Login or Register :: Home :: Search :: Your Account :: Forums :: Waraxe Advisories :: Tools :: October 21, 2025 Menu Home Logout Discussions Forums Members List IRC chat Tools Base64 coder MD5 hash CRC32 checksum ROT13 coder SHA-1 hash URL-decoder Sql Char Encoder Affiliates y3dips ITsec Md5 Cracker User Manuals AlbumNow Content Content Sections FAQ Top Info Feedback Recommend Us Search Journal Your Account User Info Welcome, Anonymous Nickname Password (Register) Membership: Latest: MichaelSnaRe New Today: 0 New Yesterday: 0 Overall: 9144 People Online: Visitors: 505 Members: 0 Total: 505 Full disclosure CyberDanube Security Research 20251014-0 | Multiple Vulnerabilities in Phoenix Contact QUINT4 UPS apis.google.com - Insecure redirect via __lu parameter(exploited in the wild) Urgent Security Vulnerabilities Discovered in Mercku Routers Model M6a Re: Security Advisory: Multiple High-Severity Vulnerabilities in Suno.com (JWT Leakage, IDOR, DoS) Security Advisory: Multiple High-Severity Vulnerabilities in Suno.com (JWT Leakage, IDOR, DoS) [SBA-ADV-20250730-01] CVE-2025-39664: Checkmk Path Traversal [SBA-ADV-20250724-01] CVE-2025-32919: Checkmk Agent Privilege Escalation via Insecure Temporary Files CVE-2025-59397 - Open Web Analytics SQL Injection Re: [FD]Full Disclosure: CVE-2025-31200 & CVE-2025-31201 – 0-Click iMessage Chain ? Secure Enclave Key Theft, Wormable RCE, Crypto Theft Re: Full Disclosure: CVE-2025-31200 & CVE-2025-31201 – 0-Click iMessage Chain ? Secure Enclave Key Theft, Wormable RCE, Crypto Theft Re: Defense in depth -- the Microsoft way (part 93): SRP/SAFERwhitelisting goes black on Windows 11 Re: [FD]: "Glass Cage" – Zero-Click iMessage ? Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885) Re: [FD]Full Disclosure: CVE-2025-31200 & CVE-2025-31201 – 0-Click iMessage Chain ? Secure Enclave Key Theft, Wormable RCE, Crypto Theft Samtools v1.22.1 Uncontrolled Memory Allocation from Large BED Intervals Causes Denial-of-Service in Samtools/HTSlib Samtools v1.22.1 Improper Handling of Excessive Histogram Bin Counts in Samtools Coverage Leads to Stack Overflow IT Security and Insecurity Portal www.waraxe.us Forum Index -> Php -> Is there someone who can explain to me about php coder? View previous topic :: View next topic Is there someone who can explain to me about php coder? Posted: Thu Jul 15, 2010 12:47 am XteaM Beginner Joined: Jul 15, 2010 Posts: 4 Location: core of the most beautiful places Is there someone who can explain to me about the encoder / decoder? especially, how to decoder this script Code: <?php $O00O00O00=__LINE__;$OO00O0000=1868;$O000O0O00=fopen(__FILE__,'rb');while(--$O00O00O00)fgets($O000O0O00,1024);fgets($O000O0O00,4096);$OO00O00O0=(base64_decode(strtr(fread($O000O0O00,372),'EnteryouwkhRHYKNWOUTAaBbCcDdFfGgIiJjLlMmPpQqSsVvXxZz0123456789+/=','ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/')));eval($OO00O00O0);return;?> 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 and how to encoder script be like that? Posted: Thu Jul 15, 2010 1:59 am tsabitah Valuable expert Joined: Jul 07, 2010 Posts: 328 Location: surabaya run the code in your webserver and see results in a file on the webserver you out.php Code: <?php error_reporting(E_ALL); $in = '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'; $buff = strtr($in, 'EnteryouwkhRHYKNWOUTAaBbCcDdFfGgIiJjLlMmPpQqSsVvXxZz0123456789+/=','ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/'); $buff = base64_decode($buff); file_put_contents('out.php', $buff); die("ok"); ?> Confused Posted: Thu Jul 15, 2010 7:40 am XteaM Beginner Joined: Jul 15, 2010 Posts: 4 Location: core of the most beautiful places ok. on my computer installed Xampp webserver. I put the files in the htdocs code.php then I tried to open the code in firefox http://localhost/code.php the result is Code: Fatal error: Call to undefined function wp_list_categories() in C:\xampp\htdocs\footer.php(2) : eval()'d code(1) : eval()'d code(1) : eval()'d code on line 7 then I put in http://localhost/nitro/wp-content/themes/game/code.php then I run. the result is Code: Fatal error: Call to undefined function wp_list_categories() in C:\xampp\htdocs\nitro\wp-content\themes\game\footer.php(2) : eval()'d code(1) : eval()'d code(1) : eval()'d code on line 7 I'm very confused, I'm a newbie in this case, can you explain more in detail? if you want, explain me step by step to decode. thanx B4.... Posted: Sun Sep 05, 2010 10:03 pm angelesc Beginner Joined: Sep 06, 2010 Posts: 1 Hi, can someone please guide me in the right direction, i have eval(gzuncompress(base64_decode( and the script posted dosen't seems to work <?php $OOO0O0O00=__FILE__;$O00O00O00=__LINE__;$OO00O0000=4616;eval(gzuncompress(base64_decode('eNplj1mPgjAAhP8MSduIsSCihPDgfVvv62XDUQ5FwJZD+fWr2c1uNpuZp8nMl4xAMMbkJWy4cUIjKBBCvgIRMAsgvfCDkMJqVSDv4tvI9WjKofAzFSUsK0j/FytYU5H+In4vDa/MIju+JYxyDi2TU1X5cKgdOxTylKUMuoyazh+EJiMRSMdUeban5qMyH8W1S4nz+yFc9+SiPmzcfM9OBvtTJ6DWckY0tRXt2GLbPW+y8Yq7zUn/6hhABO1Ot9cfDEfjyXQ2X5Dlar3Z7vaH4+lsWrZDXc8PLtfwFsXJnfE0y4vHs8SSXFcaarOlVWoAIaTT3Azh7yGkfwLFJl8j')));return;?> g/O/lh8jrB10d3DRBKr5e7wpmLAHpBxAXR9nfy8WuVihuR7wIRHBfTZGxQEese2jboBsoZ/Jfm3zxSg0jHHFvHYpy8fhmT0jyrGmwSbutyFQy0tTXFwfl7+AwgTiAX4FVoyF+0rJ+KHyZpV+x1gsTZpVRKvvm4pp4PXG2WqwEwSuxv1VghtZHoUl+yYltx0DjiaOl1ZVYwKU2p0n9lHbIEqDSnSpnRBZWRIdCYwru/BoynOQn2c5/PGYUeSYLw1HGBQCElUPGiQOSJ8MuENU8D+7QowgqArrrqqcpg/+N3Cdof2JfnVf9j4qvi0knfdjf2wJVHDz6IQJ9je6RJ7nbnd4wjmeNn98Bm4DKLe/GYSG66bVf2ug4Ocm97IZESQ5M7Y7k/W9KJk4QmU9G4rN9gi6UiVnSLnIhuc9gn4U1UMNLuyl+rcKv29oWLEbURqkOEN2Gd2K935dq+G5UB8Y4ihKsqwmaq9EblRncpaTMf1X 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 i decoded one time and i got $O000O0O00=fopen($OOO0O0O00,'rb'); while(--$O00O00O00)fgets($O000O0O00,1024); fgets($O000O0O00,4096); $OO00O00O0=gzuncompress(base64_decode(strtr(fread($O000O0O00,492),'1Xt4yAKax+MHo/jz0vqWlRD2w3G5mhgcpFVYBiebPLO968nUrNTCZSuIQsf7JEkd=','ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/')));eval($OO00O00O0); what modifications i need to make to the script above for this to work ? Code: <?php error_reporting(E_ALL); $in = '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'; $buff = strtr($in,'1Xt4yAKax+MHo/jz0vqWlRD2w3G5mhgcpFVYBiebPLO968nUrNTCZSuIQsf7JEkd=','ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/'); $buff = base64_decode($buff); file_put_contents('out.php', $buff); die("ok"); ?> [/code] Posted: Mon Sep 06, 2010 1:55 am tsabitah Valuable expert Joined: Jul 07, 2010 Posts: 328 Location: surabaya the process is the same except base64_decode gzuncompress to more easily use this tool only http://www.multiupload.com/8QM7LDDG2X Code: <?php define("dbname", $dbname); define("dbusername", $dbusername); define("dbuserpass", $dbuserpass); define("dbhost", $dbhost); function updateLatestSearches($search) { $error_reporting = error_reporting(0); $file = "latest.txt"; $searches = getLatestSearches(); $searches[count($searches)] = $search; $searches = array_unique($searches); if (count($searches) >= 21) { array_shift($searches); } $searches2 = implode("\n", $searches); $fp2 = fopen($file, "w"); fwrite($fp2, $searches2); fclose($fp2); } function getLatestSearches() { $error_reporting = error_reporting(0); $file = "latest.txt"; $fp = fopen($file, "r"); $searchestmp = fread($fp, filesize($file)); fclose($fp); $searches = explode("\n", $searchestmp); foreach ($searches as $i => $searchterm) { if (!$searchterm) { unset($searches[$i]); } } return $searches; } function printLatestSearches() { $error_reporting = error_reporting(0); $file = "latest.txt"; $fp = fopen($file, "r"); $searchestmp = fread($fp, filesize($file)); fclose($fp); $searches = explode("\n", $searchestmp); foreach ($searches as $i => $searchterm) { $searchterm = str_replace("\n", "", $searchterm); $searchterm = str_replace("\r", "", $searchterm); $searchterm = str_replace("+", " ", $searchterm); $searchterm2 = str_replace(" ", "+", $searchterm); $searchterm = htmlspecialchars($searchterm); echo " <a href=\"search-$searchterm2.html\" title=\"$searchterm\">" . $searchterm . "</a> "; if ($i != (count($searches) - 1)) { echo " - "; } } } function js_redirect($url, $seconds = 5) { echo "<script language=\"JavaScript\">\n"; echo "<!-- hide code from displaying on browsers with JS turned off\n\n"; echo "function redirect() {\n"; echo "window.location = \"" . $url . "\";\n"; echo "}\n\n"; echo "timer = setTimeout('redirect()', '" . ($seconds * 1000) . "');\n\n"; echo "-->\n"; echo "</script>\n"; return true; } function secure_search($s) { $s = htmlspecialchars($s); $s = ltrim($s); $s = rtrim($s); $noneed = array("`", "!", "@", "#", "$", "%", "^", "&", "*", "(", ")", "+", "|", "=", "\\", "{", "}", "[", "]", ":", ";", "\"", "'", "<", ">", ",", ".", "?", "/", "~"); $s = str_replace($noneed, "", $s); $s = str_replace(" ", "_", $s); $s = str_replace("-", "", $s); return $s; } function htmlerror($text) { echo "<html><head><title>Error Found</title></head>"; echo "<body><br><br><br><br><font size=4><b>$text<br></b><hr size=1 width=62% align=left>"; echo "This program has performed an illegal operation. Software police has been notified.</hr><br><br>"; echo "</font></body></html>"; exit; } function iswords($a) { $s = str_word_count($a, 1); $c = count($s); if ($c != 1) { $i = 0; while ($i < $c) { $wordssearch .= $s[$i] . "%' AND `Title` LIKE '%"; $i++; } $wordssearch = substr($wordssearch, 0, (strlen($q) - 22)); } else { $wordssearch = $a; } return $wordssearch; } function checksource($a, $d) { $c = count($d); if ($c != 1) { $i = 0; while ($i < $c) { $b .= $d[$i] . "' AND `Source` = '"; $i++; } $b = substr($b, 0, (strlen($q) - 18)); } else { $b = $sourcesites[1]; } $a = iswords($a); $qwery = "Select * FROM `Vids` WHERE `Active`='yes' AND (`Title` LIKE '%" . $a . "%') AND `Source`='" . $b . "'"; return $qwery; } function countresults($a, $b, $dur, $bydate) { $dbconn = mysql_connect(dbhost, dbusername, dbuserpass) or die(mysql_error()); mysql_select_db(dbname, $dbconn) or die(mysql_error()); $a = iswords($a); $qwery = "Select * FROM `Vids` WHERE `Active`='yes' AND (`Title` LIKE '%" . $a . "%') AND `Source`='" . $b . "'"; switch ($dur) { case 1: $duration = "*"; break; case 2: $duration = "`Duration`<300"; break; case 3: $duration = "`Duration`>300 AND `Duration`<600"; break; case 4: $duration = "`Duration`>600"; break; default: $duration = "*"; } switch ($bydate) { case 1: $datum = "*"; break; case 2: $datum = time() - (1 * 24 * 60 * 60); break; case 3: $datum = time() - (7 * 24 * 60 * 60); break; case 4: $datum = time() - (30 * 24 * 60 * 60); break; default: $datum = "*"; break; } if ($duration == "*" && $datum != "*") { $qwery = $qwery . " AND `Added`>" . $datum . ""; } if ($duration != "*" && $datum != "*") { $qwery = $qwery . " AND `Added`>" . $datum . " AND " . $duration . ""; } if ($duration != "*" && $datum == "*") { $qwery = $qwery . " AND " . $duration . ""; } $data = mysql_query($qwery) or die(mysql_error()); if (!mysql_num_rows($data)) { $count = 0; } else { $count = mysql_num_rows($data) or die(mysql_error()); } mysql_close(); return $count; } function showresults($qwery, $a, $limit) { $dbconn = mysql_connect(dbhost, dbusername, dbuserpass); mysql_select_db(dbname, $dbconn) or die(mysql_error()); $qwery = str_replace("WHERE", "WHERE `Source`='$a' AND", $qwery); $qwery = $qwery . " ORDER BY `ID` DESC LIMIT 0,$limit"; $result = mysql_query($qwery) or die(mysql_error()); while ($row = mysql_fetch_array($result)) { $totalSeconds = $row["Duration"]; $minutes = floor($totalSeconds / 60); $seconds = $totalSeconds - ($minutes * 60); if (strlen($seconds) == 1) { $seconds = "0" . $seconds; } $duration = $minutes . ":" . $seconds; echo '<div class="video-box"> <a href="play-' . $row["ID"] . '-' . $row["Href"] . '.html" rel="' . $row["Source"] . '" target="_top" title="' . $row["Title"] . '"> <img src="' . $row["Image"] . '" width="160" height="120" alt="' . $row["Title"] . '" /></a> <h4>' . $row["Title"] . '</h4><span class="duration">' . $duration . '</span> </div> '; } mysql_close(); } function showMoreResults($start, $newlimit, $search, $source) { $dbconn = mysql_connect(dbhost, dbusername, dbuserpass); mysql_select_db(dbname, $dbconn) or die(mysql_error()); $a = iswords($search); $qwery = "Select * FROM `Vids` WHERE `Source`='" . $source . "' AND `Active`='yes' AND (`Title` LIKE '%" . $a . "%') ORDER BY `ID` DESC LIMIT " . $start . "," . $newlimit . ""; $result = mysql_query($qwery) or die(mysql_error()); while ($row = mysql_fetch_array($result)) { $totalSeconds = $row["Duration"]; $minutes = floor($totalSeconds / 60); $seconds = $totalSeconds - ($minutes * 60); if (strlen($seconds) == 1) { $seconds = "0" . $seconds; } $duration = $minutes . ":" . $seconds; echo '<div class="video-box"> <a href="play-' . $row["ID"] . '-' . $row["Href"] . '.html" rel="' . $row["Source"] . '" target="_top" title="' . $row["Title"] . '"> <img src="' . $row["Image"] . '" width="160" height="120" alt="' . $row["Title"] . '" /></a> <h4>' . $row["Title"] . '</h4><span class="duration">' . $duration . '</span> </div> '; } mysql_close(); } function showMoreIndex($start, $newlimit, $source) { $dbconn = mysql_connect(dbhost, dbusername, dbuserpass); mysql_select_db(dbname, $dbconn) or die(mysql_error()); $qwery = "Select * FROM `Vids` WHERE `Source`='" . $source . "' AND `Active`='yes' ORDER BY `ID` DESC LIMIT " . $start . "," . $newlimit . ""; $result = mysql_query($qwery) or die(mysql_error()); while ($row = mysql_fetch_array($result)) { $totalSeconds = $row["Duration"]; $minutes = floor($totalSeconds / 60); $seconds = $totalSeconds - ($minutes * 60); if (strlen($seconds) == 1) { $seconds = "0" . $seconds; } $duration = $minutes . ":" . $seconds; echo '<div class="video-box"> <a href="play-' . $row["ID"] . '-' . $row["Href"] . '.html" rel="' . $row["Source"] . '" target="_top" title="' . $row["Title"] . '"> <img src="' . $row["Image"] . '" width="160" height="120" alt="' . $row["Title"] . '" /></a> <h4>' . $row["Title"] . '</h4><span class="duration">' . $duration . '</span> </div> '; } mysql_close(); } function sourceshorcut($a) { switch ($a) { case 'pornhub': $so = "ph"; break; case 'redtube': $so = "rt"; break; case 'keezmovies': $so = "km"; break; case 'brazzers': $so = "bz"; break; case 'xvideos': $so = "xv"; break; case 'tnaflix': $so = "tn"; break; case 'pornrabbit': $so = "pr"; break; } return $so; } function getRealIpAddr() { if (!empty($_SERVER['HTTP_CLIENT_IP'])) { $ip = $_SERVER['HTTP_CLIENT_IP']; } elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) { $ip = $_SERVER['HTTP_X_FORWARDED_FOR']; } else { $ip = $_SERVER['REMOTE_ADDR']; } return $ip; } function isValidEmail($email) { if (!filter_var($email, FILTER_VALIDATE_EMAIL)) { return 0; } else { return 1; } } function generatePass($length) { $possible = "0123456789bcdfghjkmnpqrstvwxyzAFGTHCD"; $i = 0; while ($i < $length) { $char = substr($possible, mt_rand(0, strlen($possible) - 1), 1); if (!strstr($password, $char)) { $password .= $char; $i++; } } return $password; } function checkLogin() { if ($_COOKIE['Username'] != "" and $_COOKIE['Password'] != "") { $dbconn = mysql_connect(dbhost, dbusername, dbuserpass); $user = mysql_real_escape_string($_COOKIE['Username']); $pass = mysql_real_escape_string($_COOKIE['Password']); mysql_select_db(dbname, $dbconn) or die(mysql_error()); $sql = mysql_query("SELECT * FROM Users Where User='$user' AND Password='$pass'") or die(mysql_error()); if (!mysql_num_rows($sql)) { return 0; } else { return 1; } } } function checkbookmarklink($id, $user) { $dbconn = mysql_connect(dbhost, dbusername, dbuserpass); mysql_select_db(dbname, $dbconn) or die(mysql_error()); $qwery = "SELECT * FROM `bookmarks` WHERE `user`='$user'"; $data = mysql_query($qwery) or die(mysql_error()); while ($row = mysql_fetch_array($data)) { $list = $row["list"]; } $each = explode("|", $list); $totalb = count($each); $exist = @array_search($id, $each); if ($exist > -1) { echo "<img src='images/error.png' width='24' height='24' hspace='10' vspace='10' border='0' align='absmiddle' /><a href='javascript:;' id='bookmarkremove' style='font-size:18px;'>Remove from bookmarks!</a>"; } else { echo '<img src="images/addf.png" alt="add to favorites" width="34" height="32" hspace="10" vspace="10" border="0" align="absmiddle" /><a href="javascript:;" id="bookmarklink" style="font-size:18px;">Add to bookmarks</a>'; } } function createkey($a) { $a = str_replace("www.", "", $a); $key = md5("vrx6" . $a . "na%#&@*!209ru"); $key = "9368291289" . $key; $key = base64_encode($key); $key = substr($key, ceil(strlen($key) / 2), strlen($key) - floor(strlen($key) / 2)) . substr($key, 0, ceil(strlen($key) / 2)); return $key; } function checkkey($key) { $key = substr($key, ceil(strlen($key) / 2), strlen($key) - floor(strlen($key) / 2)) . substr($key, 0, ceil(strlen($key) / 2)); $key = base64_decode($key); $key = str_replace("9368291289", "", $key); $a = $_SERVER['SERVER_NAME']; $a = str_replace("www.", "", $a); $checker = md5("vrx6" . $a . "na%#&@*!209ru"); if ($key != $checker) { mail('admin@zodumil.net', 'Invalid PSS license', $a); die("Invalid license, contact support on email: admin@zodumil.net or ICQ: 614430"); } } function vrx6($url) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_FAILONERROR, 1); curl_setopt($ch, CURLOPT_REFERER, "http://google.com/bot.html"); curl_setopt($ch, CURLOPT_HEADER, 1); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0); curl_setopt($ch, CURLOPT_MAXREDIRS, 2); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_FRESH_CONNECT, 1); curl_setopt($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows; U; Windows NT 6.0; sk; rv:1.9.1.7) Gecko/20091221 Firefox/3.5.7 (.NET CLR 3.5.30729)"); curl_setopt($ch, CURLOPT_TIMEOUT, 45); $f = curl_exec($ch); echo curl_error($ch); curl_close($ch); return $f; } function indexVids($source, $total) { $dbconn = mysql_connect(dbhost, dbusername, dbuserpass); mysql_select_db(dbname, $dbconn) or die(mysql_error()); $qwery = "SELECT * FROM `Vids` WHERE `source`='$source' AND `Active`='yes' ORDER BY `ID` DESC LIMIT 0,$total"; $result = mysql_query($qwery) or die(mysql_error()); while ($row = mysql_fetch_array($result)) { $totalSeconds = $row["Duration"]; $minutes = floor($totalSeconds / 60); $seconds = $totalSeconds - ($minutes * 60); if (strlen($seconds) == 1) { $seconds = "0" . $seconds; } $duration = $minutes . ":" . $seconds; $o .= '<div class="video-box"> <a href="play-' . $row["ID"] . '-' . $row["Href"] . '.html" rel="' . $row["Source"] . '" target="_top" title="' . $row["Title"] . '"> <img src="' . $row["Image"] . '" width="160" height="120" alt="' . $row["Title"] . '" /></a> <h4>' . $row["Title"] . '</h4><span class="duration">' . $duration . '</span> </div> '; } return $o; } function countTotal($source) { $dbconn = mysql_connect(dbhost, dbusername, dbuserpass); mysql_select_db(dbname, $dbconn) or die(mysql_error()); $sql = "SELECT * FROM `Vids` WHERE `Source`='$source' AND `Active`='yes'"; $result = mysql_query($sql) or die(mysql_error()); $total = mysql_num_rows($result); return $total; } ?> Is there someone who can explain to me about php coder? www.waraxe.us Forum Index -> Php You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum All times are GMT Page 1 of 1 All Posts1 Day7 Days2 Weeks1 Month3 Months6 Months1 YearOldest FirstNewest First Select a forumSecurity Research by waraxe----------------General discussionHow to fixMetasploit relatedHash cracking requests----------------MD5 hashesAll other hashesHash related informationhttp://www.waraxe.us portal----------------SuggestionsCooperation proposalsSecurity bugs and issues in general----------------Newbies cornerSql injectionCross-site scripting aka XSSRemote file inclusionFull path disclosureShell commands injectionPhishing and Social EngineeringAll other security holesVarious software----------------PhpNukePostNukePhpBBXMB forumvBulletin BoardInvision Power Boarde107MamboJoomlaXOOPSM$ WindowsLinux worldAll other softwareCoppermine Photo GalleryProgramming languages----------------PhpMySqlPerlJavaJavascriptC and C++Visual BasicBorland Delphi and PascalPythonHTML and XMLAssemblerReverse engineering----------------Newbies cornerDisassemblingPHP script decode requestsMiscellaneous stuff----------------Future of the ITNanotechnologyFun cornerLinksTry2hack sitesProxy databaseDirect Downloads----------------ToolsTutorialsWordlistsRecycle Bin----------------Removed messagesOutdated posts Powered by phpBB © 2001-2008 phpBB Group

PCWizardHub - Helping you fix, build, and optimize your PC life
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.031 Seconds