extreme
Jan 31 2004, 03:57 PM
Here is the code I wrote a while ago with the help of a friend.. Just to say on start that this is not an exploit.. This is just a way of hiding your IE exploit so no one can see source code of exploit etc.... There are other uses offcourse but you have to use your imagination...
FOr example.. Since you run your exploit as JPG and not HTML, or PHP file, you can link it to avatar on any forum and anyone that "sees" your avatar, gets infected, you can then send picture to someone in HTML email(it downloads automatically)... But that stuff is still in development and could use some help from bigger experts then myself...
This example will just use simple script to show your IP... But executing script is the main point of this so that is all you need...
1. Make sure your webserver has php GD installed..
2. Content of picture.JPG
| CODE |
<?php
header("Content-type: image/jpeg");
$string = $_SERVER['REMOTE_ADDR'];
$im = imagecreatefromjpeg("some_picture.jpg");
$orange = imagecolorallocate($im, 220, 210, 60);
$px = (imagesx($im) - 7.5 * strlen($string)) / 2;
imagestring($im, 3, $px, 9, $string, $orange);
imagejpeg($im);
imagedestroy($im);
?> |
3. putt in same dir some picture that will be shown when you run picture.jpg and name it "some_picture.jpg"
4. In same directory of your Apache webserver, putt one .htaccess file. And content of that file will be:
AddType application/x-httpd-php .php .jpg
Now just visit host.com/picture.jpg via your web browser and voala.. You will see your IP displayed in picture.. Script executed, and you just thought you were just looking at harmless picture...
mrBob
Jan 31 2004, 07:07 PM
wow.. this can be massive
interesting though...
thanx
gonna play with it
mrBob
Jan 31 2004, 08:03 PM
well... played with it
i don't have enough php knowledge to let it run some script
AdmiralB
Feb 1 2004, 01:25 AM
okay this is an achivement and i hope it doesn't break loose as another BIG BIG Virus that bill gates put a price tag on LOl
boshcash
Feb 1 2004, 03:58 AM
nice one , nice idea
, but u can also point ur avatar to pic on an HTTP server owned by you , and check the logs and who requested that pic
AdmiralB
Feb 1 2004, 04:09 AM
theres something i dun understand though how do u ADD SUCH code content to a picture LOL
mrBob
Feb 1 2004, 12:51 PM
| QUOTE (AdmiralB @ Feb 1 2004, 04:09 AM) |
| theres something i dun understand though how do u ADD SUCH code content to a picture LOL |
you don't... but the .htaccess file redirects the picture.jpg as .php
Trojan^kid
Feb 1 2004, 01:06 PM
nice gone try it later
Stoney
Feb 3 2004, 09:22 AM
i was gona try this but couldnt get gd working.
Black Tanuki
Feb 4 2004, 08:59 PM
http://us2.php.net/imagestringI don't see how this is any sort of new information, I mean... It's not a new idea to use PHP to show an image... and using this idea to get IPs isn't anything new either.
Anybody discover any sort of useful script to run in this, yet? At least showing it as the JPG extension could be a powerful way to hide manipulations of other people's scripts on message boards (i.e. making everybody e-mail somebody 1,000 messages with a script hidden in a JPG). They'd have no idea how it happened, and wouldn't know to suspect one image over another.
extreme
Feb 4 2004, 09:49 PM
Well, you could allways use it.. That's what GD is used for.. But try renaming your GD script from PHP to JPG without putting HTACCESS file and it won't read, and try pointing PHP to forum avatar without my modif. and it won't work either...
karate
Feb 5 2004, 01:40 AM
very nice extreme!
popo0421
Feb 5 2004, 05:05 AM
nice code. I try it.
more ....
poly_biosis
Feb 8 2004, 02:55 AM
Very nice code......now its time to play and use a lot of imagination.
arken
Feb 8 2004, 08:17 PM
| QUOTE |
| This is just a way of hiding your IE exploit so no one can see source code of exploit etc.... |
Am I missing something here? The only code I'm seeing executed is server side.. How exactly does this affect client side? I think you might be overestimating your snippet.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
