User Controls
Posts by SBTlauien
-
2017-01-25 at 3:57 AM UTC in Rioting next weekI live near Portland but I'm not going to riot. I like watching it though.
-
2017-01-24 at 10:57 PM UTC in List some clearnet/deepweb OffSec forums.
Originally posted by Sophie Is the new one where you have to pay BTC for an admittance fee or some shit?
You should never pay an admittance fee to a forum. That's garbage. -
2017-01-24 at 7:21 AM UTC in Open Ports ChangingSo what exactly is in proc/net/{tcp, tcp6, udp, udp6}? How is this different than running 'netstat' aside from the way it's presented?
Also, aren't most types of Linux rootkits designed to install a new 'netstat' that won't show it's own connections? Since the proc/net/{tcp, tcp6, udp, udp6} files are updated via the Kernal, wouldn't it be much more difficult for malware to edit/change the files? -
2017-01-23 at 6:27 AM UTC in how to have phunOr trade the drugs for a hooker.
How much in drugs though? You can go to Vegas from where I live, for like four nights, for about $600 or so. That includes two way plane tickets, and the hotel(not parking, rental, gambling, drinking, eating, shows, and all the other optional things).
I wish I had put some of drug money when I was younger, into vacations... -
2017-01-23 at 5:25 AM UTC in For practice and fun, you may request a software you'd like to see developed and i will try to make it.
Originally posted by Sophie I would certainly be willing to try, no guarantee of success though. What do you have in Python so far?
Once I find the code, I'll put it up. Basically, I have a countdown timer and a little indicator that would pop up near my clock. I was experimenting with some Bash scripts I came across online but none actually spoofed my mac. I know of another way to do it though. I also made the part that keeps track of/reads from the file that has the users credentials. -
2017-01-23 at 5:13 AM UTC in Assigning C structs into array?
Originally posted by Merlin Yes you did. It inspired me to get back to C network programming.
This site here has some great examples. It's what I've been using. But I have been doing most of it on Android, so I can send packets and do network attacks via my phone. I know there are apps that do this, I like doing it on my own.
How does the Arpspoof program work for you on your machines? I'm not getting many packets. It looks like a lot of the packets are repeats as well. -
2017-01-23 at 4:32 AM UTC in Open Ports ChangingThe weirdest thing is, it's not doing it now. I know it was before, and I was literally checking over and over again. But it's not doing it now. With this new phone, I do get a strange message occasionally, and I believe it's bloatware. So maybe I just need to root and remove the bloatware.
Also, running 'netstat -an' I can see the open ports, but I can't see what program is running them. Also, I don't think 'netstat' shows all opened ports. When I browse this site on my phone, it's technically opening ports for the communication, I don't think 'netstat' shows those. Running 'cat proc/net/tcp' will show those ports though. -
2017-01-23 at 3:33 AM UTC in Help Me Recover/Find A ProjectI started a little project and had around five or six files inside a folder(at least two were images), and somehow this folder went missing. What makes this stranger(for me) is that I have somewhat good at backing up my source code. I did have to run the program(which was written in Python and used Bash scripts) as root, so I am wondering if that has something to do with it.
This project was started on my old OS, which is on a secondary hdd in my PC(I install each new updated OS onto one of my two primary hdd in my PC, so that I still have a copy of my previous OS). I know for a fact that this project was started on that hdd but I can't find those files.
What type of forensics software could possibly pull up this stuff? I run Ubuntu. -
2017-01-23 at 1:07 AM UTC in Assigning C structs into array?Didn't I just post this link here? As far as the question goes, I'm new to C to know.
-
2017-01-23 at 1:03 AM UTC in Open Ports ChangingThe ports are always above 30,000. Im scanning using an app I made for my phone, it uses Java to attempt to connect to ports in sequential order(but I plan to change the order in which it scans).
So I start scanning and let's say it's coming up on the 50*** region, and no open ports have been detected yet. There will be ports like 52124, 52156, and 52192, all open. If I immediately go back and start a scan at 52000, no ports will have been detected open in the whole 52*** region. However, if I go back again but all the way to like 40000, three open ports will be detected in this area, but if I go back and rescan them, they are all closed and have opened somewhere else. They usually open up a little ways back(in sequential).
Like this...
I start the scan at 30000 and see that these ports are open - 52123, 52155, 52198
I start a new scan at 30000 and see that these ports are open - 49248, 49311, 49354 (The previous open ports are now closed)
I start a new scan at 30000 and see that these ports are open - 45567, 45591, 46875 (The previous open ports are now closed)
I start a new scan at 30000 and see that these ports are open - 41587, 41631, 41672 (The previous open ports are now closed)
I start a new scan at 30000 and see that these ports are open - 39874, 39912, 39945 (The previous open ports are now closed)
My phone does not have root access and is fairly new. -
2017-01-22 at 10:49 AM UTC in how to have phunSell the drugs and go out and have some clean fun.
-
2017-01-22 at 8:57 AM UTC in What do you think?
Originally posted by SCronaldo_J_Trump and my keyboard is like 9" right now
As in 'nine inches in width'? Like one of those little backup keyboards?
Anything beats 9", but your picture quality is horrible. They keyboard is back lit, right? I have to get a new keyboard as well. -
2017-01-22 at 5:18 AM UTC in The plight of the modern American
Originally posted by Sir slappy the sea turtle But she's drinking diet pepsi guys!
When I was in high school, working at Burger King..."I want #1, king size, with extra cheese, no veggies, two Hersey sundae pies, two strawberry shortcake pies, and diet coke for the meal." -
2017-01-22 at 4:21 AM UTC in What is this?But still what is 'WebProxy/1.0 Pre-beta'?
This is all I could find and it's very recent.
http://serverfault.com/questions/819088/what-is-webproxy-1-0-pre-beta
Sprint? -
2017-01-22 at 4:14 AM UTC in Open Ports ChangingWhat is with certain open ports changing? Right after I scan them, they change.
Not just on my phone but also on certain servers. I've noticed that there are three on my phone, and after I scan the first, it changes all three to lower port numbers. Consistently. -
2017-01-21 at 5:21 AM UTC in What is this?I fixed the backwardness...
for (int i = ip.length() - 2; i > -1; i = i - 2) {
newIp = newIp + Integer.valueOf(ip.substring(i, i + 2), 16) + ".";
}
...definentely much better. So how does one break this down? To me it looks as if these IPV6 addresses have four addresses bundle into one. Guess it's back to the books... -
2017-01-21 at 2:31 AM UTC in Does FB keylog?
Originally posted by Sophie Seeing as it is an open source project all the codez are up on github https://github.com/RyanJenkins/ISS So go ahead and review it for secret keylogging.
Just because it's up on github, doesn't mean that it's the same forum/server software that's running. Lanny could easily put some extras in, maybe try to hide a little script in an image or something. I don't think Lanny would though, and if he did, we could possibly detect. -
2017-01-21 at 2:25 AM UTC in Does FB keylog?
Originally posted by SCronaldo_J_Trump Just don't use computers /problem solved /thread
*Just learn how to use computers /problem solved /thread -
2017-01-21 at 2:20 AM UTC in What is this?
Originally posted by Merlin I looked at my /proc/net/tcp (pc) and nothing seems out of the ordinary, this is on your phone?
Are you certain you are converting the address correctly, for example: 1404A8C0 == 192.168.4.20
edit: it's little endian (aka backwards), and each two hex chars is an octet/byte/quarter ip address
I noticed the addresses were backwards when I had started this. Like the address for this site is backwards in my /proc/net/tcp file. For instance it shows up as '49.112.88.167' rather than '167.88.112.49'. I've just been flipping them manually...
This here is the current code, I mostly came up with, to read and format this. 'item' is an ArrayList of type String. I add to 'item' each entry of the file, in a specific format, so that my program can output it correctly. I need to fix it so that it doesn't display it backwards though. Is it horrible?
item = new ArrayList<>();
String ss[] = new String[4]; ss[0] = "tcp"; ss[1] = "tcp6"; ss[2] = "udp"; ss[3] = "udp6";
for (int ii = 0; ii < ss.length; ii++) {
String s[] = Shells.ShellCommand("catNetTcp", "cat /proc/net/" + ss[ii], false).split("\\r?\\n");
for (int x = 1; x > 0 && x < s.length; x++) {
String ip = s[x].trim().split("\\s+")[1].split(":")[0];
String newIp = "";
String port = s[x].trim().split("\\s+")[1].split(":")[1];
int newPort = Integer.parseInt(port, 16);
for (int i = 0; i < ip.length(); i = i + 2) {
newIp = newIp + Integer.valueOf(ip.substring(i, i + 2), 16) + ".";
}
String remoteIP = s[x].trim().split("\\s+")[2].split(":")[0];
String newRemoteIP = "";
String remotePort = s[x].trim().split("\\s+")[2].split(":")[1];
int newRemotePort = Integer.parseInt(remotePort, 16);
for (int i = 0; i < remoteIP.length(); i = i + 2) {
newRemoteIP = newRemoteIP + Integer.valueOf(remoteIP.substring(i, i + 2), 16) + ".";
}
StringBuilder sb = new StringBuilder();
sb.append("IP: " + newIp.substring(0, newIp.length() - 1) + ":" + newPort + "\n");
sb.append("REMOTE IP: " + newRemoteIP.substring(0, newRemoteIP.length() - 1) + ":" + newRemotePort + "\n");
sb.append("UID: " + s[x].trim().split("\\s+")[7] + "\n");
sb.append("TYPE: " + ss[ii].toUpperCase());
item.add(sb.toString());
}
}
The local/remote is what I'm confused about. I have what appears to be a local AND remote IP. Both different, both public IPs. I was thinking this had to do with IPV6 or something though.
Here's a screen shot of what it looks like, although these addresses are backwards.
Also I am confused on my ip address. When I check these two sites at the same time, it appears as if I have an IPV4 address and an IPV6 address...
-
2017-01-21 at 12:52 AM UTC in What is this?
Originally posted by mmQ DUDE. THAT'S BAD. HOLY SHIT THAT'S FUCKING BAD!
Can't be that bad. Are these DNS proxies or something?
