[Mon Feb 13 23:49:25 2012] 
All available exploits for PHP socket_connect()  are for 32bit architecture. Need to rewrite 
it for x64 using Linux as a target platform with ASLR/non-exec-stack off for simplicity.

So far I was able to recall some of my asm knowledge and now I am in control of $rip register. Now, there are two ways to go:

1. Return to libc method
2. Classical code injection into stack

Return-to-libc using  chmod()  was chosen as a route to progress. chmod() accepts two arguments first one being the filepath 
and second one the file mode. Having that we are on an x64 platform, there is a need to control $rsi and $rdi registers as 
both mentioned arguments are passed via those two registers:

0x0000000000400528 <+4>:	mov    $0x1ff,%esi             (this is where file mode 777 is passed)
0x000000000040052d <+9>:	mov    $0x40062c,%edi          (this is where the filepath is passed - I use /root for a test)
0x0000000000400532 <+14>:	callq  0x400418 

Now,  finding my way to control spoken registers and hopefully exploit will be released.


 [Wed Jan 18 22:25:03 2012] 
Azerbaijani wordlist for hydra would consist of cellular phone numbers only.. :)

 [Tue Jan 17 01:50:36 2012] 
everybody gets hacked some day. Are you ready for it ?

 [Mon Nov 21 04:27:39] 
Started to rewrite /usr/ports/comms/ib-kmod in order to support FreeBSD 9.0. 
Currently, this port is marked broken due to no support of HPS USB stack.

 [Sun Nov 20 09:47:26] 
Searching for a cross-platform , easy-to-deploy rootkit ? Everything you need is:

1. Edit /etc/resolv.conf on a rooted box so that it points to your own dns server
2. Setup a rogue dns server and start controlling victim's traffic.