Luigi Auriemma

03 May 2008 Advisories: Multiple vulnerabilities in WebMod 0.48
02 May 2008 Advisories: In-game Denial of Service in Call of Duty 4 1.5
02 May 2008 Fake_players_bug: Quake 3 engine fake players DoS 0.4.2b
automatically compression testing, so is no longer needed to force the -c option with games like Call of Duty 4
30 Apr 2008 MyToolz: myftpidx 0.1.3
added support to non passive FTP connections
24 Apr 2008 Research: NCF/CCF packet format to tcpdump capture format 0.1
converts the CommView NCF and CCF dumps to the classical tcpdump CAP format
23 Apr 2008 MyToolz: Mydown and mydownlib 0.2.3
many improvements (but still backward compatible) and fixes, now mydown is a complete command-line multithread downloader
21 Apr 2008 MyToolz: MORSE2ASCII 0.1
experimental tool which decodes the morse codes from a PCM WAV file using a volume/peak based method, the tool can also decode the morse codes from text files
21 Apr 2008 MyToolz: Morse generator 0.2
simple tool which converts an input file to morse notation (like ...___... for SOS)
21 Apr 2008 MyToolz: DTMF2NUM 0.1b
solved a small bug in the normalization function
20 Apr 2008 Proof-of-concepts: Quake 3 engine directory traversal PoC 0.2.2
added support to Enemy Territory 2.55
18 Apr 2008 Research: Multi engine RCON tool and password guesser 0.2.3b
now retakes automatically the rcon challenge if expires
18 Apr 2008 Advisories: Denial of Service in eTrust Secure Content Manager r8
17 Apr 2008 Advisories: Crash in CA ARCserve Backup 12.0.5454.0
16 Apr 2008 Advisories: Denial of Service in PunkBuster (22 Oct 2007)
16 Apr 2008 Advisories: Directory traversal in BigAnt Messenger 2.2
12 Apr 2008 Advisories: NULL pointer in Nero MediaHome 3.3.3.0
12 Apr 2008 Advisories: Upload directory traversal in HP LoadRunner 9.10
12 Apr 2008 Password_recovery: HP LoadRunner password decoder 0.1
decodes the passwords created for LoadRunner with CryptonApp
11 Apr 2008 Advisories: Directory traversal and multiple Denials of Service in HP OpenView NNM 7.53
11 Apr 2008 Advisories: Denial of Service in SmarterMail 5.0.2999
08 Apr 2008 Advisories: Memory corruption in HP OpenView NNM 7.53
removed the yesterday's advisory since it was on an old version and modified the latest one
08 Apr 2008 Advisories: Memory corruptions in HP OpenView NNM 7.53
07 Apr 2008 Advisories: Multiple vulnerabilities in HP OpenView NNM 7.53
06 Apr 2008 Research: Ventrilo RCon tool 0.2.1
added the handling of subchans and batch files
06 Apr 2008 Research: Ventrilo RCon tool 0.2
rewritten using the ventilofp code (but Ventrilo 3.x is not supported yet), added support to version 2.2, added the /chan custom commands which allow to create/delete/list all the available chans and many bugfixes
06 Apr 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.6
solved the Ventrilo 3.x handshake problem
05 Apr 2008 MyToolz: DTMF2NUM 0.1a
removed the function which skipped the start/end samples since useless and added a Makefile
02 Apr 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.5
fixed a bug with version 3.x and in fastsend, added an option for setting the phonetic
02 Apr 2008 Fake_players_bug: Flashchat Fake Players DoS 0.1.2c
rewritten the function which loads user:pass from file
01 Apr 2008 Advisories: Directory traversal in LANDesk Management Suite 8.80.1.1
31 Mar 2008 MyToolz: DTMF2NUM 0.1
tool for decoding DTMF and MF tones from PCM wave files
29 Mar 2008 Advisories: Directory traversal in 2X ThinClientServer v5.0_sp1-r3497
29 Mar 2008 Advisories: Denial of Service in SLMail Pro 6.3.1.0
29 Mar 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.4
added support for the new Ventrilo 3 centralized handshake and a verbose and fast join/exit options
27 Mar 2008 Proof-of-concepts: LANDesk Classroom Manager / LanSchool <= 7.0.3.5 fun and bugs 0.1.1
corrected the IP based encryption algorithm
26 Mar 2008 MyToolz: ZipComp 0.4.1
large files and big endian support
26 Mar 2008 Advisories: Multiple vulnerabilities in solidDB 06.00.1018
26 Mar 2008 Proof-of-concepts: LANDesk Classroom Manager / LanSchool <= 7.0.3.5 fun and bugs 0.1
25 Mar 2008 MyToolz: myftpidx 0.1.2
solved a small bug and added options for verbose output, full URL, choosing of fields to visualize and HTML output
24 Mar 2008 MyToolz: mydownlib 0.2.2a
solved bug with e-mail passwords
24 Mar 2008 MyToolz: myftpidx 0.1.1a
solved bug with e-mail passwords
23 Mar 2008 MyToolz: myftpidx 0.1.1
22 Mar 2008 MyToolz: myftpidx 0.1
tool for indexing recursively any file available inside an FTP server
21 Mar 2008 Research: Gslist 0.8.4b
improvements of the -Q option
21 Mar 2008 Advisories: Buffer-overflow in ASUS Remote Console 2.0.0.19
20 Mar 2008 Advisories: Multiple heap overflows in xine-lib 1.1.11
19 Mar 2008 Research: Gslist 0.8.4a
fixed bug in -z
19 Mar 2008 Research: Gslist 0.8.4
fixed some bugs added pings in the -Q queries and the possibility of querying a custom list of servers
19 Mar 2008 Research: GS enctype1 servers list decoder 0.1a
only removed the static buffers and added the enctype1_wrapper function
19 Mar 2008 Research: GS enctype2 servers list decoder 0.1.1a
only removed the static buffers and added the enctype2_wrapper function
18 Mar 2008 MyToolz: DAA2ISO 0.1.4
added password/encryption support, solved some micro bugs or compatibility problems and added some small enhancements
18 Mar 2008 MyToolz: UIF2ISO 0.1.3
added password/encryption support, solved some micro bugs or compatibility problems and added some small enhancements
16 Mar 2008 Advisories: Update about vlcboffs
the buffer-overflow in ParseSSA in VLC has not been patched in version 0.8.6e
16 Mar 2008 Advisories: Buffer-overflow in BootManage TFTPD 1.99
16 Mar 2008 Research: ISI rFactor files decrypter 0.1.1
fixed a bug in the decryption function
16 Mar 2008 Research: ISI rFactor files decrypter 0.1
decrypter for the meshes/GMT files which can be used in this game
16 Mar 2008 Fake_players_bug: Flashchat Fake Players DoS 0.1.2a
adjusted some free()
14 Mar 2008 Advisories: Multiple vulnerabilities in Net Inspector 6.5.0.828
12 Mar 2008 Advisories: Format string in McAfee Framework 3.6.0.569 (ePolicy Orchestrator 4.0)
10 Mar 2008 Advisories: Vulnerabilities in Timbuktu Pro 8.6.5
10 Mar 2008 Advisories: Multiple vulnerabilities in ASG-Sentry 7.0.0
08 Mar 2008 Advisories: NULL pointer in Remotely Anywhere 8.0.668
08 Mar 2008 Advisories: Directory traversal in Argon Client Management Services 1.31
08 Mar 2008 Advisories: Directory traversal and NULL pointer in Acronis PXE Server 2.0.0.1076
08 Mar 2008 Advisories: Invalid memory access in Acronis True Image Group Server 1.5.19.191
08 Mar 2008 Advisories: NULL pointer in Acronis True Image Windows Agent 1.0.0.54
08 Mar 2008 Advisories: Denial of Service in PacketTrap TFTP server 2.0.3901.0
07 Mar 2008 Advisories: Multiple vulnerabilities in MailEnable Professional/Enterprise 3.13
06 Mar 2008 Advisories: Directory traversal in MicroWorld eScan Server 9.0.742.98
05 Mar 2008 Fake_players_bug Quake 3 engine fake players DoS 0.4.2a
05 Mar 2008 Advisories: Multiple vulnerabilities in Perforce Server 2007.3/143793
04 Mar 2008 Advisories: Arbitrary commands execution in Versant Object Database 7.0.1.3
03 Mar 2008 Advisories: Heap overflow in Borland VisiBroker Smart Agent 08.00.00.C1.03
02 Mar 2008 Advisories: Multiple vulnerabilities in Borland StarTeam MPX 6.7
02 Mar 2008 Advisories: Multiple integer overflows in Borland StarTeam server 10.0.0.57
28 Feb 2008 Advisories: Denial of Service in SmsGate 1.1n
27 Feb 2008 Advisories: Buffer-overflow in the passwords handling of Trend Micro OfficeScan 8.0 and possibly other products
26 Feb 2008 Password_recovery: Steam password decoder 0.2
completely rewritten, multi-platform, easier to use and no longer DLL dependent (thanx to an anonymous)
25 Feb 2008 Advisories: NULL pointer in SurgeFTP 2.3a2
25 Feb 2008 Advisories: Format string and buffer-overflow in SurgeMail 38k4
25 Feb 2008 Proof-of-concepts: SIDVault <= 2.0f "+" strstr Denial of Service 0.1
22 Feb 2008 Advisories: Multiple vulnerabilities in Double-Take 5.0.0.2865
21 Feb 2008 Advisories: Denial of Service in Zilab Remote Console Server 3.2.9
21 Feb 2008 Advisories: Multiple vulnerabilities in Zilab Chat and Instant Messaging 2.1
20 Feb 2008 Advisories: Heap overflow in Sybase MobiLink 10.0.1.3629
19 Feb 2008 Advisories: Multiple buffer-overflow in NowSMS v2007.06.27
19 Feb 2008 Advisories: Directory traversal in SCI Chat v3.4.9
18 Feb 2008 Advisories: Access violation and limited informations disclosure in webcamXP 3.72.440.0
17 Feb 2008 Advisories: NULL pointer crash in freeSSHd 1.20
17 Feb 2008 Proof-of-concepts: Pragma FortressSSH <= 5.0.4.293 Denial of Service 0.1.1
better protocol compatibility
16 Feb 2008 Advisories: Two heap overflow in Foxit WAC Server 2.0 Build 3503
16 Feb 2008 Proof-of-concepts: ProSSHD 1.0 20070707 resources eater 0.1
16 Feb 2008 Proof-of-concepts: VanDyke VShell 3.0.3-569 exception message 0.2
PoC rewritten
14 Feb 2008 Research: Teamspeaklist 0.1.1
fixed a problem with swapped IP addresses, thanx a lot to Steven Hartland
14 Feb 2008 MyToolz: DAA2ISO & UIF2ISO
no updates, I have simply separated the executable and the source code in two packages
12 Feb 2008 Advisories: Directory traversal and DoS in WinIPDS G52-33-021
11 Feb 2008 Advisories: Unicode buffer-overflow in RPM Remote Print Manager 4.5.1.11
11 Feb 2008 Advisories: Format string and buffer-overflow in Lst Network Print Server 9.4.2 build 105
11 Feb 2008 Advisories: Format string and DoS in Opium4 OPI and cyanPrintIP servers 4.10.x
10 Feb 2008 Advisories: Directory traversal in SafeNet Sentinel Protection and Key Server 7.4.1.0
10 Feb 2008 Advisories: Multiple vulnerabilities in EztremeZ-IP File and Printer Server 5.1.2x15
08 Feb 2008 Advisories: NULL byte writing in Emerald, RadiusNT and Air Marshal
07 Feb 2008 Advisories: Multiple vulnerabilities in Ipswitch Instant Messaging 2.0.8.1
06 Feb 2008 Advisories: Logs visualization in WS_FTP Server Manager 6.1.0.0
06 Feb 2008 Advisories: Chat vulnerabilities in TinTin++ 1.97.9
04 Feb 2008 Advisories: Multiple vulnerabilities in WinCom LPD Total 3.0.2.623
04 Feb 2008 Advisories: Multiple vulnerabilities in SAPlpd 6.28
04 Feb 2008 Advisories: Socket termination in FTP Log Server 7.9.14.0
01 Feb 2008 Password_recovery: Winzip wjf xflags password decrypter 0.1
decrypts all the xflags passwords in the job files
31 Jan 2008 MyToolz: Signsrch 0.1.4
finally signsrch can be called from any location, it's enough that the signature file is in the same folder of signsrch
31 Jan 2008 MyToolz: Simple UDP proxy/pipe 0.3a
big endian compatibility of the -a option
31 Jan 2008 Advisories: Denial of Service in Print Manager Plus 7.0.127.16
31 Jan 2008 Patches: Half-Life x.1.1.1e (Windows and Linux) hlfreeze/hl-headnut/csdos/btbp fix 0.1.1
added an experimental fix, available only for Windows, for the Born to be pig attack
28 Jan 2008 MyToolz: DAA2ISO 0.1.3
automatic mini GUI for Windows, big endian support and readme: now choosing the DAA/UIF file to convert is just the matter of a couple of clicks without using the console
28 Jan 2008 MyToolz: UIF2ISO 0.1.2
automatic mini GUI for Windows, big endian support and readme
27 Jan 2008 Advisories: Crash in BitTorrent 6.0.1 and uTorrent 1.7.6 through webui
27 Jan 2008 Research: GSPlayers 0.1.1
now is possible to choose a custom search query
24 Jan 2008 Advisories: Multiple crashes in Steamcast 0.9.75
21 Jan 2008 MyToolz: DAA2ISO 0.1.2
fseek 64 bit on Mingw and Makefile
21 Jan 2008 MyToolz: UIF2ISO 0.1.1
fseek 64 bit on Mingw and Makefile
16 Jan 2008 Advisories: Peers static overflow in BitTorrent 6.0 and uTorrent 1.7.5
13 Jan 2008 Proof-of-concepts: Quicktime Player <= 7.3.1.70 HTTP error message buffer-overflow 0.1
full proof-of-concept which can be transformed in a code execution exploit simply passing the offset, the return address and the shellcode you want
13 Jan 2008 Research: Multi engine RCON tool and password guesser 0.2.3a
-x forces the scanning in any case
10 Jan 2008 Advisories: Buffer-overflow in Quicktime Player 7.3.1.70
10 Jan 2008 Proof-of-concepts: SAP MaxDB <= 7.6.03.07 remote command execution 0.1.1
added major verbosity and customization
09 Jan 2008 Advisories: Pre-auth remote commands execution in SAP MaxDB 7.6.03.07
08 Jan 2008 Research: Multi engine RCON tool and password guesser 0.2.3
added an option which ignores the data sent by the server, useful in some rare cases for the RCON DoS
08 Jan 2008 Advisories: rmff_dump_header heap-overflow in Xine 1.1.9
08 Jan 2008 Advisories: sdpplin_parse heap-overflow in VLC 0.8.6d
08 Jan 2008 Advisories: report buffer-overflow in xtacacsd 4.1.2
04 Jan 2008 Proof-of-concepts: mySQL <= 6.0 (yaSSL <= 1.7.5) pre-auth buffer-overflow 0.1
04 Jan 2008 Advisories: Multiple vulnerabilities in yaSSL 1.7.5
04 Jan 2008 Advisories: Crash in Foxit WAC Server 2.1.0.910
02 Jan 2008 MyToolz: Simple TCP proxy/datapipe 0.4.3
fixed the endian of the ports dumped with -d
02 Jan 2008 Advisories: Multiple vulnerabilities in Georgia SoftWorks SSH2 Server 7.01.0003
02 Jan 2008 Advisories: Buffer-overflow and format string in White_Dune 0.29beta791
02 Jan 2008 Advisories: Denial of Service in Pragma FortressSSH 5.0.4.293
02 Jan 2008 Advisories: Denial of Service in Pragma TelnetServer 7.0.4.589
02 Jan 2008 Advisories: Exception message in Seattle Lab Telnet Server 4.1.1.3758
02 Jan 2008 Advisories: Exception message in VanDyke VShell 3.0.3.569
28 Dec 2007 Advisories: Buffer-overflow in CoolPlayer 217
28 Dec 2007 Advisories: Details about the hlfreeze/hl-headnut/csdos/"Born to be pig" bugs
added informations about the "Born to be pig" attack
27 Dec 2007 Advisories: Buffer-overflow in Extended Module Player 2.5.1
27 Dec 2007 Advisories: Multiple vulnerabilities in libnemesi 0.6.4-rc1
27 Dec 2007 Advisories: Multiple vulnerabilities in Feng 0.1.15
26 Dec 2007 Research: XWB/ZWB files unpacker 0.3.1
added support to version 42/43
25 Dec 2007 Research: FSB files extractor 0.2.4
added initial support to FSB4 files
25 Dec 2007 Fake_players_bug: Flashchat Fake Players DoS 0.1.2
24 Dec 2007 Advisories: Unicode buffer-overflow in Zoom Player 6.00b2
24 Dec 2007 Advisories: Buffer-overflow and format string in VideoLAN VLC 0.8.6d
24 Dec 2007 Advisories: Double directory traversal in ImgSvr 0.6.21
24 Dec 2007 Fake_players_bug: Half-Life fake players bug (no auth) 0.3.1
added support to the Born to be pig attack
24 Dec 2007 MyToolz: DAA2ISO 0.1.1
anti output file overwrite and better multi-volume handling (filenames)
24 Dec 2007 MyToolz: UIF2ISO 0.1a
if the output file already exists the tool will ask if you want to overwrite it
21 Dec 2007 Advisories: Buffer-overflow in WinUAE 1.4.4
19 Dec 2007 Advisories: Array overflow in id3lib (devel CVS)
19 Dec 2007 Advisories: Some buffer-overflow in ProWizard 1.62
17 Dec 2007 Advisories: Two vulnerabilities in Cherokee r952 for Windows
17 Dec 2007 Advisories: Heap overflow in PeerCast 0.1217 / SVN 344
16 Dec 2007 Fake_players_bug: Quake 3 engine fake players DoS 0.4.2
added options for only one fake player, forcing q3unban, seconds between players and a couple of fixes
10 Dec 2007 Advisories: Multiple vulnerabilities in BarracudaDrive 3.7.2
10 Dec 2007 Advisories: Multiple vulnerabilities in BadBlue 2.72b
10 Dec 2007 Advisories: Filesystem access in DOSBox 0.72
09 Dec 2007 Research: Punkbuster master server file downloader 0.1.1
solved a buffer bug in data receiving, added more runtime info and the option for choosing the download rate
07 Dec 2007 Advisories: Upload directory traversal in Easy File Sharing 4.5
07 Dec 2007 Advisories: Two vulnerabilities in Simple HTTPD 1.38
05 Dec 2007 Advisories: Limited upload directory traversal in HTTP File Server 2.2a / 2.3 beta (build #146)
05 Dec 2007 TestingToolz: Generic custom HTTP file uploader 0.1
simple tool for uploading files (POST + mime) deciding the name of the destination file
04 Dec 2007 Research: GS peerchat IRC proxy 0.3.2a
bugfix of the new -L option
04 Dec 2007 Research: GS peerchat IRC proxy 0.3.2
added the -L option for enabling the LOGIN 1 or 4 command
04 Dec 2007 Fake_players_bug: Flashchat Fake Players DoS 0.1.1
fixed some bugs, added more compatibility and a couple of new options
04 Dec 2007 Fake_players_bug: Lithtech engine Fake Players DoS 0.2
added almost all the games which support the Lithtech engine (for example F.E.A.R.), in future I will add also the working GUIDs of nolf2 and tron20
03 Dec 2007 MyMusic: Sonathack
great non-techno mini-track in exactly 2 minutes
03 Dec 2007 Advisories: Multiple vulnerabilities in Firefly Media Server (mt-daapd) 2.4.1 / SVN 1699
03 Dec 2007 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.3
added initial (and not so useful) support to 3.0.x servers, the centralized authorization is not implemented yet
03 Dec 2007 Fake_players_bug: Flashchat Fake Players DoS 0.1
03 Dec 2007 Patches: jampded Windows 1.0.0.0 and 1.0.1.0 q3infoboom fix 0.1
a bit late but I have fixed the q3infoboom bug in this game
27 Nov 2007 MyToolz: DAA2ISO 0.1
tool for converting the DAA files (Direct Access Archive, used by PowerISO) to ISO
25 Nov 2007 MyToolz: UIF2ISO 0.1
tool for converting the UIF files (Universal Image Format, readable by MagicISO) in ISO
23 Nov 2007 Patches: AXS v3.00 enhancements 0.1
Enhancements for AXS: 96000 hz, full window, F9 descent fix, low case filenames, anti path disclosure and possibly other things I forgot
21 Nov 2007 Fake_players_bug: Quake 3 engine fake players DoS 0.4.1
added only a ">> 16" for a better randomization of the strings
21 Nov 2007 Patches: Quake 3 engine unban fix (Windows and Linux) 0.1
20 Nov 2007 Advisories: Two DoS in I Hear U 0.5.6
19 Nov 2007 Research: PunkBuster online GUID checker 0.1.6
added other 4 games
19 Nov 2007 Research: FSB files extractor 0.2.3
added a guessing function which tries to build the extension of the filenames truncated by the FSB archives and adjusted the padding when rebuilding the FSB files
19 Nov 2007 Advisories: Static buffer overflow in Rigs of Rods 0.33d
thx to n00b for making me aware of this game
18 Nov 2007 Advisories: Crash in LIVE555 Media Server 2007.11.01
special thanx to Alberto "Khlero", bella scle'! 8-)
12 Nov 2007 News: stristr
I have found a bug in the stristr, in short "findme" is not found in "ffindme". So I have recompiled all the about 60 tools (the source code has not been touched) and the list of updated executables is here
12 Nov 2007 Password_recovery: Reach-a-Mail passwords decoder 0.1
08 Nov 2007 MyMusic: Cagai
03 Nov 2007 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.3
added the flooding option
01 Nov 2007 Patches: Quake 3 engine RCON half-second limit disabler (Windows and Linux) 0.1.1
added the pattern for Jedi Knight II Linux which should work also with many other old Linux executables which use the Q3 engine
31 Oct 2007 TestingToolz: Live for Speed demo/S1/S2 packets modifier example 0.1
useless and basic proxy tool for modifying the packets of this game, just for fun
28 Oct 2007 Research: GS peerchat IRC proxy 0.3.1
added options for dropping client and server commands and for modifying the IP field
28 Oct 2007 MyToolz: Mini Winamp input plugins player/converter 0.1
basic command-line tool which takes a Winamp input plugin and an input file and plays it or write a wave file or shot the raw pcm data to stdout, very useful in case you want to write a wrapper too
27 Oct 2007 MyMusic: 3 new tracks made with AXS
27 Oct 2007 Proof-of-concepts: q3unban plugin for sudppipe 0.1
27 Oct 2007 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.2
added support for 0.2.2 servers
26 Oct 2007 Advisories: assert() DoS in World in Conflict 1.001
26 Oct 2007 Proof-of-concepts: Banned clients can join the servers which use the Quake 3 engine 0.1
26 Oct 2007 Fake_players_bug: Armed Assault Fake Players DoS 0.1
works perfectly in LAN but probably requires something like authorization for internet servers
26 Oct 2007 Fake_players_bug: Quake 3 engine fake players DoS 0.4
rewritten in most parts, now supports automatic unbanning too
26 Oct 2007 Research: GameZone.com URL decoder 0.1.1
better handling of download URLs
25 Oct 2007 Fake_players_bug: Battlefield 1942 invisible Fake Players DoS 0.1.2
added some command-line options, including the flooding one
25 Oct 2007 MyToolz: QuickRVA 0.1.2
solved many bugs and now the input fields are both rva and file to avoid problems with big files. There is still something I need to do with the handling of the keys but it's ok for the moment
25 Oct 2007 MyToolz: Calcc 0.1.3
solved a micro bug with ~ and !, for example the operation (~1)"0xff wasn't correct
19 Oct 2007 Proof-of-concepts: q3cfilevar proof-of-concept for Quake 3 1.32c Windows 0.1
wow, I though it was impossible to create a so mad thing but I was wrong
19 Oct 2007 Research: ORK files decrypter and extractor 0.1.1
added the output folder and the overwrite options
19 Oct 2007 Research: orkdec filenames dumper 0.1
tool for loading the games which use the ORK archives and automatically dumps all the loaded filenames in a text file that can be used with orkdec for the subsequent extraction
18 Oct 2007 Proof-of-concepts: q3cbof proof-of-concept for Quake 3 1.32 and 1.32c (Windows) 0.1
17 Oct 2007 Proof-of-concepts: Quake 3 engine directory traversal PoC 0.2.1
added support for the Call of Duty series
16 Oct 2007 Research: PunkBuster messenger 0.1
tool for sending anonymous external messages to any server which uses PunkBuster: aa, bf1942, bf2, bf2142, bfv, cod, cod2, cod4, doom3, et, etqw, fear, moha, prey, quake3, quake4, rvs and vegas, rtcw, sof2 and others
16 Oct 2007 Research: PunkBuster online GUID checker 0.1.5
added Call of Duty 4 and Ultima Online, although not yet supported online
16 Oct 2007 Research: Battlefield 2 and 2142 bitstream sniffer 0.1
experimental tool/hooker for monitoring the reading and the writing of the network protocol used in the BF2 and BF2142 games
16 Oct 2007 MyToolz: Signsrch 0.1.3
other optimizations to the search function and fixed a problem with DOUBLEs
14 Oct 2007 MyToolz: Signsrch 0.1.2
added the quick search function provided by Andrew (http://www.team5150.com/~andrew/) and an option for scanning only the .text section of the PE files
13 Oct 2007 Advisories: Clients buffer-overflow in Live for Speed 0.5X10
13 Oct 2007 MyMusic: Easy destruction
experimental progressive mix of about half hour made some months ago
13 Oct 2007 Fake_players_bug: Generic TCP Fake Players DoS 0.2.2
now the -t and -T options require the time in milliseconds
13 Oct 2007 Fake_players_bug: Battlefield 1942 invisible Fake Players DoS 0.1.1
fixed the problem with offline servers
09 Oct 2007 Advisories: NULL pointer crash in World in Conflict 1.000
06 Oct 2007 News: search & aspect
finally I have added the search function for searching my stuff through my html pages and as you can see now the website looks better
05 Oct 2007 Advisories: Format string in The Dawn of Time 1.69s beta4
05 Oct 2007 Advisories: Multiple vulnerabilities in Dropteam 1.3.3
04 Oct 2007 Patches: Quake 3 engine universal directory traversal fix (Windows) 0.1
yes I did it again, works with almost any Windows executable (CoD* excluded). For comments, ideas and other feedback refer to my Forum
01 Oct 2007 Video: New Video section
I have released some new videos about the recent vulnerabilities I have found and one about q3dirtrav http://www.youtube.com/profile_videos?user=aluigivideo&p=r
01 Oct 2007 Advisories: Format string in the Doom 3 engine through PB
01 Oct 2007 Advisories: Format string in F.E.A.R. 1.08 through PB
01 Oct 2007 Advisories: Unexploitable buffer-overflow in America's Army 2.8.2 through PB
01 Oct 2007 Advisories: Two buffer-overflow in FSD V2.052 d9 and FSFDT V3.000 d9
01 Oct 2007 Research: Punkbuster master server file downloader 0.1
a not so useful tool for downloading pbpat.1, pbsec.cl, pbsec.sv, pbq.4, pbq.5 and possibly other files
28 Sep 2007 Research: Race WTCC files encrypter/decrypter 0.2.1
added support to version 3
28 Sep 2007 Research: PunkBuster online GUID checker 0.1.4
added Medal of Honor Airborne
25 Sep 2007 Proof-of-concepts: updated both the PoC and the advisory about the recent Doomsday vulnerabilities, the format string is exploitable through a malicious client and has been removed the MSG_Write bug
25 Sep 2007 MyToolz: mydownlib 0.2.2
added the adding of content and the type of query
21 Sep 2007 Patches: Speed Racer no-password
simple any-password-is-valid patch for this old MS-DOS game
21 Sep 2007 News: Fixes
I have finally solved the problem of not-freed threads on Linux in some of my tools: cmdsock, cogs_irc, gs_login_server, lanfile, lfsfp, multircon, onlywebs, peerchat_irc, peerchat_proxy, peerchat_server, proxymini, stcppipe, tcpcrlf, ubichat_irc, ventrcon, ventrilo_proxy
21 Sep 2007 MyToolz: Proxymini 0.2a
solved the contemporary usage of inet_ntoa in verbose mode (thanx Thomas Henlich!)
19 Sep 2007 Advisories: Multiple vulnerabilities in the gMotor2 engine
the problems showed in the rFactor advisory applied to the other games based on the same engine
16 Sep 2007 Fake_players_bug: Multi Theft Auto Fake Players DoS 0.1
14 Sep 2007 Research: PS2/VXBG files extractor/rebuilder 0.1
extractor and rebuilder for the PS2 files used in games like Siberia 1
14 Sep 2007 Research: Halo proxy data decrypter 0.1.2
added the reading and visualization of the main bitstream, so will be visualized not the raw decrypted packet but the data block in it
14 Sep 2007 Proof-of-concepts: Alien Arena 2007 <= 6.10 format string and clients disconnection 0.1.2
now the format string attack works versus the non-dedicated server too (thanx to Secunia!)
12 Sep 2007 Research: FSB files extractor 0.2.2a
added cr-lf to the output files generated with the new option of yesterday
11 Sep 2007 Proof-of-concepts: Skulltag <= 0.97d-beta4.1 heap overflow 0.1.1
increased the size of the packet (for Linux servers), strangely now my Windows server no longer crash using both the old and new PoC... misteries
11 Sep 2007 Research: FSB files extractor 0.2.2
added only an option for storing the name of the extracted files in a specific file
11 Sep 2007 Patches: Halo 1.04 haloloop fix 0.1
11 Sep 2007 MyMusic: 4_patterns_test
released the mp3
10 Sep 2007 Fake_players_bug: Battlefield 2/2142 invisible Fake Players DoS 0.1.1
added support for bf2 demo
10 Sep 2007 Proof-of-concepts: Alien Arena 2007 <= 6.10 format string and clients disconnection 0.1.1
added the handling of loopback users (probably work only if the server has no firewall) and optimized the udpspoof function
09 Sep 2007 Research: Online cd-key verifier for games that use the Gamespy cd-key SDK 0.1.2
improved the checking of the cdkeys located in a file
09 Sep 2007 Research: Race WTCC files encrypter/decrypter 0.2
added support for version 2 used in RACE07
08 Sep 2007 Proof-of-concepts: OpenTTD <= 0.5.3-RC3 server termination 0.1
bug found indipendently by me
08 Sep 2007 Proof-of-concepts: Mumble <= 1.0.0 clients crash/freeze 0.1
08 Sep 2007 Fake_players_bug: Battlefield 2/2142 invisible Fake Players DoS 0.1
thanx to SomaFM for the example packet
07 Sep 2007 Advisories: Format string and buffer-overflow in CellFactor Revolution 1.03
07 Sep 2007 MyMusic: 4_patterns_test
my first track using AXS, this program rox!
05 Sep 2007 Advisories: Format string and clients disconnection in Alien Arena 2007 6.10
04 Sep 2007 Research: GS peerchat IRC proxy 0.3
completely rewritten for maximum compatibility and for avoiding banning
04 Sep 2007 Research: Peerchat IP decoder/encoder 0.2
04 Sep 2007 News: msreborn removed
it was too old, bugged and unsupported
02 Sep 2007 Proof-of-concepts: Savage <= build 2 oct 2006 bugs 0.1
how to loose time finding bugs already patched...
02 Sep 2007 Fake_players_bug: Savage Fake Players DoS 0.1.1
01 Sep 2007 Patches: Halo 1.04 haloboom fix 0.1
31 Aug 2007 Fake_players_bug: Battlefield 1942 invisible Fake Players DoS
works versus all the Battlefield 1942 family (1942, vietnam, sw and r2r)
29 Aug 2007 Advisories: Multiple vulnerabilities in Doomsday 1.9.0-beta5.1
29 Aug 2007 MyToolz: QuickRVA 0.1.1
added keyboard shortcuts and hex dump navigation
27 Aug 2007 MyToolz: QuickRVA 0.1
cool and easy to use RVA converter with many functions like drag'n'drop, files and processes loading, C style text/binary search, hex visualization of the data at current offset and more
27 Aug 2007 Proof-of-concepts: Quake 3 engine directory traversal PoC 0.2
added GUI and selection of processes
23 Aug 2007 Advisories: Heap overflow in Skulltag 0.97d-beta4.1
23 Aug 2007 Advisories: Multiple denial of service in Soldat 1.4.2/2.6.2
23 Aug 2007 Advisories: Multiple vulnerabilities in Vavoom 1.24
23 Aug 2007 Advisories: hell bell bug in odamex 0.2a
23 Aug 2007 Research: PunkBuster online GUID checker 0.1.3
added Enemy Territory Quake Wars
23 Aug 2007 Research: Cdkey to Punkbuster GUID 0.3
it's still not able to give the exact guid but now gives you all the possive guids for each specific game
22 Aug 2007 Advisories: Buffer-overflow in the Asura engine
22 Aug 2007 Patches: Battlefield 1942 Secret Weapons of WWII Demo v1.45 no-checksum
removes the checksum limitation in case you modify your files
18 Aug 2007 Advisories: Unexploitable buffer-overflow in the logging function of the Unreal engine
18 Aug 2007 Advisories: Multiple vulnerabilities in Toribash 2.71
18 Aug 2007 Advisories: Multiple vulnerabilities in rFactor 1.250
18 Aug 2007 Password_recovery: Toca Race Driver series accounts passwords decoder 0.1
decodes all the passwords in the Codemasters\Core_Online registry key
15 Aug 2007 Proof-of-concepts: Quake 3 engine directory traversal PoC 0.1
the PoC for the bug found by Ludwig and Thilo over one year ago
14 Aug 2007 Advisories: Multiple vulnerabilities in Live for Speed 0.5X10
14 Aug 2007 Advisories: Multiple vulnerabilities in Babo Violent 2 2.08.00
14 Aug 2007 Advisories: Crash in Zoidcom 0.6.7
14 Aug 2007 Password_recovery: CoreFTP password decoder 0.1
decodes any password from the command-line or the registry
14 Aug 2007 News: Forum
forum.aluigi.org
10 Aug 2007 News: first preview video about new bugs
yesterday morning I have uploaded my first video on Youtube, it's an experiment about showing some vulnerabilities on which I'm working so let me know what you think about it
10 Aug 2007 TestingToolz: Tcpdump format UDP 2 TCP converter 0.1.1
solved a mini bug, double-handshake for the same stream
09 Aug 2007 MyMusic: Acido progressivo
09 Aug 2007 TestingToolz: Tcpdump format UDP 2 TCP converter 0.1
simple tool written for converting the UDP packets of a PCAP file in a TCP stream, useful for tracking the packets flow with Wireshark
08 Aug 2007 Research: BOR music player 0.1.1
added support for multichannel audio
07 Aug 2007 Research: WPE packet format to tcpdump capture format 0.2
now the TCP connections are handled perfectly
06 Aug 2007 Password_recovery: *VNC password decoder 0.2
added better support for hex and raw input passwords and the decoding of any password in the registry key used by VNC
05 Aug 2007 Research: Babo Violent 2 RCON 0.1
simple tool which works as a RCON client for the Babo Violent 2 servers
04 Aug 2007 MyToolz: Simple TCP proxy/pipe 0.4.2
added a very useful option for dumping the content of the connections in tcpdump format
04 Aug 2007 Research: Gslist 0.8.3 BETA
well I have decided to release this version so anyone can test it
30 Jul 2007 MyToolz: Web passwords and links checker 0.2
I have rewritten many parts of this old code
30 Jul 2007 Research: Steamlist 0.1a
changed only the default master server
25 Jul 2007 Research: MD5 hashes of the WADs for the Doom engine 0.2
now it's the double, I have updated also zdaemonfp in the Fake Players section
28 Jun 2007 MyMusic: Dreamz and Tape Revenge
two new cool tracks created just in these days, old style dream progressive 8-)
25 Jun 2007 Research: FSB files extractor 0.2.1
solved a bug with files overwritten if they have the same name (FSB archives have filenames truncated at 30 or less chars) and added an experimental rebuilding option
22 Jun 2007 MyMusic: various new XM
released some new tracks
22 Jun 2007 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.1
added support for 0.2 servers, if they are protected they can be filled without knowing the password!
16 Jun 2007 Fake_players_bug: Live for Speed Fake Players DoS 0.2b
updated for the new 0.5X version and possibly older and newer releases
30 May 2007 MyToolz: mydownlib 0.2.1
solved some small bugs and added major compatibility with gzipped streams, all the programs updated yesterday now contain this new code
28 May 2007 Research: AWCamREC 0.2.1a
update the function which downloads the list of names from the servers
28 May 2007 Research: JmeetREC 0.2
rewritten completely, now it's just like awcamrec
28 May 2007 MyToolz: Calcc 0.1.2
added a small support to float numbers (only conversion and visualization, no operation) and now the bit swapping operation must be invoked with w
28 May 2007 MyToolz: mydownlib 0.2
this is a simple library I have written for implementing HTTP client capabilities in my tools
27 May 2007 MyToolz: Offset file unzipper 0.3
faster, quicker and better
20 May 2007 Research: Race WTCC files encrypter/decrypter 0.1.4
solved a small bug in the size of the data to decrypt with Blowfish, anyway this doesn't seem to affect a lot the resulted files
18 May 2007 Fake_players_bug: Live for Speed Fake Players DoS 0.2a
updated the CRC for the new 0.5W version
17 May 2007 Research: WPE packet format to Tcpdump capture format 0.1
simple tool for converting the files saved with Winsock Packet Editor (WPE) Pro, supports both PAC and TXT
16 May 2007 Research: Race WTCC files encrypter/decrypter 0.1.3
added an option for automatically overwriting the output file and the automatic creation of unexistent folders if specified
27 Apr 2007 Research: Race WTCC files encrypter/decrypter 0.1.2
solved a filesize problem in encryption, thanx a lot to Oleg!!!
16 Apr 2007 MyMusic: S.M.S.
13 Apr 2007 MyToolz: Byte2C 0.2a
now 64 bit numbers are showed correctly with Mingw too (Windows)
09 Apr 2007 MyMusic: released some new XM and a couple very old
06 Apr 2007 Patches: Half-Life x.1.1.1e (Windows and Linux) hlfreeze/hl-headnut/csdos fix 0.1
seems to work versus Counter-Strike 1.6 and other versions too
06 Apr 2007 Advisories: Details about the hlfreeze/hl-headnut/csdos bugs
a quick explanation of this bug and its variants
06 Apr 2007 Proof-of-concepts: hlboom 0.2.1
added the handling of both the old and Steam query so it can be used to check Steam servers too
06 Apr 2007 Fake_players_bug: Half-Life fake players bug (no auth) 0.3
the old hlfill rewritten, now it includes also the hlfreeze/hl-headnut/csdos attacks
31 Mar 2007 Patches: Half-Life x.1.1.1e (Windows and Linux) hlboom fix 0.1
this unofficial patch fixes both the bugs on the dedicated server for Windows and Linux
31 Mar 2007 Proof-of-concepts: hlboom 0.2
added the exploitation of another bug about the splitted packets, the related advisory has been updated too
30 Mar 2007 MyToolz: Windows 9x/NT4(old) generic TCP connections spoofer 0.2.1
now works also on Windows and I have made a small modification which could allow it to work versus other time based ISN too
29 Mar 2007 Advisories: Pulseaudio 0.9.5 (rev 1437) termination
29 Mar 2007 Password_recovery: Steam password decoder 0.1.1
added only the possibility of decoding passwords directly from the command-line and support for blob file with multiple passwords
28 Mar 2007 Research: GameZone.com URL decoder 0.1
decoder for the URL used on GameZone.com and possibly other sites, supports CR: CB: CX: DR: and CM: URLs and can extract them from the executables too
27 Mar 2007 Research: ORK files decrypter and extractor 0.1
files extractor for the ORK archives used in the games developed by Black Hole Entertainment like Armies of Exigo and Warhammer Mark of Chaos (both demo and retail keys supported)
25 Mar 2007 Research: Half-life DLL decrypter and rebuilder 0.1
a decrypter and PE rebuilder for the Half-life encrypted DLLs like sw.dll and hw.dll
24 Mar 2007 Research: Race WTCC files encrypter/decrypter 0.1.1a
removed the two free() at the end of the program which caused a possible crash with version 0 (anyway without problems for the output file)
24 Mar 2007 Password_recovery: Valve games control password disabler 0.1
a simple tool for disabling and restoring the control password used in games like Half-Life and Counter-Strike
23 Mar 2007 MyToolz: Proxymini 0.2
wow I have added support also to SOCKS4 and SOCKS5 (tcp, tcp bind and udp) and have fixed some bugs
20 Mar 2007 Research: Race WTCC files encrypter/decrypter 0.1.1
added support for version 0, used for example with the PLR files
20 Mar 2007 Research: gskeycheck 0.1.1
now the tool supports also the files containing the keys to check and the output file where writing the results
18 Mar 2007 Advisories: Multiple vulnerabilities in NAS 1.8a (svn 231)
18 Mar 2007 MyToolz: Proxymini 0.1
a simple http proxy server
11 Mar 2007 Research: Virtools files unpacker 0.1.2
added the handling of uncompressed data
11 Mar 2007 Research: KDX encryption/decryption algorithm 0.1
08 Mar 2007 Research: Virtools files unpacker 0.1.1
adjusted the code (but nothing special) and added a function which automatically scans the file for Virtools signature
08 Mar 2007 MyToolz: Cutfile 0.2a
solved a crash bug
08 Mar 2007 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.2
the code is now a bit more clean and I have added some brute forcing functions for the admin password
07 Mar 2007 Advisories: Buffer-overflow in Conquest client 8.2a (svn 691)
07 Mar 2007 Fake_players_bug: DirectPlay 6/7 Fake Players 0.1
fake players tool for all the DirectPlay games (version 7 and below)
07 Mar 2007 Research: DirectPlay 6/7 Info 0.1a
removed 3 lines of the binding code for avoiding to listen on a port already bound
06 Mar 2007 Research: DirectPlay 6/7 Info 0.1
tool for showing informations about servers which use the DirectPlay protocol, version 7 and below
02 Mar 2007 Advisories: Limited format string in Netrek 2.12.0
01 Mar 2007 Research: AWCamREC 0.2.1
solved some bugs
01 Mar 2007 Fake_players_bug: Quake 3 engine fake players DoS 0.3.2
automatic snaps and rate configuration
27 Feb 2007 MyMusic: Spirito calmo
really nice and big XM
25 Feb 2007 Research: AWCamREC 0.2
rewritten and now does almost everything
21 Feb 2007 Advisories: Players disconnection in Simbin racing games
19 Feb 2007 Research: GS master server disconnector 0.1.2
solved a problem with the visualization of the error on Windows
18 Feb 2007 Research: GS Peerchat sniffer and decrypter 0.2
now it works perfectly and so is no longer in the forgotten beta stuff
17 Feb 2007 Research: AWCamREC 0.1
very basic recorder for AnyWebcam
17 Feb 2007 Research: WebCamNow wcn and jpg decoder 0.1
two functions for decoding the wcn and jpg files of WebCamNow
17 Feb 2007 Password_recovery: EasyWebCam passwords decoder 0.1
16 Feb 2007 Password_recovery: CamFrog passwords decrypter 0.1
decrypts all the passwords stored in the registry or provided by the user
15 Feb 2007 Research: PunkBuster online GUID checker 0.1.2
added a couple of new games
14 Feb 2007 Research: CamFrog encryption/decryption algorithm 0.1
the simple encryption and decryption functions for handling the data exchanged with the CamFrog servers
12 Feb 2007 Patches: Soldier of Fortune II (1.03 Windows and 1.02a Linux) cl_guid fix 0.2.1
solved the freeze bug on Linux
12 Feb 2007 Research: JMeetREC 0.1.5a and JMeetLIST 0.2.3a
a couple of small fixes
11 Feb 2007 Research: JMeetLIST 0.2.3
automatic handling of connection timeout and better nickname filter
11 Feb 2007 Research: JMeetREC 0.1.5
automatic handling of connection timeout
30 Jan 2007 MyToolz: unlzw 0.1.1
removed one useless instruction
29 Jan 2007 MyToolz: unlzss 0.1
function for LZSS/LZ77 memory decompression
28 Jan 2007 Research: CBF files extractor 0.2
added my unlzw stuff
28 Jan 2007 MyToolz: unlzw 0.1
simple LZW memory decompressor
26 Jan 2007 Research: CBF files extractor 0.1.1
it was too bugged so I have rewritten it, the only negative note is that I wasn't able to write a good lzw decompressor so you still need the logs.dll file from the game
22 Jan 2007 MyToolz: Signsrch 0.1.1
added only a couple of more checks to verify if the signature file is correct. I have added a lot of crypto algorithms to signsrch.sig
21 Jan 2007 MyToolz: Dumproc 0.1.1
solved a bug in the Windows version
21 Jan 2007 MyToolz: Signsrch 0.1
useful tool for finding signatures inside files. It can recognize tons of compression and encryption algorithms and many other things which can be also manually added since it's all based on a signature file read at runtime
21 Jan 2007 MyToolz: Dumproc 0.1
simple process dumper for both Windows and Linux
13 Jan 2007 Research: Vital engine files extractor 0.1
just the file extractor released two days ago but with compatibility with Boiling Point too
11 Jan 2007 Research: Codename: Outbreak / Venom files extractor 0.1
extractor for the GRP files used by this game
09 Jan 2007 Research: Chaser files extractor 0.1
tool for extracting (and unpacking) all the .FS files of the game Chaser
09 Jan 2007 Research: GCM files unpacker 0.1
unpacker for the GCM files used in games like Conan and Knights of the Temple II
07 Jan 2007 Advisories: DoS and possible format string in Marathon Aleph One 16 Dec 2006
nothing special...
07 Jan 2007 Research: Race WTCC files encrypter/decrypter 0.1
tool for encrypting and decrypting the files used in the game Race WTCC
05 Jan 2007 Research: JMeetREC 0.1.4
I have only adjusted the code (from the recent jmeetlist),no new functions
old News

NOTE: I update VERY frequently all the material you find here for example adding more info, changing the style of the documents, rewriting and adding code and more other things. So stay tuned if you are interested in my works and my research!
Contact me if you have any idea, question, comment, exception, project or any other thing.