AlemanOtaku

this make no sense, the importance of kill AQ is the jewell, and with lvl 80 you dont get any drop :/

i dont have succes with phx in gracia, just dont work in every server i try, and i have experiencie using this program in interlude and c4, but with gracia i dont have luck -.-

because a friend, but i dont like it xD i play like 20 minutes and leave hehehehe

maybe with this???

http://varacolaci.com/WolfHeart/?p=22#more-22

glad you found the search button on your own

you are bad xD

use external tools like autoclikcer or l2net (better than walker)

nice server, but maby people dont like donations, all my friends leave old server :/

but, i want to see this new server

L2 Gold time ago... but they reopen, now i thing they are EuroWorld or something like that

I like the Draco Bow with Drako Armor in a Dwarf with sub of archer

best option is corrupted gm xD

the best is from RB

works in www.l2giants.com.ar (really really bad bad server xD its crap hahahah)

i go for ketra, why? more lvl

its working ^^ ty, im using l2net, but walker its more simple to craft and sell/buy in city

maybe someone can make a script for this safe enchant bug????

http://www.maxcheaters.com/forum/index.php?topic=47047.0

on topic, this script works great

www.L2 Inc.com

Gracia 2

5k pjs online

Turning Firefox to an Ethical Hacking Platform

Monday 12 February 2007

Internet is an amazing virtual world where you can "virtually" do anything : gambling, playing, watching movies, shopping, working, “VoIPying”, spying other people and for sure auditing remote systems.

This article is copyrighted Security-Database.com

This article has been updated to a new Framework. The tool is called FireCAT. And it is mind map based tool. Get it here

The security testers community has a large panel of security tools, methodologies and much more to perform their pentests and audit assessments. But what happens if you find yourself weaponless.

No more Top 100 security tools, no more LiveCDs and no more exploitation frameworks. A security auditor without toolbox is like a cop without gun.

Nevertherless, there is maybe a way to rescue yourself from this nightmare situation.

The magical solution could be Firefox and its extensions developed by ethical hackers and coders.

This article comes as an update for what we posted previously about how to switch your firefox to more than an usual simple browser. It was about application auditing

This article has been updated to a new Framework. The tool is called FireCAT. And it is mind map based tool. Get it here

Here is an updated list of useful security auditing extensions :

- Information gathering

    * Whois and geo-location

          o ShowIP : Show the IP address of the current page in the status bar. It also allows querying custom services by IP (right mouse button) and Hostname (left mouse button), like whois, netcraft.

          o Shazou : The product called Shazou (pronounced Shazoo it is Japanese for mapping) enables the user with one-click to map and geo-locate any website they are currently viewing.

          o HostIP.info Geolocation : Displays Geolocation information for a website using hostip.info data. Works with all versions of Firefox.

          o Active Whois : Starting Active Whois to get details about any Web site owner and its host server.

          o Bibirmer Toolbar : An all-in-one extension. But auditors need to play with the toolbox. It includes ( WhoIs, DNS Report, Geolocation , Traceroute , Ping ). Very useful for information gathering phase

    * Enumeration / fingerprinting

          o Header Spy: Shows HTTP headers on statusbar

          o Header Monitor : This is Firefox extension for display on statusbar panel any HTTP response header of top level document returned by a web server. Example: Server (by default), Content-Encoding, Content-Type, X-Powered-By and others.

    * Social engineering

          o People Search and Public Record: This Firefox extension is a handy menu tool for investigators, reporters, legal professionals, real estate agents, online researchers and anyone interested in doing their own basic people searches and public record lookups as well as background research.

    * Googling and spidering

          o Advanced dork : Gives quick access to Google’s Advanced Operators directly from the context menu. This could be used to scan for hidden files or narrow in a target anonymously (via the scroogle.org option) [updated Definition. Thanks to CP author of Advanced Dork]

          o SpiderZilla : Spiderzilla is an easy-to-use website mirror utility, based on Httrack from www.httrack.com.

          o View Dependencies : View Dependencies adds a tab to the "page info" window, in which it lists all the files which were loaded to show the current page. (useful for a spidering technique)

- Security Assessment / Code auditing

    * Editors

          o JSView : The ’view page source’ menu item now opens files based on the behavior you choose in the jsview options. This allows you to open the source code of any web page in a new tab or in an external editor.

          o Cert Viewer Plus : Adds two options to the certificate viewer in Firefox or Thunderbird: an X.509 certificate can either be displayed in PEM format (Base64/RFC 1421, opens in a new window) or saved to a file (in PEM or DER format - and PKCS#7 provided that the respective patch has been applied - cf.

          o Firebug : Firebug integrates with Firefox to put a wealth of development tools at your fingertips while you browse. You can edit, debug, and monitor CSS, HTML, and JavaScript live in any web page

          o XML Developer Toolbar:allows XML Developer’s use of standard tools all from your browser.

    * Headers manipulation

          o HeaderMonitor : This is Firefox extension for display on statusbar panel any HTTP response header of top level document returned by a web server. Example: Server (by default), Content-Encoding, Content-Type, X-Powered-By and others.

          o RefControl : Control what gets sent as the HTTP Referer on a per-site basis.

          o User Agent Switcher :Adds a menu and a toolbar button to switch the user agent of the browser

    * Cookies manipulation

          o Add N Edit Cookies : Cookie Editor that allows you add and edit "session" and saved cookies.

          o CookieSwap : CookieSwap is an extension that enables you to maintain numerous sets or "profiles" of cookies that you can quickly swap between while browsing

          o httpOnly : Adds httpOnly cookie support to Firefox by encrypting cookies marked as httpOnly on the browser side

          o Allcookies : Dumps ALL cookies (including session cookies) to Firefox standard cookies.txt file

    * Security auditing

          o HackBar : This toolbar will help you in testing sql injections, XSS holes and site security. It is NOT a tool for executing standard exploits and it will NOT learn you how to hack a site. Its main purpose is to help a developer do security audits on his code.

          o Tamper Data : Use tamperdata to view and modify HTTP/HTTPS headers and post parameters.

          o Chickenfoot : Chickenfoot is a Firefox extension that puts a programming environment in the browser’s sidebar so you can write scripts to manipulate web pages and automate web browsing. In Chickenfoot, scripts are written in a superset of Javascript that includes special functions specific to web tasks.

- Proxy/web utilities

    * FoxyProxy : FoxyProxy is an advanced proxy management tool that completely replaces Firefox’s proxy configuration. It offers more features than SwitchProxy, ProxyButton, QuickProxy, xyzproxy, ProxyTex, etc

    * SwitchProxy: SwitchProxy lets you manage and switch between multiple proxy configurations quickly and easily. You can also use it as an anonymizer to protect your computer from prying eyes

    * POW (Plain Old WebServer) : The Plain Old Webserver uses Server-side Javascript (SJS) to run a server inside your browser. Use it to distribute files from your browser. It supports Server-side JS, GET, POST, uploads, Cookies, SQLite and AJAX. It has security features to password-protect your site. Users have created a wiki, chat room and search engine using SJS.

- Misc

    * Hacks for fun

          o Greasemonkey : Allows you to customize the way a webpage displays using small bits of JavaScript (scripts could be download here)

    * Encryption

          o Fire Encrypter : FireEncrypter is an Firefox extension which gives you encryption/decryption and hashing functionalities right from your Firefox browser, mostly useful for developers or for education & fun.

    * Malware scanner

          o QArchive.org web files checker : llowing people to check web files for any malware (viruses, trojans, worms, adware, spyware and other unwanted things) inclusions.

          o Dr.Web anti-virus link checker : This plugin allows you to check any file you are about to download, any page you are about to visit

          o ClamWin Antivirus Glue for Firefox : This extension scans every downloaded file automatically with ClamWin.

    * Anti Spoof

          o refspoof : Easy to pretend to origin from a site by overriding the url referrer (in a http request). — it incorporates this feature by using the pseudo-protocol spoof:// .. thus it’s possible to store the information in a "hyperlink" - that can be used in any context .. like html pages or bookmarks

Besides, we keep watching new extensions and we are on the way to develop a new extension for Nmap and Nessus. So keep watching us.

Feel free to send us (info[at]security-database[dot]com) any useful information about security and audit oriented firefox extensions.

This article is copyrighted Security-Database.com

Link and more info here: http://www.security-database.com/toolswatch/Turning-Firefox-to-an-Ethical.html

and here the latest version: http://www.security-database.com/toolswatch/FireCAT-1-4-released.html

nice guide ty

im using MediaFire right now, good speed, more than one download at same time

Name:MediaFire

URL:http://www.mediafire.com/myfiles.php

File-Size:  100MB per file (Free) Up to 10GB per file (Pro Account)

FileTypes: i think all...

Storage of Files: Unlimited storage (Free Account - 1 login per month)

Free Account

Unlimited storage

Up to 100MB per file

Unlimited uploads

Unlimited downloads

Unlimited bandwidth

Image galleries

No sign up required

No software to install

MediaPro

Direct/Hot link to files

Up to 10GB per file

Redundant backups

No Ads

Rollover bandwidth

SSL encryption

Advanced statistics

Priority support

Free Account

well, im having problems with my old account (AlemaNOB) with the ip issues, so i created this account :/ hi all ^^

i cant loggin with this, but not with AlemaNOB, its very rare

the word is not separated, so i say lineyj

the themida that avg detected is in l2.exe, is the only suspicious file in the rar

edit: i forgot to add the l2.exe without themida ¬¬ im uploading again.

edit2: first post edited, link updated without themida, and a description of the system in (bad?) english

This is my custom system for L2 Gracia

Link Updated, now WITHOUT THEMIDA (l2.exe)

http://www.mediafire.com/?bnovgwmgdy3

System: 7-Oct-08

Patched with: L2EncDec v2.92 - http://DStuff.l2wh.com

WITH THIS SYSTEM YOU CAN PLAY ANY GRACIA SERVER WITH HOSTS OR SYSTEM WITHOUT CUSTOM (ARMOR, WEAPONS, ETC)

*In server with hosts, you can use the hosts, or edit the ip in the l2.ini.

*Server with system, copy the ip inside the l2.ini (With L2 FileEdite for Gracia)

Modifications in the system

-L2.exe: l2.exe without Themida. Also disable encode in l2.ini y user.ini.

***********************************************************

-Sin GameGuard: engine.dll y core.dll crackeados. With less size beacouse they are compressed with UPX.

***********************************************************

-Echo.dll: echo allows players on L2J/L2JFree servers to enjoy their gaming experience without GameGuard and without being disconnected after 30s~

of entering the world. (If you get disconnected, maybe you are playing a L2JFree Server, in this case, you need to copy the files in the L2JFree folder and replace the files in the system. The system is by default for L2J servers)

***********************************************************

-noSleep.dll: keeps the l2 framerate constant when not the foreground window - not 100% bug free atm.

***********************************************************

-CT2 Unicode: allows for unicode characters in chat, bbs, mail, also /// commands

***********************************************************

-Systemmsg-e: the color patch.

***********************************************************

-NpcName-e: displays (most) monster & npc level/agro, treasure chest/box as well (The chest/box don't work in L2J/L2JFree)

Fyyre's Patches (http://mfyyre.narod.ru/)

******************************************************************

Modifications in L2.ini & User.ini

-Diable Encode: l2.ini & user.ini in text mode, edit with Notepad.

***********************************************************

-More range of vision.

In L2.ini, Line "Dist=10000"

***********************************************************

-Zoom Hack.

In User.ini, Line "MouseWheelUp=ZoomOutPress Speed=90.0 |set Engine.LineagePlayerController MaxZoomingDist 65535"

***********************************************************

-Window with/without frame.

In L2.ini, Line "UseWindowFrame=False" (False w/o, True with...)

Guide? by AlemanOtaku.