Luigi Auriemma

me@aluigi.org


News
QuickBMS
Research
MyToolz
Advisories
Proof-of-concepts
Fake_players_bug
Patches
Password_recovery
MyMusic
TestingToolz
About...
RSS_feeds
Amiga_ADF
Forum
aluigi.org
mirror.aluigi.org
twitter
Old news

all the past news from the creation of this website.




27 Dec 2012 QuickBMS: BMS userDefineLang.xml
BMS syntax highlighting for Notepad++

24 Dec 2012 TestingToolz: One file only web/ftp server 0.5
many bugfixes, options -i and -I, support for the FTP protocol

24 Dec 2012 TestingToolz: mygrep 0.1
useful tool for scanning files and folders searching strings (C syntax supported) as binary patterns, utf16 unicode, base64, hex and other methods

24 Dec 2012 MyToolz: Mydown 0.2.9
option for using a file as Content/Content-Length

24 Dec 2012 MyToolz: Simple TCP proxy/datapipe 0.4.7c
minor fix for option -x

24 Dec 2012 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.2.6
added support for a couple of games and enhanced the interactive mode

18 Dec 2012 MyMusic: ReVuln music
released the music used in the recent videos of ReVuln

05 Nov 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.15b
minor fixes, --version and a new compression algorithm

05 Nov 2012 MyToolz: Signsrch 0.1.7a
fixed the addresses visible with -P

31 Oct 2012 TestingToolz: Offbreak
useful tool to track the operations performed by a program on a file at a given offset (hosted on ReVuln)

16 Oct 2012 Advisories: Steam Browser Protocol Insecurity (when local bugs go remote)
a paper regarding the usage of the steam:// links for compromising remote systems

03 Oct 2012 Research: ISI rFactor files decrypter/encrypter 0.2.1b
added the signature of Carretera 2012

02 Oct 2012 MyToolz: MORSE2ASCII 0.2
added support for abbreviations, prosigns and qcodes and fixed various bugs

02 Sep 2012 MyToolz: DTMF2NUM 0.1e
removed #include malloc.h and fixed a free() problem in the original resample2.c code

01 Sep 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.15a
added the -s option and fixed the handling of the . output folder

01 Sep 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.15
some small fixes

31 Aug 2012 Research: SD Gundam Capsule Fighter Online ZPK/ZDX/DAT files extractor/rebuilder 0.4.2
compatibility with archives having a size major than 2gb

24 Aug 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.14
FindLoc supporting variables, SortArray command, quickbmsver with possibility of specifying the -9 option, experimental encryption/comtype with embedded calldll, improved putarray/getarray, some minor fixes and enhancements

18 Jul 2012 Research: PunkBuster online GUID checker 0.1.14
added some new games

13 Jul 2012 MyToolz: Proxocket 0.1.8
added a trick for working with lpOverlapped used by some software in WSARecv*/WSASend*. version 0.1.7a remains available

13 Jul 2012 Advisories: Vulnerabilities in HP OpenView Performance Agent coda.exe

29 Jun 2012 Advisories: some bugs in SpecView and PowerNet Twin Client

26 Jun 2012 Advisories: Vulnerabilities in Winlog 2.07.16

21 Jun 2012 MyMusic: Boring

21 Jun 2012 MyMusic: ParaPara

21 Jun 2012 MyMusic: Quick Kickass

19 Jun 2012 MyMusic: Maybe
I wrote the melody over one year ago but I have finished the track just in these days, more music will be released in the next days

18 Jun 2012 Advisories: NULL pointer in Samsung AllShare 2.1.1.0

06 Jun 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.13
added some less known compression algorithms and a little fix to the EXECUTE command

22 May 2012 News: I have a new primary web server aluigi.org (thanx Nick Kusters)

22 May 2012 News: removed the protected folders solution adopted one week ago

22 May 2012 Research: FSB files extractor 0.3
added support for FSB5

15 May 2012 News: to avoid problems with my hosters I have protected the poc, fakep and pwdrec folders with an empty password or a simple sequence of usernames/passwords. for the moment this is an experiment so I will know if it works or not only in the next weeks/months. the alternatives were protecting the single zip files or removing the executables

13 May 2012 Advisories: released full details and PoC of my FlexNet License Server vulnerabilities fnplm_1, fnplm_2 and lmgrd_1

13 May 2012 Advisories: additional details about the SuiteLink bug

13 May 2012 Advisories: Vulnerabilities in Pro-face Pro-Server EX 1.30

13 May 2012 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.9
added compatibility with version 0.3e

11 May 2012 Advisories: Some bugs in QNX phrelay/phindows/phditto and Wonderware SuiteLink

01 May 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.12
added some compression algorithms and fixed get line

30 Apr 2012 MyToolz: myRTP command-line interface 0.1
basic tool that acts as an interface for the RTPatch patchw32.dll allowing to specify all the available options supported by this library

26 Apr 2012 MyToolz: wav4xm 0.1
simple tool I have written to clean my PCM wave instruments used in FastTracker and other music trackers: convert to mono 16bit, normalization and remove initial/final silence

26 Apr 2012 MyToolz: DTMF2NUM 0.1d
fixed a little bug in the normalization function

26 Apr 2012 News: libssp dependency
I have recompiled the following tools to avoid the libssp dll dependency (caused by gcc -fstack-protector-all): ttarchext, dpa_1, irm_1, samsux_1, skulltagfp and zdaemonfp

25 Apr 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.11
fixed -DDISABLE_SSL, added slz_03 and ntcompress30/40, filexor 0x11223344

25 Apr 2012 MyToolz: Proxocket 0.1.7a
added -fno-omit-frame-pointer and disabled the capturing of data in recv with MSG_PEEK flag

25 Apr 2012 Research: Telltale TTARCH files extractor/rebuilder 0.1.13a
added Walking Dead: A New Day

21 Apr 2012 Advisories: Endless loop in Samsung NET-i ware 1.37

19 Apr 2012 Advisories: Vulnerabilities in Samsung TV (remote controller protocol)

10 Apr 2012 Advisories: Denial of Service vulnerabilities in EMC IRM Server

05 Apr 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.10
fixed a bug in the reimporting in case of filenames starting with slash/backslash, added the RCN recompression, allowed the usage of the secure free() with non secure allocated memory (otherwise it's not possible to free memory allocated by external libraries)

29 Mar 2012 Advisories: Denial of Service in EMC Data Protection Advisor 5.8.1

22 Mar 2012 Advisories: Vulnerabilities in RealPlayer and Novell ZENworks

21 Mar 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.9b
fixed a rare bug with the binary type

21 Mar 2012 Research: Gslist 0.8.10d
micro fix in the web interface

20 Mar 2012 Advisories: released advisory and proof-of-concept for ms11-093 (OLE type confusion in XP/2003)

19 Mar 2012 Research: Gslist 0.8.10c
updated some components and added gsnatneg in the hearbeat function (-b), nothing new

19 Mar 2012 Research: GS natneg client 0.2
partially rewritten and added experimental server-side code

19 Mar 2012 Research: Gamespy NAT negotiation plugin for Proxocket 0.1
plugin for Proxocket for automatically applying the Gamespy NAT negotiation to existent tools

19 Mar 2012 Research: GS enctypeX servers list decoder/encoder 0.1.3b
added some checks in enctypex_wrapper

17 Mar 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.9a
fixed lzf recompression

16 Mar 2012 Advisories: Details about the ms12-020 proof-of-concept leak
I'm trying to build a resume of the story about the Microsoft leak and its details, it will be updated everytime I have more details

16 Mar 2012 Advisories: Use-after-free in Microsoft Remote Desktop
now that my proof-of-concept is out (yeah rdpclient.exe is the poc written by Microsoft in November 2011 using the example packet I sent to ZDI) I have decided to release my original advisory and proof-of-concept packet written the 16 May 2011... full-disclosure as usual :)

15 Mar 2012 Advisories: Code execution in Microsoft Remote Desktop (ms12-020) and vulnerabilities in GE iFix Profiy Historian and Portal
only the links to the original advisories released by the vendors the 13th March

14 Mar 2012 Advisories: Directory traversal in Sockso 1.5

14 Mar 2012 Advisories: Vulnerabilities in Presto! PageManager 9.01

14 Mar 2012 Advisories: Denial of Service in EMC NetWorker 7.6 sp3

14 Mar 2012 Advisories: Denial of Service in Epson EventManager 2.50

11 Mar 2012 Research: Telltale TTARCH files extractor/rebuilder 0.1.13
added the keys of Hector 102/103 and Law and Order Legacies

11 Mar 2012 MyToolz: Mydown 0.2.8 and mydownlib 0.2.6
gzip fix, added proxy support and some enhancements

08 Mar 2012 TestingToolz: FindBits 0.2.2a
fixed the -m option and allowed the visualization of the latest bits in the files (for example a file of one byte)

07 Mar 2012 Advisories: Directory traversal in NetDecision 4.6.1

02 Mar 2012 Advisories: Vulnerabilities in xArrow 3.2

02 Mar 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.9
added some new compression algorithms, optimization and customization of the secure allocation functions (they can be disabled using the option -9, needed in some occasions due to some limitations of this feature), fixed a bug that specified an input folder in case of selection of multiple files

24 Feb 2012 Research: Unigine ung files extractor 0.1
files extractor for the ung archives used by the Unigine game engine

21 Feb 2012 Advisories: Heap corruption in Unity 3d Web Player 3.2.0.61061

20 Feb 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.8
added the Include command and some checks

18 Feb 2012 Advisories: Vulnerabilities in Psycle 1.10.0

16 Feb 2012 Advisories: Vulnerabilities in Novell GroupWise Messenger 2.1.0 and some quick bugs in XnView

12 Feb 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.7
speed and resource optimizations for the memory

12 Feb 2012 News: website up & down
my website is and has ever been aluigi.org from the 2006 so check your bookmarks because lately aluigi.altervista.org has continuos problems (temporary up & down from about 2 weeks). note that it's a backup/mirror website that I switch as primary when needed so using aluigi.org you will catch ever the working website or alternatively mirror.aluigi.org if the main one fails

09 Feb 2012 Advisories: Vulnerabilities in R4 1.25

09 Feb 2012 Advisories: Vulnerabilities in R2 1.65

02 Feb 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.6d
customizations of the tea, xtea and xxtea algorithms and some fixes

28 Jan 2012 Research: Online cd-key verifier for games that use the Gamespy cd-key SDK 0.1.2a
modified to meet the *printf %n out-of-standard in use from Windows Vista, it's a shame that I must modify a perfectly working program for this reason moreover because the tool is linked to msvcrt.dll and not 8.0 or 9.0... no comment

27 Jan 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.6c
fixed a compability problem with the gcc optimizations regarding the patch for kzip

27 Jan 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.6b

27 Jan 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.6
added various other compression algorithms and optimized the usage of kzip

23 Jan 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.5
added the EXECUTE method for both Comtype and Encryption, String scanf/strstr/strrstr, various new compression algorithms, usage of kzip.exe in reimport mode if the compressed size is bigger than the original one, fixes and optimizations

17 Jan 2012 Advisories: Two Denials of Service in Rockwell RNADiagReceiver 2.40.0.12 (SCADA)
just an old test I did in the far September 2011 and planned to do better when inspired, I have released it now only to free my bugs queue and return on this product later without rush

15 Jan 2012 Advisories: Directory traversal in NeoAxis Web Player 1.4

15 Jan 2012 MyToolz: Calcc 0.1.5
added support for strings and chars, FILETIME/time64 visualization

11 Jan 2012 Advisories: some bugs in SumatraPDF and ExpressView

09 Jan 2012 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.4a
added a slower but more secure way to manage the allocated memory, it's a crazy experiment I had in mind and may help during the debugging of some scripts

09 Jan 2012 MyToolz: Signsrch 0.1.7
added only the possibility of scanning folders, the rest is unchanged

09 Jan 2012 MyToolz: QuickRVA 0.2.3a
micro fix if e_lfanew is minor than the size of IMAGE_DOS_HEADER and updated distorm library

19 Dec 2011 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.4
solved some bugs but there is still lot to do, created also an encryption_scan.bat+bms solution for scanning the various encryption algorithms with a known key and optional ivec

18 Dec 2011 Research: FSB files extractor 0.2.13a
solved lame bug with duplicated extensions

11 Dec 2011 Password_recovery: Sony Station Launcher profile and packet password decoder 0.2

04 Dec 2011 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.3b
fixed a problem with Open FDDE/FDSE

03 Dec 2011 Advisories: Vulnerabilities in Serv-U 11.1.0.3

03 Dec 2011 Advisories: Endless loop in CyberLink PowerDVD 11.0.0.2114

02 Dec 2011 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.8
compatible with 0.3d

01 Dec 2011 Research: NCF/CCF packet format to tcpdump capture format 0.2
rewritten, now handles the compressed packets and the timestamps

29 Nov 2011 Advisories: Vulnerabilities in 3S CoDeSys 3.4 SP4 Patch 2 (SCADA)

28 Nov 2011 Advisories: Use-after-free in Microsys PROMOTIC 8.1.4 (SCADA)

28 Nov 2011 Password_recovery: PROMOTIC data decrypter 0.1
decrypts the informations (users credentials and Data) available in users.ini and the PRA projects

28 Nov 2011 Advisories: Vulnerabilities in Siemens Automation License Manager (SCADA)

28 Nov 2011 Advisories: Vulnerabilities in Siemens SIMATIC WinCC flexible 2008 SP2 (SCADA)

28 Nov 2011 Research: Telltale TTARCH files extractor/rebuilder 0.1.12c
added the key of Jurassik Park

14 Nov 2011 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.3a
added the possibility of automatically setting new filenames for those that already exist (choose 'r' when prompted)

14 Nov 2011 Research: Gslist 0.8.10b
some small fixes

14 Nov 2011 MyToolz: Mydown and mydownlib
a small fix for URLs placed in const buffers

07 Nov 2011 Advisories: GE Proficy iFix HMI/SCADA ihDataArchiver.exe Trusted Header Size Remote Code Execution Vulnerability

03 Nov 2011 Advisories: Vulnerabilities in HP Data Protector Media Operations 6.20

03 Nov 2011 Advisories: Use-after-free in Excel for Office 2003 11.8335.8333 SP3
it was only a quick automated experiment so it's nothing special or interesting at the moment, maybe requires additional research or just to be put in the trash. there are 2 advisories but the bug is probably the same, sorry but I don't care now

30 Oct 2011 MyToolz: Proxocket 0.1.7
better compatibility with Windows Vista/7/2008 (thanx devnull)

30 Oct 2011 MyToolz: Lame Patcher 0.4.4b
avoid admin privileges on Vista/Win7

30 Oct 2011 Research: Live for Speed setups dumper 0.1a
solved the problem with UAC asking for admin privileges on Vista/Win7

30 Oct 2011 Research: GS peerchat server emulator 0.1.3a
added only the check of gslist.cfg when launched and the -v verbose option

30 Oct 2011 TestingToolz: UDPSZ 0.3.3a

30 Oct 2011 Advisories: ActiveX bug in Microsys PROMOTIC 8.1.4

29 Oct 2011 Research: PunkBuster online GUID checker 0.1.13
added Battlefield 3 and Red Orchestra 2

13 Oct 2011 Advisories: Vulnerabilities in PROMOTIC 8.1.3

10 Oct 2011 Advisories: Vulnerabilities in atvise webMI2ADS 1.0

10 Oct 2011 Advisories: Use after free in IRAI AUTOMGEN 8.022

10 Oct 2011 Advisories: Denial of Service in OPC Systems.NET 4.00.0048

02 Oct 2011 Advisories: Vulnerabilities in Cytel Studio 9

01 Oct 2011 Advisories: Vulnerabilities in GenStat 14.1.0.5943

28 Sep 2011 Advisories: Arbitrary memory corruption in NCSS 07.1.21

27 Sep 2011 Advisories: Vulnerabilities in PcVue 10 (SCADA)

25 Sep 2011 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.3
now it's no longer needed to specify the output folder when used from the command-line, added arguments to the CallFunction command, enhanced the unzip_dynamic compression, fixed a bug in the recompression of XMemCompress

25 Sep 2011 Advisories: Integer overflow in Sterling Trader 7.0.2

22 Sep 2011 Advisories: Vulnerabilities in Sunway ForceControl 6.1 sp3 (SCADA)

19 Sep 2011 Advisories: Vulnerabilities in EViews 7.2

19 Sep 2011 Advisories: Vulnerabilities in MetaServer RT 3.2.1.450

19 Sep 2011 TestingToolz: UDPSZ 0.3.3
fixes and enhancements

16 Sep 2011 Research: Race WTCC files encrypter/decrypter 0.3.1a
solved a problem in the handling of sub folders

16 Sep 2011 Research: ISI rFactor files decrypter/encrypter 0.2.1a
solved a problem in the handling of sub folders

13 Sep 2011 Advisories: released the full detailed advisory of my WINS vulnerability (MS11-035 / ZDI-11-167)

13 Sep 2011 Advisories: Code execution in MetaStock 11

13 Sep 2011 Advisories: Vulnerabilities in eSignal 10.6.2425

13 Sep 2011 Advisories: Multiple vulnerabilities in Cogent DataHub 7.1.1.63 (SCADA)

13 Sep 2011 Advisories: Stack overflow in DAQFactory 5.85 build 1853 (SCADA)

13 Sep 2011 Advisories: Multiple vulnerabilities in Progea Movicon / PowerHMI 11.2.1085 (SCADA)

13 Sep 2011 Advisories: Directory traversal in Carel PlantVisor 2.4.4 (SCADA)

13 Sep 2011 Advisories: Denial of Service in Rockwell RSLogix 19 (SCADA)

13 Sep 2011 Advisories: Multiple vulnerabilities in Measuresoft ScadaPro 4.0.0 (SCADA)

13 Sep 2011 Advisories: Denial of Service in Beckhoff TwinCAT 2.11.0.2004 (SCADA)

12 Sep 2011 News: now you can follow me also on twitter

05 Sep 2011 Patches: XPDF pdftotext/pdftops/pdfimages allow copying of text (Win32) 0.1.1
added support for version 3.03

02 Sep 2011 Advisories: vulnerabilities in MPlayer on Windows and BroadWin WebAccess Client

26 Aug 2011 Advisories: some new advisories

14 Aug 2011 Research: FSB files extractor 0.2.13
some fixes for the generation of the filenames and the reimporting feature

07 Aug 2011 Research: ISI rFactor files decrypter/encrypter 0.2.1
added support for Game Stock Car and other additional future games

06 Jul 2011 News: Summer time... I don't know when I will return, maybe September

04 Jul 2011 Patches: ut3sticlefix.lpatch 0.2
now it works also with HomeFront and hopefully the rest of vulnerable games based on the Unreal engine 3

03 Jul 2011 Advisories: Integer overflow in foobar2000 1.1.7

03 Jul 2011 Research: Telltale TTARCH files extractor/rebuilder 0.1.12b
added Puzzle Agent 2

03 Jul 2011 MyToolz: Simple TCP proxy/datapipe 0.4.7b
added support for more ssl certificates and forced usage of listening port

03 Jul 2011 Password_recovery: CuteFTP data retriever and password decoder 0.2
added support for the new algorithm and hex password input

01 Jul 2011 QuickBMS: QuickBMS generic files extractor and reimporter 0.5.2
finally an homepage for this project, many fixes and additions some of which are time, time64, clsid, ipv4, ipv6, assembly types (yes now it can be used as a quick assembler/disassembler), rotate, reverse and pc1 encryption, msf compression, new experimental input and outputs with SSL added to the socket interface, the -H option for a html output of the parsed file format and much more

30 Jun 2011 Advisories: little correction about the latest HP advisory because that one is a component used in various other HP enterprise softwares

27 Jun 2011 Advisories: in_midi multiple vulnerabilities in Winamp 5.61

27 Jun 2011 Advisories: Multiple vulnerabilities in Winamp 5.61

27 Jun 2011 Advisories: Arbitrary files deletion in HP OpenView Performance Agent

27 Jun 2011 Advisories: Upload directory traversal in Novell ZenWorks Handheld Management 7.0.2

27 Jun 2011 Advisories: Arbitrary files deletion in Novell File Reporter 1.0.4.2

27 Jun 2011 Advisories: Off-by-one in Sybase Advantage Server 10.0.0.3

27 Jun 2011 Advisories: bcksrvr format string in Sybase Adaptive Server 15.5

27 Jun 2011 Advisories: added some small old bugs that I reported on my forum affecting:
GS4, ShockVoice, NVIDIA RealityServer, Kart Racing Pro and some servers for Minecraft

26 Jun 2011 Research: Telltale TTARCH files extractor/rebuilder 0.1.12a
added the key for the latest episode of bttf

24 Jun 2011 MyToolz: NRG2CUE generator 0.1.1
added the possibility to dump the file as an ISO

24 Jun 2011 MyToolz: Sleepy 0.2.4a
little fix for the l (loop) option in very rare cases

12 Jun 2011 MyToolz: PackZip 0.2.1a
fixed a lame bug introduced in the latest version where the size of the output file was bigger than the original

08 Jun 2011 Research: QuickBMS generic files extractor and reimporter 0.5.1
updated the supported calling conventions, added experimental support for network sockets and processes, various fixes for the write operations, added rotate encryption and a new useless option for the math one

08 Jun 2011 MyToolz: x86 32bit calling conventions 0.2
gcc wrapper for cdecl, stdcall, thiscall, msfastcall, borland, pascal, watcom, safecall, syscall, optlink and clarion

07 Jun 2011 Research: PunkBuster online GUID checker 0.1.12
added Assassin's Creed and Battlefield Play4Free

07 Jun 2011 MyToolz: Lanfile 0.1.4
added the -X option to allow the sending of files although one can't be read/written or has a different md5

04 Jun 2011 Advisories: Some bugs in HP IMC, Sybase OneBridge and a quick NULL pointer in iMatix Xitami

31 May 2011 Research: QuickBMS generic files extractor and reimporter 0.5
updated some libraries, added libkirk and nitrosdk, incremental xor and rot encryptions, aes ctr, added the new types: float, double, variable, variable2 and variant, new cool debug mode, various fixes, allowed the reimporting of nameless files (like 00000000.dat), experimental parsing of C structures, handling of multiline comments, added falcom recompression and dragonballz decompression

10 May 2011 Advisories: Vulnerabilities in Microsoft WINS, HP 3COM/H3C Intelligent Management Center and Sybase M-Business Anywhere

10 May 2011 Advisories: Vulnerabilities in Quest Big Brother 4.40

29 Apr 2011 Research: Telltale TTARCH files extractor/rebuilder 0.1.12
added support for Hector and the latest BTTF

27 Apr 2011 MyToolz: Proxocket 0.1.6a
fixed a NULL pointer in some rare conditions

27 Apr 2011 Research: OSRW anticheat logs decrypter 0.1.1
added support for OSRW 1.4

27 Apr 2011 MyToolz: PackZip 0.2.1
solved the problem of needing the gcc-dw2 dll and added support for lzma if wbits is equal to 0

13 Apr 2011 About: added a clarification useful to the companies interested in my research and possible collaborations

12 Apr 2011 Advisories: Stack overflow in Microsoft HTML Help 6.1 (CHM files)

11 Apr 2011 Advisories: Vulnerabilities in Microsoft Reader 2.1.1.3143 / 2.6.1.7169

11 Apr 2011 Advisories: DoS vulnerabilities in Microsoft Host Integration Server 2010 8.5.4224.0

05 Apr 2011 Research: GS peerchat IRC proxy 0.3.3b
filtered the CAP command used by some IRC clients like Mirc

03 Apr 2011 MyToolz: Offset file unzipper 0.3.5
fixed a bug introduced in the previous release that didn't close the dumped files

29 Mar 2011 Research: Telltale TTARCH files extractor/rebuilder 0.1.11g
added the key for the new BTTF episode

24 Mar 2011 Research: XWB/ZWB files unpacker 0.3.4
added the GUI and solved a problem with the recognizing of XMA/wma files

24 Mar 2011 Research: GS peerchat IRC proxy 0.3.3a
solved the bug of the missing Xs in the IP (thanx chc)

21 Mar 2011 Advisories: Vulnerabilities in Siemens Tecnomatix FactoryLink 8.0.1.1473 (SCADA)

21 Mar 2011 Advisories: Vulnerabilities in Iconics GENESIS32 9.21 and GENESIS64 10.51 (SCADA)

21 Mar 2011 Advisories: Vulnerabilities in 7-Technologies IGSS 9.00.00.11059 (SCADA)

21 Mar 2011 Advisories: Vulnerabilities in DATAC RealWin 2.1 (Build 6.1.10.10) (SCADA)

21 Mar 2011 Advisories: Heap overflow in RealPlayer 14.0.1.633

11 Mar 2011 Research: QuickBMS generic files extractor 0.4.10b
fixed a bug in quickbms64_test

11 Mar 2011 MyToolz: Mydown 0.2.7a / mydownlib 0.2.5f
fixed a bug that didn't allow HTTP 302 redirections

10 Mar 2011 MyMusic: Ignorantissimo
a nice and very simple track at 170 bpm, long time away from the trackers...

10 Mar 2011 Research: QuickBMS generic files extractor 0.4.10a
fixed a small problem of the reimport mode happening in some rare cases when encryption is used

09 Mar 2011 Research: QuickBMS generic files extractor 0.4.10
fixed a bug in the reimport option and added various recompression algorithms

08 Mar 2011 Research: QuickBMS generic files extractor 0.4.9a
only fixed the xxtea encryption

07 Mar 2011 Research: Gslist 0.8.10a
I have only uncommented an html line needed for the webgui

06 Mar 2011 Research: QuickBMS generic files extractor 0.4.9
added the experimental -r option that allows to reimport the extracted files or some of them without modifying the scripts (yeah finally it's possible), added the lzo1/1x/2a, gzip and lzss recompressions, fixed the behaviour of unzip_dynamic, fixed and enhanced the automatic extensions, FileCrypt command, Math and Swap encryptions

06 Mar 2011 MyToolz: Offset file unzipper 0.3.4a
fixed and enhanced the automatic extensions

26 Feb 2011 Research: QuickBMS generic files extractor 0.4.8c
fixed a bug in the automatic setting of the extension for nameless files and one in unzip_dynamic

26 Feb 2011 MyToolz: Offset file unzipper 0.3.4
added the possibility of viewing the size of the files in hexadecimal, automatic extensions for the files and request of overwriting if exist files with the same name

25 Feb 2011 Research: FSB files extractor 0.2.12
some optimizations like the real-time decryption (no longer uses the temporary file), options for specifying the password, encrypting/decrypting the file, the offset where starts the FSB data and even a minimilistic scanning the file

22 Feb 2011 Research: Gslist 0.8.10
fixes and enhancements of the web interface

21 Feb 2011 Research: Telltale TTARCH files extractor/rebuilder 0.1.11f
added the second episode of bttf

20 Feb 2011 Research: OSRW anticheat logs decrypter 0.1
decrypter for the log files generated by the OSRW anticheat for rFactor (F1 rFactor 2010)

19 Feb 2011 Advisories: Refractor 2 engine NULL pointer
Battlefield 2 1.50 and 2142 1.51 affected

15 Feb 2011 Research: QuickBMS generic files extractor 0.4.8b
fixed a stupid error in the extraction function that allocated one gigabyte instead of one megabyte

21 Jan 2011 Research: QuickBMS generic files extractor 0.4.8a
micro fix to avoid NULL pointers

20 Jan 2011 Research: QuickBMS generic files extractor 0.4.8
added putbits, fixed a possible problem in write mode, added the R string operation, fixed the reading of the filexor/filerot keys, now the extracting of files non compressed and non encrypted should take almost no memory, experimental quickbms64_test version for archives and files bigger than 4 gigabytes, various fixes and enhancements

19 Jan 2011 Advisories: Code execution in Microsoft Fax Cover Page Editor 5.2.3790.3959

13 Jan 2011 Advisories: Stack overflow in Winlog 2.07.00

11 Jan 2011 MyToolz: Rmchar 0.2
just an update for this jurassik tool

05 Jan 2011 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.7a
fixed a bug in the encryption

27 Dec 2010 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.7
added support for 0.3c RC7

27 Dec 2010 Research: Telltale TTARCH files extractor/rebuilder 0.1.11e
added Back to the future - It's About Time

21 Dec 2010 Advisories: Directory traversal in IntegraXor 3.6.4000.0

18 Dec 2010 Research: PunkBuster online GUID checker 0.1.11
added Medal of Honor

07 Dec 2010 MyToolz: Proxocket 0.1.6
fixed the capturing of the WSA functions if the socket was initialized with -1 for type and protocol, the captured files are saved in the folder of the monitored program with a better filename

07 Dec 2010 MyToolz: BDE64 0.2.2
added only the handling of the url encoded chars

07 Dec 2010 Research: Telltale TTARCH files extractor/rebuilder 0.1.11d
added the keys of PokerNight and CSI6

07 Dec 2010 TestingToolz: UDPSZ 0.3.2

04 Dec 2010 MyToolz: Mydown 0.2.7 / mydownlib 0.2.5e
two small fixes and a couple of testing options in mydown

04 Dec 2010 Research: FSB files extractor 0.2.11
automatic big to little endian conversion for wave files, fixed the alignment used in FSB4 0x40, fixed drag'n'drop

04 Dec 2010 Research: Race WTCC files encrypter/decrypter 0.3.1
now it will automatically test the -k volvo option if the zlib compression fails, and yes -k volvo works also with RaceRoom

18 Nov 2010 Advisories: Memory leak in Call of Duty Black Ops

18 Nov 2010 TestingToolz: UDPSZ 0.3.1
new features and bugfixes

01 Nov 2010 MyToolz: Lame patcher 0.4.4a
fixed the -y option

21 Oct 2010 TestingToolz: UDPSZ 0.3
new features and many parts rewritten

21 Oct 2010 TestingToolz: TFTP server tester 0.2a
only a typo, blksize instead of blocksize

20 Oct 2010 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.6
support for 0.3b servers

18 Oct 2010 TestingToolz: UDPSZ 0.2.3a

18 Oct 2010 TestingToolz: UDPSZ 0.2.3
bugfixes, enhancements and more chaotic than before

18 Oct 2010 TestingToolz: TFTP server tester 0.2
partially rewritten because the code was too old

15 Oct 2010 Advisories: Two buffer-overflow in DATAC RealWin 2.0 (Build 6.1.8.10)

15 Oct 2010 Advisories: Multiple Denial of Service in UniData unirpcd.exe 7.2.7.3806

15 Oct 2010 Advisories: Denial of Service in solidDB 6.5.0.3

13 Oct 2010 Advisories: Multiple buffer-overflows in Winamp 5.5.8.2985

10 Oct 2010 Research: HLSWlist 0.1.1c
added only 3 new gamenames (but they seem still not used on the master server)

07 Oct 2010 Research: CBF files extractor 0.2.2
added support for a type of archive used in the old Vietcong multiplayer demo

04 Oct 2010 Research: QuickBMS generic files extractor 0.4.7
solved a bad bug in CallFunction, some enhancements

03 Oct 2010 Research: FSB files extractor 0.2.10
added a simple GUI for who doesn't like to use the command-line

01 Oct 2010 Research: Gslist 0.8.9
fixed a bug in the -Q option, added the possibility to build custom packets to use with -d/-Q, fixed the building of gslist.cfg; note that the unavailability of games like CoD4 and Quake3 depends by the master server so nothing to do with gslist but if you need alternatives take a look at hlswlist, qtracklist and getsc

25 Sep 2010 Research: FSB files extractor 0.2.9
optimizations only for the rebuild mode, now it automatically works also with files that include an header so the -R option is NO longer needed, fixed also a rounding math in the recalculation of the lenghtsamples field

25 Sep 2010 Research: Telltale TTARCH files extractor/rebuilder 0.1.11c
added the key of the last Sam and Max episode

25 Sep 2010 TestingToolz: loDNS 0.1.1
added another proxy-like monitoring method and a better runtime help

13 Sep 2010 Research: Quakelive xmpp.quakelive.com password retriever 0.1.1
updated for supporting the new login mechanism and now works also by double-clicking on the exe

13 Sep 2010 MyToolz: Mydown 0.2.6c / mydownlib 0.2.5d
added experimental (and optional because badly written) support for SSL

12 Sep 2010 Research: orkdec filenames dumper 0.1.1
added support for Battle March and made DEP compatible

02 Aug 2010 News: summer time

01 Aug 2010 Research: QuickBMS generic files extractor 0.4.6a
removed the FindLoc modification I added in the last version, added a verbose message when Idstring doesn't match, added the B/E/C operators in String that work on null delimited strings

30 Jul 2010 Password_recovery: Digsby password decoder 0.2
added support for the recent versions

29 Jul 2010 Research: GS peerchat IRC proxy 0.3.3
some small bugfixes and enhancements

28 Jul 2010 Research: QuickBMS generic files extractor 0.4.6
added the COMPRESSED method used to store big amounts of data in the scripts using less bytes (zlib plus base64), experimental support for libtomcrypt, the -E option that allows to change the endianess of a file on the fly by simply knowing its format and reading it, -d option for creating an output folder with the name of the input file, support for variables in FindLoc, support for SEEK_CUR and SEEK_END in GoTo, rnc and pak_explode compressions, r operator in String for reversing strings and = for converting numbers to strings

28 Jul 2010 MyToolz: Simple TCP proxy/datapipe 0.4.7a
added only the possibility of specifying dtls1 in the -X option

23 Jul 2010 Research: Telltale TTARCH files extractor/rebuilder 0.1.11b
added support for the latest Sam and Max

22 Jul 2010 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.2.5
added some additional testing options

22 Jul 2010 MyToolz: Signsrch 0.1.6a
fixed -F when used with multiple files

22 Jul 2010 Research: GS login server emulator 0.2.3b
added a micro enhancement that should do just nothing

20 Jul 2010 Advisories: Lithtech engine memory corruption
mainly focused on F.E.A.R., no technical info about the bug

20 Jul 2010 Fake_players_bug: Lithtech engine Fake Players DoS 0.3
rewritten almost completely for matching better the protocol

19 Jul 2010 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.2.4
mini enhancements and support for Devastation and Brothers in Arms (useless because any server of the BIA series crashes through unrealfp)

18 Jul 2010 Fake_players_bug: DirectPlay 8 Fake Players DoS 0.1.3
only some enahncements and support for the bugs reported in the previous advisory

18 Jul 2010 Advisories: Vulnerabilities in DirectPlay8
updated the previous advisory due to a new vulnerability affecting any game based on DP8

18 Jul 2010 Advisories: NULL pointer in some games that use DirectPlay8

17 Jul 2010 Advisories: Invalid memory access in Unreal Tournament 3 2.1

15 Jul 2010 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.2.3
some small updates and fixes, added support for Vegas 2 (DemonWare AGORA) and the -B option containing a quick list of bugs to test

15 Jul 2010 Advisories: Failed assertion in old games based on Unreal engine
maybe interesting but only for old games

07 Jul 2010 Advisories: Two vulnerabilities in Ghost Recon Advanced Warfighter 1 and 2

06 Jul 2010 Advisories: Clients unicode buffer-overflow in Unreal engine 2.5
for the less recent games and versions of the engine

05 Jul 2010 Advisories: Negative memcpy in id Tech 4 engine

05 Jul 2010 Advisories: NULL pointer in Tripwire Interactive games
Red Orchestra Ostfront 41 45, Killing Floor, Darkest Hour and Mare Nostrum

03 Jul 2010 Advisories: Denials of Service in Freeciv 2.2.1

02 Jul 2010 Research: Telltale TTARCH files extractor/rebuilder 0.1.11a
added the key of Puzzle Agent and the latest Sam and Max

02 Jul 2010 Research: EAlist 0.1.4
added the -S option that allows to run a fake fesl server that accepts one client at time, I have added it for testing purposes

01 Jul 2010 Advisories: Buffer-overflow in the Electronic Arts games that use Gamespy

01 Jul 2010 Research: GS login server emulator 0.2.3a
added a compatibility feature found just today in Red Alert 3 (authtoken used instead of the username)

30 Jun 2010 Research: GS login server emulator 0.2.3
added a bit of more compatibility with some games (like Area51)

30 Jun 2010 Advisories: Buffer-overflow in Area 51 1.1
old game but this bug is so absurd that deserved to be indexed :)

29 Jun 2010 TestingToolz One file only web server 0.3
added some crazy options

29 Jun 2010 Advisories: Refractor 2 engine clients URL directory traversal

29 Jun 2010 Advisories: Battlefield 2 1.50 voip failed assertion
almost impossible conditions, reported only for thoroughness

29 Jun 2010 Advisories: Endless loop in Qt QSSLsocket 4.6.3

29 Jun 2010 Advisories: Database error in Mumble server 1.2.2
a little error, indeed it was part of the next advisory

27 Jun 2010 Research: XWB/ZWB files unpacker 0.3.3a
added only the -D option for using decimal output filenames

20 Jun 2010 Advisories: Vulnerabilities in America's Army 3 3.0.7
again some boring bugs in the same super bugged acpu_decompile function

19 Jun 2010 Advisories: Client array overflow in id Tech 4 engine
this is a correction to the advisory released yesterday and the adding of Wolfenstein to the list of vulnerable games

18 Jun 2010 Advisories: Clients vulnerabilities in Enemy Territory Quake Wars 1.5

17 Jun 2010 Advisories: Exception in Chrome Engine 4

16 Jun 2010 Advisories: Multiple vulnerabilities in TeamSpeak 3.0.0-beta23

15 Jun 2010 Research: ISI rFactor files decrypter/encrypter 0.2
added a minimalistic GUI and the possibility of handling whole folders (so find is no longer needed)

15 Jun 2010 Research: Race WTCC files encrypter/decrypter 0.3
added a minimalistic GUI and the possibility of handling whole folders (so find is no longer needed)

15 Jun 2010 TestingToolz: Webservers char tester 0.1.1
fixed the testing of NULL bytes

06 Jun 2010 Password_recovery: Pegasus Mail password decrypter 0.1

06 Jun 2010 Password_recovery: TheBat! password decoder 0.1

06 Jun 2010 Password_recovery: Phoenix mail password decoder 0.1

06 Jun 2010 Advisories: Refractor 2 engine endless loop
released a reference advisory for tracking the Battlefield 2/2142 vulnerability

03 Jun 2010 Proof-of-concepts: Battlefield 2 (1.41 - 1.1.2965-797) / 2142 (1.50 - 1.10.48.0) endless loop 0.1
proof-of-concept I wrote (and fixed) one year ago based on the vulnerability found by Francis Lavoie-Renaud

01 Jun 2010 Research: QuickBMS generic files extractor 0.4.5
added some enhancements to the Print command, encryption mode for rot, an experimental printf-like operator for the String command, variable used for the Padding command, small fix in the Open command

30 May 2010 MyToolz: Morse generator 0.2.1
substituited the underscore with -, some enhancements included support for any possible char

29 May 2010 Research: PunkBuster online GUID checker 0.1.10
added Battlefield Bad Company 2 and APB, added the possibility of specifying custom gamenames and gameids

28 May 2010 Research: QuickBMS generic files extractor 0.4.4a
fixed two bugs started a couple of versions ago in FindLoc and Get/PutArray

26 May 2010 Research: Milestone MIX files extractor 0.1.3
added support for SBK X

25 May 2010 Research: Telltale TTARCH files extractor/rebuilder 0.1.11
added the key of the latest Sam and Max episode and the -D/E options for decrypting/encrypting only a portion of the input file

13 May 2010 MyToolz: Signsrch 0.1.6
added the -F option that returns the addresses of the executable's instructions which refer to the found signatures (only the first one in case of multiple references), added the -3 option that executes a program placing an INT3 (maybe one of those obtained with -F) in the desired address of the process, added support for big endian ELF executables, fixed the parsing of Windows PE files on Linux big endian, fix in the calculation of the 64bit CRCs

12 May 2010 Advisories: Multiple vulnerabilities in the GEM 3 engine
Majesty 2 is affected by the same bugs of the GEM 2 engine

11 May 2010 Research: QuickBMS generic files extractor 0.4.4
some micro enhancements, added the possibility of recompressing data with the zlib, deflate, lzo1, bzip2 and XMem algorithms (note that QuickBMS is and will remain an extraction/unpacking tool so this is only a just-for-fun feature)

09 May 2010 Advisories: Invalid memory access in Torque game engine

07 May 2010 Advisories: Multiple vulnerabilities in Alien vs Predator 2.22
two invalid memory accesses, an exception and two NULL pointers

05 May 2010 MyToolz: dump2func ripped functions skeleton generator 0.1.1
small enhancement of the output and fixed a bug

05 May 2010 MyToolz: dump2func ripped functions skeleton generator 0.1a

05 May 2010 MyToolz: dump2func ripped functions skeleton generator 0.1
simple tool that creates a C source code for using one or a set of dumped/ripped functions with the automatic handling of the static/fixed buffers and the compatibility with DEP

05 May 2010 Research: HLSWlist 0.1.1b
added only Urban Terror and Left 4 Dead 2 to the list

01 May 2010 Research: FSB files extractor 0.2.8a
nothing new, I have only made the -a option (add header) as default and it's automatically disabled when is used the -s option

30 Apr 2010 Research: QuickBMS generic files extractor 0.4.3
solved the big usage of memory caused by the quad/balz compressions, reduced the amount of used memory in some occasions, bugfix and enhancement for zipcrypto

27 Apr 2010 Research: QuickBMS generic files extractor 0.4.2b
bugfix for unzip_dynamic and bzip2_file

26 Apr 2010 Research: QuickBMS generic files extractor 0.4.2a
only a little customization of the Open command so that the creator of the script can decide to terminate or not if the file doesn't exist

25 Apr 2010 Research: QuickBMS generic files extractor 0.4.2
now the user that use the tool through its gui (double click on quickbms.exe) can select multiple archives to handle, added additional compatibility with the WCX plugins

24 Apr 2010 MyToolzSimple TCP proxy/datapipe 0.4.7
added the -Y option for allowing the tool to act as a SSL tunnel, compatibility with OpenSSL 1.0.0

24 Apr 2010 Research: EAlist 0.1.3
added the -F option to send custom data for testing other commands (there are a couple of examples at runtime), compatibility with OpenSSL 1.0.0

23 Apr 2010 Research: QuickBMS generic files extractor 0.4.1
added support for the WCX plugins used in Total Commander, added tons of new encryptions, support for CRCs of any type, updating of some external libraries (like zlib, lzma and ppmd), some small enhancements and bugfixes

16 Apr 2010 Research: Telltale TTARCH files extractor/rebuilder 0.1.10
added support for The Penal Zone

15 Apr 2010 Research: Molebox2 files extractor 0.1
this is exactly the tool previously called kepmboxext that now needs a custom key as argument to support other games like Aquaria

15 Apr 2010 Password_recovery: CamFrog passwords decrypter 0.3.2
added support for the alternative PhDeviceCLSID method where this value is got from mdlg.dll (Internal Value)

15 Apr 2010 Password_recovery: Ubisoft Game Launcher password decrypter 0.1
decodes the password inside the settings.ini file

13 Apr 2010 Advisories: Some bugs
recently I released some quick advisories (I'm no longer interested in security): netKar, Unity3D, Raknet, Cafu and MX Simulator

12 Apr 2010 Research: QuickBMS generic files extractor 0.4
automatic folder and extensions when it's used no filename in the *log commands, reintroduced all the openssl algorithms manually, fixed and enhanced some features of CallDll, changed the behaviour of lzhuf (it took the decompressed size from the data), improved handling of less known gz/z files, added the pack compression, note: remember to check ever the list of available scripts because I update and write new ones often, for example majesty2.bms is now complete and compatible with any version

10 Apr 2010 Research: QuickBMS generic files extractor 0.3.15a
only an useless bugfix to make "" a constant and added another math operator

09 Apr 2010 Research: QuickBMS generic files extractor 0.3.15
added unsigned If/Elif/Else, some new compressions or enhancements, radix and power math operations, some new and useless Set types, byte2hex/hex2byte/compressions/encryptions/toupper/tolower in the String command, support for any encryption and even any hashing algorithm supported by OpenSSL, usage of dlls as MEMORY_FILE in CallDLL, support for any calling convention: msfastcall/borland/watcom/pascal/safecall/syscall/optlink/clarion, reset of memory file positions in case of multiple input files, fixed a micro bug when using comtype2_scan, exe compiled with the latest OpenSSL (that's why its bigger)

06 Apr 2010 Password_recovery: CamFrog passwords decrypter 0.3.1a
allowed the usage of the phclsid command-line parameter for decrypting the camfrog bot strings

04 Apr 2010 Password_recovery: CamFrog passwords decrypter 0.3.1
fixed the problem with the key of Camfrog Bot

02 Apr 2010 Password_recovery: CamFrog passwords decrypter 0.3
added support for files like cf_server.conf, cf_room.conf and settings.xml and for the different encryption used in Camfrog Bot

22 Mar 2010 Research: EAlist 0.1.2
added the handling of multiple lobbies which means that now are taken really all the servers of each game (so over 8000 for bfbc2-pc), thanx a lot Steven Hartland

17 Mar 2010 Research: EAlist 0.1.1
added only the -A option for creating new EA accounts, this is useful only in case of problems logging with an existent one

16 Mar 2010 Research: EAlist 0.1
command-line servers browser based on the list of game servers provided by the Electronic Arts master servers commonly called fesl or theater and supporting various games for PC, Xbox 360 and PS3 like Battlefield Bad Company 2, Battlefield Heroes, the Need for Speed series, Skate and others for which don't exist alternative listers

08 Mar 2010 Research: Milestone MIX files extractor 0.1.2
used a better way to guess if the file uses the old method (like in SBK2000/2001) or not

12 Feb 2010 Patches: EA games fesl.ea.com certificate verification remover 0.2
now it should support any game

11 Feb 2010 Research: Gslist 0.8.8b
only an enhancement in the rebuilding of gslist.cfg done with the -m/-M options used by me (users should use -u for the updates)

11 Feb 2010 MyToolz: Mydown 0.2.6b / mydownlib 0.2.5c
another bugfix release, enough useful in some conditions

10 Feb 2010 Research: QuickBMS generic files extractor 0.3.14c
added only 2 compression algorithms used in Pacific Assault and a work-around for some rare gzip files

10 Feb 2010 MyToolz: Lame patcher 0.4.4
added the possibility of patching a running process and launching+patching it

10 Feb 2010 MyToolz: Mydown 0.2.6a / mydownlib 0.2.5b
removed only the percentage from the list of chars to hex-encode and filtered the chars that can't be used on the file systems for saving the files

10 Feb 2010 Research: Telltale TTARCH files extractor/rebuilder 0.1.9d
added only the key for the recent CSI 5 demo

08 Feb 2010 Patches: EA games fesl.ea.com certificate verification remover 0.1
this modification removes the verification of the SSL certificate sent by the *.fesl.ea.com server (port 18240 and possibly others) when an EA game logins on it

04 Feb 2010 Research: QuickBMS generic files extractor 0.3.14b
added the copy compression that could be useful in rare cases when handling data encrypted with block ciphers like AES and blowfish

04 Feb 2010 Research: QuickBMS generic files extractor 0.3.14a
now the ivec in Encryption can be also a variable (useful for decrypting the xbo files of VBS2)

01 Feb 2010 Research: QuickBMS generic files extractor 0.3.14
added tons of new compression algorithms and the 'u' option in the Math command for forcing the unsigned operations

25 Jan 2010 Research: QuickBMS generic files extractor 0.3.13
added only an additional work-around useful with some XMemDecompress streams, the possibility of specifying a wildcard for ScanDir not only through -F but also in the same script, bzip2_file for decompressing bzip files without knowing their output size, -a option for specifying variables visible inside the bms scripts, this allowed to use a new comtype_scan2.bms script for testing all the supported compressions without editing it

16 Jan 2010 Research: FSB files extractor 0.2.8
fixed only the right creation of the header for the XMA and Gamecube/Wii files (-a option)

16 Jan 2010 Research: XWB/ZWB files unpacker 0.3.3
fixed only the right creation of the header for the XMA files

15 Jan 2010 MyToolz: PackZip 0.2
finally I have replaced the old zlib library with the better algorithm used in 7zip which allows more compression

05 Jan 2010 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.5
added compatibility for the protocol of SA:MP 0.3a

05 Jan 2010 Research: Fast Optimized MD5 for short strings 0.1
optimized MD5 algorithm for input data of max 15 bytes that I reversed from alglib0.dll of the RainbowCrack Project

01 Jan 2010 Research: QuickBMS generic files extractor 0.3.12b
added only the CRI CPK compression

30 Dec 2009 Research: QuickBMS generic files extractor 0.3.12a
some enhancements for the rebuild mode (-w option), the rest is untouched

23 Dec 2009 Password_recovery: CuteFTP data retriever and password decoder 0.1.2
fixed some bugs in the parsing of sm.dat

21 Dec 2009 Research: QuickBMS generic files extractor 0.3.12
added the GetBits command, the possibility of calling functions without restoring the variables at the moment of the call, removed the problem of using the Log commands with filenames that have a number as first char

18 Dec 2009 Research: QuickBMS generic files extractor 0.3.11
added the CryptDecrypt and CryptUnprotect encryptions, some new compression algorithms (prs, puyo and falcom) and some enhancements

09 Dec 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.9c
added the key of Rise of the Pirate God

07 Dec 2009 Research: Gslist 0.8.8a
updated some components like the download library and the drive scanner for gslistweb and a couple of compatibility changes (for example the not much supported %hhu printf type substituited with %u)

07 Dec 2009 Research: SD Gundam Capsule Fighter Online ZPK/ZDX/DAT files extractor/rebuilder 0.4.1a
I have ONLY changed Z_DEFAULT_COMPRESSION to Z_BEST_SPEED in rebuild mode, this is done to prevent a bug of the game (NOT of my tool) that crashes on slow computers even with the original packages (thx JH Im)

02 Dec 2009 Research: QuickBMS generic files extractor 0.3.10
added the xxtea encryption, calldll with memory_file, asking of deleting the TEMPORARY_FILE if used, possibility to use stdin as input file (use -), the For instruction now can be initialized with any math operation (example: For i -= 10 To FILES), Put/PutDString/PutCT commands which allow to write inside a file/memory_file, compression algorithm used in STALKER and some minimal things (for example: Set VAR1 = VAR2)

27 Nov 2009 Research: QuickBMS generic files extractor 0.3.9a
added only the yuke_bpe compression algorithm

22 Nov 2009 Research: QuickBMS generic files extractor 0.3.9
added two new compressions, fixed a DEP compatibility in the CallDll command and added another path for searching the dll to import, added the possibility of using a variable or memory file in the Encryption command, the SCRIPT MESSAGE alert showed by the Print command is now placed on stderr

12 Nov 2009 Research: QuickBMS generic files extractor 0.3.8a
fixed a bug in the algorithms used in OpenSSL where the non-padded data was wrongly decrypted at the end, major DEP compatibility with the imported dumped functions (like tzar_lzss, unlz2k and so on), a possible minimal speed/memory improvement and added the compression used in Dungeon Keeper 2

10 Nov 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.9b
added support for CSI4 retail (gamenum 30)

10 Nov 2009 MyToolz: BDE64 0.2.1a
added only the decoding of the two different chars (-_ instead of +/) used in the base64 of the HTTP URLs

10 Nov 2009 Password_recovery: PartyGaming password decrypter 0.1.1
added the scanning of the PartyGamingNet registry key used in PartyPoker.net

09 Nov 2009 Research: QuickBMS generic files extractor 0.3.8
added tons of new compression algorithms included the conversion of any base (like base2/binary, base8, base32 and so on), better disposition of the source code, implemented the scanning feature for all the compression algorithms

07 Nov 2009 Research: Cauldron FS files extractor 0.2a
micro fix for recognizing some rare and unofficial files

04 Nov 2009 Research: QuickBMS generic files extractor 0.3.7
added various compression algorithms (like deflate64 and ppmd) and some usual small enhancements/fixes

01 Nov 2009 Password_recovery: NewsLeecher files decrypter 0.1.1
small compatibility fix for the recent 4.x beta

01 Nov 2009 Research: ISI rFactor files decrypter/encrypter 0.1.6
added support for Superleague Formula

01 Nov 2009 Research: ISI rFactor //[[gM files decrypter/encrypter 0.2b
added the key number of Superleague Formula in the list at runtime

31 Oct 2009 Research: QuickBMS generic files extractor 0.3.6
fixed and optimized the scanning of the input folder, added the manual choice of an alternative filename if the one got from the archives can't be saved and added a couple of non-important compressions and encryptions

30 Oct 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.9a
added the key of The Trial and Execution of Guybrush Threepwood

29 Oct 2009 Research: QuickBMS generic files extractor 0.3.5a
better support of files bigger than 2 gigabytes

28 Oct 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.9
added CSI 5 Deadly Intent and solved a bug in the modified blowfish algorithm (don't worry I have already personally verified each file extracted from the recent games for excluding any problem/corruption)

27 Oct 2009 Research: QuickBMS generic files extractor 0.3.5
added the ICE encryption, uuencode, ascii86, yenc, compression used in the games of 49Games, mszh, the fullname data type, changed the behaviour of the not and negation operators in Math since now it's taken var2 as input (so now are used both the variables) and added the N (negative) and A (absolute) operators

20 Oct 2009 Research: QuickBMS generic files extractor 0.3.4b
added only the simple compression algorithm used in Dark Sector (use zip.bms to extract its files)

20 Oct 2009 Research: Traveller's Tales games DAT files extractor
QuickBMS script for extracting the files from the DAT archives of games like LEGO Batman/StarWars/Indiana Jones and Transformers

18 Oct 2009 Research: QuickBMS generic files extractor 0.3.4a
substituited the strdup function due to its different behaviour on *nix and enabled the usage of lz2k also on *nix

17 Oct 2009 Research: QuickBMS generic files extractor 0.3.4
added support for plugins and/or custom functions through the CallDLL command, added the unmeng and unlz2k compressions, added a fake 64bit type of variable (fake because QuickBMS works only with 32bit numbers)

12 Oct 2009 Research: QuickBMS generic files extractor 0.3.3
implemented all the encryption functions of OpenSSL through its great EVP interface, added some new compression algorithms, added some enhancements like the configuration of the lzss parameters and PutVarChr which auto-reallocate the variables

07 Oct 2009 Research: QuickBMS generic files extractor 0.3.2
added the compressions huffboh, ucl/nrv, dmc, uncompress/lzw, lzhuf, lzari, rle7, rle0, rle, added the encryptions twofish, cast5, seed, serpent, aes-cfb128, fixed lzssboh and idea, added a new switch in Encryption for selecting the encryption mode (default is decryption), added the possibility of specifying a dictionary for the lzo and zlib/inflate compressions, added the visualization of the elapsed seconds for the extraction

07 Oct 2009 MyToolz: Lame Patcher 0.4.3a
only added the possibility of specifying also the name of the file to patch at command-line

02 Oct 2009 Research: Race WTCC files encrypter/decrypter 0.2.5
added support for Race On

30 Sep 2009 Patches: q3rcon patch 0.1.2a
added support for CoD4 1.7 for linux

29 Sep 2009 Research: QuickBMS generic files extractor 0.3.1
added a check to avoid to use file numbers not opened and added support for other compressions: rlew, lzjb, sfl (block/rle/nulls/bits) and lzma2

29 Sep 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.8
added support for Lair of the Leviathan

29 Sep 2009 Research: HLSWlist 0.1.1a
added only Wolfenstein to the list, remember that it's not necessary that the game is in the list because it's enough only to know its gamename (Wolf09 in this case)

28 Sep 2009 Research: QuickBMS generic files extractor 0.3
added documentation, added xor, rot and charset as parts of the Encryption command, now the input can be both an archive and a folder containing more archives

26 Sep 2009 Research: Ventrilo RCon tool 0.2.9a
only a microfix in the -R option and the usage of "proto >= 3" in the code

26 Sep 2009 MyToolz: webimgms 0.1.2b
Vista compatibility for the scanning of the folder

26 Sep 2009 Research: Falcom YS games NA/NI/Z files extractor and rebuilder 0.1.3b
Vista compatibility for the scanning of the folder

26 Sep 2009 Research: Falcom YS games XSO files extractor and rebuilder 0.1.1b
Vista compatibility for the scanning of the folder

26 Sep 2009 Research: THPS HED/WAD files extractor/builder 0.2a
Vista compatibility for the scanning of the folder

26 Sep 2009 Research: WorldShift XE files rebuilder 0.1b
Vista compatibility for the scanning of the folder

26 Sep 2009 Research: BOR PAK extractor/builder 0.1a
Vista compatibility for the scanning of the folder

26 Sep 2009 MyToolz: CmdDiz 0.1.2b
Vista compatibility for the scanning of the folder

23 Sep 2009 Password_recovery: Steam password decoder 0.2.4
added the decryption of the ConnectCache cookies used by Steam beta (totally useless) and added some command-line options for the decryption of custom fields like Key and AccountRecordData and their dumping in a file because these fields contain raw data

20 Sep 2009 Research: QuickBMS generic files extractor 0.2.4a
nothing changed, has been only removed xcompress.h

19 Sep 2009 Research: QuickBMS generic files extractor 0.2.4
solved a small bug when a compressed file has a size equal to zero, added support for XMemDecompress and some lzw variants, added the idea encryption. released also the script for extracting the files of Need for Speed: Shift

18 Sep 2009 MyToolz: DAA2ISO / GBI2ISO 0.1.7e
again nothing new, added automatic support to a strange signature so that it's not needed to press Y when requested to continue with the extraction (thx Josh Freeman)

17 Sep 2009 Advisories: Files uploading vulnerabilities in the Source engine
the file deletion bug has been NOT fixed by Valve, they simply filtered the filenames with a slash/backslash at the end so it's still possible to delete the files in the game's main folder

16 Sep 2009 MyToolz: DAA2ISO / GBI2ISO 0.1.7d
nothing new, if the input file has an invalid signature the tool asks if you want to continue its handling which "could" be useful in some very very rare cases where the signature is damaged and even the original programs can't read them

14 Sep 2009 Research: Peerchat IP decoder/encoder 0.3
added support for the encoding/decoding of the users channels/room on Peerchat

14 Sep 2009 Research: Peerchat IP encoding/decoding algorithm 0.2
added support for the encoding/decoding of the users channels/room on Peerchat

12 Sep 2009 MyToolz: DirComp 0.2.1
added compatibility with Vista

12 Sep 2009 Research: SD Gundam Capsule Fighter Online ZPK/ZDX/DAT files extractor/rebuilder 0.4.1
solved a bug in the rebuilding function

12 Sep 2009 Research: ISI rFactor files decrypter/encrypter 0.1.5
added support for those GMT files used in TopRace 2009 with the CHTN1R1 signature

11 Sep 2009 Research: ISI rFactor //[[gM files decrypter/encrypter 0.2a
nothing new, I have only added the key number of Top Race Simulador 2009 (0x000dfc2a) in the list of -k option

10 Sep 2009 Research: AWCamREC 0.2.1d
updated the address of the new host to which connect

10 Sep 2009 Advisories: Access violation in Ventrilo client 3.0.5 with Speex codec

08 Sep 2009 Advisories: Voice memset overflow in Ventrilo client 3.0.5

05 Sep 2009 Research: ISI rFactor files decrypter/encrypter 0.1.4
added the signature of Top Race Simulador 2009

05 Sep 2009 Fake_players_bug: Live for Speed Fake Players DoS 0.2.3
added support for the internet authentication

03 Sep 2009 Research: SD Gundam Capsule Fighter Online ZPK/ZDX/DAT files extractor/rebuilder 0.4
solved a big error in the extracting of the files, now both extraction and rebuilding are perfects

02 Sep 2009 Research: SD Gundam Capsule Fighter Online ZPK/ZDX/DAT files extractor 0.3
better documentation of the format and added options for listing and filtering the files and an experimental one for rebuilding the archive if the version of the game no longer allows the loading of the files from its folder

01 Sep 2009 Research: Live for Speed setups dumper 0.1
decrypter of the setups received from the server which allows to save the setups of the other players

29 Aug 2009 Research: EA Games CRC and packets encryption 0.1
the simple encryption and CRC algorithm used in the packets of games like Middle-Earth II, Command & Conquer 3 and Red Alert 3

25 Aug 2009 MyToolz: Lanfile 0.1.3
added the -f option which must be manually enabled on both the endpoints and activates a particular mode where multiple files are sent faster (because there is no need to send the confirmation byte for each file) and added the rc4 encryption with -c

25 Aug 2009 Research: PunkBuster online GUID checker 0.1.9
added Wolfenstein (wolf) and removed the old games which no longer use or have never used PB

25 Aug 2009 Research: Call of Duty series mpdata decrypter/encrypter 0.1.1a
nothing new, I have simple substituited the alert showed when the hash doesn't match with an error and an invite to verify the correct length of the cdkey (16 chars for cod4 and 20 for codwaw)

23 Aug 2009 Advisories: Server restart in Live for Speed S2 Z13
not a real vulnerability, reported for thoroughness

23 Aug 2009 Fake_players_bug: Live for Speed Fake Players DoS 0.2.2
updated the protocol for supporting version Z

21 Aug 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.7a
corrected the key of Strong Bad episode 1

21 Aug 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.7
solved the wrong chunk size implemented from the archives of version 7, anyway only the texture archive (*_tx.ttarch) of the last 2 games of TellTale had this problem so all the other files weren't affected

21 Aug 2009 Advisories: Source engine build 3933
updated almost all the advisories and proof-of-concepts to match the build version 3933 which is the latest known release of the Source engine and which is used in games like Orangebox and Team Fortress 2. Only the sourcenotvnull vulnerability doesn't affect this build

20 Aug 2009 MyToolz: Lanfile 0.1.2a
added compatibility with Vista

20 Aug 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.6
added support for the new TellTales game, added the -x option which avoids to manually editing the bytes at offset 0x20 and 0x24, now the rebuilding works also on Vista

20 Aug 2009 Password_recovery: Trillian Astra password decoder 0.2
added support for Astra

20 Aug 2009 Advisories: Fragments memory corruption in the Source engine (build 3698)

19 Aug 2009 Advisories: Files uploading vulnerabilities in the Source engine (build 3698)

18 Aug 2009 Advisories: NULL pointer in the Source engine (build 3698) with SourceTV disabled
another vulnerability affecting Counter-Strike Source, Half-Life 2 and other games

17 Aug 2009 Advisories: Format string in the Source engine (build 3698)

16 Aug 2009 Password_recovery: Gizmo password decrypter 0.1
decrypter for the Gizmo5 password located in AppSettings.xml

14 Aug 2009 Advisories: Multiple NULL pointers in Sniper Elite 1.0

13 Aug 2009 MyToolz: Simple UDP proxy/pipe 0.4.1
now it can use the plugins written for Proxocket (mysendto and myrecvfrom)

13 Aug 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.5a
substituited the key of the game Fright of the Bumblebees with the correct one (previously was used the one of the demo)

12 Aug 2009 Advisories: Format string in Vietcong 2 1.10

12 Aug 2009 TestingToolz: FindBits 0.2.2
better visualization of the values with option -s where have been added also the string and binary output and some enhancements and one small fix

11 Aug 2009 Advisories: Multiple vulnerabilities in the GEM 2 engine

09 Aug 2009 Password_recovery: Orbit Downloader password decrypter 0.1
decrypts the passwords stored in sitelogin.dat

09 Aug 2009 Advisories: Denial of Service in PunkBuster
an update for the old advisory released many months ago since I have found another way to have a similar effect

09 Aug 2009 Advisories: Buffer-overflow in PunkBuster 1.728 for Soldier of Fortune II

07 Aug 2009 Advisories: Clients NULL pointer in TrackMania 2.11.19

07 Aug 2009 Advisories: Unbannable clients and bell bug in TrackMania Forever v2009-08-01 / 2.11.19

07 Aug 2009 Fake_players_bug: TrackMania Forever Fake Players DoS 0.1
only a basic reference code for the protocol

04 Aug 2009 Password_recovery: Total Commander password decrypter 0.1
decrypter for the password stored in wcx_ftp.ini and possibly others

04 Aug 2009 Advisories: Clients termination in TrackMania Forever 2.11.19

04 Aug 2009 TestingToolz: One file only web server 0.2
a small update for this basic tool for being able to test the new bug in TrackMania

30 Jul 2009 Research: FSB files extractor 0.2.7a
only two micro fixes about the recognizing of the FSB sign and the filling of 32 bytes in case of no coefficient in genh_header

30 Jul 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.5
added support for The Bogey Man

27 Jul 2009 Research: GS enctypeX servers list decoder/encoder 0.1.3
added the encryption function

27 Jul 2009 Advisories: Multiple vulnerabilities in TrackMania Forever v2009-05-25

24 Jul 2009 Advisories: Access violation in Star Wars Battlefront II 1.1

24 Jul 2009 Patches: Star Wars Battlefront II 1.1 seven guests fix 0.1

24 Jul 2009 Fake_players_bug: Star Wars Battlefront 1 and 2 Fake Players DoS 0.4
updated for fully supporting SWBF2

24 Jul 2009 Research: America's Army 3 auth packets ssc_decrypt 0.2.1
added the handling of the tcpdump files (the sniffed sessions generated by wireshark), added the authomatic decompression of the zipped authentication data when is not used the -f option (so in visualization mode only) and allowed the visualization of the data which is not-encrypted

22 Jul 2009 Advisories: Buffer-overflow in S.T.A.L.K.E.R. Clear Sky 1.5.10

22 Jul 2009 Advisories: Unhandled malloc exception in S.T.A.L.K.E.R. Clear Sky 1.5.10

22 Jul 2009 Advisories: Unhandled exception in S.T.A.L.K.E.R. Clear Sky 1.5.10

21 Jul 2009 Advisories: Temporary freezing in Crysis 1.21 and Crysis Wars/Warhead 1.5
B-series vulnerability (imho) reported only for thoroughness with the research of these days

21 Jul 2009 Advisories: Format string in Crysis 1.21 and Crysis Wars/Warhead 1.5

20 Jul 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.4
solved a bug in ttarch_meta_crypt where in some rare cases was decrypted an additional block of the file corrupting it, added some additional fields in the rebuilding of files of version 2, added the usage of ttarch_meta_crypt also in rebuild mode otherwise some files looked corrupted, in extraction now the offsets of the non-compressed archives are showed as absolute (so 00112233 instead of 0 for the first file)

20 Jul 2009 Advisories: Access violation in the HTTP/XML-RPC service of Crysis 1.21 and Crysis Wars/Warhead 1.5

19 Jul 2009 Research: TNTFOLDER files decrypter/encrypter 0.3
rewritten in most parts because the previous (jurassik) version was so bugged that it didn't work too, sorry for the inconvenience

18 Jul 2009 Research: Telltale TTARCH files extractor/rebuilder 0.1.3
added the -b option for rebuilding the ttarch archives

18 Jul 2009 Advisories: Negative memcpy in Armed Assault 1.14 and ArmA 2 1.02

18 Jul 2009 Advisories: Format string in Armed Assault 1.14 and ArmA 2 1.02

18 Jul 2009 Advisories: Memory bug in Armed Assault 1.14 and ArmA 2 1.02

16 Jul 2009 Advisories: Wrong type assert in World in Conflict 1.0.1.1

16 Jul 2009 MyToolz: Mydown 0.2.6
added the -M option which allows to download the same file from multiple mirrors and separated the mydown package from the mydownlib one

16 Jul 2009 TestingToolz: UDPSZ 0.2.2e
the -p option allows to send packets from an UDP port already in listening mode

15 Jul 2009 Advisories: Negative memset overflow in America's Army 3 3.0.5

15 Jul 2009 Research: Leverage ssc functions 0.1a
nothing new, I have only added the ascii_calculate_hash and ascii_calculate_key_hash for thoroughness

15 Jul 2009 Advisories: NULL pointer and access violation in America's Army 3 3.0.5

14 Jul 2009 TestingToolz: Generic custom HTTP file uploader 0.2
added form-name and button-name as required arguments, added the possibility of adding custom forms and values (thx katz) and fixed a bug

14 Jul 2009 Advisories: Packets loop in America's Army 3.0.5

14 Jul 2009 TestingToolz: UDPSZ 0.2.2d
solved a bug in the usage of a big file (-f) specifing a small packet size

14 Jul 2009 Research: Leverage ssc functions 0.1
the ssc_decrypt and ssc_encrypt functions used in the Leverage library adopted in games like America's Army 3 and ARCA Sim Racing

14 Jul 2009 Research: America's Army 3 auth packets ssc_decrypt 0.2
added options for dumping the decrypted data in a file and for encrypting the input file and fixed a bug in the handling of the offset values

14 Jul 2009 Research: America's Army 3 auth packets ssc_decrypt 0.1.1
added the ability of chooing a custom key useful for the encrypted information replies implemented from AA3 3.0.5

13 Jul 2009 Research: America's Army 3 auth packets ssc_decrypt 0.1
simple tool for decrypting any encrypted communication (saved as a file) with the authentication server of America's Army 3 auth.aa3.americasarmy.com

13 Jul 2009 Advisories: Resource consumption and crash in America's Army 3 3.0.5

13 Jul 2009 Patches: America's Army 3 3.0.4 ut3sticle fix 0.1

13 Jul 2009 Proof-of-concepts: Server termination in Unreal engine 3 0.1.1
added support for America's Army 3 which is vulnerable too

13 Jul 2009 Proof-of-concepts: ut3mendo 0.1.1
added support for America's Army 3 (test attack 3) which is vulnerable too

12 Jul 2009 Research: Test Drive Unlimited savegames/files decrypter/encrypter 0.1
quick tool for decrypting and re-encrypting the files in the playersave folder of the user and the btrq, db and any other encrypted file of this game

11 Jul 2009 Research: QuickBMS generic files extractor 0.2.3a
fixed only an error in the rarely used Padding command

09 Jul 2009 Research: WorldShift XE/XP files extractor 0.1.2d
substituited the memmove function with a manual one to avoid the possible senseless memmove bug (the job of memmove is just copying the data byte per byte but for some unknown reasons in rare occasions it could corrupt part of the data)

09 Jul 2009 Research: Ventrilo RCon tool 0.2.9
ventrilo3_handshake fix

09 Jul 2009 Research: Ventrilo proxy data decrypter 0.3.3
ventrilo3_handshake fix

09 Jul 2009 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.10
ventrilo3_handshake fix, used the code of ventrcon and added the handling of the -W option which was missing

09 Jul 2009 Research: ventrilo3_handshake 0.3
solved a bug in ventrilo3_algo_scramble (thx John Smith) which in some occasions wrongly encrypted/decrypted the in-game data and adjusted some other things

08 Jul 2009 Research: Telltale TTARCH files extractor 0.1.2
added support for the first chapter of Tales of Monkey Island and Muzzled, now the .lenc files are decrypted only when the -m option is enabled for logical reasons, added an option for forcing only the decryption and the encryption of the input file (debug)

07 Jul 2009 Research: How to get the list of game servers from getgsc.com 0.1.1
added more informations about the gamenames and more games like America's Army 3

06 Jul 2009 Research: QuickBMS generic files extractor 0.2.3
added support for the bzip2 compression, the line data type and various big speed improvements moreover in the byte-per-byte operations (like getvarchr and putvarchr)

06 Jul 2009 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.2.2
added initial experimental support for America's Army 3

06 Jul 2009 Patches: America's Army 3 3.0.4 NULL pointer fix 0.1

06 Jul 2009 Advisories: NULL pointer in America's Army 3 3.0.4
how is possible that I continue to find vulnerabilities even if I no longer search them? mah

04 Jul 2009 Research: HLSWlist 0.1.1
added the -f filter option

04 Jul 2009 Research: ISI rFactor files decrypter/encrypter 0.1.3a
a micro fix when using a full path in the output file (like c:\file.dat) which instead was created in the current folder (thx JusTiCe8)

04 Jul 2009 MyMusic: Tape Revenge (ver2)
removed only an annoying instrument

03 Jul 2009 Password_recovery: Xfire password decrypter 0.1
decrypter for the EncryptedUser and EPW fields in XfireUser.ini

02 Jul 2009 Research: Race Driver series ZIG to BIG decrypter 0.1
a decrypter for the ZIG files used in the Race Driver games implemented as plugin for QuickBMS

01 Jul 2009 Research: HLSWlist 0.1a
added a couple of other games in the list (although, like in gslist, the list is not needed for retrieving the servers) and adjusted the building of the query packet for possible future enhancements

01 Jul 2009 Research: Ventrilo RCon tool 0.2.8
added option -F which creates the pipe file \\.\pipe\ventrcon (/tmp/ventrcon_pipe on linux) so that any program on the same machine can send commands to ventrcon simply writing them in that file, added the -C option for caching the ventrilo 3.x keys (mainly useful for debugging)

01 Jul 2009 Patches: Universal game players limiter 0.1.1
an experimental and very basic project I created as a test various months ago and which uses a simple way to recognize and limit the players from the same IP address, released also a modified version which allows to choose the maximum number of players (3 by default)

30 Jun 2009 Research: How to get the list of game servers from getgsc.com 0.1

30 Jun 2009 MyToolz: Simple TCP proxy/datapipe 0.4.6a
solved a lame bug in the -S (ssl mitm) option

30 Jun 2009 Patches: Call of Duty 4 and 5 stats DoS fix 0.1
quick and easy work-around to avoid this annoyance which could became a problem

30 Jun 2009 Patches: Battlefield 2/2142 1.4*/1.5* bfloop fix 0.2 (Windows)
work-around for an undisclosed vulnerability

28 Jun 2009 MyToolz: Hex2byte 0.3b
another micro fix for the -x option

27 Jun 2009 Patches: SWAT 4 1.1 NULL pointers and Runtime Error fixes 0.1

24 Jun 2009 Research: PunkBuster online GUID checker 0.1.8
added support for America's Army 3 and Battlefield Heroes

23 Jun 2009 Password_recovery: Cake Poker / Lock Poker password decoder 0.1
decrypts the LastPassword string in the registry

23 Jun 2009 Password_recovery: Full Tilt Poker password decrypter 0.1
decrypts the Username and Password strings in the registry

23 Jun 2009 Research: HLSWlist 0.1
command-line servers browser based on the list of game servers provided by HLSW and with an usage similar to gslist

21 Jun 2009 Password_recovery: PartyGaming password decrypter 0.1
decrypts any encrypted string in the PartyGaming fields of the registry which includes PartyPoker, PartyGammon, PartyCasino and so on

21 Jun 2009 Research: PartyGaming files decrypter 0.1
decrypter for the encrypted files used in PartyPoker, PartyGammon, PartyCasino and so on like the various INI and BIN files (ARA.ini, GRA.ini, Sys.ini, NewTable.bin, poker.bin, Table.bin and so on)

21 Jun 2009 Password_recovery: PokerStars password decrypter 0.1
decrypts the PWD field in the user.ini file or any string passed as argument

21 Jun 2009 Research: PokerStars INI decoder and decompressor 0.1
a decoder for the INI files implemented as BMS script for my QuickBMS tool

21 Jun 2009 MyToolz: Hex2byte 0.3a
added a work-around for the -x option which allows it to work also with the hex dumps of wireshark

17 Jun 2009 Research: Ventrilo port 5000 packet decoder 0.1
decoder for the packets sent to/from port 5000, a typical example are those for update.ventrilo.com and proinfo.ventrilo.com

17 Jun 2009 Password_recovery: Ventrilo regkey decoder 0.1
simple decoder of the registration key of Ventrilo client which is stored in the regkey registry key

14 Jun 2009 MyToolz: DAA2ISO / GBI2ISO 0.1.7c
added support for the GBI files used in gBurner which are identical to DAA except for some microscopical lame changes, anyway the 99% of the GBI files online are just renamed DAA files so the previous version of daa2iso already worked with them perfectly

12 Jun 2009 Research: ISI rFactor //[[gM files decrypter/encrypter 0.2
the only change in this release is the possibility to re-encrypt the file because ARCA Sim Racing seems to need it, for the rest the new major version has been used because now the usage/syntax of the tool is like the one of rfactordec and wtcced

08 Jun 2009 Research: QuickBMS generic files extractor 0.2.2a
adapted the code for accepting the options when launched in GUI mode

07 Jun 2009 Research: QuickBMS generic files extractor 0.2.2
added the -L option for placing the list of files in a file, added the -D option for using decimal notation internally, optimized the For command, gained some milliseconds from myitoa, added the experimental commands for implementing recursive functions (Start, Call and EndFunction)

03 Jun 2009 Research: Milestone MIX files extractor 0.1.1
added support for MIX files of SBK 09

27 May 2009 Research: QuickBMS generic files extractor 0.2.1
fixed the handling of some numbers (signed integers and shifting are not friends), the letters between ' are now considered numbers (so 'a' is 0x61), now in Get/PutVarChr is possible to specify also the size of the number through an optional parameter and added: LZX, Binary and BaseName types, BytesRead and NotEOF internal variables (they are used in MultiEx), handling of elif and else (very useful), a new optional parameter in FindLoc to avoid to terminate the script if the string is not found, various new String operators, GetArray and PutArray functions which can be used to work on some temporary dynamic arrays (useful in some occasions), QuickBMSver command which allows to specify the minimum version of QuickBMS supported by that script

26 May 2009 Research: Race WTCC files encrypter/decrypter 0.2.4
added the -k option which allows to specify a custom key or the name of a game which uses a custom key and is supported by wtcced, this is needed to decrypt/encrypt the files of "Volvo The Game" (example: wtcced -k volvo original.gmt new.gmt)

24 May 2009 Research: Telltale TTARCH files extractor 0.1.1
added the -m option which automatically dumps the FONT and D3DTX files as DDS and the AUD as OGG, very useful

16 May 2009 Research: Telltale TTARCH files extractor 0.1
quick tool for extracting the files located in the ttarch archives used in the games developed by Telltale

16 May 2009 MyToolz: Rot13 0.2
this tool was so old and basic that it didn't had even a version, so I have simply reused the source code of Xor with the needed modifications

14 May 2009 MyToolz: Simple TCP proxy/datapipe 0.4.6
added only the -c option for deciding the maximum number of incoming connections

13 May 2009 Research: GS passenc/passwordenc decrypter/encrypter 0.1
quick tool for decrypting and encrypting the passenc and passwordenc fields used for creating new users on Gamespy (gpcm.gamespy.com:29900) with the \newuser\ command

12 May 2009 MyToolz: BDE64 0.2.1
added support for the "_[]" escape chars used on gamespy and optimized the code

11 May 2009 MyToolz: Proxocket 0.1.5
added the handling of the return values of the myproxocket plugins for the functions myconnect, mybind, mysend and mysendto for allowing the user to skip the calling of the original functions (for example don't sending a packet if its content doesn't match our criteria) and added the function mysocket for hooking the socket function

11 May 2009 Fake_players_bug: DirectPlay 8 Fake Players DoS 0.1.2
a small update for this jurassik (the last version was dated 2005) and interesting proof-of-concept

11 May 2009 MyToolz: UIF2ISO 0.1.7c
fixed a bug in the handling of the old non-lzma UIF files introduced in version 0.1.7b

09 May 2009 Research: QuickBMS generic files extractor 0.2
tons of speed improvements and memory and code optimizations, added the double console+gui mode (works from command-line if started from the console or with a minimal gui if double-clicked), when the tool asks to overwrite an existent file now is possible to use "a" or "all" for overwriting them automatically, added multiple memory files (MEMORY_FILE, MEMORY_FILE2, MEMORY_FILE3 and so on), added a TEMPORARY_FILE which is nothing else than a file with this name which is saved also in list mode, all numeric variables are saved in hexadecimal, FileXOR and FileROT13 now accepts also a variable as argument, added support for various encryption algorithms (aes, blowfish, des, 3des, rc4 and xtea), added the Print command which allows to show a message at runtime and various other enhancements and fixes other than new BMS examples like the one which acts as base for the games which use the TTARCH format (remember that each game has its own key which must be specified in the script)

03 May 2009 Research: QuickBMS generic files extractor 0.1.6
added the Append command, some small optimizations in the usage of realloc with the variables and the memory_file, corrected the position offset used in filexor/filerot13 if set to zero

03 May 2009 MyToolz: Offset file unzipper 0.3.3
corrected a visualization problem where the found offsets were not fully visible and forced the tool to search (-S) also incomplete deflate blocks (uhmm I don't know if this is really good or not)

30 Apr 2009 MyMusic: new modules
well, not really new since they have at least one year and some rust on them

29 Apr 2009 MyToolz: UIF2ISO 0.1.7b
added the handling of the x86 filter in the LZMA decompression, this is absolutely useless in this case because the LZMA chunks in the UIF images don't use such filter but it's good for being 100% compatible with the format

29 Apr 2009 Research: QuickBMS generic files extractor 0.1.5
added the explode (pkware data compression library), gzip and lzma (included handling of the x86 header and decoder) compressions, the filename of any opened file is saved and can be read from inside the scripts (example: get NAME filename 1), added the Padding command, some small enhancements and bugfixes of the code

27 Apr 2009 Research: QuickBMS generic files extractor 0.1.4a
solved a bug in the handling of LZO compression, the break command, added the cleaning of the filename to save and the visualization of the source code's line in case of errors

25 Apr 2009 Research: QuickBMS generic files extractor 0.1.4
this tool is a scripts based files extractor compatible with the BMS language. the idea was born from the need of a simple and fast solution for handling the simple types of archives used by the majority of games without losing time writing a stand-alone tool with tons of C code just for a basic file format

20 Apr 2009 Research: ISI rFactor files decrypter/encrypter 0.1.3
added an option for overwriting the output files without prompting and two options for re-encrypting the files (needed only with ARCA Sim Racing)

18 Apr 2009 MyToolz: Offset file unzipper 0.3.2
solved a bug in the usage of inflateReset which avoided to find two consecutive compressed blocks and solved the visualization bug in the displaying of the offsets

18 Apr 2009 MyToolz: Simple UDP proxy/pipe 0.4a
added the -t option for choosing the desired amount of seconds after which closing the client socket

15 Apr 2009 MyToolz: Mydown and mydownlib 0.2.5a
removed the backslash from the list of chars to use in hex format and avoid to redirect if the Location field is wrong or incomplete (for example Location: /)

14 Apr 2009 Research: GS login server emulator 0.2.2
added the -f option for selecting a file with fixed pids for each username

13 Apr 2009 MyToolz: Simple UDP proxy/pipe 0.4
various bug fixes (like using __cdecl for the plugins functions and closing the outgoing socket), some parts have been rewritten, added the -B option for selecting the outgoing interface, a double binding mode (like in stcppipe), added support for multiple targets:ports with two additional options for using a different outgoing socket for each target (the result is very interesting, with challenge-response-free games like Unreal1 the result is like a playable fake players) or using only one outgoing socket and more

13 Apr 2009 MyToolz: Simple TCP proxy/datapipe 0.4.5
fixed a small bug in the usage of select(), added the -B option for selecting the outgoing interface, added the possibility to specify different ports in the comma-separated list of destinations, added the -M option for connecting to all the target destinations at the same time, option -p for increasing the priority of the process

13 Apr 2009 MyToolz: Proxocket 0.1.4
fixed the creation of a corrupted CAP file when are used both ws2_32.dll and wsock32.dll, used a better solution for the writing of the CAP file in multi-thread programs and avoided the creation of the 3way handshake for non-TCP sockets if their programs use them with connect()

13 Apr 2009 TestingToolz: FindBits 0.2.1
fixed a bug in the parsing of the hex values in the option -s and fixed the output of -b

13 Apr 2009 Fake_players_bug: Quake 3 engine fake players DoS 0.4.4d
solved a sscanf bug in the parsing of the -d option

10 Apr 2009 Research: Race WTCC files encrypter/decrypter 0.2.3
corrected a field in the encryption of the files using versions 0, 2 and 4 (a missing "zlen = 0;") where the compressed size wasn't set to zero. anyway this field didn't give problems to the games which read the encrypted files because they just skip it in versions 0, 2 and 4 so it wasn't a problem

08 Apr 2009 Research: Call of Duty series mpdata decrypter/encrypter 0.1.1
removed the dumping of the first 16 bytes of the file because it's only a hash and added the automatic encryption of the input file if it's not mpdata

07 Apr 2009 Research: Call of Duty series mpdata decrypter 0.1
decrypter for the Profiles mpdata file used in Call of Duty 4 and Call of Duty 5 / World at War

03 Apr 2009 Research: Ventrilo RCon tool 0.2.7a
microfix in the creation of passworded channels in Ventrilo 3.x

01 Apr 2009 Research: GSPlayers 0.1.1a
only some micro modifications because it no longer worked

27 Mar 2009 Research: GS login server emulator 0.2.1
adjusted the encoding on port 29920 and some micro enhancements

19 Mar 2009 Research: FSB files extractor 0.2.7
corrected a small bug in rebuild mode where the "guessed" number of samples of the added file was not updated and added full support to the rebuilding of the FSB archives which use small headers

19 Mar 2009 Research: GS login server emulator 0.2a
now the profileid, sessionid, sesskey and mod are a number referred to the name of the user and no longer random as before

18 Mar 2009 Research: Racer AR files extractor 0.1
extractor for the AR files built with the buildar.exe tool used in the game Racer

18 Mar 2009 Research: unlzboh 0.1
another simple LZ algorithm, this one is used in the game Racer

18 Mar 2009 TestingToolz: UDD files quick informations 0.1
quick and basic tool which show some informations contained in the UDD files used in Ollydbg like the various breakpoints and the comments

16 Mar 2009 Research: MotorM4x files decoder 0.1.1
added an option for re-encoding the files

16 Mar 2009 Patches: Quake 3 engine RCON half-second limit disabler (Windows and Linux) 0.1.2
added support for cod4, cod5 and cod2 (this one has not been tested)

15 Mar 2009 MyToolz: Signsrch 0.1.5a
made a small change which avoids to show the address 0xffffffff in some rare occasions when is used the -e/-P option and added an option for disabling the automatic executable parsing when is used -P

15 Mar 2009 MyToolz: Proxocket 0.1.3a
modified acpdump.h for dividing the captured data (so the creation of the CAP file) in packets of max 65535 bytes

14 Mar 2009 Password_recovery: ISPQ sha1 password decrypter 0.1
decrypts the string in the registry (RecentLogin) containing the sha1 hash of the password

14 Mar 2009 MyToolz: DLL proxy skeleton generator 0.1.1b
only an aesthetic enhancement in which I have removed the useless WINDLLSHIT code, adjusted some comments and #define's names and added two default ways for hooking the proxified functions (CALL_FUNCTION and CALL_FUNCTION2) so the user can choose the most confortable

14 Mar 2009 MyToolz: Proxocket
I have updated ONLY the sample myproxocket.c file because I missed the WINAPI prefix for the real_* functions, so the program and the version (0.1.3) have NOT been touched

12 Mar 2009 Research: Quakelive xmpp.quakelive.com password retriever 0.1
a basic tool and a text file which describe how to get the session password needed to use the own Quake Live account on the jabber/xmpp service of xmpp.quakelive.com from outside the game, so using any normal client supporting this open protocol

11 Mar 2009 TestingToolz: Webservers char tester 0.1
a simple tool which has been very useful in all this time for the blind and quick testing of some vulnerabilities in software that uses the HTTP protocol and it's totally useless to myself now that I'm no longer interested in security

11 Mar 2009 Research: Battlefield 2 and 2142 bitstream sniffer 0.1.1
I have partially rewritten some parts of the code to make it more readable and easy to understand

11 Mar 2009 TestingToolz: FindBits 0.2
optimized and added some new options for reading and visualizing a custom amount of bits and deciding the start offset in bytes or bits

09 Mar 2009 Research: FSB files extractor 0.2.6
added checks on the correctness of read and write operations (useful only with corrupted FSB files or no disk space), hex dump of the additional headers (moresize) when is used the verbose option, handling of the small headers in FSB4, fixed a bug in the generation of the binary file (-s) with the FSB files that have additional headers (moresize) and the following improvements of the -a option: added the recognizing of the XMA files, usage of the correct extension based on the type of codec of the file (like .mp3 for the delta/mp3 files), correct generation of the output files for VAG (used the SS2 file format), GCADPCM (used GENH) and XMA (this last one not tested due to the lack of decoders) so now all the formats are covered

08 Mar 2009 Research: Asura engine "AsuraCmp" files decompressor 0.1
decompressor for the compressed data files used in the games based on the Asura engine like Sniper Elite, Rogue Trooper, Guard Shield and so on

08 Mar 2009 Research: Asura huffboh 0.1
compression algorithm (huffman?) used in the Asura engine

08 Mar 2009 Research: unthandor 0.1
decompression algorithm reversed from the game Thandor

08 Mar 2009 Research: decompression functions
moved the unlzss, unlzw and unlzwx functions from Mytoolz to a new sub-section specific for compression functions

08 Mar 2009 Research: PS2 VAG interleave value guesser and files extractor 0.1.1
added some new options and the usage of a different pattern to search, works enough well when configured correctly but it's definitely not user-friendly (after all I created it only for The Warriors)

05 Mar 2009 MyToolz: Mydown and mydownlib 0.2.5
encoding of special http chars, handling of the "Connection" server's parameter, better handling of the gzip streams, -z option in mydown for forcing the on-fly decompression of the downloads and better handling of the onflyunzip option

05 Mar 2009 Research: CameraWaREC 0.1
another tool with the same usage and options of jmeetrec and awcamrec but for the webcams on CameraWare

05 Mar 2009 Research: JMeetREC 0.2d
nothing new, I have only updated mydonwlib and sha1.c and added a note in the runtime help about checking the system clock if there are many 403 errors

04 Mar 2009 Research: Xbox ADPCM plugin 0.1.3
solved a bug with Winamp which requires a sample buffer of at least 0x200*4 bytes, removed the support for the ZWB and DAT files (since totally useless) and corrected the return values of the functions in stdio2win.h

04 Mar 2009 Password_recovery: Digsby password decoder 0.1
decodes the encrypted password string provided through the command-line

02 Mar 2009 Research: Stainless Steel Studios SSA files extractor 0.1
an extractor which works with all the games developed by Stainless Steel Studios like Empire Earth, Empires: Dawn of the Modern World and Rise and Fall: Civilizations at War

02 Mar 2009 Research: Canhel PAC->ZIP and ZIP->PAC converter 0.1
converts the PAC files of this (beta) mmorpg in ZIP and viceversa

02 Mar 2009 Research: Spike Girls SGP* files decoder 0.1a
simple decoder for the SGP* files of this game

25 Feb 2009 Research: NecroVisioN files extractor 0.1.1
I forgot to handle the first byte used for specifying if the files are compressed or not (thanx to asmxtx)

22 Feb 2009 Research: Ventrilo RCon tool 0.2.7
added the /user custom command for creating new users, on Ventrilo 3.x the new users will have all their rights disabled (all the fields set to zero)

22 Feb 2009 Research: NecroVisioN files extractor 0.1
simple files extractor for this game

20 Feb 2009 Research: Multi engine RCON tool and password guesser 0.2.3d
redirected the non useful program's messages to stderr and added the -P option for loading the password from a file (possibly useful in multi user environments for security reasons)

18 Feb 2009 MyToolz: Signsrch 0.1.5
corrected the reading of some rarely used signatures from signsrch.sig (for example UUEncodeTable), added an option to avoid to build the big endian versions of the signatures, the -e option is now used to handle the input file as an executable (PE/ELF32) for visualizing directly the rva memory addresses instead of the not so useful file offsets (works also on non-Windows systems), updated the signsrch.sig database

18 Feb 2009 Fake_players_bug: Quake 3 engine fake players DoS 0.4.4c
implemented the previously mentioned part of the DemonWare bdcrypto research as experimental option (-d)

18 Feb 2009 Research: DemonWare bdcrypto bdTicket decryption 0.1a
some info and a practical demonstration of the bdCrypto mechanism used in Call of Duty World at War and possibly other games based on the DemonWare sdk

16 Feb 2009 Research: Gamespy mails of shame
I have collected all the mails exchanged between me and those idiots of Gamespy before the case and desist letter they sent me in the far November 2003, yeah these are the "famous" mails

16 Feb 2009 Research: PS2 VAG interleave value guesser and files extractor 0.1
a simple tool I have written mainly to extract the musics contained in the file music.snd of the game The Warriors for PlayStation 2

14 Feb 2009 Research: ISI rFactor //[[gM files decrypter 0.1
decrypter for the encrypted //[[gM files used in rFactor (like Toban Long.svm), in Arca Sim Racing (any ini, hdv, tbc and other files in GameData) and optionally other games

13 Feb 2009 Research: Ventrilo RCon tool 0.2.6
fixed the option for reconnecting to the server, added the -l option to log the input/output data to file and better handling of the errors

13 Feb 2009 Research: XWB/ZWB files unpacker 0.3.2
updated some fields from the latest xact3wb.h and added full support to the header of the adpcm files

13 Feb 2009 Research: FSB files extractor 0.2.5c
no longer creates the wav header for the files classified as delta because they are mp3 (so headerless) and added the useless -A option which forces the usage of the ima tag (0x0011) instead of the xbox one (0x0069) for the files which uses the adpcm format

13 Feb 2009 Patches: Quake 3 engine Cbuf_Execute commands execution universal fix 0.1 (Windows)

08 Feb 2009 Research: Ultima Online uodemo.dat extractor 0.1b
automatically filtered the useless .q extesion of the extracted files

08 Feb 2009 Patches: Ebenezer kocrash overflow fix 0.1

08 Feb 2009 MyToolz: Lame Patcher 0.4.3
mapping of the files smaller than 32 mb in memory for better performances with some .lpatch files, parsing of the executables, real rva calculation, a new set of experimental instructions, fixed the visualization of the original offsets in the report in some rare cases and some additional checks

08 Feb 2009 Password_recovery: Bullet Proof FTP bpftp.dat file decoder 0.1a
micro fix for compatibility with the compilers

06 Feb 2009 Research: Ultima Online uodemo.dat extractor 0.1a
files extractor for the uodemo.dat file of Ultima Online, the tool could work with other encrypted files too

05 Feb 2009 MyToolz: Proxocket 0.1.3
adjusted the last argument (namelen) of the prototype of accept() and myaccpet() and adjusted the handling of myrecv and myrecvfrom when applied to WSARecv/WSARecvFrom

04 Feb 2009 Research: FSB files extractor 0.2.5b
solved a bug in the function for rebuilding the FSB archives caused by the calculation of the padding

02 Feb 2009 Research: Ventrilo RCon tool 0.2.5
better compatibility of the /subchan commands with ventrilo 3.x and filtered the visualization of empty lines

02 Feb 2009 Research: FSB files extractor 0.2.5a
corrected the handling of the null files (virtual files, loops markers) in the rebuilding process

02 Feb 2009 Research: FSB files extractor 0.2.5
added the -v option for additional/useless informations, rebuilding function: added support for FSB4 and corrected a (rare?) bug in the guessing of the offset where placing the files

02 Feb 2009 Proof-of-concepts: TeamViewer host <= 4.0.5543 resources consumption 0.1
very basic but interesting bug

31 Jan 2009 Patches: Enemy Territory 2.55/2.60b and ET Pro 3.1.0/3.2.6 Cmd_WeaponStat_f fix 0.1
fix for the malformed ws command, in my opinion it's useless because the ET Pro mod already fixes this and other bugs through combinedfixes.lua so my fix has a reason to exist only on mod-less servers or with versions of ET Pro where there is no lua support

29 Jan 2009 Research: Gslist 0.8.8
updated enctypeX, assigned a type to the various function pointers in multi_query.h, faster colors filtering, cleaning of the code, webgui: although it's no longer supported I have added support for enctypeX (server's informations are showed immediately without pinging them), optimized sorting function, default port from 80 to 28903, avoid multiple instances on the same port, gslistweb.exe now parses the options passed at command-line (useful for custom port, enctype, enctypeX_query and so on), the filter now is no longer saved for error because it's a temporary string used only for being assigned to the games in Config

29 Jan 2009 Research: GS enctypeX servers list decoder 0.1.2
added the handling and filtering of the colors, the chars major than 0x7f and the html/SQL escape chars (optional), fixed the wrong handling of negative numbers when infobuff is used in enctypex_decoder_convert_to_ipport and added the argument infobuff_size in enctypex_decoder_convert_to_ipport

29 Jan 2009 MyToolz: DAA2ISO 0.1.7b
nothing new, I have only added some additional checks in tinflate.c

27 Jan 2009 Password_recovery: CuteFTP data retriever and password decoder 0.1.1
adjusted the parsing of the sm.dat file

27 Jan 2009 MyToolz: Simple TCP proxy/pipe 0.4.4a
fixed a bug with the closing of a file when -d and -S are used and added the option -X for choosing a custom SSL method and certificate

21 Jan 2009 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.4a
removed the termination of the tool if an unknown packet is received

19 Jan 2009 Password_recovery: FlashFXP passwords decoder 0.2
added support for the passwords which don't use the default key

17 Jan 2009 Research: ISI rFactor files decrypter 0.1.2c
added the automatic creation of output folders for using the tool in scripts like wtcced

17 Jan 2009 Research: ISI rFactor files decrypter 0.1.2b
added the signature of Simulador Turismo Carretera for identifying the encrypted files of this game

17 Jan 2009 Research: ISI rFactor files decrypter 0.1.2a
solved a bug which corrupted the first 4 bytes of the GMT files introduced in the last version (thanx to JBob)

15 Jan 2009 Research: PunkBuster online GUID checker 0.1.7a
added Need for Speed: Undercover

14 Jan 2009 Password_recovery: Steam password decoder 0.2.3c
added the embedded UAC manifest useful to make it fully compatible with Vista (thanx to Henderson), the rest has not been touched

13 Jan 2009 Patches: Call of Duty 4 1.7 fix for the callvote buffer-overflow 0.1 (Windows)

13 Jan 2009 Research: ISI rFactor files decrypter 0.1.2
forget the previous change, each game has its own signature so for the moment the tool checks that one of rFactor and ARCA (so it can be used in batch with multiple files decrypting automatically only those which are really encrypted), added also some more informations displayed and support for encrypted files which are not only GMT (thanx to mario)

13 Jan 2009 Proof-of-concepts: Quake 3 engine Cbuf_Execute commands execution universal proof-of-concept 0.1
universal patcher which gets the original client executable of a game based on the Quake 3 engine and generates a new modified one which converts the ';' chars in the commands sent by the client to carriage-returns for testing a vulnerability found by leo of http://www.nixcoders.org which allows to execute server's game commands through a malformed callvote

12 Jan 2009 Research: ISI rFactor files decrypter 0.1.1a
I have only removed the check of the signature in the encrypted files because some games based on the rFactor engine use random values, this means that now the tool can decrypt the encrypted files of ARCA Sim Racing, attention only to verify that the input files are really encrypted because the tool can't know or guess it

10 Jan 2009 Proof-of-concepts: q3unban plugin for proxocket 0.1
the q3unban plugin converted to proxocket for testing this bug automatically without proxies or additional operations

08 Jan 2009 Research: FSB files extractor 0.2.4a
added support for the new type of encryption of the FSB files which still allows to see the original password, the rest of the tool has not been touched

08 Jan 2009 Research: Ventrilo RCon tool 0.2.4a
nothing new, I have simply added the #include <pthread.h> needed to compile the tool on linux

07 Jan 2009 Fake_players_bug: Skulltag Fake Players DoS 0.1.2a
added the hash of a new and old version and automatically tests the default password "password" if the server is protected

06 Jan 2009 MyToolz: UIF2ISO 0.1.7a
now the magiciso_is_shit function works also on big endian CPUs like PowerPC and I have made some usual micro cleanups of some instructions (like using signed char instead of char, removing an useless kboxinit and using the latest lzmadec files)

04 Jan 2009 MyToolz: Simple TCP proxy/pipe 0.4.4
added the -S option for handling SSL connections (MITM for dumping the data exchanged between a SSL client and server), the -D option for dumping the data directly to stdout for fast debugging and updated acpdump.h

31 Dec 2008 MyMusic: summer@home
the melody was ready from long time and finally I have found an enough good base for it

31 Dec 2008 Patches: AXS v3.00 enhancements 0.1a
I have simply commented and explained the modifications of the patch, there are NO changes to the patch which is still the same of 0.1

31 Dec 2008 TestingToolz: loDNS 0.1
simple tool I wrote some months ago for my tests which emulates a basic DNS server and logs all the hostnames in the received requests and replies with a fixed IP address

29 Dec 2008 Research: GS login server emulator 0.2
updated, optimized and added support for more parameters to make it compatible with other games like Battlefield 2

23 Dec 2008 Password_recovery: Steam password decoder 0.2.3b
solved a problem in the automatic testing of NoMachineSpecificPassphraseAvailable if the first key fails

21 Dec 2008 Password_recovery: Steam password decoder 0.2.3a
modified the function which gets the values from the registry for making it more Steam-like and now the tool automatically tries to use the key NoMachineSpecificPassphraseAvailable if the retrieved one is wrong, this should solve problems retrieving the correct decryption key on Vista

21 Dec 2008 Research: Multi engine RCON tool and password guesser 0.2.3c
removed the flushing of the keyboard input, I noticed a micro problem probably caused by that setbuf(stdin, NULL) and fflush(stdin)

10 Dec 2008 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.4
added support for version 0.2X

10 Dec 2008 MyToolz: Executable's strings lister and replacer 0.2.3
added the -e option which forces the tool to start the disassembly scan from the entry point of the input executable and removed the check which controlled if the pointed string/array is outside the executable section

09 Dec 2008 MyToolz: Executable's strings lister and replacer 0.2.2
solved a problem where the strings imported with -b were not NULL delimited (thanx to doppiapunta), solved (definitely?) the problems with the handling of the line feeds in the re-imported strings, added the -A option for collecting/importing only the aligned data

08 Dec 2008 Password_recovery: Desktop Fay passwords decoder 0.1
decodes the smtp and pop password in the registy

08 Dec 2008 Password_recovery: DarkSpace passwords decrypter 0.1
decrypts the previousPW password in config.ini

06 Dec 2008 Research: Egosoft X series CAT/DAT files extractor 0.1
extractor for the CAT/DAT archives used in any of the X games developed by Egosoft: X, X2 and X3

06 Dec 2008 Research: QuakeLive beta files decoder 0.1
simple decoder for the PK3 files of QuakeLive beta

05 Dec 2008 Research: Cauldron FS files extractor 0.2
the old extractor for Chaser rewritten from scratch with support to any game and demo developed by Cauldron

05 Dec 2008 Patches: Call of Duty 4 (1.7) work-around for the va() bug 0.1a (Windows)
nothing new, I have only made one of the searched pattern bytes dynamic to allow to work on older or newer game versions and also on Call of Duty World at War (yes, seems vulnerable too)

04 Dec 2008 Research: Ventrilo RCon tool 0.2.4
other than the updated ventrilo_algo and ventrilo3_handshake I have made various other changes like the thread now used for the keyboard commands (so the rest is threadless), the automatic enabling of the "Show login name in remote status requests" option and two new options for reconnecting when disconnected (useless) and for waiting a certain amount of seconds between each command sent from the batch file (-f)

04 Dec 2008 Research: Ventrilo proxy data decrypter 0.3.2
updated ventrilo_algo, ventrilo3_handshake, the functions for dumping the tcpdump file and solved some bugs which corrupted the captured data

04 Dec 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.9
updated only ventrilo_algo and ventrilo3_handshake

04 Dec 2008 Research: ventrilo3_handshake 0.2
this is the updated set of functions for joining the Ventrilo 3.x servers that I have now decided to release as a stand-alone project (previously it was only available in the ventrilofp/ventrilo_proxy/ventrcon packages). in the previous versions there was a small bug in the scrambling of the keys which corrupted a bit the in-game packets

04 Dec 2008 Research: Ventrilo encryption/decryption algorithm 0.2a
nothing new, I have simply prepared the functions for supporting possible updates in the future and added a commented obfuscated code which comes from Ventrilo 3.x (obfuscated because this code seems to do exactly the same stuff of the old version but looks more chaotic, mah)

03 Dec 2008 Password_recovery: TrendMicro passwords decrypter 0.1.1
added support for the !CRYPT! strings composed by multiple blocks (because each block has a max size of 64 bytes), added a message which tells when has been used the PWDDecrypt method instead of the !CRYPT! one (all the times the input string doesn't start with the "!CRYPT!" text) and now the decrypted string is visualized without the previous DECRYPT: prefix

03 Dec 2008 Patches: Quake 3 engine universal directory traversal fix (Windows) 0.1.1
fixed a read exception when using /download without arguments (thanx to rampage)

03 Dec 2008 MyToolz: Executable's strings lister and replacer 0.2.1a
added a micro check on the three parameters needed to use the tool to be alerted of missed or wrong parameters

02 Dec 2008 MyToolz: Executable's strings lister and replacer 0.2.1
solved a bug which added a carriage return (0x0d) at the imported strings and added the -b option which allows to read the input file without disassembling it (like the "strings" unix program) and so to re-import the strings directly in the file without the additional modifications done by default for the executables (repointing of the offsets and new sections)

01 Dec 2008 Research: Kingdom Elemental files extractor 0.1
extractor for the archives of the game Kingdom Elemental and not only, in fact this game uses the Molebox packer for encrypting/compressing/archiving its files so my tool could be "reused" also with other programs after having made the needed modifications (first of all the the encryption key)

30 Nov 2008 Password_recovery: Steam password decoder 0.2.3
now all the code is OpenSSL dependent so steampwd.c is all the source code, I have also made some micro optimizations here and there but nothing important

30 Nov 2008 Research: Big Scale Racing files decoder 0.1
quick decoder for all the FSW, FS3, FSP and the other encoded files of this game

30 Nov 2008 Research: Virtools files unpacker 0.1.3
added support to the VBF archives (VXBG signature) and made some generic optimizations

30 Nov 2008 Research: MotorM4x files decoder 0.1
decodes the files extracted from the ZIP archives with the MDL/DTF extensions

29 Nov 2008 Research: EipiX Pyroblazer packages/files extractor 0.1
extractor for the Packages.dat archive of the game Pyroblazer

29 Nov 2008 Research: WorldShift XE/XP files extractor 0.1.2c
used a "static" buffer to avoid a bug which consumed lot of memory

28 Nov 2008 Research: Gslist 0.8.7a
updated enctypex

28 Nov 2008 Research: GS enctypeX servers list decoder 0.1.1a
solved an error in the new changes (thanx to Yoma)

28 Nov 2008 Research: Gslist 0.8.7
updated enctypex

28 Nov 2008 Research: GS enctypeX servers list decoder 0.1.1
full handling of the extra informations received from the master server, so now instead of having \mapname\1 is returned \mapname\name_of_the_map

28 Nov 2008 Research: Ventrilo RCon tool 0.2.3
imported the changes made recently to ventrilofp which add better compatibility to version Ventrilo 3.x and solved some bugs and errors

28 Nov 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.8i
a couple of micro fixes, nothing important

27 Nov 2008 Password_recovery: TrendMicro passwords decrypter 0.1
automatically decrypt any password in the input file or the encrypted string passed as first parameter. supports both !CRYPT! strings and those decriptable through the PWDDecrypt function of PWD.DLL.

24 Nov 2008 MyToolz: QuickRVA 0.2.3
added initial support to DOS, LE, PE64, OS2, VXD, ROM, ELF64 and XBE executables and replaced the previous disassembler library with diStorm64 because allows to disassemble 16, 32 and 64 bit executables

18 Nov 2008 Research: Falcom YS games XSO files extractor and rebuilder 0.1.1a
removed the space from the sscanf in num2xso used for the "header" and "data" lines

18 Nov 2008 MyToolz: Executable's strings lister and replacer 0.2
various updates: now the tool gets more strings (but it's a bit slower), there are no longer limits in the length of the strings, all the buffers are dynamically allocated, now I use a structure containing all the strings, full handling of the original line-feeds of the collected strings, better output, elimination of duplicated strings (which is probably the most important update) and more. note that this version is NO longer compatible with the previous one!

15 Nov 2008 MyToolz: DAA2ISO 0.1.7a
full support of two other shameful ways used by PowerISO for obfuscating the data: the swapping of the 3 decompression functions in the inflate algorithm and another senseless encoding of the index table

15 Nov 2008 Research: Gslist 0.8.6d
added handling of master server messages in enctypeX (useful in case you use a wrong -f filter), now everything is displayed on stderr except the servers and games list and their informations, the classical list of the IP:port of the servers will bet no longer displayed when -X is in use to avoid duplicates with the "IP:port \parameter\value" output, finally the system tray icon of gslistweb.exe works completely and gslist can be launched or terminated from there too

14 Nov 2008 MyToolz: DAA2ISO 0.1.7
substituited the decompression library from zlib to the more simple and tiny tinf library which has allowed me to add support to a small and unusual difference in the inflate algorithm used in PowerISO which caused the failure of daa2iso with some DAA files, continued the research on some unused or rarely used fields of the DAA file format

14 Nov 2008 MyToolz: Hex2byte 0.3
the default hexadecimal format is now immediate because no longer uses the slow sscanf() which instead remain active for the other alternative formats chosed by the user, added also a very useful option which allows to handle the hexdumps

13 Nov 2008 MyToolz: QuickRVA 0.2.2a
some enhancements and fixes of the interface

13 Nov 2008 Research: Half-life DLL decrypter and rebuilder 0.2
rewritten, now the decrypted dll is correct

11 Nov 2008 Research: PunkBuster online GUID checker 0.1.7
added support to all the latest games like Call of Duty 5, Crysis Wars and WarHammer Online and a new feature which allows to verify a list of GUIDs of various formats included the pbbans one available on PunkBusted

11 Nov 2008 Password_recovery: NewsLeecher files decrypter 0.1
decodes and decompress any DAT and BAK file located in %appdata%\NewsLeecher

10 Nov 2008 MyToolz: Executable's strings lister and replacer 0.1
this tool has the main purpose of finding any ASCII and unicode string inside PE and ELF executables with the possibility of modifying these strings with an external text editor and re-injecting them in the original executable

10 Nov 2008 MyToolz: QuickRVA 0.2.2
added a real-time disassembler with parsing of ASCII and unicode strings, usage of sh_flags instead of sh_type for the visualization of the characteristics of the ELF sections, fixed a problem with virtual offsets set to zero (ELF)

10 Nov 2008 MyToolz: Proxocket 0.1.2
solved a mistake in the calling of mysendto and myrecvfrom, removed the usage of secure_in_use in acpdump.h which caused an endless loop, modified the prototype of mysend/mysendto so now is possible to create a new buffer during their hooking which will be automatically freed by proxocket after its usage with the real functions, better handling of mysend/mysendto with the WSASend/WSASendTo functions, improved the examples available in myproxocket.c

07 Nov 2008 MyToolz: Proxocket 0.1.1
added some examples and more informations in myproxocket.c, now myconnect and mybind are called before the original functions, if the return value of myconnect/mybind/mysend/mysendto is negative will be not called the relative original functions

07 Nov 2008 MyToolz: PackZip 0.1.1
I have almost rewritten this small tool, now the compressed data generated by it is complete and not partial or corrupted as before. removed the -l/-s options and renamed -x to -o (offset). still no news about the optimization of the compression, this is a limit of zlib

06 Nov 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.8h
another fix for rndxx, fixed the autoguessing of the server's version and reduced the time needed for receiving a reply from the centralized Flagship servers from 5 to 2 seconds

05 Nov 2008 MyToolz: UIF2ISO 0.1.7
added support to all the available output formats: ISO, BIN/CUE, MDS/MDF, CCD/IMG/SUB, NRG

05 Nov 2008 MyToolz: DLL proxy skeleton generator 0.1.1a
adjusted the declared types when WINDLLSHIT is enabled, needed or useful with some dlls like user32.dll

03 Nov 2008 MyToolz: Proxocket 0.1
Proxocket is a dll proxy project for the main Winsock functions which allows to capture any type of packet and data sent/received by a specific software of your choice and optionally modifying its content through a custom dll easy to develop

03 Nov 2008 MyToolz: DLL proxy skeleton generator 0.1.1
now the resulted code is much smaller and I have added an useless check in InitInstance if the original dll has been already loaded

03 Nov 2008 MyToolz: Fcomp 0.3.1
added two new options for specifying a starting offset and adding the ASCII visualization of the differences

03 Nov 2008 News: restyling
I have started to restyle a bit the whole website with better descriptions (many of them are incredibly old or short) of each stuff here making everything less confusing to navigate and understand... I'm still at the beginning

30 Oct 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.8g
fix of the rndxx function

30 Oct 2008 MyToolz: Proxymini 0.2.1
code cleanup

29 Oct 2008 MyToolz: Calcc 0.1.4
solved a bug with ~ and ! when used without parenthesis, added base32 output, added makefile for Unix, the base64 output now uses the RFC4648 alphabet, portability optimizations

29 Oct 2008 MyToolz: Bynaryo 0.1
tool for converting binary strings to ASCII or to 8, 16, 32 and 64 bit numbers and vice versa

28 Oct 2008 Research: UBI.COM gschat IRC proxy 0.2.2

28 Oct 2008 Research: Ubi.com gschat encoding/decoding algorithm 0.2

28 Oct 2008 Research: Ubi.com gschat proxy real-time decoder 0.1.1

28 Oct 2008 Research: Ubi.com decoding algorithm 0.2

28 Oct 2008 Research: Ubi.com real-time packets decoder 0.2
all the tools in the Ubi.com section have been rewritten and updated

28 Oct 2008 Research: GS peerchat server emulator 0.1.3
removed the shutdown() function, optimized the memory used by the threads on Linux and other optimizations for making the server more stable

25 Oct 2008 Research: CamFrog login tester example 0.1
practical example of the implemenation of my camfrogcrypt functions and basic tool for testing the login mechanism on the CamFrog servers

25 Oct 2008 Research: CamFrog encryption/decryption algorithm 0.2
the needed functions and algorithm for getting and generating the keys for encrypting and decrypting the data exchanged with the login and main CamFrog servers

25 Oct 2008 MyToolz: THEGUI 0.3.1
restored the old font, added drag'n'drop (doesn't seem to work on Windows) and better initialization of the variables

25 Oct 2008 MyMusic: added more mp3 versions of my XM modules

21 Oct 2008 Patches: Soldier of Fortune II test-demo definitive infostring crash fix 0.1

12 Oct 2008 TestingToolz: Quake 3 engine "connect" modifier 0.2
added support for multiple parameters and values

12 Oct 2008 MyToolz: DLL proxy skeleton generator 0.1
first release of this simple tool which generates a base C code for proxifyng the functions of any DLL

07 Oct 2008 Research: WorldShift XE files rebuilder 0.1a
better flushing of the temporary file

07 Oct 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.8f
added support to "Show login name in remote status requests"

07 Oct 2008 Research: WorldShift XE files rebuilder 0.1
tool for building the XE archives of this game

07 Oct 2008 Research: WorldShift XE/XP files extractor 0.1.2b
small fix of the new modifications

06 Oct 2008 Research: WorldShift XE/XP files extractor 0.1.2a
better handling and recognition of the XP archives

06 Oct 2008 Research: WorldShift XE/XP files extractor 0.1.2
added support to XP archives too

05 Oct 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.8e
used version 3.0.0 as default one instead of the old 2.3.0

05 Oct 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.8d
filtered a couple of bad chars from the rndxx function

05 Oct 2008 Password_recovery: Steam password decoder 0.2.2
full support for Vista (thanx to Roddly)

05 Oct 2008 Research: AWCamREC 0.2.1c
updated mydownlib

05 Oct 2008 Research: JMeetREC 0.2c
updated mydownlib

05 Oct 2008 MyToolz: webimgms 0.1.2a
updated mydownlib

05 Oct 2008 TestingToolz: Generic custom HTTP file uploader 0.1a
updated mydownlib

03 Oct 2008 Research: Falcom Ys NACCI savegame files decrypter/encrypter 0.1
tool for decrypting and re-encrypting the savegames of Ys6, Ys Felghana/Ys3 and Ys Origin

02 Oct 2008 Research: Gslist 0.8.6c
now enctypeX is default (so there are no longer problems with big endian processors) and has been added the -R option which shows all the rooms of a game available on the Gamespy Peerchat server (thanx to CHC)

02 Oct 2008 MyToolz: UIF2ISO 0.1.6a
substituited OpenSSL with another DES function which makes the executable a lot smaller and modified the headers of some source files (so NO changes to the core) with the suggestions of Jari Aalto of Debian

02 Oct 2008 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.2.1
added support for Unreal 1 and the -X option

30 Sep 2008 Research: Gslist 0.8.6b
new gsmsalg and mydownlib

30 Sep 2008 Research: GSMSALG 0.3.3
the src parameter is no longer writable, if dst is NULL a new one will be allocated/returned and fixed a rare problem with the pseudo-base64 of the data

30 Sep 2008 MyToolz: Mydown and mydownlib 0.2.4
added the closing of the file after its downloading to avoid possible data lost

24 Sep 2008 Research: Gslist 0.8.6a
updated the enctypeX and gsnatneg components, micro fix in -m/M and now is possible to query also a single server (-i/I/d) using gsnatneg (-G)

24 Sep 2008 Research: GS enctypeX servers list decoder 0.1a
a micro fix in the port displayed in enctypex_decoder_convert_to_ipport

21 Sep 2008 Fake_players_bug: Quake 3 engine fake players DoS 0.4.4b
now the -n option gets the q3fill.ini file in the same folder of the executable

21 Sep 2008 Research: GS natneg client 0.1.2
: solved a couple of errors

21 Sep 2008 Advisories: Directory traversal in the webadmin of Unreal Tournament 3 1.3

19 Sep 2008 Research: NCF/CCF packet format to tcpdump capture format 0.1.2
better support of the NCF format

19 Sep 2008 Research: Gslist 0.8.6
added full support to the protocol and algorithm used by ANY game to query the GS master server (use -t -1 to enable it), an option to receive the informations of each server directly from the master server (-X) and now the query of the servers through GS natneg must be enabled with the -G option

19 Sep 2008 Research: GS enctypeX servers list decoder 0.1
the algorightm used by ANY game for decrypting the data from the GS master server

16 Sep 2008 Research: GS peerchat server emulator 0.1.2
removed the need of receiving NOTICE from the server

16 Sep 2008 Research: Ventrilo RCon tool 0.2.2a

16 Sep 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.8c

16 Sep 2008 Patches: Failed assertion in the Unreal engine work-arounds 0.1

16 Sep 2008 Advisories: Failed assertion in the Unreal engine

16 Sep 2008 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.2
various enchancements and fixes

15 Sep 2008 Research: Unreal engine packets plugin for sudppipe 0.2.2
verbose option and other optimizations

14 Sep 2008 Patches: "VoiceIndex<VOICE_MAX_CHATTERS" / NULL pointer fix for UT2004 and America's Army 0.1a
marked as experimental and removed the Linux work-around

14 Sep 2008 Patches: Server termination (out of memory) in Unreal engine 3 fix 0.1a

14 Sep 2008 Patches: Server termination (out of memory) in Unreal engine 3 fix 0.1

14 Sep 2008 Patches: "VoiceIndex<VOICE_MAX_CHATTERS" / NULL pointer fix for UT2004 and America's Army 0.1

11 Sep 2008 Advisories: Server termination in the Unreal engine 3

11 Sep 2008 Advisories: Clients format strings in the Unreal engine

11 Sep 2008 TestingToolz: Unreal engine test server 0.1
basic way for emulating an Unreal server and testing the sending of commands to a connected client

11 Sep 2008 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.1.3b
micro optimization of unreal_build_pck

11 Sep 2008 Fake_players_bug: Quake 3 engine fake players DoS 0.4.4a
solved a bug introduced in the new release

10 Sep 2008 MyToolz: DAA2ISO 0.1.6
better support for the new 110 file format (thanx to Izack Varsanno)

09 Sep 2008 Fake_players_bug: Quake 3 engine fake players DoS 0.4.4
solved a stupid bug in -g

09 Sep 2008 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.1.3a

08 Sep 2008 Research: Unreal engine packets plugin for sudppipe 0.2.1
added the -f option for parsing a packet saved in a file

07 Sep 2008 Research: Unreal engine packets plugin for sudppipe 0.2
same fix of unrealfp plus an option for substituiting strings in the type 1 packets

07 Sep 2008 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.1.3
corrected the parsing and building of the packets (amount of bits and last byte)

07 Sep 2008 MyToolz: Read/Write bits to buffer 0.1.2
micro fix for the zeroing of the bits which will be written

06 Sep 2008 MyToolz: QuickRVA 0.2.1
compatibility for executables with invalid sections

05 Sep 2008 Research: Unreal engine packets plugin for sudppipe 0.1a

05 Sep 2008 Research: Unreal engine packets plugin for sudppipe 0.1
plugin for sudppipe which displays all the content of the type 1 packets of the games based on the Unreal engine

03 Sep 2008 Patches: Need for Speed 4: High Stakes 4.50 No-CD and Windows XP fix 0.2

03 Sep 2008 Research: Ventrilo proxy data decrypter 0.3.1
added the -a option for dumping any decrypted UDP and TCP data in tcpdump/pcap format

01 Sep 2008 Research: GS peerchat IRC proxy 0.3.2b
added the fflushing of the log file

01 Sep 2008 MyToolz: QuickRVA 0.2
added support for ELF files and some bug fixes

01 Sep 2008 MyToolz: webimgms 0.1.2
some bug fixes and small optimizations

01 Sep 2008 MyToolz: ZipComp 0.4.1a
decimal visualization of the filesize

29 Aug 2008 Patches: Need for Speed 3: Hot pursuit No-CD and Windows XP fix 0.2
solves also the "Your hard drive has less than 1MB free space" bug and the lost config.dat after the modifying of the executable

22 Aug 2008 Research: Race WTCC files encrypter/decrypter 0.2.2
added support to version 5 used in GTR Evolution

21 Aug 2008 MyToolz: UIF2ISO 0.1.6
added support for the useless UIF versions 3 and 4

13 Aug 2008 Patches: Ventrilo <= 3.0.2 NULL pointer fix 0.1 (any version and platform)

13 Aug 2008 Advisories: NULL pointer in Ventrilo 3.0.2

11 Aug 2008 Advisories: NULL pointer in Skulltag 0.97d2-RC3

11 Aug 2008 Fake_players_bug: Skulltag Fake Players DoS 0.1.2

10 Aug 2008 Research: WorldShift XE files extractor 0.1.1

09 Aug 2008 Research: Ventrilo proxy data decrypter 0.3
optimizations and full support to the 3.x protocol

06 Aug 2008 Advisories: Endless loop and resources consumption in Halo 1.07.615

06 Aug 2008 Fake_players_bug: Halo Fake Players DoS 0.2.1b
handling of timeout

06 Aug 2008 Research: Battlefield 2/2142 cdkey to PunkBuster GUID 0.1.1
added the handling of input MD5 hashes too

06 Aug 2008 Password_recovery: Generic CryptUnprotectData and RDP passwords decrypter 0.1.1
a mini bugfix and automatic support for Battlefield 2/2142 encrypted cdkeys (ergc x9392)

05 Aug 2008 Research: Battlefield 2/2142 cdkey to PunkBuster GUID 0.1
quick tool for calculating the PB GUID from any cdkey of these two games

04 Aug 2008 MyToolz: Lanfile 0.1.2
memory optimizations

04 Aug 2008 MyToolz: DAA2ISO 0.1.5a
some mini fixes (thanx to Josh Freeman)

03 Aug 2008 TestingToolz: Quake 3 engine "connect" modifier 0.1
plugin for sudppipe which allows a simple customization of the "connect" packet for the games which use the Quake 3 engine

03 Aug 2008 Proof-of-concepts: q3unban plugin for sudppipe 0.1.2
rewritten

02 Aug 2008 Advisories: Server termination in America's Army 2.8.3.1

02 Aug 2008 Proof-of-concepts: Unreal Tournament 2004 <= v3369 NULL pointer 0.1.1
now requires only one packet instead of two, I have updated also the relative advisory since other games are affected like Red Orchestra and Shadow Ops

30 Jul 2008 Advisories: Memory corruption and NULL pointer in Unreal Tournament III 1.2

30 Jul 2008 Advisories: NULL pointer in Unreal Tournament 2004 v3369

29 Jul 2008 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.1.2a
fixed the function which queries the server

28 Jul 2008 Proof-of-concepts: q3unban plugin for sudppipe 0.1.1
added support for old games

28 Jul 2008 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.1.2

28 Jul 2008 Proof-of-concepts: Denial of Service in Warpath and Pariah through DISABLESPLIT

26 Jul 2008 TestingToolz: UDPSZ 0.2.2c
fixed -P 0

26 Jul 2008 MyToolz: Proxymini 0.2c
added the -L option for choosing the outgoing interface

26 Jul 2008 MyToolz: DAA2ISO 0.1.5
added initial support for the DAA file version 110

26 Jul 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.8b
added an option for a delay between each connection

22 Jul 2008 MyToolz: UIF2ISO 0.1.5a
added support for another rare type of image with uncompressed headers

21 Jul 2008 TestingToolz: UDPSZ 0.2.2b
micro fix when pck_size is negative but has been selected custom content (-f/-c/-C)

21 Jul 2008 Advisories: NULL pointer in ZDaemon 1.08.07

21 Jul 2008 MyToolz: UIF2ISO 0.1.5
added support for the fixed keys encryption found in some new UIF files

20 Jul 2008 Advisories: Vulnerabilities in SWAT 4 1.1

20 Jul 2008 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.1.1
added compatibility for more games

20 Jul 2008 TestingToolz: UDPSZ 0.2.2a
fixed and optimized the udpspoof function (thanx to SomaFM)

18 Jul 2008 TestingToolz: UDPSZ 0.2.2
added an option for spoofing the source address of the packets

17 Jul 2008 Fake_players_bug: Unreal engine basic client and Fake Players DoS 0.1
a basic client for sending custom commands to any server of almost any game based on the Unreal engine

17 Jul 2008 Proof-of-concepts: Format string bug in the old versions of the Unreal engine

17 Jul 2008 Proof-of-concepts: Hell bell bug in the Unreal engine through the BADBOY command

17 Jul 2008 Proof-of-concepts: Two server bugs in old versions of the Unreal engine

17 Jul 2008 TestingToolz: UDPSZ 0.2.1
small fixes

13 Jul 2008 Research: ShellShock Nam67 files extractor 0.1
extractor for the assets files of this game

11 Jul 2008 Research: Gslist 0.8.5
now the webgui and -Q scanning is slower since I have implemented the reping of the servers and the usage of the Gamespy NAT negotiation for the queries 0, 8 and 11. removed some filtered chars in the -Q scanning

10 Jul 2008 Fake_players_bug: Half-Life fake players bug (no auth) 0.3.2
added the -x option which allows the automatic testing of all the bugs

09 Jul 2008 MyToolz: Lame Patcher 0.4.2
some small enhancements

07 Jul 2008 Research: Milestone MIX files extractor 0.1
extractor for the MIX archives used in the Milestone games like S.C.A.R., Superbike 2000 and 2001, Evolution GT and more

07 Jul 2008 Research: CBF files extractor 0.2.1
important bug fix below and full wildcards in -p

07 Jul 2008 MyToolz: unlzw 0.1.2
important bugfix in the part of the code which copies the dictionary data in the output (using memcpy was a bad idea)

07 Jul 2008 MyToolz: unlzwx 0.1
another implementation of LZW memory decompressor

06 Jul 2008 News: it's summer and it's time to update your bookmarks! new website and mirrors available:
aluigi.org, backup.aluigi.org and mirror.aluigi.org

01 Jul 2008 Advisories: Endless loop in Soldner 33724

30 Jun 2008 Proof-of-concepts: haloloop and haloloop2 0.1.1a
added support to Halo demo

30 Jun 2008 Fake_players_bug: Halo Fake Players DoS 0.2.1a
added support to Halo demo

29 Jun 2008 Proof-of-concepts: Halo <= 1.07 endless loop 0.1.1
added support for Halo CE

29 Jun 2008 Fake_players_bug: Halo Fake Players DoS 0.2.1
added support for Halo CE

29 Jun 2008 Proof-of-concepts: Halo <= 1.06 endless loop 0.1.1
rewritten with support for Halo CE (this is the old haloloop)

29 Jun 2008 Advisories: Endless loop in Halo 1.07

28 Jun 2008 Advisories: Double Denial of Service in Call of Duty 4 1.7
updated the cod4vamap advisory, version 1.7 is vulnerable too

28 Jun 2008 Advisories: Multiple vulnerabilities in S.T.A.L.K.E.R. 1.0006
updated the names of the vulnerable functions in both the advisory and the PoC

28 Jun 2008 Advisories: Multiple vulnerabilities in S.T.A.L.K.E.R. 1.0006

28 Jun 2008 Fake_players_bug: S.T.A.L.K.E.R. Fake Players DoS 0.1a
added the querying of the server for informations (totally useless)

27 Jun 2008 TestingToolz: UDPSZ 0.2
added tons of new options and features

27 Jun 2008 Fake_players_bug: Quake 3 engine fake players DoS 0.4.3a
fixed a bug with -g and more compatibility

27 Jun 2008 Patches: Call of Duty 4 (1.6) work-around for the va() bug 0.1 (Windows)

23 Jun 2008 Advisories: Some bugs in SunAge 1.08.1

22 Jun 2008 Advisories: Double Denial of Service in Call of Duty 4 1.6

22 Jun 2008 Advisories: NULL pointer in World in Conflict 1.008

21 Jun 2008 Research: GS natneg client 0.1.1
now it's faster and more compatible, in all my tests worked perfectly without timeouts or other errors

20 Jun 2008 Research: Falcom YS games NA/NI/Z files extractor and rebuilder 0.1.3a
solved a small bug with the handling of wildcards

20 Jun 2008 Research: WorldShift XE files extractor 0.1a
solved a small bug with the handling of wildcards

20 Jun 2008 MyToolz: CmdDiz 0.1.2a
solved a small bug with the handling of wildcards

19 Jun 2008 Research: GS natneg client 0.1
function for the initial implementation of the client-side Gamespy natneg protocol for joining servers behind router/NAT

18 Jun 2008 Fake_players_bug: Halo Fake Players DoS 0.2
totally rewritten, now works also versus internet servers

18 Jun 2008 Fake_players_bug: Sniper Elite Fake Players DoS 0.1

18 Jun 2008 Fake_players_bug: Sword of the Stars Fake Players DoS 0.1

18 Jun 2008 Research: Gslist 0.8.4e
fixed a bug in the usage of -Q

17 Jun 2008 Research: Gslist 0.8.4d
applied the colors filters also to the SQL function and added the -C option which allows to enable or disable this filter

16 Jun 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.8a
now retries the connection for 3 times if this times out

16 Jun 2008 Advisories: Server freezed in Skulltag 0.97d2-RC2

16 Jun 2008 Advisories: NULL pointer in the HTTP rcon server in Crysis 1.21

15 Jun 2008 Advisories: Denial of Service in S.T.A.L.K.E.R. 1.0006

15 Jun 2008 Advisories: Informations disclosure in Crysis 1.21

15 Jun 2008 Fake_players_bug: S.T.A.L.K.E.R. Fake Players DoS 0.1

15 Jun 2008 Fake_players_bug: Crysis invisible Fake Players DoS 0.1

13 Jun 2008 Fake_players_bug: Zdaemon Fake Players DoS 0.1.3
nothing new, I have only limited the fake players to 2 in 26 seconds to avoid the banning

13 Jun 2008 Fake_players_bug: Skulltag Fake Players DoS 0.1.1
added support to the latest 0.97d/d2 versions

12 Jun 2008 Fake_players_bug: Battlefield 1942 invisible Fake Players DoS 0.1.3
added support for demos

09 Jun 2008 Research: WorldShift XE files extractor 0.1
interesting extractor for the compressed XE archives used in the WorldShift game

08 Jun 2008 Research: Ventrilo RCon tool 0.2.2
added full support to 3.x servers

08 Jun 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.8
many compatibility fixes and improvements for both the new 3.x and the older servers

07 Jun 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.7a
some important fixes in the handling of the in-game packets and restored the admin brute forcing on 3.x but with a warning

07 Jun 2008 Password_recovery: Steam password decoder 0.2.1
added support for Vista, thanx again to the same anonymous who contribuited to version 0.2!

06 Jun 2008 Research: Gslist 0.8.4c
solved a bug in the backup SQL query and removed the underscore filtering (thanx to ouioui), added the -E option for ignoring some SQL errors and -D for choicing a custom amount of milliseconds between each query (-Q/webgui)

06 Jun 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.7
added the support to in-game packets and so to all the derived options for 3.x servers and added also the -j option for testing the brute forcing of the join/server password

05 Jun 2008 MyToolz: MORSE2ASCII 0.1a
microfix for wrong samples number and better handling of spaces in text visualization

05 Jun 2008 MyToolz: DTMF2NUM 0.1c
microfix for wrong samples number and better handling of spaces in text visualization

05 Jun 2008 MyToolz: CmdDiz 0.1.2
now each dictionary is loaded in memory when the program uses it, added complete wildcard support and the word is search on both the keywords list

05 Jun 2008 MyToolz: hosts file/list DNS checker 0.1
tool which checks if the hostnames listed in a file or contained in a hosts file can be resolved or not

04 Jun 2008 Research: Falcom YS games NA/NI/Z files extractor and rebuilder 0.1.3

04 Jun 2008 Research: Falcom YS games XSO files extractor and rebuilder 0.1.1

04 Jun 2008 Research: Falcom YS games NA/NI/Z files extractor and rebuilder 0.1.2
fixed a bug with the upper case chars of japanese filenames and added a debug option for encrypting the decrypted NI files

03 Jun 2008 Research: Falcom YS games XSO files extractor and rebuilder 0.1
tool for extracting and rebuilding the XSO files used in the YS game series of Falcom, these are the files which contain all the dialogs and the texts of the games

03 Jun 2008 Patches: XPDF pdftotext/pdftops/pdfimages allow copying of text (Win32) 0.1
this patch allows to use the Windows version of XPDF's pdftotext, pdftops and pdfimages on DRM protected PDF files without modifying and recompiling the program

03 Jun 2008 Research: Falcom YS games NA/NI/Z files extractor and rebuilder 0.1.1
added support to the zeroed compressed files like S_9021__W.YCO.Z of YS6, added an option for extracting/listing only the files with a specific extension and moved a size check to the correct location

02 Jun 2008 MyToolz: webimgms 0.1.1
some bug fixes, the disable resize option is now default and the mouse visualization is disabled in fullscreen mode

01 Jun 2008 MyMusic: Idea
  • 27 May 2008 Research: Falcom YS games NA/NI/Z files extractor and rebuilder 0.1
    complete tool for extracting and rebuilding/appending the NA/NI/Z archives used by the series of games developed by Falcom like Ys Origin, Ys Felghana and any other which uses these types of files
  • 27 May 2008 MyToolz: Offset file unzipper 0.3.1
    solved some mini bugs like -s which said ever to have found zipped data
  • 27 May 2008 Fake_players_bug: Quake 3 engine fake players DoS 0.4.3
    now the q3unban function generates a smaller connect packet and pb_guid (Enemy Territory) is enabled only when is used -B
  • 27 May 2008 MyToolz: webimgms 0.1
    experimental tool for refreshing the same or sequential images and for slide show, works on both local and remote web images and allows to dump them too
  • 24 May 2008 Research: JmeetREC 0.2b
    passwored cam will be skipped automatically if has been used the o (open) filter
  • 24 May 2008 MyToolz: DirComp 0.2
    completely rewritten and with multifolder comparison
  • 20 May 2008 MyToolz: CmdDiz 0.1.1
    solved some bugs
  • 20 May 2008 Password_recovery: SmartFTP password decoder 0.1
    I have only removed the note about recoverying only own passwords since was wrong
  • 18 May 2008 Password_recovery: SmartFTP password decoder 0.1
  • 18 May 2008 MyToolz: UIF2ISO 0.1.4
    added support to NRG and CUE/BIN output images and forced large file support on Linux
  • 18 May 2008 MyToolz: DAA2ISO 0.1.4a
    forced large file support on Linux
  • 18 May 2008 MyToolz: NRG2CUE generator 0.1
    simple tool which generates a CUE file from a NRG one (both NRG v1 and v2 supported)
  • 18 May 2008 Fake_players_bug: Quake 3 engine fake players DoS 0.4.2c
    now cl_punkbuster is not sent if disabled
  • 16 May 2008 Password_recovery: CamFrog passwords decrypter 0.2
    added support to Serial and ActivationData needed to decrypt the Pro version key
  • 14 May 2008 Research: NCF/CCF packet format to tcpdump capture format 0.1.1
    added support for 802.11 and token ring in NCF
  • 03 May 2008 Advisories: Multiple vulnerabilities in WebMod 0.48
  • 02 May 2008 Advisories: In-game Denial of Service in Call of Duty 4 1.5
  • 02 May 2008 Fake_players_bug: Quake 3 engine fake players DoS 0.4.2b
    automatically compression testing, so is no longer needed to force the -c option with games like Call of Duty 4
  • 30 Apr 2008 MyToolz: myftpidx 0.1.3
    added support to non passive FTP connections
  • 24 Apr 2008 Research: NCF/CCF packet format to tcpdump capture format 0.1
    converts the CommView NCF and CCF dumps to the classical tcpdump CAP format
  • 23 Apr 2008 MyToolz: Mydown and mydownlib 0.2.3
    many improvements (but still backward compatible) and fixes, now mydown is a complete command-line multithread downloader
  • 21 Apr 2008 MyToolz: MORSE2ASCII 0.1
    experimental tool which decodes the morse codes from a PCM WAV file using a volume/peak based method, the tool can also decode the morse codes from text files
  • 21 Apr 2008 MyToolz: Morse generator 0.2
    simple tool which converts an input file to morse notation (like ...___... for SOS)
  • 21 Apr 2008 MyToolz: DTMF2NUM 0.1b
    solved a small bug in the normalization function
  • 20 Apr 2008 Proof-of-concepts: Quake 3 engine directory traversal PoC 0.2.2
    added support to Enemy Territory 2.55
  • 18 Apr 2008 Research: Multi engine RCON tool and password guesser 0.2.3b
    now retakes automatically the rcon challenge if expires
  • 18 Apr 2008 Advisories: Denial of Service in eTrust Secure Content Manager r8
  • 17 Apr 2008 Advisories: Crash in CA ARCserve Backup 12.0.5454.0
  • 16 Apr 2008 Advisories: Denial of Service in PunkBuster (22 Oct 2007)
  • 16 Apr 2008 Advisories: Directory traversal in BigAnt Messenger 2.2
  • 12 Apr 2008 Advisories: NULL pointer in Nero MediaHome 3.3.3.0
  • 12 Apr 2008 Advisories: Upload directory traversal in HP LoadRunner 9.10
  • 12 Apr 2008 Password_recovery: HP LoadRunner password decoder 0.1
    decodes the passwords created for LoadRunner with CryptonApp
  • 11 Apr 2008 Advisories: Directory traversal and multiple Denials of Service in HP OpenView NNM 7.53
  • 11 Apr 2008 Advisories: Denial of Service in SmarterMail 5.0.2999
  • 08 Apr 2008 Advisories: Memory corruption in HP OpenView NNM 7.53
    removed the yesterday's advisory since it was on an old version and modified the latest one
  • 08 Apr 2008 Advisories: Memory corruptions in HP OpenView NNM 7.53
  • 07 Apr 2008 Advisories: Multiple vulnerabilities in HP OpenView NNM 7.53
  • 06 Apr 2008 Research: Ventrilo RCon tool 0.2.1
    added the handling of subchans and batch files
  • 06 Apr 2008 Research: Ventrilo RCon tool 0.2
    rewritten using the ventilofp code (but Ventrilo 3.x is not supported yet), added support to version 2.2, added the /chan custom commands which allow to create/delete/list all the available chans and many bugfixes
  • 06 Apr 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.6
    solved the Ventrilo 3.x handshake problem
  • 05 Apr 2008 MyToolz: DTMF2NUM 0.1a
    removed the function which skipped the start/end samples since useless and added a Makefile
  • 02 Apr 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.5
    fixed a bug with version 3.x and in fastsend, added an option for setting the phonetic
  • 02 Apr 2008 Fake_players_bug: Flashchat Fake Players DoS 0.1.2c
    rewritten the function which loads user:pass from file
  • 01 Apr 2008 Advisories: Directory traversal in LANDesk Management Suite 8.80.1.1
  • 31 Mar 2008 MyToolz: DTMF2NUM 0.1
    tool for decoding DTMF and MF tones from PCM wave files
  • 29 Mar 2008 Advisories: Directory traversal in 2X ThinClientServer v5.0_sp1-r3497
  • 29 Mar 2008 Advisories: Denial of Service in SLMail Pro 6.3.1.0
  • 29 Mar 2008 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.4
    added support for the new Ventrilo 3 centralized handshake and a verbose and fast join/exit options
  • 27 Mar 2008 Proof-of-concepts: LANDesk Classroom Manager / LanSchool <= 7.0.3.5 fun and bugs 0.1.1
    corrected the IP based encryption algorithm
  • 26 Mar 2008 MyToolz: ZipComp 0.4.1
    large files and big endian support
  • 26 Mar 2008 Advisories: Multiple vulnerabilities in solidDB 06.00.1018
  • 26 Mar 2008 Proof-of-concepts: LANDesk Classroom Manager / LanSchool <= 7.0.3.5 fun and bugs 0.1
  • 25 Mar 2008 MyToolz: myftpidx 0.1.2
    solved a small bug and added options for verbose output, full URL, choosing of fields to visualize and HTML output
  • 24 Mar 2008 MyToolz: mydownlib 0.2.2a
    solved bug with e-mail passwords
  • 24 Mar 2008 MyToolz: myftpidx 0.1.1a
    solved bug with e-mail passwords
  • 23 Mar 2008 MyToolz: myftpidx 0.1.1
  • 22 Mar 2008 MyToolz: myftpidx 0.1
    tool for indexing recursively any file available inside an FTP server
  • 21 Mar 2008 Research: Gslist 0.8.4b
    improvements of the -Q option
  • 21 Mar 2008 Advisories: Buffer-overflow in ASUS Remote Console 2.0.0.19
  • 20 Mar 2008 Advisories: Multiple heap overflows in xine-lib 1.1.11
  • 19 Mar 2008 Research: Gslist 0.8.4a
    fixed bug in -z
  • 19 Mar 2008 Research: Gslist 0.8.4
    fixed some bugs added pings in the -Q queries and the possibility of querying a custom list of servers
  • 19 Mar 2008 Research: GS enctype1 servers list decoder 0.1a
    only removed the static buffers and added the enctype1_wrapper function
  • 19 Mar 2008 Research: GS enctype2 servers list decoder 0.1.1a
    only removed the static buffers and added the enctype2_wrapper function
  • 18 Mar 2008 MyToolz: DAA2ISO 0.1.4
    added password/encryption support, solved some micro bugs or compatibility problems and added some small enhancements
  • 18 Mar 2008 MyToolz: UIF2ISO 0.1.3
    added password/encryption support, solved some micro bugs or compatibility problems and added some small enhancements
  • 16 Mar 2008 Advisories: Update about vlcboffs
    the buffer-overflow in ParseSSA in VLC has not been patched in version 0.8.6e
  • 16 Mar 2008 Advisories: Buffer-overflow in BootManage TFTPD 1.99
  • 16 Mar 2008 Research: ISI rFactor files decrypter 0.1.1
    fixed a bug in the decryption function
  • 16 Mar 2008 Research: ISI rFactor files decrypter 0.1
    decrypter for the meshes/GMT files which can be used in this game
  • 16 Mar 2008 Fake_players_bug: Flashchat Fake Players DoS 0.1.2a
    adjusted some free()
  • 14 Mar 2008 Advisories: Multiple vulnerabilities in Net Inspector 6.5.0.828
  • 12 Mar 2008 Advisories: Format string in McAfee Framework 3.6.0.569 (ePolicy Orchestrator 4.0)
  • 10 Mar 2008 Advisories: Vulnerabilities in Timbuktu Pro 8.6.5
  • 10 Mar 2008 Advisories: Multiple vulnerabilities in ASG-Sentry 7.0.0
  • 08 Mar 2008 Advisories: NULL pointer in Remotely Anywhere 8.0.668
  • 08 Mar 2008 Advisories: Directory traversal in Argon Client Management Services 1.31
  • 08 Mar 2008 Advisories: Directory traversal and NULL pointer in Acronis PXE Server 2.0.0.1076
  • 08 Mar 2008 Advisories: Invalid memory access in Acronis True Image Group Server 1.5.19.191
  • 08 Mar 2008 Advisories: NULL pointer in Acronis True Image Windows Agent 1.0.0.54
  • 08 Mar 2008 Advisories: Denial of Service in PacketTrap TFTP server 2.0.3901.0
  • 07 Mar 2008 Advisories: Multiple vulnerabilities in MailEnable Professional/Enterprise 3.13
  • 06 Mar 2008 Advisories: Directory traversal in MicroWorld eScan Server 9.0.742.98
  • 05 Mar 2008 Fake_players_bug: Quake 3 engine fake players DoS 0.4.2a
  • 05 Mar 2008 Advisories: Multiple vulnerabilities in Perforce Server 2007.3/143793
  • 04 Mar 2008 Advisories: Arbitrary commands execution in Versant Object Database 7.0.1.3
  • 03 Mar 2008 Advisories: Heap overflow in Borland VisiBroker Smart Agent 08.00.00.C1.03
  • 02 Mar 2008 Advisories: Multiple vulnerabilities in Borland StarTeam MPX 6.7
  • 02 Mar 2008 Advisories: Multiple integer overflows in Borland StarTeam server 10.0.0.57
  • 28 Feb 2008 Advisories: Denial of Service in SmsGate 1.1n
  • 27 Feb 2008 Advisories: Buffer-overflow in the passwords handling of Trend Micro OfficeScan 8.0 and possibly other products
  • 26 Feb 2008 Password_recovery: Steam password decoder 0.2
    completely rewritten, multi-platform, easier to use and no longer DLL dependent (thanx to an anonymous)
  • 25 Feb 2008 Advisories: NULL pointer in SurgeFTP 2.3a2
  • 25 Feb 2008 Advisories: Format string and buffer-overflow in SurgeMail 38k4
  • 25 Feb 2008 Proof-of-concepts: SIDVault <= 2.0f "+" strstr Denial of Service 0.1
  • 22 Feb 2008 Advisories: Multiple vulnerabilities in Double-Take 5.0.0.2865
  • 21 Feb 2008 Advisories: Denial of Service in Zilab Remote Console Server 3.2.9
  • 21 Feb 2008 Advisories: Multiple vulnerabilities in Zilab Chat and Instant Messaging 2.1
  • 20 Feb 2008 Advisories: Heap overflow in Sybase MobiLink 10.0.1.3629
  • 19 Feb 2008 Advisories: Multiple buffer-overflow in NowSMS v2007.06.27
  • 19 Feb 2008 Advisories: Directory traversal in SCI Chat v3.4.9
  • 18 Feb 2008 Advisories: Access violation and limited informations disclosure in webcamXP 3.72.440.0
  • 17 Feb 2008 Advisories: NULL pointer crash in freeSSHd 1.20
  • 17 Feb 2008 Proof-of-concepts: Pragma FortressSSH <= 5.0.4.293 Denial of Service 0.1.1
    better protocol compatibility
  • 16 Feb 2008 Advisories: Two heap overflow in Foxit WAC Server 2.0 Build 3503
  • 16 Feb 2008 Proof-of-concepts: ProSSHD 1.0 20070707 resources eater 0.1
  • 16 Feb 2008 Proof-of-concepts: VanDyke VShell 3.0.3-569 exception message 0.2
    PoC rewritten
  • 14 Feb 2008 Research: Teamspeaklist 0.1.1
    fixed a problem with swapped IP addresses, thanx a lot to Steven Hartland
  • 14 Feb 2008 MyToolz: DAA2ISO & UIF2ISO
    no updates, I have simply separated the executable and the source code in two packages
  • 12 Feb 2008 Advisories: Directory traversal and DoS in WinIPDS G52-33-021
  • 11 Feb 2008 Advisories: Unicode buffer-overflow in RPM Remote Print Manager 4.5.1.11
  • 11 Feb 2008 Advisories: Format string and buffer-overflow in Lst Network Print Server 9.4.2 build 105
  • 11 Feb 2008 Advisories: Format string and DoS in Opium4 OPI and cyanPrintIP servers 4.10.x
  • 10 Feb 2008 Advisories: Directory traversal in SafeNet Sentinel Protection and Key Server 7.4.1.0
  • 10 Feb 2008 Advisories: Multiple vulnerabilities in EztremeZ-IP File and Printer Server 5.1.2x15
  • 08 Feb 2008 Advisories: NULL byte writing in Emerald, RadiusNT and Air Marshal
  • 07 Feb 2008 Advisories: Multiple vulnerabilities in Ipswitch Instant Messaging 2.0.8.1
  • 06 Feb 2008 Advisories: Logs visualization in WS_FTP Server Manager 6.1.0.0
  • 06 Feb 2008 Advisories: Chat vulnerabilities in TinTin++ 1.97.9
  • 04 Feb 2008 Advisories: Multiple vulnerabilities in WinCom LPD Total 3.0.2.623
  • 04 Feb 2008 Advisories: Multiple vulnerabilities in SAPlpd 6.28
  • 04 Feb 2008 Advisories: Socket termination in FTP Log Server 7.9.14.0
  • 01 Feb 2008 Password_recovery: Winzip wjf xflags password decrypter 0.1
    decrypts all the xflags passwords in the job files
  • 31 Jan 2008 MyToolz: Signsrch 0.1.4
    finally signsrch can be called from any location, it's enough that the signature file is in the same folder of signsrch
  • 31 Jan 2008 MyToolz: Simple UDP proxy/pipe 0.3a
    big endian compatibility of the -a option
  • 31 Jan 2008 Advisories: Denial of Service in Print Manager Plus 7.0.127.16
  • 31 Jan 2008 Patches: Half-Life x.1.1.1e (Windows and Linux) hlfreeze/hl-headnut/csdos/btbp fix 0.1.1
    added an experimental fix, available only for Windows, for the Born to be pig attack
  • 28 Jan 2008 MyToolz: DAA2ISO 0.1.3
    automatic mini GUI for Windows, big endian support and readme: now choosing the DAA/UIF file to convert is just the matter of a couple of clicks without using the console
  • 28 Jan 2008 MyToolz: UIF2ISO 0.1.2
    automatic mini GUI for Windows, big endian support and readme
  • 27 Jan 2008 Advisories: Crash in BitTorrent 6.0.1 and uTorrent 1.7.6 through webui
  • 27 Jan 2008 Research: GSPlayers 0.1.1
    now is possible to choose a custom search query
  • 24 Jan 2008 Advisories: Multiple crashes in Steamcast 0.9.75
  • 21 Jan 2008 MyToolz: DAA2ISO 0.1.2
    fseek 64 bit on Mingw and Makefile
  • 21 Jan 2008 MyToolz: UIF2ISO 0.1.1
    fseek 64 bit on Mingw and Makefile
  • 16 Jan 2008 Advisories: Peers static overflow in BitTorrent 6.0 and uTorrent 1.7.5
  • 13 Jan 2008 Proof-of-concepts: Quicktime Player <= 7.3.1.70 HTTP error message buffer-overflow 0.1
    full proof-of-concept which can be transformed in a code execution exploit simply passing the offset, the return address and the shellcode you want
  • 13 Jan 2008 Research: Multi engine RCON tool and password guesser 0.2.3a
    -x forces the scanning in any case
  • 10 Jan 2008 Advisories: Buffer-overflow in Quicktime Player 7.3.1.70
  • 10 Jan 2008 Proof-of-concepts: SAP MaxDB <= 7.6.03.07 remote command execution 0.1.1
    added major verbosity and customization
  • 09 Jan 2008 Advisories: Pre-auth remote commands execution in SAP MaxDB 7.6.03.07
  • 08 Jan 2008 Research: Multi engine RCON tool and password guesser 0.2.3
    added an option which ignores the data sent by the server, useful in some rare cases for the RCON DoS
  • 08 Jan 2008 Advisories: rmff_dump_header heap-overflow in Xine 1.1.9
  • 08 Jan 2008 Advisories: sdpplin_parse heap-overflow in VLC 0.8.6d
  • 08 Jan 2008 Advisories: report buffer-overflow in xtacacsd 4.1.2
  • 04 Jan 2008 Proof-of-concepts: mySQL <= 6.0 (yaSSL <= 1.7.5) pre-auth buffer-overflow 0.1
  • 04 Jan 2008 Advisories: Multiple vulnerabilities in yaSSL 1.7.5
  • 04 Jan 2008 Advisories: Crash in Foxit WAC Server 2.1.0.910
  • 02 Jan 2008 MyToolz: Simple TCP proxy/datapipe 0.4.3
    fixed the endian of the ports dumped with -d
  • 02 Jan 2008 Advisories: Multiple vulnerabilities in Georgia SoftWorks SSH2 Server 7.01.0003
  • 02 Jan 2008 Advisories: Buffer-overflow and format string in White_Dune 0.29beta791
  • 02 Jan 2008 Advisories: Denial of Service in Pragma FortressSSH 5.0.4.293
  • 02 Jan 2008 Advisories: Denial of Service in Pragma TelnetServer 7.0.4.589
  • 02 Jan 2008 Advisories: Exception message in Seattle Lab Telnet Server 4.1.1.3758
  • 02 Jan 2008 Advisories: Exception message in VanDyke VShell 3.0.3.569
  • 28 Dec 2007 Advisories: Buffer-overflow in CoolPlayer 217
  • 28 Dec 2007 Advisories: Details about the hlfreeze/hl-headnut/csdos/"Born to be pig" bugs
    added informations about the "Born to be pig" attack
  • 27 Dec 2007 Advisories: Buffer-overflow in Extended Module Player 2.5.1
  • 27 Dec 2007 Advisories: Multiple vulnerabilities in libnemesi 0.6.4-rc1
  • 27 Dec 2007 Advisories: Multiple vulnerabilities in Feng 0.1.15
  • 26 Dec 2007 Research: XWB/ZWB files unpacker 0.3.1
    added support to version 42/43
  • 25 Dec 2007 Research: FSB files extractor 0.2.4
    added initial support to FSB4 files
  • 25 Dec 2007 Fake_players_bug: Flashchat Fake Players DoS 0.1.2
  • 24 Dec 2007 Advisories: Unicode buffer-overflow in Zoom Player 6.00b2
  • 24 Dec 2007 Advisories: Buffer-overflow and format string in VideoLAN VLC 0.8.6d
  • 24 Dec 2007 Advisories: Double directory traversal in ImgSvr 0.6.21
  • 24 Dec 2007 Fake_players_bug: Half-Life fake players bug (no auth) 0.3.1
    added support to the Born to be pig attack
  • 24 Dec 2007 MyToolz: DAA2ISO 0.1.1
    anti output file overwrite and better multi-volume handling (filenames)
  • 24 Dec 2007 MyToolz: UIF2ISO 0.1a
    if the output file already exists the tool will ask if you want to overwrite it
  • 21 Dec 2007 Advisories: Buffer-overflow in WinUAE 1.4.4
  • 19 Dec 2007 Advisories: Array overflow in id3lib (devel CVS)
  • 19 Dec 2007 Advisories: Some buffer-overflow in ProWizard 1.62
  • 17 Dec 2007 Advisories: Two vulnerabilities in Cherokee r952 for Windows
  • 17 Dec 2007 Advisories: Heap overflow in PeerCast 0.1217 / SVN 344
  • 16 Dec 2007 Fake_players_bug: Quake 3 engine fake players DoS 0.4.2
    added options for only one fake player, forcing q3unban, seconds between players and a couple of fixes
  • 10 Dec 2007 Advisories: Multiple vulnerabilities in BarracudaDrive 3.7.2
  • 10 Dec 2007 Advisories: Multiple vulnerabilities in BadBlue 2.72b
  • 10 Dec 2007 Advisories: Filesystem access in DOSBox 0.72
  • 09 Dec 2007 Research: Punkbuster master server file downloader 0.1.1
    solved a buffer bug in data receiving, added more runtime info and the option for choosing the download rate
  • 07 Dec 2007 Advisories: Upload directory traversal in Easy File Sharing 4.5
  • 07 Dec 2007 Advisories: Two vulnerabilities in Simple HTTPD 1.38
  • 05 Dec 2007 Advisories: Limited upload directory traversal in HTTP File Server 2.2a / 2.3 beta (build #146)
  • 05 Dec 2007 TestingToolz: Generic custom HTTP file uploader 0.1
    simple tool for uploading files (POST + mime) deciding the name of the destination file
  • 04 Dec 2007 Research: GS peerchat IRC proxy 0.3.2a
    bugfix of the new -L option
  • 04 Dec 2007 Research: GS peerchat IRC proxy 0.3.2
    added the -L option for enabling the LOGIN 1 or 4 command
  • 04 Dec 2007 Fake_players_bug: Flashchat Fake Players DoS 0.1.1
    fixed some bugs, added more compatibility and a couple of new options
  • 04 Dec 2007 Fake_players_bug: Lithtech engine Fake Players DoS 0.2
    added almost all the games which support the Lithtech engine (for example F.E.A.R.), in future I will add also the working GUIDs of nolf2 and tron20
  • 03 Dec 2007 MyMusic: Sonathack
    great non-techno mini-track in exactly 2 minutes
  • 03 Dec 2007 Advisories: Multiple vulnerabilities in Firefly Media Server (mt-daapd) 2.4.1 / SVN 1699
  • 03 Dec 2007 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.3
    added initial (and not so useful) support to 3.0.x servers, the centralized authorization is not implemented yet
  • 03 Dec 2007 Fake_players_bug: Flashchat Fake Players DoS 0.1
  • 03 Dec 2007 Patches: jampded Windows 1.0.0.0 and 1.0.1.0 q3infoboom fix 0.1
    a bit late but I have fixed the q3infoboom bug in this game
  • 27 Nov 2007 MyToolz: DAA2ISO 0.1
    tool for converting the DAA files (Direct Access Archive, used by PowerISO) to ISO
  • 25 Nov 2007 MyToolz: UIF2ISO 0.1
    tool for converting the UIF files (Universal Image Format, readable by MagicISO) in ISO
  • 23 Nov 2007 Patches: AXS v3.00 enhancements 0.1
    Enhancements for AXS: 96000 hz, full window, F9 descent fix, low case filenames, anti path disclosure and possibly other things I forgot
  • 21 Nov 2007 Fake_players_bug: Quake 3 engine fake players DoS 0.4.1
    added only a ">> 16" for a better randomization of the strings
  • 21 Nov 2007 Patches: Quake 3 engine unban fix (Windows and Linux) 0.1
  • 20 Nov 2007 Advisories: Two DoS in I Hear U 0.5.6
  • 19 Nov 2007 Research: PunkBuster online GUID checker 0.1.6
    added other 4 games
  • 19 Nov 2007 Research: FSB files extractor 0.2.3
    added a guessing function which tries to build the extension of the filenames truncated by the FSB archives and adjusted the padding when rebuilding the FSB files
  • 19 Nov 2007 Advisories: Static buffer overflow in Rigs of Rods 0.33d
    thx to n00b for making me aware of this game
  • 18 Nov 2007 Advisories: Crash in LIVE555 Media Server 2007.11.01
    special thanx to Alberto "Khlero", bella scle'! 8-)
  • 12 Nov 2007 News: stristr
    I have found a bug in the stristr, in short "findme" is not found in "ffindme". So I have recompiled all the about 60 tools (the source code has not been touched) and the list of updated executables is here
  • 12 Nov 2007 Password_recovery: Reach-a-Mail passwords decoder 0.1
  • 08 Nov 2007 MyMusic: Cagai
  • 03 Nov 2007 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.3
    added the flooding option
  • 01 Nov 2007 Patches: Quake 3 engine RCON half-second limit disabler (Windows and Linux) 0.1.1
    added the pattern for Jedi Knight II Linux which should work also with many other old Linux executables which use the Q3 engine
  • 31 Oct 2007 TestingToolz: Live for Speed demo/S1/S2 packets modifier example 0.1
    useless and basic proxy tool for modifying the packets of this game, just for fun
  • 28 Oct 2007 Research: GS peerchat IRC proxy 0.3.1
    added options for dropping client and server commands and for modifying the IP field
  • 28 Oct 2007 MyToolz: Mini Winamp input plugins player/converter 0.1
    basic command-line tool which takes a Winamp input plugin and an input file and plays it or write a wave file or shot the raw pcm data to stdout, very useful in case you want to write a wrapper too
  • 27 Oct 2007 MyMusic: 3 new tracks made with AXS
  • 27 Oct 2007 Proof-of-concepts: q3unban plugin for sudppipe 0.1
  • 27 Oct 2007 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.2
    added support for 0.2.2 servers
  • 26 Oct 2007 Advisories: assert() DoS in World in Conflict 1.001
  • 26 Oct 2007 Proof-of-concepts: Banned clients can join the servers which use the Quake 3 engine 0.1
  • 26 Oct 2007 Fake_players_bug: Armed Assault Fake Players DoS 0.1
    works perfectly in LAN but probably requires something like authorization for internet servers
  • 26 Oct 2007 Fake_players_bug: Quake 3 engine fake players DoS 0.4
    rewritten in most parts, now supports automatic unbanning too
  • 26 Oct 2007 Research: GameZone.com URL decoder 0.1.1
    better handling of download URLs
  • 25 Oct 2007 Fake_players_bug: Battlefield 1942 invisible Fake Players DoS 0.1.2
    added some command-line options, including the flooding one
  • 25 Oct 2007 MyToolz: QuickRVA 0.1.2
    solved many bugs and now the input fields are both rva and file to avoid problems with big files. There is still something I need to do with the handling of the keys but it's ok for the moment
  • 25 Oct 2007 MyToolz: Calcc 0.1.3
    solved a micro bug with ~ and !, for example the operation (~1)"0xff wasn't correct
  • 19 Oct 2007 Proof-of-concepts: q3cfilevar proof-of-concept for Quake 3 1.32c Windows 0.1
    wow, I though it was impossible to create a so mad thing but I was wrong
  • 19 Oct 2007 Research: ORK files decrypter and extractor 0.1.1
    added the output folder and the overwrite options
  • 19 Oct 2007 Research: orkdec filenames dumper 0.1
    tool for loading the games which use the ORK archives and automatically dumps all the loaded filenames in a text file that can be used with orkdec for the subsequent extraction
  • 18 Oct 2007 Proof-of-concepts: q3cbof proof-of-concept for Quake 3 1.32 and 1.32c (Windows) 0.1
  • 17 Oct 2007 Proof-of-concepts: Quake 3 engine directory traversal PoC 0.2.1
    added support for the Call of Duty series
  • 16 Oct 2007 Research: PunkBuster messenger 0.1
    tool for sending anonymous external messages to any server which uses PunkBuster: aa, bf1942, bf2, bf2142, bfv, cod, cod2, cod4, doom3, et, etqw, fear, moha, prey, quake3, quake4, rvs and vegas, rtcw, sof2 and others
  • 16 Oct 2007 Research: PunkBuster online GUID checker 0.1.5
    added Call of Duty 4 and Ultima Online, although not yet supported online
  • 16 Oct 2007 Research: Battlefield 2 and 2142 bitstream sniffer 0.1
    experimental tool/hooker for monitoring the reading and the writing of the network protocol used in the BF2 and BF2142 games
  • 16 Oct 2007 MyToolz: Signsrch 0.1.3
    other optimizations to the search function and fixed a problem with DOUBLEs
  • 14 Oct 2007 MyToolz: Signsrch 0.1.2
    added the quick search function provided by Andrew (http://www.team5150.com/~andrew/) and an option for scanning only the .text section of the PE files
  • 13 Oct 2007 Advisories: Clients buffer-overflow in Live for Speed 0.5X10
  • 13 Oct 2007 MyMusic: Easy destruction
    experimental progressive mix of about half hour made some months ago
  • 13 Oct 2007 Fake_players_bug: Generic TCP Fake Players DoS 0.2.2
    now the -t and -T options require the time in milliseconds
  • 13 Oct 2007 Fake_players_bug: Battlefield 1942 invisible Fake Players DoS 0.1.1
    fixed the problem with offline servers
  • 09 Oct 2007 Advisories: NULL pointer crash in World in Conflict 1.000
  • 06 Oct 2007 News: search & aspect
    finally I have added the search function for searching my stuff through my html pages and as you can see now the website looks better
  • 05 Oct 2007 Advisories: Format string in The Dawn of Time 1.69s beta4
  • 05 Oct 2007 Advisories: Multiple vulnerabilities in Dropteam 1.3.3
  • 04 Oct 2007 Patches: Quake 3 engine universal directory traversal fix (Windows) 0.1
    yes I did it again, works with almost any Windows executable (CoD* excluded). For comments, ideas and other feedback refer to my Forum
  • 01 Oct 2007 Video: New Video section
    I have released some new videos about the recent vulnerabilities I have found and one about q3dirtrav http://www.youtube.com/profile_videos?user=aluigivideo&p=r
  • 01 Oct 2007 Advisories: Format string in the Doom 3 engine through PB
  • 01 Oct 2007 Advisories: Format string in F.E.A.R. 1.08 through PB
  • 01 Oct 2007 Advisories: Unexploitable buffer-overflow in America's Army 2.8.2 through PB
  • 01 Oct 2007 Advisories: Two buffer-overflow in FSD V2.052 d9 and FSFDT V3.000 d9
  • 01 Oct 2007 Research: Punkbuster master server file downloader 0.1
    a not so useful tool for downloading pbpat.1, pbsec.cl, pbsec.sv, pbq.4, pbq.5 and possibly other files
  • 28 Sep 2007 Research: Race WTCC files encrypter/decrypter 0.2.1
    added support to version 3
  • 28 Sep 2007 Research: PunkBuster online GUID checker 0.1.4
    added Medal of Honor Airborne
  • 25 Sep 2007 Proof-of-concepts: updated both the PoC and the advisory about the recent Doomsday vulnerabilities, the format string is exploitable through a malicious client and has been removed the MSG_Write bug
  • 25 Sep 2007 MyToolz: mydownlib 0.2.2
    added the adding of content and the type of query
  • 21 Sep 2007 Patches: Speed Racer no-password
    simple any-password-is-valid patch for this old MS-DOS game
  • 21 Sep 2007 News: Fixes
    I have finally solved the problem of not-freed threads on Linux in some of my tools: cmdsock, cogs_irc, gs_login_server, lanfile, lfsfp, multircon, onlywebs, peerchat_irc, peerchat_proxy, peerchat_server, proxymini, stcppipe, tcpcrlf, ubichat_irc, ventrcon, ventrilo_proxy
  • 21 Sep 2007 MyToolz: Proxymini 0.2a
    solved the contemporary usage of inet_ntoa in verbose mode (thanx Thomas Henlich!)
  • 19 Sep 2007 Advisories: Multiple vulnerabilities in the gMotor2 engine
    the problems showed in the rFactor advisory applied to the other games based on the same engine
  • 16 Sep 2007 Fake_players_bug: Multi Theft Auto Fake Players DoS 0.1
  • 14 Sep 2007 Research: PS2/VXBG files extractor/rebuilder 0.1
    extractor and rebuilder for the PS2 files used in games like Siberia 1
  • 14 Sep 2007 Research: Halo proxy data decrypter 0.1.2
    added the reading and visualization of the main bitstream, so will be visualized not the raw decrypted packet but the data block in it
  • 14 Sep 2007 Proof-of-concepts: Alien Arena 2007 <= 6.10 format string and clients disconnection 0.1.2
    now the format string attack works versus the non-dedicated server too (thanx to Secunia!)
  • 12 Sep 2007 Research: FSB files extractor 0.2.2a
    added cr-lf to the output files generated with the new option of yesterday
  • 11 Sep 2007 Proof-of-concepts: Skulltag <= 0.97d-beta4.1 heap overflow 0.1.1
    increased the size of the packet (for Linux servers), strangely now my Windows server no longer crash using both the old and new PoC... misteries
  • 11 Sep 2007 Research: FSB files extractor 0.2.2
    added only an option for storing the name of the extracted files in a specific file
  • 11 Sep 2007 Patches: Halo 1.04 haloloop fix 0.1
  • 11 Sep 2007 MyMusic: 4_patterns_test
    released the mp3
  • 10 Sep 2007 Fake_players_bug: Battlefield 2/2142 invisible Fake Players DoS 0.1.1
    added support for bf2 demo
  • 10 Sep 2007 Proof-of-concepts: Alien Arena 2007 <= 6.10 format string and clients disconnection 0.1.1
    added the handling of loopback users (probably work only if the server has no firewall) and optimized the udpspoof function
  • 09 Sep 2007 Research: Online cd-key verifier for games that use the Gamespy cd-key SDK 0.1.2
    improved the checking of the cdkeys located in a file
  • 09 Sep 2007 Research: Race WTCC files encrypter/decrypter 0.2
    added support for version 2 used in RACE07
  • 08 Sep 2007 Proof-of-concepts: OpenTTD <= 0.5.3-RC3 server termination 0.1
    bug found indipendently by me
  • 08 Sep 2007 Proof-of-concepts: Mumble <= 1.0.0 clients crash/freeze 0.1
  • 08 Sep 2007 Fake_players_bug: Battlefield 2/2142 invisible Fake Players DoS 0.1
    thanx to SomaFM for the example packet
  • 07 Sep 2007 Advisories: Format string and buffer-overflow in CellFactor Revolution 1.03
  • 07 Sep 2007 MyMusic: 4_patterns_test
    my first track using AXS, this program rox!
  • 05 Sep 2007 Advisories: Format string and clients disconnection in Alien Arena 2007 6.10
  • 04 Sep 2007 Research: GS peerchat IRC proxy 0.3
    completely rewritten for maximum compatibility and for avoiding banning
  • 04 Sep 2007 Research: Peerchat IP decoder/encoder 0.2
  • 04 Sep 2007 News: msreborn removed
    it was too old, bugged and unsupported
  • 02 Sep 2007 Proof-of-concepts: Savage <= build 2 oct 2006 bugs 0.1
    how to loose time finding bugs already patched...
  • 02 Sep 2007 Fake_players_bug: Savage Fake Players DoS 0.1.1
  • 01 Sep 2007 Patches: Halo 1.04 haloboom fix 0.1
  • 31 Aug 2007 Fake_players_bug: Battlefield 1942 invisible Fake Players DoS
    works versus all the Battlefield 1942 family (1942, vietnam, sw and r2r)
  • 29 Aug 2007 Advisories: Multiple vulnerabilities in Doomsday 1.9.0-beta5.1
  • 29 Aug 2007 MyToolz: QuickRVA 0.1.1
    added keyboard shortcuts and hex dump navigation
  • 27 Aug 2007 MyToolz: QuickRVA 0.1
    cool and easy to use RVA converter with many functions like drag'n'drop, files and processes loading, C style text/binary search, hex visualization of the data at current offset and more
  • 27 Aug 2007 Proof-of-concepts: Quake 3 engine directory traversal PoC 0.2
    added GUI and selection of processes
  • 23 Aug 2007 Advisories: Heap overflow in Skulltag 0.97d-beta4.1
  • 23 Aug 2007 Advisories: Multiple denial of service in Soldat 1.4.2/2.6.2
  • 23 Aug 2007 Advisories: Multiple vulnerabilities in Vavoom 1.24
  • 23 Aug 2007 Advisories: hell bell bug in odamex 0.2a
  • 23 Aug 2007 Research: PunkBuster online GUID checker 0.1.3
    added Enemy Territory Quake Wars
  • 23 Aug 2007 Research: Cdkey to Punkbuster GUID 0.3
    it's still not able to give the exact guid but now gives you all the possive guids for each specific game
  • 22 Aug 2007 Advisories: Buffer-overflow in the Asura engine
  • 22 Aug 2007 Patches: Battlefield 1942 Secret Weapons of WWII Demo v1.45 no-checksum
    removes the checksum limitation in case you modify your files
  • 18 Aug 2007 Advisories: Unexploitable buffer-overflow in the logging function of the Unreal engine
  • 18 Aug 2007 Advisories: Multiple vulnerabilities in Toribash 2.71
  • 18 Aug 2007 Advisories: Multiple vulnerabilities in rFactor 1.250
  • 18 Aug 2007 Password_recovery: Toca Race Driver series accounts passwords decoder 0.1
    decodes all the passwords in the Codemasters\Core_Online registry key
  • 15 Aug 2007 Proof-of-concepts: Quake 3 engine directory traversal PoC 0.1
    the PoC for the bug found by Ludwig and Thilo over one year ago
  • 14 Aug 2007 Advisories: Multiple vulnerabilities in Live for Speed 0.5X10
  • 14 Aug 2007 Advisories: Multiple vulnerabilities in Babo Violent 2 2.08.00
  • 14 Aug 2007 Advisories: Crash in Zoidcom 0.6.7
  • 14 Aug 2007 Password_recovery: CoreFTP password decoder 0.1
    decodes any password from the command-line or the registry
  • 14 Aug 2007 News: Forum
    forum.aluigi.org
  • 10 Aug 2007 News: first preview video about new bugs
    yesterday morning I have uploaded my first video on Youtube, it's an experiment about showing some vulnerabilities on which I'm working so let me know what you think about it
  • 10 Aug 2007 TestingToolz: Tcpdump format UDP 2 TCP converter 0.1.1
    solved a mini bug, double-handshake for the same stream
  • 09 Aug 2007 MyMusic: Acido progressivo
  • 09 Aug 2007 TestingToolz: Tcpdump format UDP 2 TCP converter 0.1
    simple tool written for converting the UDP packets of a PCAP file in a TCP stream, useful for tracking the packets flow with Wireshark
  • 08 Aug 2007 Research: BOR music player 0.1.1
    added support for multichannel audio
  • 07 Aug 2007 Research: WPE packet format to tcpdump capture format 0.2
    now the TCP connections are handled perfectly
  • 06 Aug 2007 Password_recovery: *VNC password decoder 0.2
    added better support for hex and raw input passwords and the decoding of any password in the registry key used by VNC
  • 05 Aug 2007 Research: Babo Violent 2 RCON 0.1
    simple tool which works as a RCON client for the Babo Violent 2 servers
  • 04 Aug 2007 MyToolz: Simple TCP proxy/pipe 0.4.2
    added a very useful option for dumping the content of the connections in tcpdump format
  • 04 Aug 2007 Research: Gslist 0.8.3 BETA
    well I have decided to release this version so anyone can test it
  • 30 Jul 2007 MyToolz: Web passwords and links checker 0.2
    I have rewritten many parts of this old code
  • 30 Jul 2007 Research: Steamlist 0.1a
    changed only the default master server
  • 25 Jul 2007 Research: MD5 hashes of the WADs for the Doom engine 0.2
    now it's the double, I have updated also zdaemonfp in the Fake Players section
  • 28 Jun 2007 MyMusic: Dreamz and Tape Revenge
    two new cool tracks created just in these days, old style dream progressive 8-)
  • 25 Jun 2007 Research: FSB files extractor 0.2.1
    solved a bug with files overwritten if they have the same name (FSB archives have filenames truncated at 30 or less chars) and added an experimental rebuilding option
  • 22 Jun 2007 MyMusic: various new XM
    released some new tracks
  • 22 Jun 2007 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1.1
    added support for 0.2 servers, if they are protected they can be filled without knowing the password!
  • 16 Jun 2007 Fake_players_bug: Live for Speed Fake Players DoS 0.2b
    updated for the new 0.5X version and possibly older and newer releases
  • 30 May 2007 MyToolz: mydownlib 0.2.1
    solved some small bugs and added major compatibility with gzipped streams, all the programs updated yesterday now contain this new code
  • 28 May 2007 Research: AWCamREC 0.2.1a
    update the function which downloads the list of names from the servers
  • 28 May 2007 Research: JmeetREC 0.2
    rewritten completely, now it's just like awcamrec
  • 28 May 2007 MyToolz: Calcc 0.1.2
    added a small support to float numbers (only conversion and visualization, no operation) and now the bit swapping operation must be invoked with w
  • 28 May 2007 MyToolz: mydownlib 0.2
    this is a simple library I have written for implementing HTTP client capabilities in my tools
  • 27 May 2007 MyToolz: Offset file unzipper 0.3
    faster, quicker and better
  • 20 May 2007 Research: Race WTCC files encrypter/decrypter 0.1.4
    solved a small bug in the size of the data to decrypt with Blowfish, anyway this doesn't seem to affect a lot the resulted files
  • 18 May 2007 Fake_players_bug: Live for Speed Fake Players DoS 0.2a
    updated the CRC for the new 0.5W version
  • 17 May 2007 Research: WPE packet format to Tcpdump capture format 0.1
    simple tool for converting the files saved with Winsock Packet Editor (WPE) Pro, supports both PAC and TXT
  • 16 May 2007 Research: Race WTCC files encrypter/decrypter 0.1.3
    added an option for automatically overwriting the output file and the automatic creation of unexistent folders if specified
  • 27 Apr 2007 Research: Race WTCC files encrypter/decrypter 0.1.2
    solved a filesize problem in encryption, thanx a lot to Oleg!!!
  • 16 Apr 2007 MyMusic: S.M.S.
  • 13 Apr 2007 MyToolz: Byte2C 0.2a
    now 64 bit numbers are showed correctly with Mingw too (Windows)
  • 09 Apr 2007 MyMusic: released some new XM and a couple very old
  • 06 Apr 2007 Patches: Half-Life x.1.1.1e (Windows and Linux) hlfreeze/hl-headnut/csdos fix 0.1
    seems to work versus Counter-Strike 1.6 and other versions too
  • 06 Apr 2007 Advisories: Details about the hlfreeze/hl-headnut/csdos bugs
    a quick explanation of this bug and its variants
  • 06 Apr 2007 Proof-of-concepts: hlboom 0.2.1
    added the handling of both the old and Steam query so it can be used to check Steam servers too
  • 06 Apr 2007 Fake_players_bug: Half-Life fake players bug (no auth) 0.3
    the old hlfill rewritten, now it includes also the hlfreeze/hl-headnut/csdos attacks
  • 31 Mar 2007 Patches: Half-Life x.1.1.1e (Windows and Linux) hlboom fix 0.1
    this unofficial patch fixes both the bugs on the dedicated server for Windows and Linux
  • 31 Mar 2007 Proof-of-concepts: hlboom 0.2
    added the exploitation of another bug about the splitted packets, the related advisory has been updated too
  • 30 Mar 2007 MyToolz: Windows 9x/NT4(old) generic TCP connections spoofer 0.2.1
    now works also on Windows and I have made a small modification which could allow it to work versus other time based ISN too
  • 29 Mar 2007 Advisories: Pulseaudio 0.9.5 (rev 1437) termination
  • 29 Mar 2007 Password_recovery: Steam password decoder 0.1.1
    added only the possibility of decoding passwords directly from the command-line and support for blob file with multiple passwords
  • 28 Mar 2007 Research: GameZone.com URL decoder 0.1
    decoder for the URL used on GameZone.com and possibly other sites, supports CR: CB: CX: DR: and CM: URLs and can extract them from the executables too
  • 27 Mar 2007 Research: ORK files decrypter and extractor 0.1
    files extractor for the ORK archives used in the games developed by Black Hole Entertainment like Armies of Exigo and Warhammer Mark of Chaos (both demo and retail keys supported)
  • 25 Mar 2007 Research: Half-life DLL decrypter and rebuilder 0.1
    a decrypter and PE rebuilder for the Half-life encrypted DLLs like sw.dll and hw.dll
  • 24 Mar 2007 Research: Race WTCC files encrypter/decrypter 0.1.1a
    removed the two free() at the end of the program which caused a possible crash with version 0 (anyway without problems for the output file)
  • 24 Mar 2007 Password_recovery: Valve games control password disabler 0.1
    a simple tool for disabling and restoring the control password used in games like Half-Life and Counter-Strike
  • 23 Mar 2007 MyToolz: Proxymini 0.2
    wow I have added support also to SOCKS4 and SOCKS5 (tcp, tcp bind and udp) and have fixed some bugs
  • 20 Mar 2007 Research: Race WTCC files encrypter/decrypter 0.1.1
    added support for version 0, used for example with the PLR files
  • 20 Mar 2007 Research: gskeycheck 0.1.1
    now the tool supports also the files containing the keys to check and the output file where writing the results
  • 18 Mar 2007 Advisories: Multiple vulnerabilities in NAS 1.8a (svn 231)
  • 18 Mar 2007 MyToolz: Proxymini 0.1
    a simple http proxy server
  • 11 Mar 2007 Research: Virtools files unpacker 0.1.2
    added the handling of uncompressed data
  • 11 Mar 2007 Research: KDX encryption/decryption algorithm 0.1
  • 08 Mar 2007 Research: Virtools files unpacker 0.1.1
    adjusted the code (but nothing special) and added a function which automatically scans the file for Virtools signature
  • 08 Mar 2007 MyToolz: Cutfile 0.2a
    solved a crash bug
  • 08 Mar 2007 Fake_players_bug: Ventrilo Fake Players DoS and brute forcer 0.2.2
    the code is now a bit more clean and I have added some brute forcing functions for the admin password
  • 07 Mar 2007 Advisories: Buffer-overflow in Conquest client 8.2a (svn 691)
  • 07 Mar 2007 Fake_players_bug: DirectPlay 6/7 Fake Players 0.1
    fake players tool for all the DirectPlay games (version 7 and below)
  • 07 Mar 2007 Research: DirectPlay 6/7 Info 0.1a
    removed 3 lines of the binding code for avoiding to listen on a port already bound
  • 06 Mar 2007 Research: DirectPlay 6/7 Info 0.1
    tool for showing informations about servers which use the DirectPlay protocol, version 7 and below
  • 02 Mar 2007 Advisories: Limited format string in Netrek 2.12.0
  • 01 Mar 2007 Research: AWCamREC 0.2.1
    solved some bugs
  • 01 Mar 2007 Fake_players_bug: Quake 3 engine fake players DoS 0.3.2
    automatic snaps and rate configuration
  • 27 Feb 2007 MyMusic: Spirito calmo
    really nice and big XM
  • 25 Feb 2007 Research: AWCamREC 0.2
    rewritten and now does almost everything
  • 21 Feb 2007 Advisories: Players disconnection in Simbin racing games
  • 19 Feb 2007 Research: GS master server disconnector 0.1.2
    solved a problem with the visualization of the error on Windows
  • 18 Feb 2007 Research: GS Peerchat sniffer and decrypter 0.2
    now it works perfectly and so is no longer in the forgotten beta stuff
  • 17 Feb 2007 Research: AWCamREC 0.1
    very basic recorder for AnyWebcam
  • 17 Feb 2007 Research: WebCamNow wcn and jpg decoder 0.1
    two functions for decoding the wcn and jpg files of WebCamNow
  • 17 Feb 2007 Password_recovery: EasyWebCam passwords decoder 0.1
  • 16 Feb 2007 Password_recovery: CamFrog passwords decrypter 0.1
    decrypts all the passwords stored in the registry or provided by the user
  • 15 Feb 2007 Research: PunkBuster online GUID checker 0.1.2
    added a couple of new games
  • 14 Feb 2007 Research: CamFrog encryption/decryption algorithm 0.1
    the simple encryption and decryption functions for handling the data exchanged with the CamFrog servers
  • 12 Feb 2007 Patches: Soldier of Fortune II (1.03 Windows and 1.02a Linux) cl_guid fix 0.2.1
    solved the freeze bug on Linux
  • 12 Feb 2007 Research: JMeetREC 0.1.5a and JMeetLIST 0.2.3a
    a couple of small fixes
  • 11 Feb 2007 Research: JMeetLIST 0.2.3
    automatic handling of connection timeout and better nickname filter
  • 11 Feb 2007 Research: JMeetREC 0.1.5
    automatic handling of connection timeout
  • 30 Jan 2007 MyToolz: unlzw 0.1.1
    removed one useless instruction
  • 29 Jan 2007 MyToolz: unlzss 0.1
    function for LZSS/LZ77 memory decompression
  • 28 Jan 2007 Research: CBF files extractor 0.2
    added my unlzw stuff
  • 28 Jan 2007 MyToolz: unlzw 0.1
    simple LZW memory decompressor
  • 26 Jan 2007 Research: CBF files extractor 0.1.1
    it was too bugged so I have rewritten it, the only negative note is that I wasn't able to write a good lzw decompressor so you still need the logs.dll file from the game
  • 22 Jan 2007 MyToolz: Signsrch 0.1.1
    added only a couple of more checks to verify if the signature file is correct. I have added a lot of crypto algorithms to signsrch.sig
  • 21 Jan 2007 MyToolz: Dumproc 0.1.1
    solved a bug in the Windows version
  • 21 Jan 2007 MyToolz: Signsrch 0.1
    useful tool for finding signatures inside files. It can recognize tons of compression and encryption algorithms and many other things which can be also manually added since it's all based on a signature file read at runtime
  • 21 Jan 2007 MyToolz: Dumproc 0.1
    simple process dumper for both Windows and Linux
  • 13 Jan 2007 Research: Vital engine files extractor 0.1
    just the file extractor released two days ago but with compatibility with Boiling Point too
  • 11 Jan 2007 Research: Codename: Outbreak / Venom files extractor 0.1
    extractor for the GRP files used by this game
  • 09 Jan 2007 Research: Chaser files extractor 0.1
    tool for extracting (and unpacking) all the .FS files of the game Chaser
  • 09 Jan 2007 Research: GCM files unpacker 0.1
    unpacker for the GCM files used in games like Conan and Knights of the Temple II
  • 07 Jan 2007 Advisories: DoS and possible format string in Marathon Aleph One 16 Dec 2006
    nothing special...
  • 07 Jan 2007 Research: Race WTCC files encrypter/decrypter 0.1
    tool for encrypting and decrypting the files used in the game Race WTCC
  • 05 Jan 2007 Research: JMeetREC 0.1.4
    I have only adjusted the code (from the recent jmeetlist),no new functions
  • 24 Dec 2006 Password_recovery: Gftp bookmarks passwords decoder 0.1.1
    fixed the username field
  • 17 Dec 2006 Research: Gslist 0.8.2
    many optimizations and bug fixes, I have also added an option for collecting info from all the servers (-Q) experimental support to SQL (-S)
  • 12 Dec 2006 Advisories: Buffer-overflow in ml_ipod 2.00p19
  • 10 Dec 2006 Advisories: Multiple vulnerabilities in Winamp Web Interface 7.5.13
  • 09 Dec 2006 Research: THPS HED/WAD files extractor/builder 0.2
    added the building option for recreating the hed/wad files
  • 09 Dec 2006 Patches: Quake 3 engine infostring crash universal fix 0.1.3 (Windows)
    corrected an error in the lpatch file which avoided the correct patching of the Sof2 executables, so who has used q3infofix.lpatch with Sof2 must reapply the patch (33 bytes and not 2)
  • 09 Dec 2006 Patches: Quake 3 engine RCON half-second limit disabler (Windows and Linux) 0.1
    this patch disables the anti-brute-forcing check in the games which use the Quake 3 engine for avoiding the Denial of Service caused by rcon flooding (more info in the file)
  • 04 Dec 2006 Research: THPS HED/WAD files extractor 0.1
    simple files extractor for the games which support the hed/wad files like Tony Hawk Pro Skater
  • 03 Dec 2006 MyToolz: Lame Patcher 0.4.1
    solved (hope definitely) a rare bug during the searching of the bytes in the file to patch
  • 03 Dec 2006 Patches: Chaser 1.50 (and other versions) various crash fixes 0.1
    patch for the server crash and for avoiding to pass long nicknames to clients
  • 02 Dec 2006 Research: Multi engine RCON tool and password guesser 0.2.2b
    added more compatibility for the games based on the Doom 3 engine, like Prey
  • 29 Nov 2006 Fake_players_bug: Ventrilo Fake Players DoS 0.2.1a
    solved a micro bug in the -w option
  • 21 Nov 2006 News: problem solved
  • 17 Nov 2006 News: in these days I can't watch my mails so it's normal if you have not received a reply from me yet, wait this monday
  • 17 Nov 2006 Password_recovery: Gftp bookmarks passwords decoder 0.1
    decodes the password stored in the bookmarks file
  • 17 Nov 2006 MyMusic: Distorted life
    fixed the drum and freed two tracks
  • 11 Nov 2006 MyMusic: Distorted life
    wow a new XM, I have also added some old XM modules made many time ago
  • 06 Nov 2006 Research: PunkBuster online GUID checker 0.1.1
    solved a stupid bug in the key buffer (forgot the space for the NULL delimiter)
  • 03 Nov 2006 Research: PunkBuster online GUID checker 0.1
    verifies if a specific GUID used in a specific game has been banned by PunkBuster
  • 01 Nov 2006 Fake_players_bug: Quake 3 engine fake players DoS 0.3.1a
    not a real update, I have simply added snaps\10\rate\1500 for compatibility with some servers
  • 08 Oct 2006 MyToolz: Offset file unzipper 0.2.4
    solved a bug which skipped valid zip data during search
  • 08 Oct 2006 Patches: Quake 3 engine infostring crash universal fix 0.1.2a
    an admin has reported a problem which some clients could see when they use more than 318 chars to join a patched server so I have raised the string limit to 382 bytes, which is probably the best and only compromise for any game
  • 04 Oct 2006 MyToolz: Sleepy 0.2.4
    added a check for major compatibility
  • 30 Sep 2006 MyToolz: Sleepy 0.2.3
    added a couple of new options for running the program in loop mode
  • 30 Sep 2006 Research: Easy step-by-step to run Google Earth on Windows 98 0.1
    a small not-so-technical step-by-step
  • 29 Sep 2006 Patches: Kaillera 0.86 code execution fix 0.1 (Windows, Linux and BSD)
  • 28 Sep 2006 Password_recovery: Vivian mail password decoder 0.2
    rewritten
  • 25 Sep 2006 Advisories: updated the author's section of the advisory released yesterday
  • 24 Sep 2006 Advisories: In-game callvote map buffer-overflow in Call of Duty series
  • 24 Sep 2006 Patches: Call of Duty 1 / UO / 2 fix for the callvote buffer-overflow 0.1 (Windows and Linux)
    patch for both Windows and Linux versions of all the CoD series (codmapbof bug)
  • 24 Sep 2006 Patches: Call of Duty 2 (1.3) work-around for the va() bug 0.1
    a work-around asked by some admins for the bug: Attempted to overrun string in call to va()
  • 24 Sep 2006 Patches: Quake 3 engine infostring crash universal fix 0.1.2
    finally is no longer required the hex editing work which was necessary on some games, this patch includes sof2-103-fix and codinfofix too
  • 24 Sep 2006 Patches: Soldier of Fortune II (1.03 Windows and 1.02a Linux) cl_guid fix 0.2
    patch for both Windows 1.03 and Linux 1.02a versions (sof2guidboom bug)
  • 24 Sep 2006 Patches: IGI 2: Covert Strike dedicated server format string fix 0.1
    patch for both Windows 1.3 and Linux 1.2 versions (igi2fs bug)
  • 24 Sep 2006 Patches: Updates
    for this Patches day I have decided to make this section less confusing, first of all it's now divided for games and then I have substituited all the old patchers (mohaaboffix, gshboomfix and so on) with the new lpatch versions. Naturally contact me if you have compatibility problems with the new patches or other suggestions: feedback is very important due to the amount of changes!
  • 24 Sep 2006 MyToolz: Lame Patcher 0.4
    I have rewritten it and have added a new mode which helps me a lot for writing new patches and users to apply them
  • 22 Sep 2006 MyToolz: CMDsock 0.1.2
    added support for *nix, solved some bugs and added other new functions but still exist some problems with the handling of stdin on Windows and how to interrupt the programs when launched
  • 22 Sep 2006 Fake_players_bug: Teamspeak Fake Players DoS 0.2.1
    nothing new, I have only added an experimental support for fragments used during the visualization of the server's informations
  • 22 Sep 2006 Proof-of-concepts: Terminator 3 War of the Machines <= 1.16 buffer-overflow and crash 0.2.1
    another micro update from the suggestions of an user
  • 19 Sep 2006 Research: Multi engine RCON tool and password guesser 0.2.2
    added an experimental support for IGI2
  • 14 Sep 2006 Research: JMeetLIST 0.2.2
    another update, seems that a valid account is still not required and I have added the possibility of filtering nicknames and an option for opening watch_thumb.htm automatically
  • 12 Sep 2006 Research: JMeetLIST 0.2.1
    added more options and other useful features, like watch_thumb.htm
  • 11 Sep 2006 Research: JMeetLIST 0.2
    Jmeeting now requires a valid login to work, I have also optimized many parts of the old code
  • 10 Sep 2006 Research: FSB files extractor 0.2
    rewritten, added support for both system and file endian, support for FSB1, option for adding headers to the extracted files automatically and various bugfixes and optimizations
  • 08 Sep 2006 Password_recovery: Soldier of Fortune 1 and 2 violence password decoder 0.3
    added support for Soldier of Fortune 1 too
  • 03 Sep 2006 Research: GS login response calculator 0.1.1
    removed the email field since it's not required but is only part of the uniquenick or user field
  • 03 Sep 2006 Research: GS login checker 0.1
    simple tool which checks if a Gamespy account (username and password) is valid, works for the accounts created with and for any software and game which uses the Gamespy login, from Gamespy Arcade to Battlefield 2 and so on
  • 03 Sep 2006 MyToolz: Cutfile 0.2
    rewritten and added some new functions
  • 30 Aug 2006 MyToolz: Sleepy 0.2.2
    some small bugfixes
  • 19 Aug 2006 MyToolz: Simple TCP proxy/datapipe 0.4.1
    added an experimental function for binding and connecting two local ports plus some micro enhancements
  • 19 Aug 2006 MyToolz: Simple TCP proxy/datapipe 0.4
    added new features like support for multiple hosts, reverse connection, stupid XORing of the data and more
  • 19 Aug 2006 MyToolz: Sleepy 0.2.1
    now the xx:xx:xx format means the time when executing the program, available in both local and UTC time
  • 19 Aug 2006 Research: Xbox ADPCM decoder and player 0.2.3a
    solved a stupid bug (one char only) which avoided to set the options...
  • 19 Aug 2006 Research: XWB/ZWB files unpacker 0.3
    almost rewritten for adding endian compatibility (both host machine and file), tons of compatibility for older and newer XWB versions, removing of the XSB support for the lack of compatibility. Thanx to john deo for having provided new XWB files to analyze and thanx in advance to anyone which will point me to other XWB files which don't work with my tool
  • 14 Aug 2006 MyToolz: Sleepy 0.2
    the instructions which handle the custom time have been completely rewritten for more complex time strings
  • 13 Aug 2006 MyToolz: Lanfile 0.1.1
    added an option for handling special files (like Linux devices), stdin support and reduced buffers memory (the compression option is no longer compaible with the old one)
  • 13 Aug 2006 Advisories: Multiple buffer-overflows in libmusicbrainz 2.1.2
  • 10 Aug 2006 MyToolz: Charcount 0.1.4
    added stdin and support for multiple files and solved a bug with 0xff chars
  • 09 Aug 2006 Advisories: updated the OpenMPT advisory since libmodplug (used on Linux for the XMMS plugin) is vulnerable too
  • 09 Aug 2006 Advisories: Multiple buffer-overflows in AlsaPlayer 0.99.76
  • 09 Aug 2006 Advisories: Stack and heap overflows in Modplug Tracker / OpenMPT 1.17.02.43 (SVN 157)
  • 09 Aug 2006 Advisories: Buffer-overflow in Aqualung 0.9beta5 (CVS 0.193.2)
  • 06 Aug 2006 Advisories: Heap corruption in Festalon 0.5.5
  • 06 Aug 2006 Advisories: Multiple vulnerabilities in DConnect Daemon 0.7.0 (CVS 30 Jul 2006)
  • 06 Aug 2006 Research: Gslist beta
    I'm working (with little steps) on a new version of Gslist with support for SQL and other small features, contact me for beta testing and suggestions
  • 06 Aug 2006 Research: TXboxAdpcmDecoder C 0.1.3
    big endian compatibility, naturally now this one and the previous update allow the usage of xbadpdec, unxwb and wavehead on big endian systems too
  • 06 Aug 2006 MyToolz: MyWAV 0.1.1
    big endian compatibility and errors/end-of-file checking
  • 31 Jul 2006 Advisories: Multiple vulnerabilities in Open Cubic Player 2.6.0pre6 / 0.1.10_rc5
  • 30 Jul 2006 MyToolz: Xor 0.2
    rewritten completely
  • 30 Jul 2006 Advisories: Bugs in BomberClone 0.11.6
    this game is a beta so these bugs must not be considered real security bugs
  • 24 Jul 2006 Advisories: Heap overflow in the GT2 loader of libmikmod 3.2.2
  • 24 Jul 2006 Advisories: Format string bug in the gout console output of Game Networking Engine 0.70 (CVS 23 Jul 2006)
  • 23 Jul 2006 Advisories: Buffer-overflow in the XM loader of Cheese Tracker 0.9.9
  • 23 Jul 2006 Advisories: Two crash vulnerabilities in Freeciv 2.1.0-beta1 (SVN 15 Jul 2006)
  • 22 Jul 2006 Advisories: Buffer-overflow in recvTextMessage and NETrecvFile in Warzone Resurrection 2.0.3 (SVN 127)
  • 16 Jul 2006 Advisories: Multiple vulnerabilities in UFO2000 svn 1057
  • 16 Jul 2006 Advisories: Heap overflow in Dumb 0.9.3 through it_read_envelope
  • 16 Jul 2006 Advisories: Crash and freeze in Armagetron Advanced 2.8.2
  • 16 Jul 2006 MyToolz: Calcc 0.1.1b
    added only I64 for Mingw compatibility with 64 bits
  • 07 Jul 2006 Research: TNTFOLDER files decrypter/encrypter 0.2
    unfortunately the 0.1 version had a bug (extra data must not be decrypted) so didn't work, the good news is that the new version contains better code and does encryption too
  • 06 Jul 2006 Advisories: Format string bug in Sparklet 0.9.4try3
  • 06 Jul 2006 Advisories: Possible code execution in Kaillera 0.86
  • 06 Jul 2006 Advisories: Various heap and stack overflow bugs in AdPlug library 2.0 (CVS 04 Jul 2006)
  • 06 Jul 2006 Advisories: Format string bug and some DoS in Zig Game Engine 1.0.0 (CVS 24 Jun 2006)
  • 04 Jul 2006 MyToolz: BDE64 0.2
    solved some bugs and rewritten the encoding and decoding functions
  • 02 Jul 2006 MyToolz: BDE64 0.1
    very simple tool which does base64 decoding and encoding
  • 02 Jul 2006 Advisories: Socket unreachable in Nascar Racing 4, 2002 and 2003 Season
    three old and no longer supported games, this advisory exists only for keeping a small trace of this issue
  • 27 Jun 2006 Advisories: Files and cvars overwriting in Quake 3 engine (1.32c / rev 803 / ...)
  • 27 Jun 2006 Advisories: Format string and crash in Neoengine 0.8.2 (rev 3422)
    two unusual bugs since I have not been able to test them in practice due to the absence of a working program
  • 23 Jun 2006 Fake_players_bug: Kaillera Fake Players DoS 0.1
  • 21 Jun 2006 Proof-of-concepts: Quake 3 engine client disconnector 0.2
    added compatibility for Windows and port and class C scanning
  • 18 Jun 2006 Fake_players_bug: SA:MP invisible Fake Players DoS 0.1
  • 18 Jun 2006 Fake_players_bug: GGM (GoE GTA III Multiplayer) Fake Players DoS 0.1
  • 18 Jun 2006 MyToolz: Fcomp 0.3
    added multiple files handling and some options
  • 11 Jun 2006 Fake_players_bug: Terminator 3 War of the Machines (LAN) Fake Players DoS 0.2
    added compatibility for newer versions
  • 11 Jun 2006 Proof-of-concepts: Terminator 3 War of the Machines <= 1.16 buffer-overflow and crash 0.2
    added compatibility for newer versions, thanx really a lot to Jimbo!
  • 06 Jun 2006 Research: Multi engine RCON tool and password guesser 0.2.1
    more compatibility during the password guessing of some games and added an asynchronous option (-a)
  • 06 Jun 2006 Fake_players_bug: Generic TCP Fake Players DoS 0.2.1
    some bugfixes like the timeout handling
  • 04 Jun 2006 Fake_players_bug: Teamspeak Fake Players DoS 0.2
    rewritten completely and all the code is commented and enough easy to use and modify, added some new options and some experimental flooding functions
  • 03 Jun 2006 Fake_players_bug: Generic TCP Fake Players DoS 0.2
    rewritten, solved many bugs and the select() limitation (fd_set in fact supports 64 file descriptors on Windows and 1024 on other OS) and added support for continuous checks for open ports
  • 02 Jun 2006 Advisories: Client buffer-overflow in Quake 3 engine (1.32c / rev 795)
  • 27 May 2006 Proof-of-concepts: Gamespy hidden cd-key SDK: remote server crash 0.1.1
    now is possible to specify a from and to port for sending the malformed packet to this range, this could be useful with Terminator 3 as reported by an user
  • 23 May 2006 Advisories: Buffer-overflow in the WebTool service of PunkBuster for servers (minor than v1.229)
  • 23 May 2006 Advisories: Server termination in netPanzer 0.8 (rev 952)
  • 20 May 2006 Advisories: Format string vulnerabilities in OpenBOR 2.0046
  • 18 May 2006 Research: Multi engine RCON tool and password guesser 0.2
    this is the tool previously known as q3rcon, I have added support for different engines like Quake 3, Medal of Honor, Half-Life, Doom 3 and Quake 2 and other options and features
  • 17 May 2006 Advisories: Two heap overflow in libextractor 0.5.13 (rev 2832)
  • 17 May 2006 Research: BOR PAK extractor/builder 0.1
    a tool for extracting and building the PAK archives used in the game Beats of Rage
  • 13 May 2006 Research: BOR music player 0.1
    a simple command-line player for the music files of the game Beats of Rage, I needed it and so I wrote it
  • 12 May 2006 Advisories: Socket unreachable in GNUnet rev 2780
  • 12 May 2006 Advisories: Multiple vulnerabilities in Outgun 1.0.3 bot 2
  • 12 May 2006 Advisories: Server crash in Empire 4.3.2
  • 12 May 2006 Advisories: Buffer-overflow and NULL pointer crash in Genecys 0.2
  • 12 May 2006 Advisories: Multiple vulnerabilities in Raydium rev 309
  • 30 Apr 2006 News: ALUIGI.ORG
    finally I have an entire domain for me! Anyway my website remains the same so there is no need to update bookmarks and so on, for the moment this is only a fast way to reach me. For the occasion I have also recompiled/updated almost all the 1350 files available on this website with the new links... now I understand how much stuff there is here
  • 30 Apr 2006 MyToolz: Lanfile 0.1
    program for sending and receiving files with many features: MD5 hash, multiplatform, large file support, listen and connect mode for using it when is not possible to receive connections, file resuming, compression through LZO, password, execution of commands when each file is received, allowed hosts and more. this tool replaces the old sendfile and recvfile tools
  • 24 Apr 2006 Research: Halo packets decryption/encryption algorithm and keys builder 0.1.3
    found an error in the version I released yesterday, now randhash (the private key, the algorithm is an asymmetric encryption) is a buffer of 17 bytes which must be passed by the main program. Both my Halo proxy decrypter (now version 0.1.1) and haloloop (0.1a) have been updated with this small but important modification
  • 23 Apr 2006 Advisories: Format string bug in Skulltag 0.96f
  • 23 Apr 2006 Advisories: Denial of service bugs in OpenTTD 0.4.7
  • 23 Apr 2006 Advisories: Buffer-overflow and crash in Fenice OMS 1.10
  • 23 Apr 2006 Advisories: network_receive_packet and network_host_handle_join buffer-overflow in dimension3 1.5
  • 23 Apr 2006 Research: Halo packets decryption/encryption algorithm and keys builder 0.1.2
    solved a mini bug which avoided to reinitialize the library a second time
  • 21 Apr 2006 Research: Quake 3 engine RCON tool 0.1.1
    now the wordlist scanning has no automatic case by default and added an option for setting other types of wordlist scannings (auto case, upper and lower)
  • 21 Apr 2006 MyToolz: MyBrute 0.2
    added a structure used for handling the data (mybrute_t) and a new function for setting some options for the wordlist scanning and possible future usages, note that all the programs which use the previous version must be modified
  • 17 Apr 2006 MyToolz: Icmpinfo 0.2
    Windows support and some bug fixes
  • 17 Apr 2006 MyToolz: Pings 0.2.3
    some bug fixes and an option for monitoring the incoming packets for this old tool
  • 17 Apr 2006 MyToolz: Calcc 0.1.1a
    micro fix, substituited localtime() with gmtime(), so now the displayed time is UTC
  • 09 Apr 2006 MyToolz: Simple UDP proxy/pipe 0.3
    tons of enhancements and updates this time: multiple clients allowed, creation of ACP (tcpdump) file, packets forwarding (chat style), packets injection, bug fixes and plugin supports for the modification and visualization of the packets with some example plugins included
  • 09 Apr 2006 Fake_players_bug: Skulltag Fake Players DoS 0.1
  • 04 Apr 2006 Advisories: Buffer-overflow in Ultr@VNC 1.0.1 viewer and server
  • 04 Apr 2006 Fake_players_bug: OpenTTD Fake Players DoS 0.1
  • 04 Apr 2006 Fake_players_bug: Legacy Doom Fake Players DoS 0.1
    this tool causes also the termination of the server 1.42
  • 03 Apr 2006 Advisories: Format string in Doomsday 1.8.6
  • 03 Apr 2006 Research->Xbox: Xbox ADPCM decoder and player 0.2.3
    added seeking, ask_before_ovewrite_file and some bug fixes
  • 31 Mar 2006 Advisories: Buffer-overflow and in-game crash in Zdaemon 1.08.01
  • 31 Mar 2006 MyToolz: Mylibaow32 0.1
    a simple libao clone which works on Windows using waveOut
  • 31 Mar 2006 Research->Xbox: Xbox ADPCM decoder and player 0.2.2
    the new title for this tool means that it is now also able to play the Xbox audio files on both Windows and *nix/BSD through libao... a player for Linux was really needed so now I can listen the Unreal Championship music on the penguin too
  • 31 Mar 2006 MyToolz: Byte2C 0.2
    more compatible, added support for 64 bit numbers, it's able to handle also float and double, added an option for showing the size of the C variables and more
  • 29 Mar 2006 Fake_players_bug: Zdaemon Fake Players DoS 0.1.1
    added the huffman decompression for the full handling of any error
  • 29 Mar 2006 Research: Zdaemon huffman 0.1
    the modified function (HuffFreq only) for compressing and decompressing the Zdaemon packets
  • 28 Mar 2006 Fake_players_bug: Quake 3 engine fake players DoS 0.3.1
    added only a new option for adding custom parameters to the connect command, useful for some mods like RocketArena
  • 28 Mar 2006 Password_recovery: Generic CryptUnprotectData and RDP passwords decrypter
    this tool has been created for decrypting the password in the local RDP files used for Remote Desktop but I have made it compatible to decrypt any type of input with the CryptUnprotectData function
  • 27 Mar 2006 Research: MD5 hashes of the WADs for the Doom engine 0.1.1
    added other WADs, also the fake players tool for Zdaemon has been updated with the new database
  • 26 Mar 2006 Advisories: Socket unreachable and decompression buffer-overflow in Vavoom 1.19.1
  • 26 Mar 2006 Advisories: Multiple vulnerabilities in csDoom 0.7
  • 26 Mar 2006 TestingToolz: UDPSZ 0.1
    simple tool for playing with the size of the UDP packets (useful for testing possible socket unreachable bugs or flooding the servers of some game engines with socket error messages) and their content, contains also some interesting options
  • 26 Mar 2006 Fake_players_bug: ZDoom Fake Players DoS 0.1
  • 26 Mar 2006 Fake_players_bug: Zdaemon Fake Players DoS 0.1
  • 26 Mar 2006 Fake_players_bug: csDoom Fake Players DoS 0.1
  • 26 Mar 2006 Research: MD5 hashes of the WADs for the Doom engine 0.1
    C style collection of MD5 hashes
  • 20 Mar 2006 Password_recovery: *VNC password decoder 0.1.1
    improved the searching of the passwords stored in the registry
  • 17 Mar 2006 Password_recovery: *VNC password decoder 0.1
    decrypts the passwords encrypted with the classic VNC des method found in the vnc files, from the command-line and in the registry
  • 16 Mar 2006 Password_recovery: Ventrilo password decoder 0.1.2
    nothing really new except that now it recognize wrong CRC and shows if the password is or not a hash (latest versions of Ventrilo in fact use hashes and no longer plain-text passwords)
  • 16 Mar 2006 News: Mirror
    the only official mirror (updated weekly or less) for my website is available at luigi.eliott-ness.com, keep it noted
  • 12 Mar 2006 Advisories: Multiple vulnerabilities in ENet library (Jul 2005)
  • 12 Mar 2006 Advisories: Clients disconnection in GGZ Gaming Zone 0.0.12
  • 12 Mar 2006 Fake_players_bug: Ventrilo Fake Players DoS 0.2.1
    finally it's newly online
  • 12 Mar 2006 Fake_players_bug: Globulation 2 Fake Players DoS 0.1
    causes also the crash of the servers <= 0.47.22.5
  • 08 Mar 2006 Research: Nexus files extractor 0.1.1
    the tool is now finally complete, it's now able to decrypt also the other .dat files which are just BIK movies
  • 07 Mar 2006 Advisories: Multiple vulnerabilities in Alien Arena 2006 GE 5.00
  • 06 Mar 2006 Advisories: Out of memory crash in Freeciv 2.0.7
  • 06 Mar 2006 Advisories: Multiple vulnerabilities in Liero Xtreme 0.62b
  • 06 Mar 2006 Advisories: Multiple vulnerabilities in Sauerbraten engine 2006_02_28
  • 06 Mar 2006 Advisories: Multiple vulnerabilities in Cube engine 2005_08_29
  • 05 Mar 2006 Fake_players_bug: Quake 2 engine Fake players DoS 0.3.1
    added support also for R1Q2, more compatibility and fixed some bugs
  • 04 Mar 2006 Fake_players_bug: Quake 2 engine Fake players DoS 0.3
    I have rewritten it and have added some interesting options, now is possible to choose the nicknames and moreover execute a sequence of commands (like say for example) for each fake player
  • 04 Mar 2006 Fake_players_bug: LBreakout2 Fake Players DoS 0.1
  • 03 Mar 2006 Fake_players_bug: Enet library Fake Players DoS 0.1
    works with versus all the games which use the Enet library like Cube and Sauerbraten
  • 03 Mar 2006 Advisories: Server freeze in Monopd 0.9.3
  • 03 Mar 2006 Advisories: Off-by-one in Tenes Empanadas Graciela 0.11.1
  • 01 Mar 2006 Fake_players_bug: LieroX Fake players DoS 0.1
  • 01 Mar 2006 Fake_players_bug: TetriNET Fake Players DoS 0.1
  • 01 Mar 2006 Fake_players_bug: Armagetron / Armagetron Advanced Fake Player DoS 0.1.1
    only added compatibility for latest versions
  • 27 Feb 2006 Proof-of-concepts: CrossFire <= 1.8.0 oldsocketmode buffer-overflow 0.1
    I have found this bug today but (un)fortunately it has been already fixed by the developers 2 months ago in the CVS and yesterday in the new 1.9.0 version
  • 22 Feb 2006 Advisories: another correction for my recent advisory about Punkbuster and SoF2, version 1.180 is not vulnerable since it is just the release which fixes the bug I found
  • 19 Feb 2006 Research-COGS: COGS Gamearena IRC proxy 0.2.2
    added a small configuration file for saving the default parameters and some new options
  • 19 Feb 2006 MyToolz: ZipComp 0.4
    now it can compare two zip files or files that contain zip files in them (like self-extractors), added also a -v option for verbose file list
  • 19 Feb 2006 Advisories: corrected my recent advisory about Punkbuster and SoF2, unfortunately the detailed mail that Even Balance sent to me after having reported the bug to them didn't arrived. Sorry PB!
  • 16 Feb 2006 Advisories: Soldier of Fortune II format string through PunkBuster 1.180
  • 01 Feb 2006 Fake_players_bug: Ventrilo Fake Players DoS 0.2
    unfortunately the zip was damaged and I lost the source code of the tool... I must rewite it so I have restored the previous version
  • 28 Jan 2006 Research-Ventrilo: Ventrilo RCon tool 0.1
    simple but I hope useful tool for sending rcon commands (both interactive and one-only) to Ventrilo servers
  • 28 Jan 2006 Fake_players_bug: Ventrilo Fake Players DoS 0.2.1
    added command-line options and some interesting flooding functions
  • 21 Jan 2006 Research: Quake 3 engine RCON tool 0.1
    tool for sending RCON commands (both interactive and one only) to servers which use the Quake 3 engine or a compatible RCON protocol. The tool supports also password guessing through brute forcing and wordlist methods
  • 21 Jan 2006 MyToolz: DCE Messenger 0.1
    this tool is able to send the DCE messages become infamous due to their spamming usage (Windows XP users know them), as far as I know and in my tests SP2 no longer support them
  • 21 Jan 2006 Password_recovery: BF2AutoLoader password decoder 0.1
  • 21 Jan 2006 Password_recovery: Blade of Darkness gore password decoder 0.1
  • 16 Jan 2006 MyToolz: Net send spoofer 0.2.1
    added two simple features, now is possible to specify an IP as destination and also multiple destinations separated by commas
  • 16 Jan 2006 MyToolz: THEGUI 0.3
    tons of enhancements and bugfixes 8-)
  • 16 Jan 2006 Research->Xbox: Xbox ADPCM plugin 0.1.2
    uhmmm I have added support for ZWB and XSD/XSH archives and solved some bugfixes (now each subsong has its rate and channels, watch the previous news about XWB) but the best thing would be the creation of a Winamp plugin for handling archives which I don't know how to do at the moment...
  • 14 Jan 2006 Advisories: Buffer-overflow in Dual DHCP DNS Server 1.0
  • 14 Jan 2006 Research->Xbox: XWB/ZWB files unpacker 0.2
    this tool is finally complete, I have added support for XSB file (now the extracted files can have the original name), support for samplerate, channels and codecs with automatic header and extension plus many bugfixes and enhancements
  • 08 Jan 2006 Research->Xbox: Xbox ADPCM plugin 0.1.1
    optimized, some bugfixes and added also support to XWB and WBA archives actually seen as an unique audio file (subsongs support in future)
  • 08 Jan 2006 Research->Xbox: Xbox ADPCM plugin 0.1
    Winamp plugin for playing the audio compressed with the Xbox ADPCM codec, supports both wave (tag 0x0069) and raw/dat files (like those extracted with my XWB/ZWB files unpacker)
  • 06 Dec 2006 Research: Close Combat First to Fight files extractor 0.1
    files extractor for the BIN/XXX and PWD archives of this game which contain various texture, script and audio files
  • 05 Jan 2006 Research->Xbox: XWB/ZWB files unpacker 0.1.2
    added simple support to WBA files, an useless stdout option and an interesting execution option useful for the handling of the audio data compressed with the Xbox ADPCM codec
  • 05 Jan 2006 MyToolz: Net send spoofer 0.2
    added the message flooding and message from file options and now the message as a size limit (should be 424 because if bigger the destination rejects the message)
  • 04 Jan 2006 Research-Quake3: Quake 3 engine huffman algorithm 0.3
    now uses the public huffman.c function from the Quake 3 GPL source code
  • 04 Jan 2006 MyToolz-Windows: Winamp plug-in info 0.1.1
    added support for the plug-ins of XMPlay, Core Media Player and MusikCube
  • 02 Jan 2006 Password_recovery: Soldier of Fortune 2 violence password decoder 0.2
    now it works... unfortunately the previous version was a work-in-progress released for error, sorry
  • 01 Jan 2006 Research->Xbox: TXboxAdpcmDecoder C 0.1.2
    added the function TXboxAdpcmDecoder_Decode_Memory() for the usage of buffers, this function has also optimized the reading and writing performance of the files. Xbox ADPCM decoder 0.2.1a uses this new version of the algorithm
  • 01 Jan 2006 MyToolz-Windows: Winamp plug-in info 0.1
    useful tool which shows all the informations about the plugins for Winamp 2/5
  • 01 Jan 2006 MyToolz: Calcc 0.1.1
    added percentage, base64 and time handling
  • 01 Jan 2006 Research: JMeetREC 0.1.3
    nothing added or optimized, I have simply removed the question which waited before starting the wait mode as request of some users
  • 26 Dec 2005 Research->Xbox: new section
  • 26 Dec 2005 TestingToolz: WAVEhead 0.1
    experimental and useless tool for adding a wave header to raw files or for modifying existent wave headers (mainly for uncompressed files) or extracting the raw audio from wave files
  • 25 Dec 2005 Advisories: BZFlag 2.0.4 server crash due to undelimited callsign
  • 25 Dec 2005 Research: XWB/ZWB files unpacker 0.1.1
    improved compatibility and added automatic WMA files recognization
  • 25 Dec 2005 Research: FSB files extractor 0.1
    files extractor for the FSB (FMOD Sample Bank) archives used by the FMOD library. Supports FSB2, FSB3 and FSB3.1 and also the encrypted archives which can be cracked enough easily since the NULL bytes used in them allow the visualization of the original plain-text password
  • 20 Dec 2005 Research: Xbox ADPCM decoder 0.2.1
    optimized and some micro fixes
  • 20 Dec 2005 Research: TXboxAdpcmDecoder C 0.1.1
    optimized
  • 18 Dec 2005 Research: Xbox ADPCM decoder 0.2
    now raw files have 2 channels set by default, added the forcing of the frequency, stdin and stdout handling, added an option for raw-only output and another for adding a wave header to the raw data (so you can play it with the xbox codec). Another good news is that with this tool finally I have been able to decode the excellent music of the game Unreal Championship contained in music.xwb (extracted with unxwb naturally)
  • 17 Dec 2005 Research: Xbox ADPCM decoder 0.1
    versatile tool for creating WAV files from any audio files (WAV, raw and withing raw files through some options) which use the Xbox ADPCM codec
  • 17 Dec 2005 Research: TXboxAdpcmDecoder C 0.1
    the C port of the TXboxAdpcmDecoder Delphi class written by Benjamin Haisch for decompressing the Xbox ADPCM audio
  • 16 Dec 2005 Research: Ultima Online account checker 0.1
    re-released since part of the zip was overwritten by the content of a DLL project I created with the same name
  • 14 Dec 2005 MyToolz-Windows: CMDsock 0.1.1
    added some simple but interesting functions like a reverse shell (available also over UDP) and quiet output
  • 14 Dec 2005 Research: News
    I have adjusted the order of my stuff in this (big) page, now it's the 0,0001% more clear than before 8-)
  • 12 Dec 2005 MyToolz-Windows: CMDsock 0.1
    simple tool which acts like a telnet server (or shell binder) and works on any Windows OS. Supports some options for setting a password, changing the listening port and interface and automatic LF to CRLF conversion
  • 12 Dec 2005 Research: 49Games PAK files extractor 0.1
    an unpacker for the PAK files used in the games developed by 49Games
  • 11 Dec 2005 Research-beta: Unreal Tournament 2004 alternative network project 0.2.1
    for version 3369
  • 10 Dec 2005 Research-COGS: COGS Gamearena IRC proxy 0.2.1
    I have used a function which improves the socket performances, only that
  • 10 Dec 2005 Research: Nexus files extractor 0.1
    tool for extracting the encoded files contained in nexus_00.dat (but other files supported too) used in the game Nexus - the Jupiter Incident aka Galaxy Andromeda and Imperium Galactica III: Genesis
  • 10 Dec 2005 MyToolz: Offset file unzipper 0.2.3
    added ONLY the automatic removing of the generated files containing invalid data which is enough useful
  • 06 Dec 2005 Research-COGS: COGS Gamearena IRC proxy 0.2
    now it works again (sorry for the late update), have also added some options, user and password can be inserted at runtime and many optimizations and bugfixes. Remember to install OpenSSL which is required now
  • 03 Dec 2005 Research: TNTFOLDER files decrypter 0.1
    tool for converting the .tntfolder files of the TNT game engine (made by GSC Gameworld) and used in games like HoveRace and FireStarter to normal ZIP files
  • 03 Dec 2005 Research: UZ2 files extractor 0.1
    unpacks the files with .UZ2 extension used in some games
  • 02 Dec 2005 Fake_players_bug: Doom 3 engine invisible fake players DoS 0.1.2
    added support for Quake 4 and adjusted a bit some parts of the code
  • 02 Dec 2005 Proof-of-concepts: Gamespy cd-key validation: "Cd-key in use" DoS 0.2
    now the cd-key is sent almost every minute and have added some other options
  • 02 Dec 2005 Research-Master servers: Doom 3 engine 0.1
    added the plugin for the Doom 3 engine
  • 01 Dec 2005 Research: JMeetREC 0.1.2
    now when a webcam is private or offline the tool asks if it must check the status of the webcam each 30 seconds for continuing the recording when it is newly available or public
  • 27 Nov 2005 Patches: How to fix the in-game buffer-overflow in Jedi Academy
    easy to use step by step required because the game overwrites the DLL files in the base folder, the patch is THE SAME of Call of Duty (the bug is the same too)
  • 27 Nov 2005 Fake_players_bug: BZFlag Fake Players DoS 0.1.1
    added support for 2.0.4 servers and rewritten many parts of the code
  • 26 Nov 2005 Research: CBF files extractor 0.1
    extracts any file contained in the .CBF files of the games which use the Ptero-Engine like Vietcong and Vietcong 2
  • 20 Nov 2005 Fake_players_bug: Quake 3 engine fake players DoS 0.3
    partially rewritten, added a minimal support for ET 2.60 PB servers and an option for using custom nicknames
  • 14 Nov 2005 Research-Gamers trust us: GS login server emulator 0.1
    a basic but interesting login and stats server emulator (gpcm, gpsp and gamestats) which works with any game that uses these protocols. Although it can be useful for some admins and retro-gaming projects (the idea started for PBA2001) I have found it very interesting also for gamers, read the text file for details
  • 13 Nov 2005 Research: Ultima Online account checker 0.1
    verifies if an online UO account is valid or not
  • 13 Nov 2005 Research: Ultima Online login encryption algorithm 0.1
    the algorithm used to send the login informations to the login.owo.com server, it's based on the latest 5.00 encryption algorithm
  • 12 Nov 2005 Fake_players_bug: Scorched 3D Fake Players DoS 0.1a
    micro fix in read_sock()
  • 12 Nov 2005 Proof-of-concepts: Scorched 3D <= 39.1 (bf) multiple vulnerabilities 0.1a
    micro fix in read_sock()
  • 11 Nov 2005 Patches: News
    the patcher for CoD and CoDUO works with Call of Duty 2 too. Select cod2mp_s.exe for patching it
  • 10 Nov 2005 Advisories: Call of Duty 2 confirmed vulnerable
    updated my advisory with the info (thanx to all the people who have tested the bug). At the moment I still don't know if my old patcher for CoD/CoDUO works with CoD2 too (the pattern is probably different), test in progress...
  • 09 Nov 2005 Advisories: News
    some users have reported that also Call of Duty 2 is vulnerable to the in-game buffer-overrun explained here. If someone can successfully replicate/test the bug on this new game please send me a mail
  • 07 Nov 2005 Patches: XVI32 2.51 full offset 0.1
    a patch which solves the max 99999999 offset bug which affects this great hex editor
  • 06 Nov 2005 Research-Gamers trust us: GS peerchat proxy decrypter 0.3
    new version of this debugging tools which has been partially rewritten
  • 06 Nov 2005 Research-beta: GS Peerchat sniffer and decrypter 0.1
    the title already explains everything, except that this tool is highly experimental due to the usage of TCP sniffing which is too complex to handle and so causes garbaged data
  • 05 Nov 2005 Research: Teamspeaklist 0.1
    allows to retrieve the list of online TeamSpeak servers through the usage of filters and has also other options like executing a specific program for each server found
  • 05 Nov 2005 Proof-of-concepts: Soldier of Fortune 2 (1.02, 1.03) cl_guid server crash 0.2
    improved a bit, now should be able to test also the vulnerable servers that didn't crash or stop with the previous version
  • 02 Nov 2005 Advisories: Buffer-overflow in GO-Global for Windows 3.1.0.3270
  • 02 Nov 2005 Advisories: Buffer-overflow and directory traversal in Asus Video Security 3.5.0.0
  • 02 Nov 2005 Advisories: Multiple vulnerabilities in Scorched 3D 39.1
  • 02 Nov 2005 Advisories: Limited directory traversal in NeroNET 1.2.0.2
  • 02 Nov 2005 Advisories: Buffer-overflow in Glider collect'n kill 1.0.0.0
  • 02 Nov 2005 Advisories: Buffer-overflow and crash in FlatFrag 0.3
  • 02 Nov 2005 Advisories: Player disconnection and server interruption in Blitzkrieg 2 1.21
  • 02 Nov 2005 Advisories: Socket termination in Battle Carry .005
  • 02 Nov 2005 Proof-of-concepts: Lithtech engine (new protocol) socket unreachable 0.1.1
    no, the 1.02 patch of F.E.A.R. does NOT fully patch the bug!
  • 30 Oct 2005 MyToolz: THEGUI 0.2
    all the old limitations have been solved, added stdin handling, rewritten Linux process piping and other GUI related enhancements and fixes... now rox
  • 25 Oct 2005 MyToolz: Net send spoofer 0.1.1
    micro enhancement: the command-line message no longer needs to be delimited by apexes
  • 24 Oct 2005 Advisories: F.E.A.R. 1.01 is vulnerable also to the in-game format string bug of the Lithtech engine, use the nickname %n%n%n to test the bug on vulnerable servers
  • 24 Oct 2005 Patches: Soldier of Fortune II 1.03 definitive infostring crash fix 0.2
    probably useless since limiting the buffer works perfectly and for any version and operating system but I wanted to try to create this patch, which is available for the 1.00 version too
  • 21 Oct 2005 Fake_players_bug: Fix
    I have added a small fix in almost all my tools, when the tool tries to bind a port already in use it passes to the next without returning the error. The tools with the fix have a 'a' at the end of the version
  • 21 Oct 2005 Research-Gamers_trust_us: Master server disconnector 0.1.1
    now works on Windows too
  • 21 Oct 2005 Advisories: F.E.A.R. 1.01 is vulnerable to the socket termination bug of the Lithtech engine released almost one year ago
  • 16 Oct 2005 Fake_players_bug: New tools
    released the fake players tools for the games Scorched 3D, Battle Carry and FlatFrag
  • 13 Oct 2005 MyToolz: Net send spoofer 0.1
    the name says all, it sends the winpopup messages with spoofed source
  • 09 Oct 2005 MyToolz: THEGUI 0.1
    well, finally who hates to use the console (aka command-line) has a chance to use my tools without problems. THEGUI is an universal front-end for many command-line programs (moreover my tools) which works on both Windows and Linux since uses the GTK library
  • 30 Sep 2005 Advisories: Buffer-overflow and directory traversal bugs in Virtools Web Player 3.0.0.100
  • 25 Sep 2005 Advisories: Server crash and motd deletion in MultiTheftAuto 0.5 patch 1
  • 25 Sep 2005 Research-Gslist: Gslist 0.8.1
    many improvements of the web GUI (the non-GUI Gslist has not been touched), the list of changes is available here
  • 20 Sep 2005 Research-Others: JMeetLIST 0.1.1
    updated the new link
  • 18 Sep 2005 Mindlog: new section
    a blog? a diary? an abort of my mind? nobody knows...
  • 17 Sep 2005 Research-Race Driver: Race Driver (Codemasters) packets checksum 0.4
    found the differences between this one and the standard MD5 algorithm, so now it's clean and complete
  • 17 Sep 2005 Research-Others: Virtools .crypted files decrypter 0.1
    decrypts the .crypted files usually located in the MediaCache folder in the Virtools directory, usually requires the usage of the "Virtools files unpacker" for retrieving the key from the objects file of the original VMO file
  • 17 Sep 2005 Research-Others: Virtools files unpacker 0.1
    extracts the files contained in VMO, NMS, NMO, CMO and any other file of the same format created with the Virtools programs
  • 17 Sep 2005 MyToolz: HEX2BYTE 0.2.1
    removed the previous issues with the high/low case of the input
  • 14 Sep 2005 Research-Gslist: Gslist 0.8
    database and gamekey free, added support for enctype 1, knows if there are new versions available (using gslist.cfg), better and faster update function, default folder selection, more compatibility (except for big-endian sorry), supports also Nintendo DS and PSP games, optimizations and more
  • 14 Sep 2005 Research-Gamers_trust_us: GS enctype1 servers list decoder 0.1
    the enctype 1 algorithm
  • 14 Sep 2005 Research-Gamers_trust_us: GS enctype2 servers list decoder 0.1.1
    optimized
  • 14 Sep 2005 Research-Gamers_trust_us: GSMSALG 0.3.2
    removed an useless instruction for faster performance
  • 13 Sep 2005 Research: qtracklist.cfg
    added the games introduced in Qtracker 4.03
  • 09 Sep 2005 Research-Informations: New mini section
    this section collects all those small informations which don't lead to projects but are useful to some people. For example what is the protocol used by that program for chatting, or if it uses zipped packets, how to solve a small problem with a game and many other little things
  • 09 Sep 2005 Research-Gamers_trust_us: GSMSALG 0.3.1
    added support for enctype 1
  • 09 Sep 2005 Proof-of-concepts: Quake 3 engine infostring crash/shutdown scanner 0.1.2
    now is possible to specify the type of query to use, in fact seems that some servers which uses my work-around and some MODs are still vulnerable using getstatus
  • 09 Sep 2005 MyToolz: Simple UDP proxy/pipe 0.2.1
    added an option for showing the hex dump of the packets and another for binding a specific local IP
  • 07 Sep 2005 Research-Gslist: News
    now you need to use "-t 2" to receive the servers list for the recent games. An updated version of Gslist will be released in the next days
  • 04 Sep 2005 Fake_players_bug: Darkplaces engine (Nexuiz) invisible Fake Players DoS 0.1
  • 04 Sep 2005 MyToolz: sendto_spoof 0.1.1
    removed the pseudo buffer for improving the performance
  • 03 Sep 2005 MyToolz: sendto_spoof 0.1
    a sendto() replacement which automatically enables the spoofing of the UDP packets in any existent program. Perfect for adding spoofing capabilities to my proof-of-concept code in some seconds.
  • 02 Sep 2005 Proof-of-concepts: Universal "Gamespy cd-key in use" executable-2-PoC converter 0.1
    modifies 3 bytes of the executable of any game that uses the Gamespy cd-key SDK for converting it in a proof-of-concept which keeps in use all the cd-keys of the gamers which join the server
  • 01 Sep 2005 Proof-of-concepts: Gamespy cd-key validation: cd-key never in use 0.1.1
    added support for Windows, naturally is required an OS which supports raw sockets and you must verify that the spoofed packets really reach the target host
  • 01 Sep 2005 Password_recovery: KomaMail files and passwords decoder 0.1
  • 30 Aug 2005 MyToolz: MyBrute 0.1.1
    now the wordlist function automatically scans both low and high cases letters in any possible combination
  • 30 Aug 2005 Fake_players_bug: Medal of Honor (AA, SH and BT) Fake players DoS 0.2.1
    solved a compatibility problem with Breakthrough and optimized the code
  • 29 Aug 2005 Advisories: Multiple vulnerabilities in BFCommand & Control Server Manager
  • 29 Aug 2005 Fake_players_bug: Generic TCP Fake Players DoS 0.1
    creates simultaneous connections to a specific host and port and supports some options for adapting it to specific types of servers
  • 29 Aug 2005 Fake_players_bug: Live for Speed Fake Players DoS 0.2
    it has been totally rewritten and works only versus the demo servers (tested version 0.5P2). During my tests was possible to restart the race on the server simply filling it and then stopping the tool
  • 29 Aug 2005 Research-Others: Live for speed CRC 0.1
    some functions for calculating the checksums of the available cars and the password
  • 23 Aug 2005 Advisories: Server crash in Ventrilo 2.3.0
  • 23 Aug 2005 MyToolz: Calcc 0.1
    useful command-line calculator which supports multiple input and output formats (hex, decimal, octal, base4, binary, string and IPv4/v6 addresses), parenthesis and the following operators:complement, not, shift, rotate, xor, and, or, power, root, byte and bit swapping, multiplication, division, modulus, addition and substraction
  • 23 Aug 2005 MyToolz: MyBrute 0.1
    sets of easy-to-use functions composed just by some lines of code for creating simple brute forcers (wordlists supported too)
  • 22 Aug 2005 Research-Ventrilo: Ventrilo status retriever 0.1
    gets status informations from the Ventrilo servers (from version 2.1.2), just like the ventrilo_status program but with support for any available command and a better handling of the input containing the target server (for example you can use URLs)
  • 22 Aug 2005 Research-Ventrilo: Ventrilo UDP status algorithm 0.1
    set of functions to decrypt/encrypt the UDP packets used to get the status informations from Ventrilo server (from version 2.1.2)
  • 22 Aug 2005 MyToolz: Show_dump 0.1.1a
    chars major than 126 are no longer visualized to avoid artefacts on some terminals
  • 19 Aug 2005 Password_recovery: Steam password decoder 0.1
    experimental tool for decoding the password stored in the local (and ONLY the local) ClientRegistry.blob file
  • 18 Aug 2005 Password_recovery: Battlefield 2 Remote Administrator (BF2RA) password decoder 0.1
  • 17 Aug 2005 MyToolz: Show_dump 0.1.1
    optimized for performance
  • 17 Aug 2005 Advisories: Buffer-overflow in Chris Moneymaker's World Poker Championship 1.0
  • 17 Aug 2005 Fake_players_bug: Chris Moneymaker's World Poker Championship Fake Players DoS 0.1
  • 15 Aug 2005 I'm newly online
  • 03 Aug 2005 I will be far from Internet for about 2 weeks so I cannot reply to mails, see you soon
  • 01 Aug 2005 Advisories: Format string and buffer-overflow in Sacrifice
  • 31 Jul 2005 Research-Gamers trust us: GS peerchat server emulator 0.1.1
    updated with the support for the initial LOGIN command (just a work-around) and for the limited plain-text part of peerchat.gamespy.com used by some old games like Sacrifice.
    Added also a readme file
  • 31 Jul 2005 RSS: news available also in Wap (wml) format
  • 29 Jul 2005 Research-Gslist: Gslist 0.7
    finally this new major release is out, the updates and the changes are a lot like for example the double update and the continuous loop options, the support for new queries and many optimizations.
    But probably the biggest news is the integrated GUI accessible through the web browser... anyway the new section and the screenshots are ready so take a look there
  • 29 Jul 2005 Research-Gslist: Add-on list for Gslist
    added many games also for PS2, Dreamcast, Mac and naturally PC.
    From today this file is automatically added to gslist.cfg through the update option of Gslist 0.7 so the future updates of this file will be no longer showed here
  • 29 Jul 2005 Research-Gamers trust us: GS peerchat server emulator 0.1
    this multi-threads proxy transforms any IRC server in a Peerchat server
  • 27 Jul 2005 Fake_players_bug: Ventrilo Fake Players DoS 0.2
    added support for the recent 2.3.0 version
  • 27 Jul 2005 Research-Ventrilo: Ventrilo password hashing algorithm 0.1
    the algorithm for calculating the password hash introduced in version 2.3.0
  • 27 Jul 2005 Research-Ventrilo: Ventrilo proxy data decrypter 0.2
    rewritten and added support for multiple clients at the same time
  • 27 Jul 2005 Research-Ventrilo: Ventrilo encryption/decryption algorithm 0.2
    totally rewritten
  • 27 Jul 2005 Research-Ventrilo: New section for the stuff I have written about Ventrilo
  • 23 Jul 2005 Patches: Call of Duty <= 1.5b / UO <= 1.51b buffer-overrun fix
    an universal patcher (works also with older versions) that modifies only one byte avoiding the sprintf() buffer-overflow
  • 20 Jul 2005 Patches: Race Driver 1.20 megafix 0.1
    yes I have been able to patch the recent bugs I have found in this game, this patch includes also the boom fix
  • 18 Jul 2005 Advisories: Broadcast format string and buffer-overflow in Race Driver 1.20
  • 17 Jul 2005 Patches: Red Faction demo 1.00 megafix 0.1
    an all-in-one patcher for the nickname bof, the empty udp DoS and the green team bug
  • 13 Jul 2005 RSS: finally are available the RSS feeds for easily accessing to the latest news about this website or only about the Advisories section
  • 13 Jul 2005 Advisories: Endless loop in NetPanzer 0.8
  • 12 Jul 2005 Research-Others: Neverwinter Nights account checker 0.1.1
    micro fix, the random string must not contain NULL bytes
  • 12 Jul 2005 Fake_players_bug: NetPanzer Fake Players DoS 0.1
  • 12 Jul 2005 Research-Others: Neverwinter Nights account checker 0.1
    tool for verifying if an username and a password are an existent Bioware NWN account
  • 08 Jul 2005 Modified all the tools I have written that access to the registry due to the wrong usage of a 0 instead of KEY_READ in the RegOpenKeyEx call (an error dragged from lon time) so now they work perfectly on Windows NT/2k/XP too.
    The affected Password_recovery tools are: CoffeeCup FTP, AllegroSurf, Gore, DNS4ME, Gekus & Igori Mail Checker, Imap Notify, Poppy, Delphino QuickFTP, Ventrilo, Time of Defiance, IpSwitch *, Webdrive, Winproxy, ActivePost and Vypress Auvis
    While MyToolz: Driverfinder 0.1.1 (bugfixed too) and Registry values patterns changer 0.1.1
  • 06 Jul 2005 in these days I have continued the development of Gslist. This time, other than the usual optimizations, I have added a new option that transforms the tool in a http server for using it with a browser... practically a multi platform network GUI very simple to use.
    For the moment the results are excellents and I have already implemented everything I imagined and need some beta testers for finding and fixing the remaining bugs.
    Send me a mail if you want to help me moreover if you already use other servers browsers like ASE or GS Arcade so you can also suggest me what to add and what to change
  • 02 Jul 2005 Adjusted the Fix section for the sof2ignore advisory, thanx to both Bryan and Slawek. If you have already recompiled your sof2 sdk apply the new fix!
  • 29 Jun 2005 Password_recovery: Hide My Files folders unhider and scanner 0.1
    automatically scans a specific folder searching all the folders hidden by this program
  • 29 Jun 2005 Advisories: In-game /ignore crash in Soldier of Fortune II 1.03
  • 29 Jun 2005 Patches: Simple and generic way for fixing the Quake 3 engine
    a lame work-around...
  • 29 Jun 2005 Password_recovery: Filezilla password decoder 0.1.1
    corrected a micro bug only when passwords were longer than 45 chars
  • 25 Jun 2005 Research-Master servers: MSReborn 0.1
    the main code I use for creating various types of master server emulators
    Released also some emulators for the Quake 3 engine, Gamespy enctype 0 and Tribes 1
  • 25 Jun 2005 Research: Created a new small section for the master servers emulators
  • 25 Jun 2005 Research-Gamers_trust_us: GS peerchat IRC proxy 0.2
    now supports multiple clients at same time
  • 25 Jun 2005 Research-Gamers_trust_us: GS peerchat encryption/decryption algorithm 0.2
  • 25 Jun 2005 Research-Gamers_trust_us: GSscanSQL 0.1
    a tool I wrote for a friend of mine and that actually is no longer supported. It is able to track (into a MySQL database) all the informations of the online servers of one of the over 700 games supported
  • 17 Jun 2005 MyToolz: CmdDiz 0.1
    a console interface for the huge amount of free dictionaries of The Dictionary Team
  • 17 Jun 2005 Research-Others: JMeetREC 0.1.1
    a micro but smart update, at runtime are created 2 simple html files that can be used to watch the stream in real-time or in any other moment (the slide show html script has been added also in my TestingToolz section)
  • 14 Jun 2005 Gslist: Add-on list for Gslist
    added Area 51, Dungeon Lords and World Snooker Championship 2004 for PS2 and 2005 for PC
  • 14 Jun 2005 Research-Gamers_trust_us: Partial list of games that use the Gamespy cd-key SDK
    added Dungeon Lords
  • 10 Jun 2005 MyToolz: ZipComp 0.3
    optimized, now first checks the file size so avoids to waste time calculating the CRC32 of files with different size
  • 10 Jun 2005 MyToolz: DirComp 0.1
    simple tool for comparing the files contained in two directories
  • 05 Jun 2005 Advisories: Server termination in Raknet 2.33 (before 30 May 2005)
  • 05 Jun 2005 Gslist: Add-on list for Gslist
    added Full Spectrum Warrior
  • 30 May 2005 Advisories: Crash in Stronghold 2 1.2
  • 30 May 2005 Fake_players_bug: Stronghold 2 Fake Players DoS 0.1
  • 30 May 2005 Fake_players_bug: Dark Vengeance Fake Players DoS 0.1
  • 29 May 2005 Gslist: Add-on list for Gslist
    added Close Combat: First to Fight and Stronghold 2
  • 28 May 2005 Fake_players_bug: Breed: Homecoming LAN Fake Players DoS 0.1
  • 26 May 2005 Advisories: Buffer-overflow and crash in Terminator 3: War of the Machines 1.16
  • 26 May 2005 Advisories: Buffer-overflow in C'Nedra 0.4.0
  • 26 May 2005 Gslist: Gslist 0.6.3
    optimized the update option and adjusted for 64 bit compatibility (seems that long is not 32 bits on these CPUs...)
  • 25 May 2005 Gslist: Add-on list for Gslist
    added Act of War: Direct Action and Homeworld 2
  • 25 May 2005 Research-Gamers_trust_us: Partial list of games that use the Gamespy cd-key SDK
    added Act of War: Direct Action
  • 24 May 2005 Advisories: Endless loop in Halo 1.06
  • 24 May 2005 Fake_players_bug: Roger Wilco Fake Players DoS 0.1
  • 23 May 2005 Advisories: Format string and crash in Warrior Kings 1.3 and Battles 1.23
  • 23 May 2005 MyToolz: Byte2C 0.1
    a tool to convert files into char, short or long numbers (C arrays) with many options
  • 23 May 2005 Fake_players_bug: Mtp-Target Fake Players DoS 0.1
  • 21 May 2005 Fake_players_bug: Orbz Fake Players DoS 0.1
  • 21 May 2005 Fake_players_bug: Updated the dp8games package
  • 18 May 2005 Fake_players_bug: Terminator 3 War of the Machines (LAN) Fake Players DoS 0.1
  • 18 May 2005 MyToolz: Hex2byte 0.2
    just as for byte2hex also this one has been rewritten and now supports any type of input format
  • 18 May 2005 MyToolz: Byte2hex 0.2
    was really old so I have rewritten it, now it supports any type of output format (like hex, octal, decimal and more) since the format string can be controlled by the user
  • 18 May 2005 TestingToolz: FindBits 0.1
    a simple tool that is very useful when I need to understand if a game uses bitstreams without wasting time
  • 17 May 2005 Research-Gamers_trust_us: Master server disconnection: game servers can be removed from the online master server list using one spoofed packet 0.1
    a quick and short document that can be applied to ANY master server that uses unchecked UDP heartbeat packets
  • 17 May 2005 Research-Gamers_trust_us: Master server disconnector 0.1
    proof-of-concept of the above document for the games that use the Gamespy master server (works on *nix only)
  • 17 May 2005 Fake_players_bug: Warrior Kings Battles Fake Players DoS 0.1
  • 17 May 2005 Fake_players_bug: War Times Fake Players DoS 0.1
  • 17 May 2005 Advisories: In-game server crash in War Times 1.03
    released only on this website since is not clear if this game is still supported or not
  • 15 May 2005 Gslist: Add-on list for Gslist
    added Black and White
  • 14 May 2005 Password_recovery: Willing Webcam password decoder 0.1
  • 13 May 2005 Fake_players_bug: Lords of the Realm III Fake Players DoS 0.1
  • 13 May 2005 Research-Gamers_trust_us: Gsstats 0.1
    retrieves the online player statistics of the games that use the Gamespy accounts to play online like Ground Control II and Command and Conquer Generals Zero Hour for example
  • 13 May 2005 Research-Others: AFS files extractor 0.1
    very simple extractor for this type of files used by some Xbox games
  • 12 May 2005 Fake_players_bug: Empire Earth 2 Fake Players DoS 0.1
  • 10 May 2005 Advisories: Crash in Zoidcom 1.0 beta 4
  • 10 May 2005 Research-Gamers_trust_us: gs_chresp_num \auth\ response 0.1
    simple function to calculate the needed number from \challenge\ (port 29920)
  • 10 May 2005 Research-Gamers_trust_us: gs_sesskey \authp\ resp 0.1
    simple function to calculate the needed text string from \sesskey\ (port 29920)
  • 08 May 2005 Research-Others: War Times CRC algorithm 0.1
    CRC algorithm used for the network data of the game War Times European Frontline
  • 05 May 2005 Research-Gamers_trust_us: Partial list of games that use the Gamespy cd-key SDK
    important update, added almost 20 games that use the Gamespy cd-keys. This is very important also for the 2 advisories I have released yesterday so take a look to this document
  • 04 May 2005 Advisories: Gamespy cd-key validation system: Cd-key never in use
  • 04 May 2005 Advisories: Gamespy cd-key validation system: "Cd-key in use" DoS versus many games
  • 04 May 2005 MyToolz: MyCRC 0.3
    the main change is about the purpose of the tool that now is totally focused on the possible changes made on the various checksums (for example sometimes games use CRC32 algorithms initialized with 0 instead of 0xffffffff), corrected the packet checksum (it was inverted... little endian past) and added a couple of 8 bits checksums
  • 03 May 2005 Research-Gamers_trust_us: GsHsniff 0.3
    added many useful options for monitoring and visualize the packets
  • 03 May 2005 Small modification to all my source code to avoid the WSADATA error when compiled with Visual C++ (has been enough to move the WSADATA declaration in the zone where are declared all the variables). Anyway remember that I don't use and support this compiler, I use only Gcc
  • 02 May 2005 Amiga_ADF: the images of my Amiga disks are newly online. A huge thanx to Eliott-Ness for the webspace!
  • 01 May 2005 Advisories: Clients format string and server crash in Mtp-Target 1.2.2
  • 01 May 2005 Research-Others: XWB/ZWB files unpacker 0.1
    this tool is able to extract the data contained in the Xbox files with the xwb and zwb extensions. It was initially inspired to the known XWB Extractor to remove its faults. Note that these files contain raw data so don't expect to extract and play them without modifications
  • 29 Apr 2005 About: Added more informations about me and my philosophy... I needed to do it from many time.
  • 29 Apr 2005 Password_recovery: Empire Earth 2 online account password decoder 0.1
    simple password decoder for the Gamespy account contained in settings.cfg, tested versus the demo but should work versus the retail too
  • 24 Apr 2005 Research-Halo: Halo packets decryption/encryption algorithm and keys builder 0.1.1
    added the function halo_crc32() to calculate the CRC32 number located at the end of each packet. Only that
  • 24 Apr 2005 Fake_players_bug: Need for Speed: Hot Pursuit 2 Fake players DoS 0.2
    partially rewritten, it was really very old
  • 23 Apr 2005 Research-Gamers_trust_us: Online cd-key verifier for games that use the Gamespy cd-key SDK 0.1
    interesting tool that verifies if the cd-key of a specific game is valid online or not (just what the game servers do with the clients). The games must use the Gamespy cd-key SDK like Battlefield 1942, Halo, Painkiller, Star Wars Battlefront and many others.
    Read the text file inside
  • 23 Apr 2005 Research-Gamers_trust_us: Full list of multiplayer games and their PIDs on Gamespy
    useful for the stats, for cd-key verification and probably more. Will be update periodically
  • 22 Apr 2005 Research-Gamers_trust_us: GsHsniff 0.2
    optimized and updated the sniffing functions (the code was enough old) and works on Linux too
  • 22 Apr 2005 MyToolz: ether_hdrlen 0.2
    added a function (pcap_hdrlen) to retrieve the length of the data_link level type
  • 21 Apr 2005 Research-Others: Zanzarah PAK files unpacker/repacker 0.1
    a simple unpacker/repacker written to patch this game for the traduction made by the "Figli di Gaucci" team
  • 18 Apr 2005 Research-Halo: Halo proxy data decrypter 0.1
    simple proxy server that sits between a client and a server and decrypts all the exchanged packets in real-time. The plain-text data in the Halo packets is stored in bitstream format but this tool decrypts only the packets, you must get the data manually (not difficult)
  • 18 Apr 2005 Research-Halo: Halo packets decryption/encryption algorithm and keys builder 0.1
    set of functions for handling the packets of this game (TEA algorithm) and the keys needed to decrypt and encrypt them
  • 18 Apr 2005 Research-Halo: a new section for the game Halo
  • 15 Apr 2005 Fake_players_bug: Warhammer 40,000 Dawn of War LAN Invisible Fake Players DoS 0.1
    works only versus LAN servers
  • 15 Apr 2005 Fake_players_bug: Halo LAN Invisible Fake Players DoS 0.1
    works only versus LAN servers. No keyword needed versus servers protected by password
  • 14 Apr 2005 Proof-of-concepts: IGI 2: Covert Strike <= 1.3 Gamespy cd-key SDK buffer-overflow 0.1
    another proof-of-concept related to this bug
  • 14 Apr 2005 Advisories: In-game vulnerabilities in IGI 2: Covert Strike 1.3
  • 14 Apr 2005 Advisories: Multiple vulnerabilities in Yager 5.24
  • 11 Apr 2005 Fake_players_bug: BZFlag Fake Players DoS 0.1
    works also versus servers protected by password without knowing the keyword
  • 10 Apr 2005 Fake_players_bug: nFusion engine Fake players DoS 0.1.1
    added more checks in the ID scanning feature so now it supports also the game Elite Warriors Vietnam
  • 09 Apr 2005 Research-Others: GameGuard files decrypter 0.1
    simple and a bit useless tool to decrypt the configuration and update files used by the GameGuard anti-cheat program (that used by some MMORPG games)
    Read the text file inside for some examples and details
  • 09 Apr 2005 Fake_players_bug: Yager Fake Players DoS 0.1
  • 09 Apr 2005 Fake_players_bug: Race Driver 2 Fake Players DoS 0.1
  • 03 Apr 2005 Fake_players_bug: IGI 2: Covert Strike Fake Players DoS 0.1
  • 02 Apr 2005 Advisories: In-game server buffer-overflow in Jedi Academy 1.011
  • 02 Apr 2005 Advisories: In-game server crash in Call of Duty 1.5b and United Offensive 1.51b
  • 02 Apr 2005 Advisories: In-game players kicking in the Quake 3 engine
  • 28 Mar 2005 Advisories: Buffer-overflow in Tincat 2 minor than 2.0.28
  • 28 Mar 2005 Research-Others: TinCat_Scramble algorithm 0.1
    the simple homonym algorithm available in tincat2.dll
  • 27 Mar 2005 Research-Ubi.com: UBI.COM gschat IRC proxy 0.2.1
    added the new IRC server gsxirc01.gs.mdc.ubisoft.com, added a couple of new options and optimized the handling of network and garbage data (however the garbage problem still remain)
  • 26 Mar 2005 Fake_players_bug: Painkiller (LAN) infinite Fake Players DoS 0.2.2
    added support for version 1.64
  • 20 Mar 2005 Advisories: Socket unreachable and crash in FunLabs games
  • 20 Mar 2005 Fake_players_bug: FunLabs games Fake Players DoS 0.1
    this tool should work versus all the games developed by FunLabs: 4X4 Off-road Adventure III, Cabela's Big Game Hunter 2004 Season, Cabela's Big Game Hunter 2005, Cabela's Deer Hunt 2005 Season, Cabela's Dangerous Hunts, Revolution, Secret Service - In harm's Way, Shadow Force: Razor Unit, US Most Wanted: Nowhere To Hide and possibly others
  • 20 Mar 2005 Research-Gamers_trust_us: Partial list of games that use the Gamespy cd-key SDK
    added SWAT 4 and FEAR: First Encounter And Reconnaissance
  • 19 Mar 2005 Patches-gshboom: Gamespy SDK gshboom bug: universal fix 0.1
    why I release an universal patcher after over one year from the bug? Simple, I should do it many times ago but today I have heard that a game released in October 2004 (Tribes Vengeance) is vulnerable to this very very old bug!!!
  • 13 Mar 2005 Gslist: Add-on list for Gslist
    added Warhammer 40000 Dawn of War and Star Wars Battlefront for PS2
  • 13 Mar 2005 Fake_players_bug: Speed Challenge Fake players DoS 0.2
    completely rewritten, now supports also the servers protected by password
  • 13 Mar 2005 Research-Speed Challenge: Speed Challenge network data checksum 0.1
    the checksum algorithm used in the big-endian 16 bits number at the beginning of each network data block
  • 13 Mar 2005 Research-Speed Challenge: Speed Challenge proxy data decrypter 0.1
    proxy server that decrypts any data exchanged between client and server
  • 13 Mar 2005 Research-Speed Challenge: Speed Challenge network encryption/decryption algorithm 0.2
    completely rewritten, now supports also encryption
  • 13 Mar 2005 Research: Added a new section about the game Speed Challenge:
  • 09 Mar 2005 Advisories: In-game format string in Xpand Rally 1.1.0.0
  • 08 Mar 2005 Fake_players_bug: Ratbag's engine Fake players DoS 0.1.1
    better handling of players, nothing more
  • 04 Mar 2005 Fake_players_bug: Chaser Fake Players DoS and clients disconnector 0.1
  • 04 Mar 2005 Advisories: Client buffer-overflow in Chaser 1.50
    released only on this website
  • 03 Mar 2005 Advisories: Format string and crash in Carsten's 3D Engine (March 2004)
  • 01 Mar 2005 Gslist: Gslist 0.6.2
    mini enhancements and bugfixes as usual plus a new option (-d) to use some types of queries, an output option (-o 6) to see the hexdump of the server's list that now is fully loaded in memory for a better handling of the -r (programs execution) option.
    As someone has probably already noticed, from over 2 months Gslist is supported also by XQF
  • 01 Mar 2005 Fake_players_bug: DirectPlay 8 Fake Players DoS 0.1.1
    minimal update, if it gave you a socket timeout also if the server was up now automatically skips that stage
  • 28 Feb 2005 Advisories: Server termination in Scrapland 1.0
  • 28 Feb 2005 Research: QtrackUP 0.1
    just a simple heartbeats sender for the Qtracker master server like the original QtUplink
  • 27 Feb 2005 MyToolz: MyCRC 0.2.1
    added another type of CRC32 (the same used by the game Star Wars Battlefront) plus the non-negative CRC16 and CRC32. Now the CRC16 used for network headers is big endian compatible
  • 27 Feb 2005 MyToolz: Simple UDP proxy/pipe 0.2
    now it uses the select() instead of the 2 threads, I don't know if this solution is faster but the code now is very short and more readable
  • 25 Feb 2005 Fake_players_bug: Ca3De Fake Players DoS 0.1
  • 25 Feb 2005 Fake_players_bug: Scrapland invisible Fake Players DoS 0.1
  • 25 Feb 2005 Research-Others: Moved the stuff about Punkbuster in the Others section
  • 24 Feb 2005 Research-Gamers_trust_us: GSPlayers 0.1
    a simple but interesting tool to search all the users that have a Gamespy account through their nickname, email, first/last name or ICQ UIN, then finds also all the people in the buddy list of a specific user and what online users have a specific game installed
  • 24 Feb 2005 Advisories: In-game cl_guid crash in Soldier of Fortune II 1.03
    Released also a work-around only for the version 1.03 gold for Windows
  • 24 Feb 2005 Fake_players_bug: Updated the dp8games package adding some games like No brakes 4x4 racing, Freelancer and Giants: Citizen Kabuto
  • 23 Feb 2005 Research-Unreal: Unreal Tournament 2004 alternative network project 0.2
    support for the new 3355 patch (naturally ever both Win32 and Linux)
  • 22 Feb 2005 Patches: Added the unofficial infostring crash fix for the Windows versions of Call of Duty and United Offensive
  • 19 Feb 2005 Papers-All Seeing Eye: All Seeing Eye UDP packets decoding/encoding algorithm 0.1
    the algorithm used to decode and encode the UDP packets sent or received from the various ASE servers
  • 19 Feb 2005 Papers-All Seeing Eye: ASE UDP packets decoder 0.1
    some lines of code for decoding any UDP packet that ASE sends or receives from the scanners, the tracker and the other servers
  • 19 Feb 2005 Papers-All Seeing Eye: ASE UDP tracker packet sender 0.1
    simple tool (more like an example) to emulate the method used by ASE to join and leave tracker.udpsoft.com:27246
  • 18 Feb 2005 Advisories: Multiple vulnerabilities in TrackerCam 5.12
  • 18 Feb 2005 Advisories: Buffer-overflow in Bontago 1.1
    released only on this website
  • 18 Feb 2005 Advisories: Directory traversal in Xinkaa web station 1.0.3
    released only on this website
  • 17 Feb 2005 Research: Steamlist 0.1
    simple servers browser that uses the Steam master server. Supports also the option to execute specific programs for each IP
  • 17 Feb 2005 Research: Qtracklist 0.1
    simple servers browser that uses the Qtracker master server. Supports also the option to execute specific programs for each IP. Sometimes check this location for possible updated qtracklist.cfg
  • 17 Feb 2005 Patches: Quake 3 engine infostring crash universal fix 0.1.1
    reduced the amount of handled bytes to 512. This should definitely fix the problem also on different PC and configurations because an user reported me that with 767 bytes his server still crashed and now with 512 works perfectly.
    If you have applied the previous 0.1 version and your server is not vulnerable to the q3infoboom attack, you do not need this one.
    A bad news (and an update of my advisory) is that the Windows versions of Call of Duty 1.5b and 1.51b ARE vulnerable while the Linux versions NOT as I already reported, I don't know if I will create a work-around for this game too but stay tuned
  • 17 Feb 2005 Fake_players_bug: Ventrilo Fake Players DoS 0.1
  • 15 Feb 2005 Patches: Quake 3 engine infostring crash universal fix
    added another pattern (for Elite Force I) to the Linux patcher raising its version (only that for Linux) to 0.1a
    Also if this workaround works perfectly, I remember that if someone knows a better way to fix the bug please contact me
  • 13 Feb 2005 Proof-of-concepts: Quake 3 engine infostring crash/shutdown scanner 0.1.1
    added retransmission of packets for 3 times if timeout
  • 13 Feb 2005 Patches: Quake 3 engine infostring crash universal fix
    added also the patcher for the Linux servers (do you thought I forgot Linux? naaa) and a text file with some explanations.
    The version number of the patcher (0.1) doesn't change to avoid confusion
  • 12 Feb 2005 Patches: Quake 3 engine infostring crash universal fix 0.1
    a patcher for almost any game that use the Quake 3 engine
  • 12 Feb 2005 Advisories: Infostring crash and shutdown in the Quake 3 engine
  • 11 Feb 2005 Fake_players_bug: Painkiller (LAN) infinite Fake Players DoS 0.2.1
    added support of version 1.00 too, so now any existent version is supported
  • 10 Feb 2005 Fake_players_bug: Armagetron / Armagetron Advanced Fake Player DoS 0.1
  • 10 Feb 2005 Advisories: Crashes and socket unreachable in Armagetron Advanced 0.2.7.0
  • 09 Feb 2005 MyToolz: Lame Patcher 0.3
    the main news is that it now works also on non-Win32 systems using the console, then I have optimized and adjusted the code as usual
  • 08 Feb 2005 Research-Others: Rome Total War sounds extractor 0.1.1
    corrected an incredibly stupid error, where the program doesn't find the .dat file if you specify an output folder different than the current... blah
  • 08 Feb 2005 Password_recovery: Soldier of Fortune 2 violence password decoder 0.1
  • 08 Feb 2005 Advisories: Integer overflow and arbitrary files deletion in RealArcade 1.2.0.994
  • 08 Feb 2005 Fake_players_bug: Teamspeak Fake Players DoS 0.1.1
    added only an "sd = 0;" useful only when the socket times out
  • 08 Feb 2005 Research-Gamers_trust_us: Added the DLL of Gsmsalg 0.2.1 since it can be still useful to someone
  • 07 Feb 2005 Proof-of-concepts: Updated the proof-of-concept for the DivX Player 2.6 bug, I have simply added other 3 ..\ to be sure that folder\divxplayerbug.txt is created just in the root directory.
    In fact my previous PoC created the stuff in C:\Documents and Settings (if used on Windows XP) so if you have used it and doubt about my advisory, search the file divxplayerbug.txt in c:\ and you will find it or simply try this new PoC.
  • 02 Feb 2005 Fake_players_bug: Painkiller (LAN) infinite Fake Players DoS 0.2
    now supports any version from 1.15 to the latest 1.61 and I have added also many optimizations
  • 02 Feb 2005 Advisories: Limited buffer-overflow in Painkiller 1.35
  • 30 Jan 2005 Advisories: Broadcast crash in Xpand Rally 1.0.0.0
  • 24 Jan 2005 Advisories: Local buffer-overflow in W32Dasm 8.93
  • 23 Jan 2005 Password_recovery: The Universal (Galaxy) password decoder 0.1
  • 22 Jan 2005 Fake_players_bug: nFusion engine Fake players DoS 0.1
    works versus Line of Sight Vietnam, Deadly Dozen 2 Pacific Theater and other games that use the same engine
  • 22 Jan 2005 Fake_players_bug: Removed the Line of Sight Vietnam Fake Players DoS because obsolete
  • 22 Jan 2005 Fake_players_bug: Ghost Recon engine Fake players DoS 0.3
    added the ID scanning feature to work versus any game based on the Ghost Recon engine, solved some bugs, added a cool handlig of kicked players and more
  • 22 Jan 2005 Research-Others: JMeetREC 0.1
    this tool can be used to record a webcam video (frames) on JMeeting, it is easy to use and have useful features.
    Read the text file inside. Does NOT need an account.
  • 22 Jan 2005 Research-Others: JMeetLIST 0.1
    nice tool to retrieve the current list of webcams on JMeeting using a filter and to catch a screenshot from them.
    Does NOT need an account.
  • 21 Jan 2005 Advisories: Arbitrary files overwriting through skins in DivX Player 2.6
  • 19 Jan 2005 Password_recovery: Serv-U admin servers passwords decoder 0.1.1
    argh the tool didn't work enough
  • 16 Jan 2005 Advisories: Socket termination is Halocon 2.0.0.81
    released only on this website
  • 16 Jan 2005 MyToolz: PackZip 0.1
    a nice tool to create raw zipped files or inject zip data in any file choosing all the possible options available in the zlib library (compression level, windowBits and strategy)
  • 16 Jan 2005 Password_recovery: ArGoSoft Mail Server password decoder 0.2
    support for both 1.5 and 1.8 versions (the 1.8 decoding was already available in the old source code but wasn't activated)
  • 13 Jan 2005 Advisories: Server crash in Breed patch #1
  • 09 Jan 2005 Fake_players_bug: Tread Marks Fake Players DoS 0.1
  • 09 Jan 2005 Fake_players_bug: Soldat spoofed (and unbannable) Fake Players DoS 0.1
    for Unix only, sends continuous join packets from different source IP and ports so the server cannot avoid the attack
  • 09 Jan 2005 Fake_players_bug: Soldat Fake Players DoS 0.1
    tested versus the 1.2.1 version and works also versus servers protected by password without knowing the keyword
  • 08 Jan 2005 Fake_players_bug: Gotcha Fake Players DoS 0.1
  • 08 Jan 2005 Fake_players_bug: Hot Wheels Stunt Track Challenge Fake Players DoS 0.1
  • 07 Jan 2005 Fake_players_bug: Painkiller (LAN) infinite fake players bug 0.1
  • 07 Jan 2005 Fake_players_bug: Savage Fake Players DoS 0.1
  • 06 Jan 2005 Advisories: Socket unreachable in Amp II engine
  • 06 Jan 2005 Research-Unreal: Unreal Tournament 2004 alternative network project 0.1
    now this great project is available also for Unreal Tournament 2004 v3339
  • 05 Jan 2005 MyToolz: Offset file unzipper 0.2.2
    added 2 new options for a complete scanning and a data dumper (dumps data instead of unzipping it) and then I have added also a quiet option and more details at runtime like the size of the zipped and unzipped data.
  • 04 Jan 2005 Advisories: Socket termination, format string and XSS in Soldner Secret Wars 30830
  • 03 Jan 2005 Proof-of-concepts: Terminator 3 <= 1.0 broadcast client buffer-overflow 0.1.2
    setted the version 850 (T3 1.0) as default, nothing more
  • 02 Jan 2005 Patches: Soldier of Fortune II test demo (1.02t) crash fix 0.1
  • 02 Jan 2005 Fake_players_bug: Toca Race Driver 1 Fake and unkickable players DoS 0.3.1
    loop option, password fix and nickname customization
  • 02 Jan 2005 Proof-of-concepts: Toca Race Driver 1 multiple DoS 0.1.1
    added a cool option (-l) that checks the server until there is a race in progress and I have fixed the password (the packet with the password wasn't checksummed so it was ignored by the server)
  • 02 Jan 2005 Fake_players_bug: Quake 2 engine Fake players DoS 0.2
    new version partially rewritten
  • 01 Jan 2005 Uhmmm there are no updates from long time.
    Oh no no, I have not worked on new stuff, I have not been busy and I have not been in holiday (I'm atheist) but simply I was very tired and bored of bugs and researches.
    However tomorrow and in the next days I will try to re-take my usual old rithm so stay tuned!
  • 18 Dec 2004 The mail server is newly up! If you have sent me a mail in the last 3 or 4 days, please resend
  • 16 Dec 2004 The mail server is down from half of the 14th December and is still down. So if you have sent me a mail I have not received it and if you want to send it WAIT!
    I will write here when the server will be newly up so you can send or resend your mails, but for the moment I'm unreacheable.
  • 13 Dec 2004 Patches: I have written a work-around for the game Codename Eagle.
    Although this game is dated 1999 it is still used online everyday
  • 13 Dec 2004 Advisories: Socket unreacheable in the Lithtech engine (new protocol)
    Contract Jack 1.1, No one lives forever 2 1.3 and Tron 2.0 1.042
    Released also an unofficial fix
  • 11 Dec 2004 Advisories: Socket unreacheable in Codename Eagle 1.42: this advisory has been released only on my website because this game is a bit old (end of 1999) but the bug is interesting so take a look to it
  • 10 Dec 2004 Fake_players_bug: Far Cry Fake Players DoS 0.1: very very simple tool, doesn't support servers protected by password
  • 10 Dec 2004 Advisories: In-game buffer-overflow in the Gamespy cd-key validation SDK
  • 10 Dec 2004 MyToolz: Web passwords and links checker 0.1: nice tool to check all the URLs in an input text file, scanning them sequentially. Its primary purpose is to check if the username and password for a website are valids but can also check if pages exist or not.
    Read the text file inside
  • 08 Dec 2004 Fake_players_bug: Codename Eagle Fake Players DoS 0.1
  • 08 Dec 2004 Fake_players_bug: Il2-Sturmovik Fake Players DoS 0.1: works versus any Il2 game like Forgotten Battles and Pacific Fighters and fills also servers protected by password without knowing the keyword
  • 08 Dec 2004 Research->Gslist: Add-on list for Gslist: added Midnight Club 2
    I continue to invite people to submit other games!
  • 07 Dec 2004 Advisories: Broadcast client crash in Battlefield 1942 1.6.19 and Vietnam 1.2
  • 05 Dec 2004 Fake_players_bug: Soldner LAN Fake Players DoS 0.1: doesn't work versus online servers
  • 03 Dec 2004 Maintenance: since the alias aluigi@altervista.org gives problems to a lot of users (like some mails are blocked/rejected and other reasons) I have decided to definitely remove it from all my stuff and I have also made the following small changes:
    - the source code of the old tools has been compacted removing all the useless line feeds
    - all the tools that use the MD5 algorithm now use the MD5 function written by Christophe Devine
    - the Win32 executables have been recompiled using the latest MinGW release (useful for old tools)
    The version numbers of the tools have not been changed because they are not real code changes (in fact nothing changes for the users)
  • 02 Dec 2004 Advisories: Multiple vulnerabilities in Kreed 1.05
  • 02 Dec 2004 Patches: removed the Battlefield 1942 1.6.19 fix I wrote almost 10 months ago (the gshboom attack) because today has been released an official patch from EA that fixes this problem too: Link
  • 01 Dec 2004 Fake_players_bug: Neverwinter Nights special Fake Players DoS 0.1: this tool is very interesting and contains a special mode (-s) able to fill internet servers without using cd-keys and servers protected by password without knowing the keyword
  • 01 Dec 2004 Misc: MoH Fill/Crash: a Windows front-end for mohaabof and mohaafill written by a guy who has decided to stay anonymous
  • 30 Nov 2004 Advisories: Endless loops in the http-server and pna-proxy modules of Jana server 2.4.4
  • 29 Nov 2004 Advisories: Buffer-overflow in Orbz 2.10
  • 28 Nov 2004 Advisories: Players overflow in Serious engine UDP
  • 28 Nov 2004 Fake_players_bug: Serious engine Fake Players DoS 0.3: completely rewritten
  • 28 Nov 2004 Proof-of-concepts: removed the advisory and the proof-of-concept for Alpha Black Zero relased a couple of months ago, it has been substituited by the players overflow in the Serious engine released today
  • 28 Nov 2004 Advisories: Crash in Remote admin for Star wars battlefront (swbfraw32): this advisories is released only on my website since this tool doesn't seem to have an official homepage and I don't know if is still supported
  • 28 Nov 2004 Fake_players_bug: removed the tools for UT2003 and Tribes 2 because too old and no longer supported
  • 28 Nov 2004 Research->Unreal: removed all the stuff about the "so called" Unreal encryption since it was useless and wrong, in fact Unreal uses bits operations (like FBitReader, SerializeBits and so on)
  • 26 Nov 2004 Research->Gslist: Add-on list for Gslist: added nwnlinux (Neverwinter Nights and any of its additions running on Linux), thanx to Michael
  • 25 Nov 2004 Research->Gamers_trust_us: Added Armies of Exigo to the list of games that support the hidden Gamespy queries
  • 24 Nov 2004 Advisories: Limited buffer-overflow and arbitrary memory access in Star Wars Battlefront 1.11
  • 23 Nov 2004 Fake_players_bug: Lithtech engine Fake Players DoS 0.1: supports Alien vs Predator 2, Blood 2, Global Operations, Kiss Psycho Circus, No one lives forever, Purge Jihad, Sanity and Shogo
  • 23 Nov 2004 Advisories: Broadcast memory corruption in Soldier of Fortune II 1.03
    Released also an unofficial fix in the Patches section
  • 22 Nov 2004 Research->Gamers_trust_us: Partial list of games that use the Gamespy cd-key SDK: this text file contains a partial list of games that use the Gamespy cd-key SDK and support the hidden queries. It will be periodically updated when I find new games (so if you wanna help me, report the games not listed here)
  • 22 Nov 2004 Research->Gamers_trust_us: GsHinfo 0.1.2: nothing really new, but I have removed the long text visible at runtime and added the \crash query
  • 22 Nov 2004 Advisories: Broadcast client crash in Halo 1.05
  • 22 Nov 2004 Fake_players_bug: Star Wars Battlefront Fake Players DoS and Tester 0.3.1: corrected the version scanning bug caused by the previous version of rwbits.h and added an option for specifying directly the server version to use (like 37 for the Playstation 2 servers and avoiding all the scanning from 0 until 37)
  • 22 Nov 2004 MyToolz: Read/Write bits to buffer 0.1.1: added an instruction in write_bits() to avoid to clear the buffer everytime and so is also possible to modify the pre-existent bits without merging old and new data
  • 22 Nov 2004 Fake_players_bug: removed the fake players tools for Shogo, Nolf2 and Contract Jack because worked only versus the demo servers
  • 21 Nov 2004 Fake_players_bug: Kreed Fake Players DoS 0.1
  • 21 Nov 2004 Research->Others: Halo PC music extractor and concatenator 0.2: now it avoids the foley files (containing only sounds) and creates less but more complete files
  • 20 Nov 2004 Research->Others: Halo PC music extractor and concatenator 0.1: a simple tool for the fans of the music of the game Halo. It extracts all the pieces of music files from sounds.map and concatenate them
  • 19 Nov 2004 Proof-of-concepts: Call of Duty <= 1.4 server/client shutdown 0.1.1: added a better server check, nothing more
  • 15 Nov 2004 Research->Others: Rome Total War sounds extractor 0.1: simple tool to extract any sound and moreover music from the IDX files in the Data\Sounds folder of the game Rome Total War
  • 15 Nov 2004 Advisories: Multiple vulnerabilities in Hired Team: Trial (Shine engine)
  • 14 Nov 2004 Advisories: Format string bug in Army Men RTS
  • 13 Nov 2004 Fake_players_bug: Gore Fake Players DoS 0.1
  • 13 Nov 2004 Fake_players_bug: Codename: Outbreak (Venom) Invisible Fake Players DoS 0.1
  • 12 Nov 2004 Research->Gslist: Add-on list for Gslist: collection of applications/games not available in Gslist (to use with the -y option)
    I want to update it periodically so any help is welcome
  • 12 Nov 2004 Advisories: Crash in Secure Network Messenger 1.4.2
  • 11 Nov 2004 MyToolz: Sendfile and Recvfile 0.1.1: this new version affects only Recvfile that now has 2 command-line options, one to enable the security checks (disabled by default) and another to bind a specific interface's IP address
  • 10 Nov 2004 Fake_players_bug: dp8games updated: added Steel Tide, Operation Blockade, O.R.B, Vietcong and Hidden " Dangerous 2
  • 08 Nov 2004 MyToolz->Win: Winerrmsg 0.1.1
  • 07 Nov 2004 MyToolz->Linux: Windows 9x/NT4(old) TCP connections spoofer 0.2: added some options like the infinite loops to fill all the sockets and optimized the code
  • 06 Nov 2004 Advisories: Resources consumption in 602 Lan Suite 2004.0.04.0909
  • 05 Nov 2004 Fake_players_bug: Star Wars Battlefront Fake Players DoS and Tester 0.3: this version is completely new and practically covers any available bit field in the query and join mechanism used by the game (so any bug in the protocol of the previous version has been fully fixed). Now it automatically works versus any server version (so 1.1 too) and I have also added many testing functions.
  • 05 Nov 2004 MyToolz: Read/Write bits to buffer 0.1: 2 functions written by me to read and write bits (max 32) into buffers, useful for bit packing
  • 05 Nov 2004 Advisories: In-game format string bug in the Lithtech engine
    Alien vs Predator 2, Blood 2, Contract Jack, Global Operations, Kiss Psycho Circus, Legends of Might and Magic, No one lives forever, No one lives forever 2, Purge Jihad, Sanity, Shogo, Tron 2.0 and others...
  • 04 Nov 2004 Research->Ubi.com: UBI.COM gschat IRC proxy 0.2: first of all the garbage problem has not been fixed, but I have tried to adjust it a bit to avoid the freezes that happened in the previous version.
    The real updates in this new version are the usage of threads so multiple IRC clients can connect to the proxy at the same time and has been added 2 command-line options to enable the log file (now disabled by default) and to bind a specific local interface (default is 127.0.0.1).
    In any case if somebody has a solution or informations about the garbage problem, please let me know.
    Then if you use this tool I would be very happy to know if it is useful or also if exist other alternatives.
  • 03 Nov 2004 MyToolz: Sendfile and Recvfile 0.1: after many time I have finally decided to release these 2 simple but very useful tools written for myself.
    They are 2 tools for transferring files and entire directories between computers in the same LAN or, however, between trusted computers. They are multiplatform, multi-thread, easy to use and use real-time MD5 comparison to verify the integrity of the received files.
    Read the text file inside.
  • 02 Nov 2004 Fake_players_bug: Secret Service In harm's Way Fake Players DoS 0.1
  • 01 Nov 2004 Fake_players_bug: Hired Team (Shine engine) Fake Players DoS 0.1
  • 01 Nov 2004 Fake_players_bug: Purge Jihad Fake Players DoS 0.1
  • 31 Oct 2004 TestingToolz: One file only web server 0.1: a multi-thread webserver that sends ever and only the file specified by the user
  • 30 Oct 2004 TestingToolz: TFTP server tester 0.1: a nice tool that should be able to test any possible bug affecting the tftp servers and at the same time can be used also as a client with a lot of options
  • 30 Oct 2004 Advisories: Multiple vulnerabilities in Allied Telesyn 1.8 and Chesapeake 1.0 TFTP servers.
    These 2 advisories have been released only on my website because they are referred to old applications and the first is primarly a tool created to be used with the vendor's products
  • 27 Oct 2004 Fake_players_bug: dp8games package: Besieger, Bandits, New World Order, Wings of War, Pro Bass Fishing 2003, Deer Hunter 2004, Monopoly Tycoon and Deer Hunter 2005
  • 27 Oct 2004 Advisories: Crashs in Master of Orion III 1.2.5
  • 26 Oct 2004 MyMusic: Dirt Melody: a nice and short track with a good melody made some months ago
  • 25 Oct 2004 MyToolz: MyCRC 0.2: this new version implements the MD5 and the SHA1 code written by Christophe Devine and then I have added support to sum16, sum32, bsd16 and fcs16.
  • 24 Oct 2004 Fake_players_bug: Star Wars Battlefront Fake Players DoS 0.2: added password support and nickname customization
  • 24 Oct 2004 Research->Others: StarWars Battlefront CRC32 0.1: this is the modified CRC32 algorithm used by this game for some operations like password authentication
  • 21 Oct 2004 Amiga_ADF: my Amiga files are newly online. Thanx a lot to Tony "Shield" Buckingham for the space!
  • 20 Oct 2004 Advisories: Buffer-overflow in Age of Sail II 1.04.151
  • 19 Oct 2004 Fake_players_bug: Star Wars Battlefront Fake Players DoS 0.1: only one byte is enough to create new players with empty names, a more complete version will probably released in future
  • 19 Oct 2004 Advisories: Broadcast crash in Vypress Tonecast 1.3
  • 19 Oct 2004 Password_recovery: Winproxy administrator password decoder 0.1.1: now the tool doesn't exit if the username is not available
  • 19 Oct 2004 Fake_players_bug: dp8games package updated: added Il rosso e il nero, Perimeter, Sacrifice, Dungeon Siege, Homeworld 2 and Locomotion
  • 15 Oct 2004 Advisories: Directory traversal in Yak! 2.1.2
  • 14 Oct 2004 Fake_players_bug: Doom 3 engine invisible fake players DoS 0.1.1: added support for #str messages (seem used in the Linux version)
  • 14 Oct 2004 Fake_players_bug: DirectPlay 8 Fake Players DoS 0.1: this is a fake players tool working versus any game that use directplay 8. It uses some files (called join_files) needed for each specific game. Feel free to send me your join_files for other games.
  • 14 Oct 2004 Fake_players_bug: Teamspeak Fake Players DoS 0.1: a nice fake players tool for this known voice chat program
  • 13 Oct 2004 Advisories: Buffer-overflow in ShixxNOTE 6.net
  • 11 Oct 2004 Advisories: I have written a short text to explain a bit better what I mean with "broadcast client" bug in games (an italian version written some months ago is available in the Articles section), so I hope to have solved some doubts about this strange term I use
  • 10 Oct 2004 Research->Gslist: Gslist 0.6.1b: another micro fix. When you use the update function, now Gslist checks the availability of the file gslist.cfg instead of full.cfg
  • 10 Oct 2004 MyToolz->Win: Registry values patterns changer 0.1: this nice tool lets you to change all the occurrencies of a specific pattern into any value of the Windows registry.
    Read the text file inside
  • 10 Oct 2004 Fake_players_bug: Master of Orion III Fake Players DoS 0.1
  • 08 Oct 2004 Advisories: Limited \secure\ buffer-overflow in some old Monolith games
    Released also some work-arounds
  • 07 Oct 2004 Advisories: Server crash in Flash Messaging 5.2.0g
  • 06 Oct 2004 Advisories: Directory traversal in Tridcomm 1.3
  • 03 Oct 2004 Research->Gamers_trust_us: Gslist 0.6.1a: a micro fix for the -i and -I options to avoid the premature truncation of the messages
  • 02 Oct 2004 Advisories: In-game format string in Judge Dredd vs. Death 1.01
  • 02 Oct 2004 Fake_players_bug: IronStorm fake players DoS 0.1
  • 02 Oct 2004 Research->Ubi.com: Step by step to retrieve channels in Ubi.com 0.1: a short step by step enough useful to know the IRC channels to join
  • 02 Oct 2004 Advisories: I have never understood how to determine the Risk value for a bug (must it based on the popularity of the program, on the specific bug, on the possible damage or what?) so I have removed this field from all my advisories to avoid this doubt.
  • 01 Oct 2004 Advisories: Broadcast buffer-overflow in Vypress Messenger 3.5.1
  • 29 Sep 2004 Advisories: Crash in Alpha Black Zero 1.04
  • 28 Sep 2004 Advisories: Code execution in Icecast 2.0.1
  • 27 Sep 2004 Advisories: Broadcast crash in Chatman 1.5.1 RC1
  • 24 Sep 2004 Proof-of-concepts: Buffer-overflow in Zinf 2.2.1 for Windows through PLS file
  • 24 Sep 2004 Fake_players_bug: Doom 3 engine invisible fake players DoS 0.1
  • 23 Sep 2004 Advisories: Multiple vulnerabilities in ActivePost Standard 3.1
  • 23 Sep 2004 Password_recovery: BF1942 Server and Remote Manager passwords decoder 0.1: decodes any server and client password and sniffed data too
  • 23 Sep 2004 Research: Gslist 0.6.1: 2 new output options for the usage in XQF, added support to the HOME directory in Unix (extremely useful) and added a Makefile.
    Thanx a lot to Ludwig Nussel for these updates
  • 21 Sep 2004 Advisories: Broadcast crash in Popmessenger 1.60 (before 20 Sep 2004)
  • 19 Sep 2004 Advisories: Crash in Lords of the Realm III 1.01
  • 18 Sep 2004 Patches: Call of Duty United Offensive 1.41 shutdown fix 0.1: this is an unofficial fix for the already known shutdown bug that exists in this expansion pack too.
    Thax a lot to Andy Rafter (dj.gandy@ntlworld.com) to have reported me this info
  • 18 Sep 2004 Password_recovery: Vypress Auvis mail password decoder 0.1: decodes the mail password stored in the registry
  • 16 Sep 2004 Advisories: Freeze in Pigeon Server 3.02.0143
  • 15 Sep 2004 Research->Others: Yak! username and password calculator 0.1: this tool is needed to retrieve the username and the password to access the Yak! built-in FTP server (that used to transfer files) using the client's IP address
  • 14 Sep 2004 Password_recovery: ActivePost Standard user and password decoder 0.1: decodes the username and the password stored in the registry
  • 13 Sep 2004 Password_recovery: Winproxy administrator password decoder 0.1: decodes the administrator password stored in the registry
  • 10 Sep 2004 Password_recovery: Lords of the Realm III account password decoder 0.1: decodes the Gamespy account password stored in gamespyinfo.dat
  • 09 Sep 2004 Advisories: Off-by-one bug in Halo 1.04
  • 08 Sep 2004 Password_recovery: Trillian passwords decoder 0.1: decodes any password inside the ini files of this program
  • 05 Sep 2004 Advisories: Broadcast shutdown in Call of Duty 1.4
    Released also some unofficial patches
  • 29 Aug 2004 MyToolz: Offset file unzipper 0.2.1: some optimizations, some bug-fixes and a new option to reduce false positives
  • 28 Aug 2004 MyToolz: Offset file unzipper 0.2: new version containing more verbosity and moreover 2 new options. Now is possible to extract all the possible zip data contained in a file and is possible to set the windowBits value used to choose a different compression level (rarely needed)
  • 27 Aug 2004 Password_recovery: PC Anywhere configuration files decoder 0.1: a simple files decoder to be able to watch the informations (and the passwords) inside them
  • 26 Aug 2004 Advisories: Broadcast forced exit in Ground Control II 1.0.0.7
    Released also some unofficial patches
  • 26 Aug 2004 Password_recovery: Windows 9x screen saver password decoder 0.1: shows the stored screen saver password in Windows 9x
  • 24 Aug 2004 Advisories: Limited buffer overflow in Painkiller 1.31
  • 23 Aug 2004 Research->Cogs Gamearena: COGS Gamearena IRC proxy 0.1: a proxy server that lets you to use your preferred IRC client to join the IRC server of COGS
    Read the text file inside
  • 23 Aug 2004 Research->Cogs Gamearena: Opened a new section
  • 23 Aug 2004 Removed the research section for Tribes 1 and 2. The only 2 tools available in it have been moved to Research->Others
  • 23 Aug 2004 Removed the Key Research section because completely useless (I think) and moreover never updated
  • 22 Aug 2004 Research->Others: COGS Gamearena challenge algorithm 0.1.2: a bugfix, the order used to check for duplicated chars in the response was wrong so the fix has been simply to reverse it
  • 22 Aug 2004 Research->Unreal: UMOD extractor 0.3.3: updated with the index type numbers bugfix
  • 22 Aug 2004 Research->Unreal: UMOD file format 0.2.1: an important bugfix about 2 type of numbers. In fact the total files number and the filename size are NOT one byte but are an index type number (so with a variable length between 1 and 5 bytes).
    A huge thanx go to Balver to have reported me this error
  • 19 Aug 2004 Password_recovery: Webdrive passwords decoder 0.1: retrieves all the usernames, servers and passwords (also those of the proxies) from the registry
  • 18 Aug 2004 Research->Gamers_trust_us: Peerchat IP decoder/encoder 0.1: tool ables to decode or encode the Peerchat IP addresses (visible with the /whois command)
  • 18 Aug 2004 Research->Gamers_trust_us: Peerchat IP encoding/decoding algorithm 0.1: the algorithm needed to decode or encode the Peerchat IP addresses
  • 18 Aug 2004 Password_recovery: ArGoSoft Mail Server password decoder 0.1: decodes (simple base64) the password in the userdata.rec files
  • 18 Aug 2004 Password_recovery: Quick 'n Easy FTP Server passwords decoder 0.1: decodes all the passwords in the file users.xml
  • 18 Aug 2004 Password_recovery: ArGoSoft FTP Server passwords decoder 0.1: decodes all the passwords in the file users.dat
  • 17 Aug 2004 Password_recovery: Ipswitch Ws FTP client passwords decoder 0.1: decodes all the INI files in the Sites folder of the Ws FTP client program
  • 17 Aug 2004 Password_recovery: IpSwitch Notification server passwords decoder 0.1: decodes all the password of any available user in the registry
  • 17 Aug 2004 Password_recovery: IpSwitch Instant Messaging server passwords decoder 0.1: decodes all the password of any available account in the registry
  • 17 Aug 2004 Password_recovery: IpSwitch Instant Messaging client last password decoder 0.1: decodes the last password stored in the registry
  • 15 Aug 2004 Password_recovery: TotalSims games real-time login password decrypter 0.1: this program is a sniffer that is able to decrypt in real-time the data containing the username and password sent to the login server of the TotalSims games.
    Some of the games that use this login method are Armored Assault, Dawn of Aces, Warbirds and many others.
    Released also an offline version to use with dumped packets
  • 14 Aug 2004 Research->Gamers_trust_us: GS SDK challenge-response algorithm 0.1: this is the file previously called soa_chall_algo.h (for Soldier of Anarchy). The name has been changed because the algorithm is not used only by SOA but also by some other games that use the Gamespy SDK like Halo. A third function's argument has been added for the customization of the key (previously called clsid)
  • 14 Aug 2004 Research->Gamers_trust_us: Gsmsalg 0.3: the code has been rewritten with the following improvements: strings are no longer limited to 6 bytes (so it can be used also with the Gamespy Firewall probe packet and others situations that use this algorithm), the source code is more easy to read so is more easy to ports the function to other programming languages and now the calculated response needs an external output buffer (due to the removing of the 6 chars limit).
    Also the DLL version has been updated with the new code.
  • 13 Aug 2004 Password_recovery: Station Launchpad profile and packet password decoder 0.1: decodes the passwords stored in the local account files or that included in the login UDP packet sent to sdlaunchpad1.station.sony.com
  • 12 Aug 2004 MyToolz: Offset file unzipper 0.1: a simple but extremely useful tool to unpack the zip data contained in any type of file. You must specify the offset where the zip data starts or you can use the useful search option that is able to find any possible zip data contained into the provided file
  • 12 Aug 2004 Password_recovery: XIII profiles unpacker for Ubi.com account retrieving 0.1: unzips the .pro files in the Save folder of the game containing the Ubi.com account informations, if stored (tested only with the demo, so contact me if works also with the retail profiles)
  • 08 Aug 2004 Research->Others: Playgate decoding/encoding algorithm 0.1: the algorithm used to decode and encode the data stream in the program Playgate
  • 04 Aug 2004 Research->Unreal: Very very quick and practical explanation to the UnrealTournament 2003 heartbeat method 0.1.2: I have only added what mean the 2 checksums sent by the client to the server in the first data block, nothing more
  • 04 Aug 2004 Removed my Medal of Honor work-around for Linux because some days ago Icculus has released new builts that fix the buffer-overflow: check here
  • 04 Aug 2004 Password_recovery: Uplink users and data.dat files decoder 0.1: decodes the users and data.dat files of the game Uplink
  • 03 Aug 2004 Research->Others: Speed Challenge files decoder 0.1: decodes the encoded files of the game Speed Challenge (like material.cfg for example), then they can be modified and used without the need to re-encode them
  • 03 Aug 2004 Fake_players_bug: Global Operations Fake Players DoS 0.1
  • 03 Aug 2004 Password_recovery: For major comprehension (moreover for me) all the files in this section that finished with "dec" (like gsadec.zip, ubicomdec.zip and so on) now finish with "pwd" (like gsapwd.zip)
    This is needed to avoid confusion with possible future tools and code in the Research section that could have the same names
  • 03 Aug 2004 Research->Others: Soldier of Anarchy challenge-response algorithm 0.1: the challenge-response algorithm used by the game Soldier of Anarchy to let players to join the game servers
  • 02 Aug 2004 Research->Others: Massive Assault Network files decoder/encoder 0.1: an useful tool to decode and re-encode the encoded files used by the game Massive Assault Network
  • 31 Jul 2004 Password_recovery: Massive Assault Network password decoder 0.1: decodes the profile2.bin file containing the password and other account informations
  • 31 Jul 2004 Research->Others: Gotcha! files unpacker 0.1: tool to extract the compressed files used by the game Gotcha!
  • 31 Jul 2004 Password_recovery: Ventrilo password decoder 0.1: decodes all the stored password in ventrilo2.ini
  • 30 Jul 2004 Research->Others: Empires Dawn of the modern World: packets encoding/decoding algorithm 0.1: the algorithm needed for the encoding and the decoding of the packets exchanged by this strategic game
  • 29 Jul 2004 Password_recovery: Becky! Internet mail passwords decoder 0.1.1: small bugfixes
  • 27 Jul 2004 Fake_players_bug: Line of Sight Vietnam Fake players DoS 0.1
  • 27 Jul 2004 Password_recovery: .cvspass decoder 0.1: a simple file and direct password decoder for .cvspass
  • 26 Jul 2004 Research->Gamers_trust_us: GS peerchat proxy decrypter 0.2: now supports the new Gslist games file (gslist.cfg) so has been also solved the possible problem of wrong gamekeys and then the decoded output is now only in the text file (fastest and more useful solution)
  • 25 Jul 2004 Proof-of-concepts: Fixed the checking method used by my HLboom proof-of-concepts because wasn't able to know if the remote server really crashed or not
  • 22 Jul 2004 Research->Others: Ventrilo proxy data decrypter 0.1.1 and data manipulation example 0.1.1: a micro fix for these 2 proxy servers for real-time data decryption. The fix (regarding the READSOCK define) is needed for a correct reading of the data stream because rarely (really rarely) happened that the data read from the socket was minor than that waited by the proxy
    Thanx a lot to my friend G3gg0 to point me to this problem
  • 21 Jul 2004 Research->Others: Painkiller packet's password encoder/decoder 0.1: the algorithm for the encoding/decoding of the password sent by the client to the server
  • 21 Jul 2004 Research->Others: Lineage II files decoder/encoder 0.2.1: added the 211 file support (that used for some .txt files in the System directory of the game, so almost useless). The only difference between the 211 and the 212 format is the blowfish key that here is a bit different and I didn't test it in the previous version of my tool (yeah sorry)
  • 20 Jul 2004 Patches->Bugfix: Released a temporary work-around for the Linux version of Medal of Honor (until an official patch will be released)
  • 20 Jul 2004 Patches->Bugfix: Substituited the Tomas's fix for Half-Life with a new one made me
  • 18 Jul 2004 Patches->Bugfix: Tomas Janousek has submitted an unofficial fix for the recent Half-Life crash bug (packet split issue). Useful for not-Steam servers
  • 18 Jul 2004 Research->Gamers_trust_us: Gslist 0.6:
    new method that saves the games database, new function for selecting games (-N), added support to the new Gamespy query protocol (-I), created a text file with the details of the options, adjusted the heartbeat option now available also with -B, rewritten the function to run applications and other minimal bugfixes and code optimizations
  • 17 Jul 2004 Advisories: Medal of Honor remote buffer-overflow
  • 17 Jul 2004 Research->Unreal: UMOD extractor 0.3.2: a micro fix, I have substituited a fdopen with a simple fopen because "rarely" this could cause problems (never happened during my tests)
  • 16 Jul 2004 Research->Others: Ventrilo proxy data decrypter 0.1: useful proxy able to decrypt and show in real-time the data exchanged between a Ventrilo client and server
  • 16 Jul 2004 Research->Others: Ventrilo encryption/decryption algorithm 0.1: the algorithm needed to decrypt and encrypt the Ventrilo network stream
  • 15 Jul 2004 Research->Others: COGS Gamearena IRC challenge algorithm 0.1: this function is able to generate the needed CRYP response to send back to the IRC server
  • 15 Jul 2004 Research->Others: COGS Gamearena challenge algorithm 0.1.1: now it returns the lenght of the response
  • 13 Jul 2004 Password_recovery: Time of Defiance password decoder 0.1: decodes the stored password of this online game
  • 13 Jul 2004 Fake_players_bug: Medal of Honor (AA, SH and BT) Fake players DoS 0.2: this new version contains a lot of new options and functions (as the possibility to use player names inserted by you) and moreover it finally supports Spearhead and Breakthrough too (the famous getKey command).
  • 13 Jul 2004 Research->Gamers_trust_us: GS key challenge builder 0.1: function needed to build the authorization string to send to the game servers of the games that use the Gamespy authorization. It is also a practical example of the first part of the relating document
  • 12 Jul 2004 Patches->Bugfix: Medal of Honor buffer-overflow fix 0.1: this is a fix for a bug that I will release within the next days. I have decided to release the fix before the advisory due the critical risk of the vulnerability and to let admins and users to patch themselves in time
  • 12 Jul 2004 Advisories: Remote crash of Half-Life servers and clients (versions before the 07 July 2004)
  • 11 Jul 2004 Research->Others: COGS Gamearena challenge algorithm 0.1: the algorithm for the calculation of the challenge response to send to the server
  • 10 Jul 2004 Research->Others: Eve Online stuff extractor 0.1: simple tool for the extraction of the files from the .stuff packages
  • 10 Jul 2004 Research->Others: Teamsound join password algorithm 0.1: the algorithm for the de/encoding of the password stored in the join data
  • 10 Jul 2004 Research->Others: Teamsound data CRC algorithm 0.1: this simple algorithm calculates the 16 bit checksum stored at the end (the last 4 bytes) of each data block of the program Teamsound.
  • 09 Jul 2004 Research->Gamers_trust_us: GS peerchat IRC proxy 0.1: a very useful tool letting you to use your preferred IRC client to join peerchat.gamespy.com.
    Read the text file inside.
  • 08 Jul 2004 Research->Gamers_trust_us: Gs auth 29920 sniff 0.1: a simple sniffer that decodes any TCP connection versus the port 29920 of any host or one specified by the user. An example of game that uses this metod is Ground Control II
  • 06 Jul 2004 Password_recovery: Ozum project password shower and blacklist password decoder 0.1: shows the projects passwords (.env files) and decrypts the Blacklist password in preference.ini
  • 03 Jul 2004 Articles: (italian) In cosa consiste il broadcast exploitation nei videogiochi 0.1: una piccola spiegazione riguardo ad un pericoloso metodo di sfruttamento delle vulnerabilita' nei videogiochi
  • 03 Jul 2004 Research->Ubi.com: People on Ubi.com can be easily banned 0.1: useful if you had problems with temporary bannings
  • 02 Jul 2004 Research->Others: Cyanide GameCenter real-time data decoder 0.1: a sniffer that shows in real-time the network data sent and received by the program Gamecenter of Cyanide
  • 01 Jul 2004 Research->Others: Lineage II files decoder/encoder 0.2: this new version contains a lot of improvements. Support for the blowfish encryption used in the recent file formats 211 and 212, now it asks you if you wanna overwrite the output file if it exists, the encoding lets you to choose the desired file format, the source code is more easy to read and modify and more other things
  • 27 Jun 2004 Research->Gamers_trust_us: Micro fix for the program execution function in Gslist 0.5.3: I have added a ntohs() at line 626 I forgot from the 0.5.2 version (practically #PORT was wrong). This fix doesn't raise the version number of Gslist
  • 27 Jun 2004 Fake_players_bug: Quake 3 engine fake players DoS 0.2.1: this new version is more compatible with the games based on the Quake 3 engine, I have added 2 new options and a better timeout and source ports management
  • 26 Jun 2004 Research->Gamers_trust_us: Gslist 0.5.3: the update function now works on big-endian processors too
  • 26 Jun 2004 Research->Others: Lineage II files decoder/encoder 0.1: this tool lets you to decode and re-encode the files of the MMORPG game Lineage II
  • 23 Jun 2004 Research->Others: Colin McRae Rally 3 bonus cheats calculator 0.1: calculates all the cheat codes referred to your bonus code
  • 23 Jun 2004 Patches->Bugfix: Need for Speed Hot Pursuit 2 client buffer-overflow fix 0.1: 2 unofficial fixes for the client buffer-overflow vulnerability found by me
  • 23 Jun 2004 Patches: Due to the raise of bug fixes I'm creating I have decided to divide this sections in 2 parts, one about security bug fixes and another about the other types of patches
  • 22 Jun 2004 Research->Race Driver: Race Driver bonus cheats calculator 0.1: a quick tool to know your bonus cheat codes
  • 22 Jun 2004 Research->Race Driver: Race Driver 1.20 bad-words enabler 0.1: removed the censorship to the retail game too
  • 19 Jun 2004 Patches: C&C Renegade FDS 1.37 crash attack fix 0.2: complete fix available for the Win32 dedicated server and the 2 Linux executables
  • 18 Jun 2004 Advisories: Code execution in the Unreal Engine through \secure\ packet
  • 18 Jun 2004 Patches: Race Driver rdboom fix 0.1: a simple fix for both the 1.20 retail and demo 1.1 versions of this funny game. It fixes only the server crash bug
  • 18 Jun 2004 Patches: C&C Renegade FDS 1.37 crash attack fix 0.1: a fix for the Win32 dedicated server of this game to protect it versus the UDP scanner crash
  • 18 Jun 2004 Password_recovery: Ubi.com password decoder 0.1: decodes the stored password in the profile files
  • 18 Jun 2004 Research->Punkbuster: Cdkey to Punkbuster GUIDs 0.2: now this tool is able to calculate any type of Punkbuster GUID
  • 18 Jun 2004 Research->Punkbuster: Punkbuster GUIDs MD5 0.2: calculates pb_p_guid, pb_guid and other possible guids for being compatible with almost all the games supporting Punkbuster
    Thanx a lot to Youssef!
  • 18 Jun 2004 Research->Punkbuster: opened a new section about Punkbuster stuff, I hope to fill it in future
  • 15 Jun 2004 Research->Ubi.com: Ubi.com gschat IRC proxy 0.1.2: the so called garbage problem has been completely solved, now all the data exchanged between the IRC client and the server is directly stored into the log file ubichat_irc.log instead of the screen (very very useful).
  • 12 Jun 2004 Research->Others: Speed Challenge encryption/decryption algorithm 0.1: this is the complete algorithm for the decryption and the encryption of the connection data of this nice Ubisoft game
  • 10 Jun 2004 Patches: Ghost Recon grboom fix 0.1: after the requests of some GR users I have decided to retake a look to the Ghost Recon code for trying to create a fix for my grboom crash bug and the result is now available for the 1.4.0.0 and 1.0.0.2 US No-CD version. The fix is very simple so it could be ported also to other executables versions.
  • 08 Jun 2004 Proof-of-concepts: Chat Anywhere <= 2.72a DoS and passive browsers DoS 0.1: a proof-of-concept I wrote a lot of months ago, the bug has been never fixed
  • 08 Jun 2004 Research->Others: 3d Cool Pool packets checksum 0.1: the algorithm for the calculation of the packets checksum of the games 3d Ultra Cool Pool and Maximum Pool
  • 08 Jun 2004 Research->Half-Life: HLDEC and HLENC 0.1.2: finally I have optimized these 2 useful pieces of code able to decode and encode the Half-Life packets
  • 08 Jun 2004 Research->Half-Life: Half-Life packets decoder sniffer 0.1.3: the new version of the sniffer able to the decode the Half-Life packets in real-time, however there are no new features but only some small bugfixes (like the ADSL compatibility) and the usage of the newest functions
  • 08 Jun 2004 MyToolz: ether_hdrlen 0.1: this is a simple function that returns the size of some ethernet types. I have collected the values while playing with Ethereal and is useful when writing ethernet sniffers.
  • 08 Jun 2004 Advisories: Various crashs and fun in Race Driver 1.20
  • 05 Jun 2004 Password: Filezilla password decoder 0.1: password decoder for the opensource client Filezilla
  • 05 Jun 2004 Password: Internet Neighborhood password decoder 0.1: simple command-line password decoder (you must manually get them from the registry)
  • 05 Jun 2004 Password: Imap Notify passwords decoder 0.1: decodes all the passwords stored in the registry
  • 05 Jun 2004 Password: Broker FTP users file decoder 0.1: decodes the file users.dat and shows it to the screen
  • 05 Jun 2004 Password: AutoFTP passwords decoder 0.1: decodes all the servers passwords stored in connect.ini and accounts.ini, drag'n'drop suggested
  • 05 Jun 2004 Password: Poppy passwords decoder 0.1: decodes all the passwords stored in the registry
  • 05 Jun 2004 Password: POP3 Easy password decoder 0.1: simple password decoder
  • 05 Jun 2004 Password: Pocomail passwords decoder 0.1: decodes all the servers passwords stored in Mailpeek.ini and accounts.ini, drag'n'drop suggested
  • 04 Jun 2004 Password: Gekus & Igori Mail Checker passwords decoder 0.1: shows all the informations of the available accounts (in the registry) and naturally decodes their passwords
  • 04 Jun 2004 Password: Mailpeek passwords decoder 0.1: decodes all the servers passwords stored in Mailpeek.ini and config.ini, drag'n'drop suggested
  • 04 Jun 2004 Advisories Colin McRae Rally 04 broadcast clients crash
  • 04 Jun 2004 Research->Gamers_trust_us: Gslist 0.5.2: some improvements for this tool.
    The most important is the filter in the query (thanx to Steve Hartland) so now you can choose a specific country, gamename, part of server name and more.
    Then there are the usual optimizations of the code
  • 04 Jun 2004 Password: Absolute FTP and SecureFX password decoder 0.1
  • 03 Jun 2004 Password: CheckP3 password decoder 0.1: decodes the password of this program
  • 03 Jun 2004 Password: EBox passwords decoder 0.1: decodes all the servers passwords stored in Accounts.ini, drag'n'drop suggested
  • 02 Jun 2004 Password: Becky! Internet mail passwords decoder 0.1: decodes all the servers passwords stored in Mailbox.ini, drag'n'drop suggested
  • 02 Jun 2004 Password: 32BitFtp passwords decoder 0.1: decodes all the servers passwords stored in 32BitFtp.ini, drag'n'drop suggested
  • 02 Jun 2004 Password: YAMC passwords decoder 0.1: decodes all the servers passwords stored in Mail.ini, drag'n'drop suggested
  • 02 Jun 2004 Password: Vivian mail password decoder 0.1: decodes the passwords of a given account stored in Accounts.vdb
  • 02 Jun 2004 Password: Calypso mail mailbox file decoder 0.1: this tool decodes the mailbox files and shows the informations of the first account (if there are other accounts you must manually check them)
  • 01 Jun 2004 Research->Gamers_trust_us: GS login response calculator 0.1: an example program that shows how to build the response string for gpcm.gamespy.com:29900
  • 01 Jun 2004 Password: Serv-U admin servers passwords decoder 0.1: decodes all the servers passwords stored in ServUAdmin.ini, drag'n'drop suggested
  • 01 Jun 2004 Due the raise of the password recovery tools I'm writing, I have decided to put them in a new section just to avoid confusion in the already huge Research one. The new section is Password_recovery
  • 31 May 2004 Password: Good FTP password decoder 0.1: simple tool to decode the passwords stored in the binary file goodftp.lsd (you must get them manually)
  • 31 May 2004 Password: Delphino QuickFTP passwords decoder 0.1: decodes all the passwords (accounts and proxy) stored in the registry
  • 31 May 2004 Password: Eric's Telnet 98 password decoder 0.1: decodes the password stored in UserData\User\.config, drag'n'drop suggested
  • 31 May 2004 Password: DNS4ME Client proxy password decoder 0.1: it simply decodes the socks proxy password stored by this program. It seems to be the only encoded data stored by this program...
  • 31 May 2004 Password: AllegroSurf login and servers passwords decoder 0.1: decodes any password stored in the registry (login and servers) by the program AllegroSurf
  • 30 May 2004 Fake_players_bug: Toca Race Driver 1 Fake and unkickable players DoS 0.3: the new version of the fake players DoS for this game. The new method used to add the players is really cool, fast and moreover lets them to be unkickable. Naturally this new version use the new checksum algorithm so it is no longer Win32 dependent
  • 30 May 2004 Password: Gamespy Arcade password decoder 0.1: decodes the password stored in Profiles\ID\settings.cfg, drag'n'drop suggested
  • 29 May 2004 Research->Gamers_trust_us: GS enctype2 servers list decoder 0.1: this is the algorithm used to decode the servers list from the master server when using the enctype 2 method
  • 28 May 2004 Research->Race Driver: Race Driver packets checksum 0.3: finally this algorithm is opensource! All the work has been made using REC and the result is really good.
    Successfully tested on Win32 and Linux x86, but on PPC cpu it gives a different result...
    The fake players DoS that uses the new algorithm will be released later with some new updates for faster performances.
  • 25 May 2004 Password: FTP Navigator passwords decoder 0.1: decodes the passwords stored in ftplist.txt, drag'n'drop suggested
  • 25 May 2004 Password: Eudora (tested 6.0) passwords decoder 0.1: decodes the password stored in Eudora.ini, drag'n'drop suggested
  • 25 May 2004 Research->Gamers_trust_us: GSInfo 0.4: now the queries are more (all that supported by the Unreal engine) and are fasters because made togheter at the same time with a timeout reduced to 3 seconds
  • 24 May 2004 Research->Others: Gore cd-key checker 0.1: checks if a specific Gore cd-key is valid or not
  • 24 May 2004 Password: Gore cd-key decoder 0.1: decodes the cd-key of the game Gore stored in the registry
  • 24 May 2004 Seems Altervista filters mails using Spamcop so if you had problems to write me retry using my real e-mail address me@aluigi.org
    (in fact aluigi@altervista.org is only an alias of this one)
  • 22 May 2004 Password: RemotePad passwords decoder 0.1: decodes all the passwords in remotepad.ini, drag'n'drop suggested
  • 18 May 2004 Password: Spasm passwords decoder 0.1: decodes all the passwords in Accounts.txt of Spasm, drag'n'drop suggested
  • 18 May 2004 Password: Phoenix mail passwords decoder 0.1: decodes all the passwords in Account.ini of the opensource program Phoenix, drag'n'drop suggested
  • 17 May 2004 Password: Pimmy passwords decoder 0.1: decodes all the passwords in Pimmy.cfg, drag'n'drop suggested
  • 17 May 2004 Password: i.Scribe passwords decoder 0.1: decodes all the passwords in scribe.r, drag'n'drop suggested
  • 17 May 2004 Password: Foxmail passwords decoder 0.1: decodes all the passwords in Account.stg, drag'n'drop suggested
  • 17 May 2004 Password: FlashFXP passwords decoder 0.1: decodes all the passwords in Sites.dat, drag'n'drop suggested
  • 16 May 2004 Password: Enternet passwords decoder 0.1: decodes all the passwords stored in the file EnterNet.ini created by Enternet. Drag'n'drop is highly suggested
  • 15 May 2004 Password: CuteFTP data retriever and password decoder 0.1: this tool shows all the informations stored in the file sm.dat of CuteFtp and decodes all the passwords (a simple XOR 0xc8). It is a bit experimental but works very well
  • 15 May 2004 Password: FTP Control password decoder 0.1: useful password decoder for Transoft's FTP Control
  • 15 May 2004 Password: CoffeeCup FTP profiles collector and decoder 0.1: good tool, it retrieves all the data stored in the registry for CoffeeCup FTP and automatically decodes the stored passwords (also that of the Proxy)
  • 15 May 2004 Password: Bullet Proof FTP bpftp.dat file decoder 0.1: decodes any bpftp.dat file in the sites folder, drag n drop could be useful
  • 15 May 2004 Password: Created the section Password recovery
  • 14 May 2004 Password: Bullet Proof FTP default password decoder 0.1: decodes only the default password stored in Default.bps
  • 14 May 2004 Password: FTP Voyager passwords decoder 0.1: nice tool that retrieves any information and automatically decodes all the passwords stored in the file FTPVoyager.ftp and writes all the data in the file FTPVoyager-pwd.txt
  • 11 May 2004 Research->Ubi.com: Ubi.com gschat proxy real-time decoder 0.1.1: this new version removes the garbage data sent by the Ubi IRC server when there is a lot of data, as when the IRC client uses the /who command in a channel with a lot of users
  • 10 May 2004 Password: Advanced Email Checker passwords decoder 0.1: reads data and decodes the passwords stored in eclib.ini of the program Email Checker
  • 10 May 2004 Research->Others: IPalt alternate number calculator and retriever 0.1: number calculator and retriever for IPalt
  • 09 May 2004 Password: nPOP saved password encoder/decoder 0.1: also if nPOP is opensource this handy utility can be useful to quickly encode and decode the password
  • 08 May 2004 Password: JBMail saved password encoder/decoder 0.1: encodes and decodes the password saved by this mail client
  • 08 May 2004 Password: TinMessenger C6 password decoder 0.1: (italian) poche righe di codice per decodificare le password salvate dal programma C6
  • 07 May 2004 Research->Others: Race Driver multiplayer demo 1.1 bad-words enabler 0.1: finally no more censorship, for the multiplayer demo 1.1 only. Read the text file inside
  • 06 May 2004 Password: Ultrafunk Popcorn passwords decoder 0.1: automatically retrieves all the informations and plain-text password from popcorn.ini if no arguments are given, otherwise decodes the first command-line argument
  • 05 May 2004 Research->Ubi.com: Ubi.com decoding algorithm 0.1: the algorithm able to decode the Ubi.com data sent and received from the Ubi.com servers
  • 05 May 2004 Research->Ubi.com: Ubi.com real-time packets decoder 0.1: this program captures and decodes in real-time any data sent and received from the Ubi.com servers (also knows as routers), it is very important to know what data and type of data is exchanged (the first right of the users). Very useful the -u option.
  • 03 May 2004 Research->Ubi.com: Ubi.com gschat encoding/decoding algorithm 0.1: the algorithm able to decode and encode gschat.ubisoft.com IRC data
  • 03 May 2004 Research->Ubi.com: Ubi.com gschat IRC proxy 0.1: an IRC proxy server able to put any IRC client in contact with the gschat.ubisoft.com:6668 server
  • 03 May 2004 Research->Ubi.com: Ubi.com gschat proxy real-time decoder 0.1: this is a proxy server that decodes IRC data exchanged between Ubi.com client and gschat.ubisoft.com in real-time
  • 03 May 2004 Research->Ubi.com: created a new section about the Ubi.com stuff
  • 29 Apr 2004 Research->Quake3: Punkbuster GUID MD5 0.1: modification of the MD5 algorithm for the creation of the Punkbuster client GUID of a cd-key, I have tested it only with Quake 3 1.32 (PB 1.069/1.072)
  • 29 Apr 2004 Research->Quake3: CDKEY to Punkbuster GUID 0.1: this tool creates the Punkbuster client GUID of a cd-key, I have tested it only with Quake 3 1.32 (PB 1.069/1.072)
  • 28 Apr 2004 Research->Quake3: Quake 3 engine GUID MD5 0.1: this is a modified md5_init() function that is able to create the Quake 3 GUID from a cd-key (it SUBSTITUITES the old file called q3key2guid.h)
  • 28 Apr 2004 Fake_players_bug: Quake 3 engine fake players DoS 0.2: now it works on any system (also the cl_guid calculation!). Corrected also a small memory consuming problem
  • 28 Apr 2004 Research->Quake3: Quake 3 engine cd-key to GUID 0.2: now it works on any system
  • 28 Apr 2004 TestingToolz Quake 3 testing server 0.3: added the huffman decompression of the connect packet
  • 26 Apr 2004 Fake_players_bug: Race Driver 1 Fake players DoS 0.2: it now uses the new rdcksum.h file and supports both demo and retail game
  • 22 Apr 2004 Advisories: Arbitrary file overwriting in Unreal engine through UMOD
  • 20 Apr 2004 Research->Others: Race Driver packets checksum calculator 0.2: win32 pre-compiled code for the calculation of the 16 bits packets checksum of the game Race Driver (both 1 and 2)
  • 20 Apr 2004 Research->Gamers_trust_us: Gslist 0.5.1: small bug fixes
  • 17 Apr 2004 Proof-of-concepts: Unrcrash 0.2.2: uhhhh a very lame error "if(argc > 3) atoi(argv[3]);"... in these days I was ill that's probably the cause of this stupid error eh eh eh. Practically the default port (7777) couldn't be changed
  • 17 Apr 2004 Research->Quake3: Q3huff.h 0.2
  • 17 Apr 2004 TestingToolz: Q3sendenc 0.2.1: now it works on any system not only on win32
  • 17 Apr 2004 Fake_players_bug: Quake 3 engine Fake players DoS 0.1.2: now it works on any system not only on win32
  • 17 Apr 2004 Fake_players_bug: Medal of honor Fake players DoS 0.1.1: now it works on any system not only on win32
  • 16 Apr 2004 Proof-of-concepts: Unrcrash 0.2.1: fixed a problem that happens on Windows
  • 14 Apr 2004 Research->Gamers_trust_us: Gsmsalg.h 0.2.1 and Gs_peerchat.h 0.1.1: this morning (just after waked up) I have checked if GSNEGVAL is really used in these header files and I have found that in reality it is never used so I have removed it and I have optimized the remaining code converting the u_long variables to u_char gaining more speed.
    Naturally Gslist, Gsmsalg-DLL and Peerchat_proxy have been recompiled with the new header files (but the version numbers are ever the same because this is an optimization fix, not a functionality fix)
  • 13 Apr 2004 Research->Gamers_trust_us: Peerchat_proxy 0.1: a proxy utility ables to decrypt the Gamespy IRC protocol data in real-time.
    This protocol is used by the games that connect to the server peerchat.gamespy.com
    READ the text file inside
  • 13 Apr 2004 Research->Gamers_trust_us: Gs_peerchat.h: algorithm for the encryption/decryption of the Gamespy IRC data
  • 09 Apr 2004 Advisories: DoS in Rsniff 1.0
  • 09 Apr 2004 Now the stuff in Advisories and Proof-of-concepts is listed from the latest to the first released so is more easy to find the recent stuff
  • 08 Apr 2004 Research->Gamers_trust_us: Explanation of the authentication method used by the Gamespy CD-Key SDK 0.1: a very interesting paper I have written as result of the research I have made this morning. This paper shows that the cd-keys managed by the Gamespy SDK are secure and canNOT be stolen
  • 07 Apr 2004 Research->DirectX DirectPlay 8 Info 0.1: released a nice tool and created a new section about DirectX (exactly about DirectPlay)
  • 07 Apr 2004 Small change in the website, the tools IDinfo, Gsinfo, Hlinfo, Unrcheck and Aseping have been moved from the Mytoolz section to the respective positions in Research
  • 06 Apr 2004 Research->Others: How to use DirectPlay 7 to create spoofed TCP connections 0.1: an interesting and short paper about a feature of DirectPlay with nice effects
  • 06 Apr 2004 Research->Others: DirectPlay 7 for TCP spoofing 0.1: proof-of-concept for the above document
  • 06 Apr 2004 MyToolz: Aseping 0.1.2: corrected the management of the players in case the server sends a value size equal to 0x01
  • 05 Apr 2004 Advisories: Format string bug in IGI 2: Covert Strike 1.3
  • 03 Apr 2004 Proof-of-concepts: Gangland client click and freeze bug 0.1
  • 03 Apr 2004 Fake_players_bug: StarShatter Fake Players DoS 0.1: fake players and server freeze/crash
  • 02 Apr 2004 MyToolz->Win32: Winerrmsg 0.1: some lines of code to convert Windows error codes into comprehensible error messages, supports also socket errors and command-line or double-click usage
  • 31 Mar 2004 Proof-of-concepts: Testing tool for RogerWilco 0.4: latest version of the suite, added a lot of new functions and new bugs to test
  • 31 Mar 2004 Advisories: RogerWilco new bugs: UDP crash, "Voices from the deep", privacy problems and annoying attacks
  • 30 Mar 2004 MyToolz: ASEPing 0.1.1: some changes to make it more compatible
  • 28 Mar 2004 Research->Gamers_trust_us: Testing tool for RogerWilco 0.3: this new version contains some code optimizations and 2 new types of tests based on multiple empty connections and infinite nickname changes. There is also the parsing of a new tag sent by RogerWilco clients containing the IP address of the server where they are connected (everyday I think that this is the most bugged and dangerous program existent... really)
  • 27 Mar 2004 Research->All-Seeing: OpenSource ASE Query SDK 0.1: this is an opensource clone of the ASE Query SDK Demo, I have written it yesterday
  • 27 Mar 2004 Research->Gamers_trust_us: Gslist 0.5 released
  • 27 Mar 2004 Research->Gamers_trust_us: Gsmsalg.h 0.2, Gsmsalg 0.1.1 and Gsmsalg 0.2 DLL released
  • 25 Mar 2004 Advisories: Remote crash in Etherlords I 1.07 and II 1.03
  • 25 Mar 2004 Research->Others: Quicken 6/'98 data file: reset of all passwords 0.1
    this is a program I made a lot of time ago and I think it could be more useful on my website instead of into my HD, it simply sets to 0 the 12 bytes starting at offset 0x1444 of Intuit Quicken '98 data files so user can use them without to know the password "protecting" the file and the operations
  • 24 Mar 2004 Advisories: Buffer overflow in PicoPhone 1.63
  • 23 Mar 2004 Advisories: Server freeze in The Rage 1.01
  • 23 Mar 2004 Advisories: Castles and Catapults game freeze
  • 22 Mar 2004 Research->Others: All Seeing Eye 'v' ping (aka scanner) algorithm 0.1
    This is the C algorithm used by some game servers (as Chrome and IGI2) supporting the ASE 'v' ping type that seems related to scanner servers. This type of ping doesn't seem to have any real practical and useful usage however it could be interesting for someone. More info inside the file.
  • 22 Mar 2004 Patches: IGI 2 mp_demo2 (0.9) DirectX fix: another DirectX fix for a problem I had
  • 20 Mar 2004 MyToolz: GsInfo 0.3: added the choice of the new querying protocol used by some new games (as Gangland and Terminator 3)
  • 19 Mar 2004 Advisories: Broadcast client buffer-overflow in Terminator 3 1.0
  • 18 Mar 2004 Advisories: Chrome 1.2.0.0 server crash
  • 18 Mar 2004 MyToolz->Win: Show Interfaces 0.1: simple program to show available network interfaces on Windows
  • 15 Mar 2004 Research->Others: Packets checksum for One Must Fall: Battlegrounds 0.1
  • 11 Mar 2004 Advisories: Battle Mages server freeze
  • 11 Mar 2004 Proof-of-concepts: Added a very simple method to check the Unreal vulnerability without the usage of proof-of-concepts or external tools:
    How to easily test the Unreal engine format string bug
  • 11 Mar 2004 Proof-of-concepts: Update: version 0.1.1 of the Unreal proof-of-concept (only Windows users really need this new version)
    The problem was caused on Windows by an error returned when the socket sd2 is read before being connected. To avoid it I have added a simple delay of 100 milliseconds after the creation of the ctos thread
  • 11 Mar 2004 TestingToolz: Updated also Unrspfed 0.1.4 for the same problem of the Unreal PoC
  • 10 Mar 2004 Advisories: Format string bug in EpicGames Unreal engine
  • 09 Mar 2004 Advisories: Crash of Battle Isle Andosia War 2.08
  • 09 Mar 2004 Advisories: Ghost users in Chat Anywhere 2.72
  • 08 Mar 2004 Fake_players_bug: Etherlords 2 Fake players DoS 0.1.1: tested versus full game, the packet was the same (commented code) and the port is 9990 instead of 99980
  • 06 Mar 2004 Research->Gamespy: Gshinfo 0.1.1: minimal code optimization, only who puts the hands on source code (for example for adding more commands or testing other bugs) can find this new version a bit more useful
  • 06 Mar 2004 MyToolz: IDinfo 0.2: code optimization for this old tool, now adding more queries is more easy
  • 05 Mar 2004 Advisories: Update of the Haegemonia crash bug, the bug affects also the newest game Desert Rats vs. Afrika Korps
  • 02 Mar 2004 Advisories: Client buffer overflow in Freespace 2 <= 1.2
  • 01 Mar 2004 Advisories: Clients broadcast buffer overflow in Red Faction <= 1.20
  • 28 Jan 2004 Fake_players_bug: Ratbag's engine Fake players DoS 0.1: this new proof-of-concept substituite the previous Dirt Track Racing DoS and adds support to all the games written by Ratbag
  • 25 Jan 2004 Fake_players_bug, Proof-of-concepts: Big Scale Racing <= 1.04h Fake players DoS and crasher/freezer 0.1
  • 24 Jan 2004 Fake_players_bug: Live for Speed Fake players DoS 0.1
  • 23 Jan 2004 Papers&Research: Live for speed challenge-response algorithm 0.1
  • 22 Jan 2004 Advisories: Need for Speed Hot pursuit 2 <= 242 client's buffer overflow
  • 22 Jan 2004 Proof-of-concepts: Xitami <= 2.5c1 server crash and possible (???) code execution through malformed SSI files
  • 19 Jan 2004 Advisories: Resources consumption in Goahead webserver <= 2.1.8
  • 19 Jan 2004 Advisories: Directories management bypassing in Goahead webserver <= 2.1.8
  • 19 Jan 2004 Advisories: Denial of service in Getware's built-in webserver (Webcam Live and Photohost)
  • 16 Jan 2004 Papers&Research->Unreal Changed the names of the stuff related to the UT2MOD package files from UT2MOD to UMOD because they are the same format
  • 15 Jan 2004 MyToolz: Sendtest and Recvtest 0.1: these 2 toolz are useful to know how much time is consumed to send and receive a specific amount of megabytes of data between 2 computers (sendtest = client, recvtest = server)
  • 14 Jan 2004 Advisories: Multiple vulnerabilities in WWW Fileshare Pro <= 2.42
  • 14 Jan 2004 Papers&Research: Chaser_crc.h 0.1: This function calculates the 16bit checksum of the packets used in the game Chaser
  • 12 Jan 2004 I have finally removed the WIN define and I have used WIN32, in fact WIN32 is predefined by all the Windows compilers so the usage of -DWIN is no more needed to compile my stuff
  • 10 Jan 2004 Proof-of-concepts and Fake_players_bug: Worms Armageddon (LAN) Fake invisible players DoS and match freeze
  • 07 Jan 2004 MyToolz->GNU/Linux: Icmpinfo 0.1.3: optimized (moreover the function to convert the time in string)
  • 07 Jan 2004 Fake_players_bug: Ghost Recon Fake players DoS 0.2: added the possibility to use custom players names (through the usage of a file called grfakep.ini)
  • 03 Jan 2004 MyToolz: CHD 0.1: a very small tool (just some lines of C) that displays each given string in hex, decimal, octal and binary mode
  • 29 Dec 2003 Advisories: Buffer-overflow in Jordan's telnet server
  • 27 Dec 2003 MyToolz: Zipweb 0.4.1: corrected a problem in the interactive option (-i) because it was incomplete (I forget to test it better when I release the 0.4 version)
  • 26 Dec 2003 TestingToolz: Q3sendenc 0.2: added the automatic login function that generates the challenge, the protocol and the punkbuster value to successfully login in a Quake 3 server and so making better tests (parameters will be changed only if they are already specified in the user's packet)
  • 22 Dec 2003 MyToolz->Win32: MD5 on the fly 0.1: simple utility for Win32 that calculates CRC32 and MD5 checksum of a file and shows the result in a MessageBox.
    To use it: copy or link the file md5fly.exe in the SendTo folder of Windows (example "c:\windows\sendto" or "C:\Documents and Settings\USERNAME\SendTo") or use drag'n drop
  • 22 Dec 2003 MyToolz: Zipweb 0.4: finally a new version of this tool. I have made a lot of optimizations, corrections, new options and major compatibility and checks. Check it!
  • 22 Dec 2003 Advisories: Directory traversal bug in DCAM server <= 8.2.5
  • 20 Dec 2003 Now the Focus section is no more at the bottom of the main page of this site but is on a new page
  • 19 Dec 2003 TestingToolz: Q3sendenc 0.1: This tool gets a custom file specified by the user, encodes it using the Huffman compression, sends it to a server based on the Quake 3 engine and then waits for a reply. It could be useful for who wanna test the Quake 3 engine and its possible flaws
  • 19 Dec 2003 Papers&Research->Quake3: Q3huffdecenc 0.1.2: I have corrected a stupid bug during the reading of the input file and I have added a reallocation of the buffer to have a bigger buffer for both encoding and decoding
  • 19 Dec 2003 Advisories: Directory traversal and XSS in Active Webcam <= 4.3
  • 18 Dec 2003 Papers&Research->Unreal engine: UT2MOD extractor 0.3.1: added some new options (moreover the checksum changer very useful for tests) and some small optimizations
  • 18 Dec 2003 Papers&Research->Unreal engine: UT2MOD CRC calculation 0.2: optimized a bit and removed a possible problem during the reading of the data
  • 18 Dec 2003 Papers&Research->Unreal engine: UT2MOD file format 0.2: the document is finally finished
  • 18 Dec 2003 Papers&Research->Unreal engine: UT2MOD extractor 0.3: completed. Added also more options and all the checks (checksum and sign) of the package
  • 18 Dec 2003 Papers&Research->Unreal engine: UT2MOD CRC calculation 0.1: header file containing the function to calculate the 32bit checksum of the ut2mod package files
  • 17 Dec 2003 Advisories Server side scripts viewing in Goahead webserver <= 2.1.7
  • 16 Dec 2003 Papers&Research->Unreal engine: UT2MOD extractor 0.2: finally it is ready and respects the ut2mod file format 8-)
  • 16 Dec 2003 Papers&Research->Unreal engine: UT2MOD file format 0.1: the ut2mod format is enough simple (also if there are some unknown values, probably checksums), however this simple text contains some details
  • 16 Dec 2003 Papers&Research->Unreal engine: UT2MOD extractor 0.1.1: added more security during file creation (ut2mod are external files so security is important) and confirmation to overwrite files
  • 16 Dec 2003 Papers&Research: POD2 files extractor 0.1.3: added more security during file creation
  • 16 Dec 2003 Papers&Research->Unreal engine: UT2MOD extractor 0.1: I have written this program because I wanted to use the Community bonus pack on the Linux version of UnrealTournament 2003. It is a simple file extractor that can be used on both Windows and Linux to extract all the files contained in the ut2mod packages
  • 12 Dec 2003 TestingToolz: HTTP authorization tester 0.2: added more verbosity and the fields "Host:" and "Connection: closed"

  • 12 Dec 2003 NEWS:
    Comments, quotes, e-mails, proofs, analysis and destruction of the castle of lies and accusations after a month from the shameful actions of Gamespy and italian version
    Then my research'stuff removed one month ago is newly online.
    Really thanx a lot to Zone-H!

  • 08 Dec 2003 Advisories: FAT32 directory auth bypass on Linux Abyssws < 1.2
  • 03 Dec 2003 MyToolz: Simple TCP proxy/pipe 0.3: added some new functions. Now it supports also a list of available hosts that have access to it
  • 01 Dec 2003 Advisories: Surfboard <= 1.1.8 vulns
  • 28 Nov 2003 Papers&Research->Unreal engine: Unrsniff 0.3.2: finally a new version for this sniffer. I have adjusted the offset used to sniff data from ADSL lines in Windows (20 to 22, probably I forgot this value, I don't know) and added a small option to limit the generated output
  • 28 Nov 2003 Misc: 2 days ago I have added a simple php file that shows all the headers sent by the browser or proxy
  • 23 Nov 2003 Key_research: added another small section, but the documents are not ready yet
  • ...


NOTE: I update VERY frequently all the material you find here for example adding more info, changing the style of the documents, rewriting and adding code and more other things. So stay tuned if you are interested in my works and my research!
Contact me if you have any idea, question, comment, exception, project or any other thing.