/blog/50-jquery-snippets-for-developers/ | zomgwtfbbq | 26-12-2010 04:15 |
| jquery and other js framework inspiration and reference topic | here's a summary of jquery examples that you can use for marking up plain html tables, one of them is used as well on this site(issue list). jquery/useful-jquery-plugins-to-enhance-html-tables.html" target="_blank">http://www.noupe.com/jquery/useful-jquery-plugins-to-enhance-html-tables.html | zomgwtfbbq | 11-11-2010 08:30 |
| jquery and other js framework inspiration and reference topic | i want to keep this thread as a helpful javascript framework reference for future projects and as a source of inspiration as well. let's keep this thread clean of crap or thank you blabla, only post here if you have anything useful to say that might interest me or other people on this site. you are allowed to post as many sources as you want, as long as it's code based on ext js, jquery, mootools or any other js framework. violating these rules, will result in an instant (ip) ban. :) | zomgwtfbbq | 06-11-2010 06:12 |
| What do you think of the hacksuite cms? | what do you like about it, what would you like to be removed? please let me know your critics as it will aid in making the program better, thanks for your attention. :)i like it as you know, jquery icw a cms, is simply sexy. ;) another thing when will you fix the task issue? i mean it's annoying that when a task has completed that there is still a message saying tasks running..also i'd love to have more penetration testing features since it's a penetration testing cms. but the rest of the core works fine. | Mandara | 25-10-2010 09:40 |
other popular downloads and search keywords
- diy security
- learn how to hack
- programming
- thc_al
- fpassthru
- php
- ssl
- seo
- udp
- hub
- penetration testing
- ddos
- owned
- skin
- database brute Search Tools & Design for Jquery
18-08-2011 02:41:28
New project uploaded! Check it out
16-04-2011 13:04:57
24-03-2011 07:48:43
New video uploaded! Check it out
24-03-2011 07:43:09
New project uploaded! Check it out
19-03-2011 13:15:29
New video uploaded! Check it out
19-03-2011 13:10:08
New project uploaded! Check it out
05-03-2011 15:06:10
New video uploaded! Check it out
05-03-2011 13:26:50
New project uploaded! Check it out
23-02-2011 05:24:57
New video uploaded! Check it out
17-02-2011 09:46:24
New project uploaded! Check it out
09-01-2011 18:27:51
New project uploaded! Check it out
01-01-2011 14:22:22
first of all I wish everyone a happy new year, let's make the best of it. I've started the new year with an update on the suite, it's current version is 0.1.0 and all known issues have been solved. :) also rewrote the rss feed generator for the forum from scratch, added the education section and some other minor stuff not worth mentioning...ok you got me I forgot what they were, blame yesterday's Black label.. :p Cheers and happy hacking. :)
18-12-2010 17:55:07
finally the site is up, although there are some minor issues(that you probably won't even notice), the site is fully functional.. feel free to give us some feedback in the forum. :)
18-08-2010 22:02:13
template almost completed, now for the coding :D
17-08-2010 18:15:33
first mockup of the site
26-07-2010 21:15:33
registered hacksuite.com