HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 89 guests and 1 member online
EH-Net News Feeds
Latest Additions
 
Advertisement

You are here: Home arrow Forum arrow Ethical Hacking Discussions and Related Certificationsarrow Otherarrow Anyone know Thomas Wilhelm?
EH-Net
May 26, 2012, 08:55:00 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Advertise on EH-Net!! - Reasonable Rates, Highly Targeted Audience.
 
   Home   Help Calendar Login Register  
Pages: [1] 2   Go Down
« previous next »
  Print  
Author Topic: Anyone know Thomas Wilhelm?  (Read 2843 times)
0 Members and 2 Guests are viewing this topic.
SephStorm
Sr. Member
****
Offline Offline

Posts: 416


View Profile WWW
« on: January 04, 2012, 09:34:06 AM »
Anyone know how to contact Thomas W from heorot.net?

His site is coming up on google as compromised. Any1 care to check it out for themselves? :devil
Logged
Support my hactivities.
http://www.cafepress.com/TRUEHacker
lorddicranius
Sr. Member
****
Online Online

Posts: 396



View Profile WWW
« Reply #1 on: January 04, 2012, 09:44:53 AM »
I just sent him an email.  Good looking out, SephStorm Smiley
Logged
Blog: http://lorddicranius.wordpress.com/
hayabusa
Hero Member
*****
Offline Offline

Posts: 1304



View Profile
« Reply #2 on: January 04, 2012, 09:53:09 AM »
He's a member here (Grendel)

Cheers!
Logged
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'

OSCP , GPEN, C|EH
3xban
Sr. Member
****
Offline Offline

Posts: 373


View Profile
« Reply #3 on: January 04, 2012, 11:14:12 AM »
Is it hosted on 1and1? Cheesy 
Logged
Certs: GCWN
Grendel
Full Member
***
Offline Offline

Posts: 168


View Profile WWW
« Reply #4 on: January 04, 2012, 11:15:38 AM »
Yeah, I saw that. Not sure how it's coming to that conclusion.
Logged
- Thomas Wilhelm

http://HackingDojo.com
Grendel
Full Member
***
Offline Offline

Posts: 168


View Profile WWW
« Reply #5 on: January 04, 2012, 11:19:00 AM »
...and if you follow their recommendation to see what the compromise is, it comes back negative.

http://www.google.com/safebrowsing/diagnostic?site=heorot.net
Logged
- Thomas Wilhelm

http://HackingDojo.com
hayabusa
Hero Member
*****
Offline Offline

Posts: 1304



View Profile
« Reply #6 on: January 04, 2012, 11:31:50 AM »
Not surprising (on the negative,) both because you're on top of things, and because I've seen a few of these reported, lately, on my clients' servers, and have proven otherwise to Google.

Have you pinged Google to have the alert removed, Thomas?

(Edit: I know they can un-flag it, because they did, for my customers)
Logged
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'

OSCP , GPEN, C|EH
Grendel
Full Member
***
Offline Offline

Posts: 168


View Profile WWW
« Reply #7 on: January 04, 2012, 11:36:27 AM »
Quote from: hayabusa on January 04, 2012, 11:31:50 AM

Have you pinged Google to have the alert removed, Thomas?

(Edit: I know they can un-flag it, because they did, for my customers)

Not yet - I need to still do a full pentest to make sure I'm not missing something. If there is an issue, I'd like to find it. If there is not an issue, I'd like to know for certain. If anyone sees anything, please let me know - thanks!
Logged
- Thomas Wilhelm

http://HackingDojo.com
MaXe
Hero Member
*****
Offline Offline

Posts: 507


I've just upgraded myself to a cyborg muahahaa!!1


View Profile WWW
« Reply #8 on: January 04, 2012, 02:28:41 PM »
Quote from: Grendel on January 04, 2012, 11:36:27 AM
Quote from: hayabusa on January 04, 2012, 11:31:50 AM

Have you pinged Google to have the alert removed, Thomas?

(Edit: I know they can un-flag it, because they did, for my customers)

Not yet - I need to still do a full pentest to make sure I'm not missing something. If there is an issue, I'd like to find it. If there is not an issue, I'd like to know for certain. If anyone sees anything, please let me know - thanks!

I guess I can take a look  Grin
Logged
I'm an InterN0T'er
SephStorm
Sr. Member
****
Offline Offline

Posts: 416


View Profile WWW
« Reply #9 on: January 04, 2012, 02:53:37 PM »
Very interesting indeed... thanks for the safebrowsing lookup link. And Grendel, I personally think thats an awesome attitude to have. Smiley
Logged
Support my hactivities.
http://www.cafepress.com/TRUEHacker
hayabusa
Hero Member
*****
Offline Offline

Posts: 1304



View Profile
« Reply #10 on: January 04, 2012, 03:32:50 PM »
@MaXe - I started looking as well.  So far, didn't see anything (nothing in a basic source code review, as if malware links got planted or anything...)  Grin
Logged
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'

OSCP , GPEN, C|EH
ajohnson
Recruiters
Hero Member
*
Offline Offline

Posts: 650


aka dynamik


View Profile WWW
« Reply #11 on: January 04, 2012, 03:48:33 PM »
I went to the home page while logged into my bank in another tab, and all my money got transferred to Tom.

I hope you use that $20 wisely...
Logged
WIP: OSCP | www.infosiege.net | @infosiege

The day you stop learning is the day you start becoming obsolete.
MaXe
Hero Member
*****
Offline Offline

Posts: 507


I've just upgraded myself to a cyborg muahahaa!!1


View Profile WWW
« Reply #12 on: January 04, 2012, 03:51:39 PM »
Quote from: hayabusa on January 04, 2012, 03:32:50 PM
@MaXe - I started looking as well.  So far, didn't see anything (nothing in a basic source code review, as if malware links got planted or anything...)  Grin

Naturally that was what I did initially as well where I didn't see any signs of compromise  Smiley However, there are a few notes I've sent to Tom.  Grin
Logged
I'm an InterN0T'er
Grendel
Full Member
***
Offline Offline

Posts: 168


View Profile WWW
« Reply #13 on: January 04, 2012, 03:52:14 PM »
Quote from: dynamik on January 04, 2012, 03:48:33 PM
I went to the home page while logged into my bank in another tab, and all my money got transferred to Tom.

I hope you use that $20 wisely...

It'll go to my "replenish the bourbon" fund. ;-)
Logged
- Thomas Wilhelm

http://HackingDojo.com
chrisj
Hero Member
*****
Offline Offline

Posts: 999


View Profile
« Reply #14 on: January 04, 2012, 10:35:41 PM »
Quote from: Grendel on January 04, 2012, 03:52:14 PM
Quote from: dynamik on January 04, 2012, 03:48:33 PM
I went to the home page while logged into my bank in another tab, and all my money got transferred to Tom.

I hope you use that $20 wisely...

It'll go to my "replenish the bourbon" fund. ;-)

Is that how they pay for Bourbon con? (the con before derby con in Louisville Ky).
Logged
OSWP, Sec+
Pages: [1] 2   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.16 | SMF © 2011, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.088 seconds with 20 queries.
 

gk_static-ad_feb2012.jpg
Global Knowledge: Build Security Skills to Protect & Defend

els_130x200fixed2.gif
eLearnSecurity Student Course Now Live!
5% Off with Code
ELS-EH-5

SANS Deals 4 EH-Netters
$150 OFF Any SANS Course in Any Format!
Coupon Code: EHN_Connect Including SANS Security West 2012 & SANSFIRE 2012
Recent Forum Topics

cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!

Vote For EH-Net

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2012 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.