News Headlines
The HIT2011 (Hacks in Taiwan Conference) will hold in Taiwan, Taipei 2011/07/22,23 2011/06
The HIT2010 (Hacks in Taiwan Conference) will hold in Taiwan, Taipei 2010/07/17,18 2010/05
The HIT2009 (Hacks in Taiwan Conference) will hold in Taiwan, Taipei 2009/07/18,19 2009/05
The HIT2008 (Hacks in Taiwan Conference) will hold in Taiwan, Taipei 2008/07/19,20 2008/05
Thanks for sponsor - Mr.Zhao NT$10K, that we have free drinks for chr0.ot monthly meeting. 2004/11
Thanks for sponsor - Mr.Zhao NT$10K, that we have free desserts for chr0.ot monthly meeting. 2004/08
New chr0.ot project announced - dump2code 2004/08
Welcome to chr0.ot! If you want to contact us, just join irc.chroot.org #chroot 2004/06

About Us
We are a group interested in security. Other people named us "Hacker".


Security Advisory

:: DATE ::

:: DESCRIPTION ::

:: AUTHOR ::

'08-10-16 Several Blog Providers Critical Security Vulnerability Unohope
'08-10-05 Yahoo! (wretch.cc) Critical Security Vulnerabilities Unohope
'08-07-27 Yahoo! Login Vulnerability Roamer
'08-07-18 Malicious Web Browser Attack Unohope
'08-06-10 Yahoo! Anti-Phishing Bypass Vulnerability Roamer
'06-07-05 Windows Explorer URL File Format Overflow Nanika
'06-07-03 Excel 2000/XP/2003 Style 0day POC Nanika
'05-12-31 MTink Home Env Variable Buffer Overflow Vulnerability Newbug

Exploits

:: DATE ::

:: DESCRIPTION ::

:: AUTHOR ::

'08-07-22 YouTube Blog 0.1 Multiple Remote Vulnerabilities Unohope
'08-07-18 Apache (mod_jk) 1.2.19 Remote Stack Overflow Exploit Unohope
'08-06-24 Nopam+ Authentication Bypass Vulnerability Roamer
'08-06-10 Insanely Simple Blog 0.5 (index) Remote SQL Injection Vulnerabilities Unohope
'08-06-10 yBlog 0.2.2.2 Multiple Remote Vulnerabilities Unohope
'08-06-10 DCFM Blog 0.9.4 (comments) Remote SQL Injection Vulnerability Unohope
'08-06-10 ErfurtWiki <= R1.02b (css) Local File Inclusion Vulnerability Unohope
'08-06-10 Tornado Knowledge Retrieval System <= 4.2 Remote XSS Vulnerability Unohope
'08-05-24 Class System v2.3 Multiple Remote Vulnerabilities Unohope
'08-05-24 phpFix v2 Multiple SQL Injection Vulnerability Unohope
'08-05-24 Repair Online v1.2 (sentout) Create Admin Vulnerability Unohope
'08-05-24 Excuse Online (pwd) SQL Injection Vulnerability Unohope
'08-05-24 Campus Bulletin Board v3.4 Multiple Remote Vulnerabilities Unohope
'08-03-21 Microsoft Office Excel Code Execution Exploit (MS08-014) zha0
'06-10-29 Kaspersky Internet Security 6.0.0.303 IOCTL KLICK Local Exploit Nanika
'06-10-12 Microsoft Office 2003 PPT Local Buffer Overflow PoC Nanika
'05-07-25 FtpLocate <= 2.02 (current) Remote Command Execution Exploit Newbug
'05-05-17 Linux Mandrake <= 10.2 cdrdao Local Root Exploit Newbug

Articles

:: DATE ::

:: DESCRIPTION ::

:: AUTHOR ::

'05-11-13 Format String Vulnerability Kudo
'05-01-22 ELF Code Signing Chihchun
'06-10-12 Heap and BSS Overflow II Arbro
'05-07-09 Clone Account DM
'05-02-20 Basic Shellcode Dany
'05-02-19 AWStats Vulnerability Analysis Newbug
'05-02-19 Heap and BSS Overflow Arbro
'04-12-18 Process Freezer Cnoize
'04-12-01 Junk SQL Injection Unohope
'04-11-25 Snort Inquiry Aphyr
'04-11-25 Sudo Vulnerability Analysis Watson
'04-10-17 Thinking MSSQL SQL Injection DM
'04-10-06 Worm Detection Kudo
'04-10-06 SQL Injection Dany
'04-10-06 Linux Forensics Newbug
'04-10-06 Dump2Code Newbug
'04-10-06 Writing Remote Exploit Timhsu

Last Update
Add HIT2011 Conference information.
2011-06-22
Add HIT2008 Conference information, and some new security links.
2008-05-24
The Wargame


http://wargame.cna.ccu.edu.tw

> COPYRIGHT © 2004-2011 CHROOT GROUP, ALL RIGHTS RESERVED. <