i need your test for this script have any bug? i want buy this but is safe?
http://115.78.235.170/coingong/
Topic: Selling exchange source code (Read 2133 times)
hi
i need your test for this script have any bug? i want buy this but is safe?
http://115.78.235.170/coingong/
i need your test for this script have any bug? i want buy this but is safe?
http://115.78.235.170/coingong/
Top 5 no no security ? 
I dont agree with that I have 650 customers registered with enough BTC volume Feel free to take my BTC's I have found 4-5 bugs in the start but they are fixed 
I dont agree with that I have 650 customers registered with enough BTC volume Feel free to take my BTC's I have found 4-5 bugs in the start but they are fixed The fact that you answer like you did tells us that you have no idea why its an issue. It's only a matter of time before you do.
Top 5 no no security ? I dont agree with that I have 650 customers registered with enough BTC volume Feel free to take my BTC's I have found 4-5 bugs in the start but they are fixed
I dont agree with that I have 650 customers registered with enough BTC volume Feel free to take my BTC's I have found 4-5 bugs in the start but they are fixed 
I already seen a new exchange with the exact demo site 
Most important question is ... how many bugs and security holes are in your script
I would not sell crycurex´s script for 10 even 15 Btc ...because I know how many fixes were necessary
I would not sell crycurex´s script for 10 even 15 Btc ...because I know how many fixes were necessary
first link shows a picture of the web server talking to the wallet servers directly......RUN
i would say that is a top 5 no no for security
i would say that is a top 5 no no for security
i will offer the iceycrypt exchange code in its current state with 0 checking done(i know it ran on my dev instance but i dont code php) for .5 btc to anyone that wants it (you may ask justin or r3wt regarding if i bought the code)
I don't know what iceycrypt is but don't buy anything in any way related to justin or r3wt. The worst programmers ever and the people behind openex which was hacked many times.
none of my business lol. thats why im offering their code as is.
i will offer the iceycrypt exchange code in its current state with 0 checking done(i know it ran on my dev instance but i dont code php) for .5 btc to anyone that wants it (you may ask justin or r3wt regarding if i bought the code)
I don't know what iceycrypt is but don't buy anything in any way related to justin or r3wt. The worst programmers ever and the people behind openex which was hacked many times.
Heh
I dont know what is iceycrypt too, but i dont use anything which is not written by me, not in that project on all my projects Crypt algorythm which my exchange uses its custom made from me and is unique i will offer the iceycrypt exchange code in its current state with 0 checking done(i know it ran on my dev instance but i dont code php) for .5 btc to anyone that wants it (you may ask justin or r3wt regarding if i bought the code)
I don't know what iceycrypt is but don't buy anything in any way related to justin or r3wt. The worst programmers ever and the people behind openex which was hacked many times.
Hard to trust a newbie for such a sum. Buyer better check the script on Teamviewer.
So the source code working more than a month without any problems and with about 3000 hack attempts I think that proves it is stable
I think that proves it is stable
First buyer will take discount
i will offer the iceycrypt exchange code in its current state with 0 checking done(i know it ran on my dev instance but i dont code php) for .5 btc to anyone that wants it (you may ask justin or r3wt regarding if i bought the code)
5 BTC for source code with full installation is too much!
Well yeah, let's wait a lit till he offer another prices !
5 BTC for source code with full installation is too much!
For those interested, there are open source exchanges you can look into, not sure how updated they are but surely there will be something open source that is maintained available soon.
e.g.
https://github.com/dooglus/intersango
e.g.
https://github.com/dooglus/intersango
Yeah those random variables don't work really... I can tell what most of your variables are for.
I think I found the same security bug as the guy above me and another minor one, but these could lead to a hot wallet attacks with a couple of the right chained attacks.
I will not disclose it since people shouldn't be using drop in exchange software
I think I found the same security bug as the guy above me and another minor one, but these could lead to a hot wallet attacks with a couple of the right chained attacks.
I will not disclose it since people shouldn't be using drop in exchange software
Alright, just sayin'. I spent like 3 minutes on the site, less than 10 requests and i found security bugs. Nothing that would immediately allow you to steal stuff, but none the less.
Also, is using a random variable name meant to enhance security somehow or just piss people off?
zqfu1Q906oTCsYjmz3RoDWVWZNsGFPafgqcfYOmOaEo=yfxH6RPot9jTMi4hUx1y_r-xFZh9slMHjLmg&NUbOATQEKITiH-nrlgEThLMEDQQIySzPx7nD3gGuLB0=&SqOQB5zF_X2yDKO7owE329X0L3TgyE2zgLjOcE_TTIs=blah&7Iiu7XXy-G3ZIrOFZv2dU46N3pIwuWnyDt1q8zlIpaM=blah&O4OyL8IRzomeQ5_Tk2dO39rCctKkC7Zm5gM19JUxzQg=
For what its worth, i work as a penetration tester
EDIT: Happy to pentest for bitcoins, fyi.
Also, is using a random variable name meant to enhance security somehow or just piss people off?
zqfu1Q906oTCsYjmz3RoDWVWZNsGFPafgqcfYOmOaEo=yfxH6RPot9jTMi4hUx1y_r-xFZh9slMHjLmg&NUbOATQEKITiH-nrlgEThLMEDQQIySzPx7nD3gGuLB0=&SqOQB5zF_X2yDKO7owE329X0L3TgyE2zgLjOcE_TTIs=blah&7Iiu7XXy-G3ZIrOFZv2dU46N3pIwuWnyDt1q8zlIpaM=blah&O4OyL8IRzomeQ5_Tk2dO39rCctKkC7Zm5gM19JUxzQg=
For what its worth, i work as a penetration tester
EDIT: Happy to pentest for bitcoins, fyi.
There is a online demo with my source at http://exarena.net
Feel free to contact me for any bugs found or suggestions
Feel free to contact me for any bugs found or suggestions
Yeah you can always use them After that you will be in "list of hacked" exchanges like mtgox and the other ones I can guarantee that this source is very high secured.
After that you will be in "list of hacked" exchanges like mtgox and the other ones I can guarantee that this source is very high secured.How much do you want to risk on that guarantee? Words are cheap. Make public your demo site, put up a 100BTC bounty for anyone hacking it, and then your words carry weight. Until then, its just that, words.
Quote
If you have interest please contact me and i will send you a DEMO site to try your hacking skills
Im no hacker, but lets assume that I am. Why would I spend time finding flaws in a demo site? Why would I just not wait until someone actually uses your code so I have a hotwallet to empty?
Jump to: