You can also use the techniques used in this paper to encode your Metasploit payloads, if they're executables. (It is possible to encode them on the fly in a debugger as well, but that may require a bit more experience in case there is none.)

Link: Bypassing Anti-Virus Scanners

hehe same, not bitter but disappointed that there was no response at all. Do they really get so many requests that they can't set an auto responder for those they don't choose? 

1and1 is quite cheap and you get a lot too, compared to what you pay. Their support is "okay", meaning they may not understand your problem at all, or be helpful at all, but they're there.  (I haven't had that many good experiences, except with the billing department. They're efficient!  )

Their VPS's could be better, but they're okay. I'd recommend Linode for VPS's to be honest. Just make sure you set up some proper load balancing on incoming connections so 1 person doesn't use up ALL the bandwidth. (Typical problem if you just install the LAMP stack script, yes they provide scripts to install various things so you can easily get a webserver, database and php going.)

That's pretty much my opinion. GoDaddy, I have tried them once for around a year. Not really that well made, but they provide huuuuge databases while 1and1 is behind! They only offer max 100mb databases afaik, while GoDaddy offers 1GB. That's VERY important when you have a large site such as a forum, that continues to grow etc.

Generally I prefer 1and1 still, over GoDaddy though. Just keep in mind that the cheaper hosting plan you choose, the more people share the server with you, and if you're often on a shared IP too, if you don't go for the developer plan which is works for small and medium sized sites. Large, depends on what system powers the site.

It isn't just to limit the amount of posts to moderate. It's also to keep most "worthless" content out.
I know it's harsh words, but there's a reason why many hacking communities are like that. They don't want a database of 1 million posts saying "thank you". They would rather want 50'000 threads with good content, or 1 million posts with constructive feedback and critique, not necessarily both always. 

True. But if it is not detected, then the attacker most likely has a backdoor, meaning that changing your password is pointless since he or she can just download the database, modify the encryption scheme, or backdoor the login function for that sake, so your password is sent in clear text to the attacker, and in this case HTTPS and HTTP does not matter at all, since the passwords can just be stored in a default looking file on the server. (The last attack has been seen before.)

If the compromise isn't detected, there's no remediation of the risk, caused by an "agent" and a vulnerability in other words.

It has already been targeted by the hacktivist groups from time to time. Being a target doesn't mean it's unsafe. It's when there's a compromise of security, that you should change your password.

If they're interested, they'll contact you. If not, don't expect any answer at all  (I sent a volunteer request like 3 months ago, no response at all, as far as I can recall.)

This doesn't mean you won't be contacted though, so I wish you good luck and I'll cross my fingers for you 

If you get caught doing this, then you will most likely be stripped for all GIAC certifications, and any future role within SANS, etc. You will also not be able to do any future GIAC certification, as well most likely.

I advise you to think twice, before doing any kind of copyright violation.  

Welcome to the Ethical Hacker network, sookoon! 

I would've posted this in the "Looking to Hire" section, located here:
http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/board,51.0/


Good luck with finding the right candidate(s) 

Originally you lived in Russia, and your friend in USA? Now you live in Bosnia? Smells like you're not telling the truth, misterrr Mannol

PS: If your packets do go through another country, there may be laws in that country, that applies to your packets. Hence the reason you could worry about the law, if your actions are unethical and against the law in the countries your packets travel through.

Having an IP-address alone, is hardly enough for any attack if he's behind a router with NAT enabled, and all ports on the external NIC / interface are closed.

As many others have already recommended, why don't you search around these forums a bit? And other forums as well? There's like 1000 hacker forums or more in this world, and plenty of sites too. 

There's extra miles for OSCE as well, but not sure if they count or not, didn't have to use them   But the challenge was fun indeed  

If you do a course you love, why not dive into it's fullest extend? 

As soon as his packets enters USA, they are under their jurisdiction as well. So I recommend a VPN connection (as well), and not an unencrypted session. What kind of software to use? OpenVPN for example. Don't just fire away tools at each other, or any servers you may not have permission to test. If you don't know what the tools do, then learn how they work, practically and theoretically.  

Edit: This reply is directed towards Mannol, not chrisj. Just quoting what he said for truth

There was an article, some time ago about dumping information from the RAM. (Quite some time ago.)
One of them that I found interesting, was freezing the computer down to -271C or something like that, immediately, and thereby somehow preserving the contents, of what was in the ram at the time. (Transportation issue.)

Stealing what's in the (hot) RAM at run-time is of course easier, if the contents aren't encrypted somehow. (I say somehow because everything can work in theory, but in theory a lot cannot work as well  )

Anyway, I haven't really played with this, but of course I've heard about it 

The problem with stealing data from RAM, where the power slowly degrades, is a possible corruption of the data or total loss (of data), when there isn't a sufficient amount of power. This depends on the amount of time used of course.

If it's a transportation issue, steal the contents while the ram is HOT as I already mentioned or hibernate the system xD Either virtually or physically. These are just ideas, and some of it may not work in real life, but I have a great imagination 

Congratulations, now dive into Exploit Development if you haven't already 

It's quite easy:

PS: Hacking is not limited to a network.

References:
http://9gag.com/gag/129192/

Sorry guys, I just had one of those days