[ Prev Page | Goto Content | Next Page ] =/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\=/=\ ;; All the small thingz ;; Тут мы выложили небольшие идеи в надежде что кому-то они понадобятся... [+] changing procname aka argv[0] best i i собственно на перле это так: i $mask = "vi"; i for ($i=1;$i<80;$i++){ $mask .= "\x00"; } i $0=$mask; i i Дарк в своих комментах под ником nometter написал что мол это не работает. i Дык нада запускать скрипт так: `./script.name.pl` i i На сях xmpl: i char mask[60]; i memset(&mask,0,60); i mask[0]="v"; i mask[1]="i"; i strcpy(argv[0],mask); i i Это очень старая фишка, я её впервые нашёл у thc в... daemonshell'e кажется. i i i [+] nice out ala teso_fun i i Просто красивый вывод статуса, скажем при брутфорсинге (из fuck_iwbdz.c): i i for ( flag=i; flag <= 65535; flag++ ){ i i if (flag < 16) i sprintf(statstr,"[+] Trying : \x30\x78\x30\x30\x30\x25\x78\r",flag); i i if ((flag >= 16) && (flag < 256)) i sprintf(statstr,"[+] Trying : \x30\x78\x30\x30\x25\x78\r",flag); i i if ((flag >= 256) && (flag < 256*16)) i sprintf(statstr,"[+] Trying : \x30\x78\x30\x25\x78\r",flag); i i if ((flag >= 256*16) && (flag < 256*256)) i sprintf(statstr,"[+] Trying : \x30\x78\x25\x78\r",flag); i i write(1,statstr,strlen(statstr)); i sleep(1); i } i i Тоже идея проста до безобразия: выводим строку фиксированной длинны с '\r' i на конце. i i [+] GOVno-net i i У нас пока мало инфы, хотя надо бы написать доку об этом. Вот что пока есть: i i URL: http://ppd.fnal.gov/experiments/cdms/old_files/asdf/ i i corpus:rPf3Ds1XhBpKs:cdms i eichblat:x.KZHapeWwA82x.KZHapeWwA82:steve i mspencer:JQRz7SCmLhXy2:mspencer i ktev:kUFB61wchBq6A:ktev i i URL: http://www-d0.fnal.gov/d0dist/etc/passwd i root:*:0:0:Super-User:: i ftp::8286:5461:Anonymous Ftp:: i i i OrgName: Executive Office Of The President USA i OrgID: EXOP i Address: 725 17th Street, NW i City: Washington i StateProv: DC i PostalCode: 20503 i Country: US i i NetRange: 198.137.240.0 - 198.137.241.255 i CIDR: 198.137.240.0/23 i NetName: NETBLK-EOPNET-C i NetHandle: NET-198-137-240-0-1 i Parent: NET-198-0-0-0-0 i NetType: Direct Allocation i NameServer: NS1-AUTH.SPRINTLINK.NET i NameServer: NS2-AUTH.SPRINTLINK.NET i Comment: i RegDate: 1993-05-21 i Updated: 2003-07-08 i i TechHandle: WDR1-ARIN i TechName: Reynolds, William i TechPhone: +1-202-395-6975 i TechEmail: [email protected] i i а телефон 1-202-xxx это не правительственные ли номера? 8)) i i CERFnet NETBLK-CERFNET-CBLK2 (NET-199-105-0-0-1) i 199.105.0.0 - 199.108.255.255 i i FirstGov.gov - Ashburn - Web ATTENS-008447-001067 (NET-199-107-69-64-1) i 199.107.69.64 - 199.107.69.127 i i ANS Communications, Inc BLK198-15-ANS (NET-198-80-0-0-1) i 198.80.0.0 - 198.81.255.255 i i Central Intelligence Agency OIT-BLK1 (NET-198-81-128-0-1) i 198.81.128.0 - 198.81.191.255 i i это для любителей экстримального отдыха )) i i Ещё немного: i casil/ i casil/usgs.gov/ i casil/usgs.gov/doqq/ i casil/usgs.gov/doqq/3211[45678]** i casil/usgs.gov/doqq/3311[45]** i casil/usgs.gov/doqq/33116/ i casil/usgs.gov/doqq/33116/?33116[abcde]** i casil/usgs.gov/README i casil/usgs.gov/README.html i casil/usgs.gov/README.png i casil/usgs.gov/index i i Я помню usgs.gov был взломан группой Hack-Warriors ;))) Потом сервак куда-то i пропал и кто-то кажется даже спросил "а был ли мальчик?".. Был как видите. i i [+] GOVno-net dirty scanz i i "ФБР, Судебное ведомство, Правительство... i Чёрт, Кевин, это потрясающе!" i (c) "Takedown" movie i i Whitehouse & Executive Office of the PRESIDENT : i 198.137.240.70 : cyclops.whitehouse.gov (.GOV | US Government) i 198.137.240.92 : whitehouse.gov (.GOV | US Government) i 198.137.240.94 : mm1.whitehouse.gov (.GOV | US Government) i 198.137.240.112 : z22.whitehouse.gov (.GOV | US Government) i 198.137.241.4 : e001.eop.gov (.GOV | US Government) i 198.137.241.10 : sseop104.eop.gov (.GOV | US Government) i 198.137.241.11 : sseop101.eop.gov (.GOV | US Government) i 198.137.241.12 : sseop102.eop.gov (.GOV | US Government) i 198.137.241.13 : sseop103.eop.gov (.GOV | US Government) i 198.137.241.23 : sseop01.eop.gov (.GOV | US Government) i 198.137.241.24 : sseop02.eop.gov (.GOV | US Government) i 198.137.241.40 : whc.eop.gov (.GOV | US Government) i 198.137.241.41 : wh141.eop.gov (.GOV | US Government) i 198.137.241.42 : wh142.eop.gov (.GOV | US Government) i 198.137.241.43 : wh243.eop.gov (.GOV | US Government) i 198.137.241.44 : wh244.eop.gov (.GOV | US Government) i 198.137.241.45 : mailhub-wh.eop.gov (.GOV | US Government) i 198.137.241.47 : smeop16.eop.gov (.GOV | US Government) i 198.137.241.48 : smeop01.eop.gov (.GOV | US Government) i 198.137.241.50 : eopc.eop.gov (.GOV | US Government) i 198.137.241.51 : eop151.eop.gov (.GOV | US Government) i 198.137.241.52 : eop152.eop.gov (.GOV | US Government) i 198.137.241.53 : eop253.eop.gov (.GOV | US Government) i 198.137.241.54 : eop254.eop.gov (.GOV | US Government) i 198.137.241.55 : mailhub-eop.eop.gov (.GOV | US Government) i 198.137.241.58 : seomb01.eop.gov (.GOV | US Government) i 198.137.241.60 : sawho14.eop.gov (.GOV | US Government) i 198.137.241.61 : sawho04.eop.gov (.GOV | US Government) i i CIA: i 198.81.128.68 : ain.cia.gov (.GOV | US Government) i 198.81.129.100 : cia.cia.gov (.GOV | US Government) i 198.81.129.101 : www2.cia.gov (.GOV | US Government) i 198.81.129.103 : www.intelligence.gov (.GOV | US Government) i 198.81.129.186 : relay7.ucia.gov (.GOV | US Government) i 198.81.129.193 : relay1.ucia.gov (.GOV | US Government) i 198.81.129.194 : relay2.ucia.gov (.GOV | US Government) i 198.81.129.222 : ex-rtr-129.ucia.gov (.GOV | US Government) i 198.81.129.230 : res.odci.gov (.GOV | US Government) i 198.81.129.231 : comm.cia.gov (.GOV | US Government) i i Pentagon subnet: i 131.84.1.2 : sys724e.dtic.mil (.MIL | US Military) i 131.84.1.3 : sys723e.dtic.mil (.MIL | US Military) i 131.84.1.6 : biptest.dtic.mil (.MIL | US Military) i 131.84.1.8 : newsedge1.dtic.mil (.MIL | US Military) i 131.84.1.9 : newsedge2.dtic.mil (.MIL | US Military) i 131.84.1.13 : dlup1-stg.dtic.mil (.MIL | US Military) i 131.84.1.16 : ftp5.dtic.mil (.MIL | US Military) i 131.84.1.19 : mails.dtic.mil (.MIL | US Military) i 131.84.1.20 : test1.dtic.mil (.MIL | US Military) i 131.84.1.21 : test2.dtic.mil (.MIL | US Military) i 131.84.1.22 : bigipns.dtic.mil (.MIL | US Military) i 131.84.1.24 : s8-11.dtic.mil (.MIL | US Military) i 131.84.1.26 : ca.pfpa-stg.dtic.mil (.MIL | US Military) i 131.84.1.29 : dtics22.dtic.mil (.MIL | US Military) i 131.84.1.30 : dstp.dtic.mil (.MIL | US Military) i 131.84.1.32 : web.dtic.mil (.MIL | US Military) i 131.84.1.34 : www.dtic.mil (.MIL | US Military) i 131.84.1.37 : apps-dev.dtic.mil (.MIL | US Military) i 131.84.1.38 : atep.dtic.mil (.MIL | US Military) i 131.84.1.39 : ramcc-stg.dtic.mil (.MIL | US Military) i 131.84.1.40 : ramcc.dtic.mil (.MIL | US Military) i 131.84.1.41 : ns1.dtic.mil (.MIL | US Military) i 131.84.1.42 : ns2.dtic.mil (.MIL | US Military) i 131.84.1.43 : hdl.dtic.mil (.MIL | US Military) i 131.84.1.44 : ca-dev.dtic.mil (.MIL | US Military) i 131.84.1.45 : handle.dtic.mil (.MIL | US Military) i 131.84.1.48 : deployment.dtic.mil (.MIL | US Military) i 131.84.1.49 : md-dev.dtic.mil (.MIL | US Military) i 131.84.1.51 : webit-dev.dtic.mil (.MIL | US Military) i 131.84.1.52 : webit.dtic.mil (.MIL | US Military) i 131.84.1.53 : vsearch-dev.dtic.mil (.MIL | US Military) i 131.84.1.54 : vamp-stg.dtic.mil (.MIL | US Military) i 131.84.1.55 : gw-dev.dtic.mil (.MIL | US Military) i 131.84.1.57 : www-sec.dtic.mil (.MIL | US Military) i 131.84.1.58 : deflink-lb.dtic.mil (.MIL | US Military) i 131.84.1.59 : horizontalfusion.dtic.mil (.MIL | US Military) i 131.84.1.60 : www.defenselink.mil (.MIL | US Military) i 131.84.1.61 : comptroller.dtic.mil (.MIL | US Military) i 131.84.1.63 : pentagon.gov (.GOV | US Government) i 131.84.1.65 : doc.dtic.mil (.MIL | US Military) i 131.84.1.66 : catalog.dtic.mil (.MIL | US Military) i 131.84.1.67 : ca.dtic.mil (.MIL | US Military) i 131.84.1.68 : horizontalfusion-stg.dtic.mil (.MIL | US Military) i 131.84.1.69 : gwvi.dtic.mil (.MIL | US Military) i 131.84.1.70 : jtfcs-dev.dtic.mil (.MIL | US Military) i 131.84.1.73 : ca-stg.dtic.mil (.MIL | US Military) i 131.84.1.74 : atep-stg.dtic.mil (.MIL | US Military) i 131.84.1.75 : defenselink.dtic.mil (.MIL | US Military) i 131.84.1.76 : dlup1.dtic.mil (.MIL | US Military) i 131.84.1.78 : lsearch-dev.dtic.mil (.MIL | US Military) i 131.84.1.79 : rdss-dev.dtic.mil (.MIL | US Military) i 131.84.1.80 : rdss.dtic.mil (.MIL | US Military) i 131.84.1.81 : lsearch.dtic.mil (.MIL | US Military) i 131.84.1.82 : vte-dev.dtic.mil (.MIL | US Military) i 131.84.1.83 : vteora-dev.dtic.mil (.MIL | US Military) i 131.84.1.84 : stinet-dev.dtic.mil (.MIL | US Military) i 131.84.1.85 : ums-dev.dtic.mil (.MIL | US Military) i 131.84.1.87 : vsearch.dtic.mil (.MIL | US Military) i 131.84.1.88 : doctrine.dtic.mil (.MIL | US Military) i 131.84.1.89 : premis-dev.dtic.mil (.MIL | US Military) i 131.84.1.95 : ocpa-dev.dtic.mil (.MIL | US Military) i 131.84.1.96 : koreastg.dtic.mil (.MIL | US Military) i 131.84.1.97 : listserv-dev.dtic.mil (.MIL | US Military) i 131.84.1.99 : premis.dtic.mil (.MIL | US Military) i 131.84.1.100 : listserv.dtic.mil (.MIL | US Military) i 131.84.1.101 : comptroller-stg.dtic.mil (.MIL | US Military) i 131.84.1.102 : fms-stg.dtic.mil (.MIL | US Military) i 131.84.1.103 : dlstg.dtic.mil (.MIL | US Military) i 131.84.1.104 : comptroller-dev.dtic.mil (.MIL | US Military) i 131.84.1.105 : datahouse.dtic.mil (.MIL | US Military) i 131.84.1.106 : datahouse-dev.dtic.mil (.MIL | US Military) i 131.84.1.107 : gulflinkds.dtic.mil (.MIL | US Military) i 131.84.1.108 : iac-dev.dtic.mil (.MIL | US Military) i 131.84.1.109 : acecenter.dtic.mil (.MIL | US Military) i 131.84.1.110 : fms.dtic.mil (.MIL | US Military) i 131.84.1.111 : dticzt.dtic.mil (.MIL | US Military) i 131.84.1.114 : register-dev.dtic.mil (.MIL | US Military) i 131.84.1.115 : dstp-dev.dtic.mil (.MIL | US Military) i 131.84.1.117 : topics-dev.dtic.mil (.MIL | US Military) i 131.84.1.118 : topics.dtic.mil (.MIL | US Military) i 131.84.1.120 : sentry.dtic.mil (.MIL | US Military) i 131.84.1.121 : sentry-dev.dtic.mil (.MIL | US Military) i 131.84.1.122 : dms-ca.dtic.mil (.MIL | US Military) i 131.84.1.124 : register.dtic.mil (.MIL | US Military) i 131.84.1.125 : ddre-dev.dtic.mil (.MIL | US Military) i 131.84.1.126 : ddre.dtic.mil (.MIL | US Military) i 131.84.1.130 : nca.dtic.mil (.MIL | US Military) i 131.84.1.132 : oversight.dtic.mil (.MIL | US Military) i 131.84.1.133 : www.cpa-iraq.org (.ORG | Non-Profit Organization) i 131.84.1.134 : stint-dev.dtic.mil (.MIL | US Military) i 131.84.1.135 : fms-dev.dtic.mil (.MIL | US Military) i 131.84.1.137 : pcstravel-dev.dtic.mil (.MIL | US Military) i 131.84.1.138 : dcaa.dtic.mil (.MIL | US Military) i 131.84.1.139 : ocpa-stg.dtic.mil (.MIL | US Military) i 131.84.1.140 : korean.dtic.mil (.MIL | US Military) i 131.84.1.143 : dticthesaurus.dtic.mil (.MIL | US Military) i 131.84.1.145 : smo.dtic.mil (.MIL | US Military) i 131.84.1.146 : disadev-ca.dtic.mil (.MIL | US Military) i 131.84.1.147 : army.dtic.mil (.MIL | US Military) i 131.84.1.148 : rci-dev.dtic.mil (.MIL | US Military) i 131.84.1.149 : rci.army.mil (.MIL | US Military) i 131.84.1.150 : defendamerica-stg.dtic.mil(.MIL | US Military) i 131.84.1.151 : zt151.dtic.mil (.MIL | US Military) i 131.84.1.158 : intrapfpa-dev.dtic.mil (.MIL | US Military) i 131.84.1.160 : c3i-prod.dtic.mil (.MIL | US Military) i 131.84.1.161 : dlupl-dev.dtic.mil (.MIL | US Military) i 131.84.1.162 : sites.defenselink.mil (.MIL | US Military) i 131.84.1.163 : iac.dtic.mil (.MIL | US Military) i 131.84.1.164 : ccorder.dtic.mil (.MIL | US Military) i 131.84.1.165 : acecenter-dev.dtic.mil (.MIL | US Military) i 131.84.1.166 : search.dtic.mil (.MIL | US Military) i 131.84.1.167 : disa-dev.dtic.mil (.MIL | US Military) i 131.84.1.168 : disa.dtic.mil (.MIL | US Military) i 131.84.1.169 : apps.dtic.mil (.MIL | US Military) i 131.84.1.170 : media.dtic.mil (.MIL | US Military) i 131.84.1.171 : disa-ca.dtic.mil (.MIL | US Military) i 131.84.1.172 : dmsdev-ca.dtic.mil (.MIL | US Military) i 131.84.1.173 : handle-dev.dtic.mil (.MIL | US Military) i 131.84.1.178 : vte.dtic.mil (.MIL | US Military) i 131.84.1.179 : broadcast.dtic.mil (.MIL | US Military) i 131.84.1.180 : ora1.dtic.mil (.MIL | US Military) i 131.84.1.184 : trstint-dev.dtic.mil (.MIL | US Military) i 131.84.1.185 : trstint.dtic.mil (.MIL | US Military) i 131.84.1.188 : jab1.dtic.mil (.MIL | US Military) i 131.84.1.189 : premis1-dev.dtic.mil (.MIL | US Military) i 131.84.1.190 : stint.dtic.mil (.MIL | US Military) i 131.84.1.191 : disa-stg.dtic.mil (.MIL | US Military) i 131.84.1.192 : datahouse-stg.dtic.mil (.MIL | US Military) i 131.84.1.193 : disa-castg.dtic.mil (.MIL | US Military) i 131.84.1.194 : aerospace-dev.dtic.mil (.MIL | US Military) i 131.84.1.198 : lad.dtic.mil (.MIL | US Military) i 131.84.1.202 : sys202.dtic.mil (.MIL | US Military) i 131.84.1.203 : kwcc.dtic.mil (.MIL | US Military) i 131.84.1.204 : pfpa-dev.dtic.mil (.MIL | US Military) i 131.84.1.205 : help.dtic.mil (.MIL | US Military) i 131.84.1.206 : pfpa-stg.dtic.mil (.MIL | US Military) i 131.84.1.207 : dodcpa-dev.dtic.mil (.MIL | US Military) i 131.84.1.208 : dodcpa.dtic.mil (.MIL | US Military) i 131.84.1.209 : multisearch.dtic.mil (.MIL | US Military) i 131.84.1.210 : multisearch-dev.dtic.mil (.MIL | US Military) i 131.84.1.211 : dttis.dtic.mil (.MIL | US Military) i 131.84.1.212 : dttis-dev.dtic.mil (.MIL | US Military) i 131.84.1.213 : pacom-dev.dtic.mil (.MIL | US Military) i 131.84.1.216 : dsearch-dev.dtic.mil (.MIL | US Military) i 131.84.1.217 : dsearch.dtic.mil (.MIL | US Military) i 131.84.1.219 : fvap.gov (.GOV | US Government) i 131.84.1.220 : fvap-dev.dtic.mil (.MIL | US Military) i 131.84.1.221 : ra-dev.dtic.mil (.MIL | US Military) i 131.84.1.222 : ra.dtic.mil (.MIL | US Military) i 131.84.1.227 : training.dtic.mil (.MIL | US Military) i 131.84.1.228 : register-stg.dtic.mil (.MIL | US Military) i 131.84.1.230 : pfpa.dtic.mil (.MIL | US Military) i 131.84.1.232 : nikudemo.dtic.mil (.MIL | US Military) i 131.84.1.234 : atep-dev.dtic.mil (.MIL | US Military) i 131.84.1.235 : ca-pfpa.dtic.mil (.MIL | US Military) i 131.84.1.236 : ca.pfpa-dev.dtic.mil (.MIL | US Military) i 131.84.1.237 : hfetag-dev.dtic.mil (.MIL | US Military) i 131.84.1.238 : hfetag-stg.dtic.mil (.MIL | US Military) i 131.84.1.239 : hfetag.dtic.mil (.MIL | US Military) i 131.84.1.242 : fdp1.dtic.mil (.MIL | US Military) i 131.84.1.243 : fdd3.dtic.mil (.MIL | US Military) i 131.84.1.244 : fdp2.dtic.mil (.MIL | US Military) i 131.84.1.247 : pcc-dev.dtic.mil (.MIL | US Military) i 131.84.1.248 : pcdc.dtic.mil (.MIL | US Military) i 131.84.1.252 : smtp2.dtic.mil (.MIL | US Military) i 131.84.1.254 : nfuse.dtic.mil (.MIL | US Military) i i Shimo, we watchin' u! ;) (c) unknown hacker i i [+] Chkrootkit bugz i i О них не так широко известно на публике, но они есть. Причём найти их не i составляет и труда. i i idea: i Chkrootkit ищет в бинарниках строки "/bin/*sh", "1337", "r00t",etc. Короче, i всякие попытки вызвать из него что-либо похожее на шелл.Если ничего подобного i он не находит, то всё тихо. Отсюда и все идеи: i i 1. system("../../../../../../../../../../../../../bin/sh"); i очень просто. Вообще, у меня сейчас нету под рукой исходников, i chkrootkit'a, так что не могу точно сказать... i i 2. system("/bin/s`echo h` -i"); i вот при таком подходе chkrootkit однозначно отдыхает )) Т.к. i способов закодить sh-команды тьма, админу придётся не легко. i i i [+] X-crew proudly presentz: free spam list i i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [email protected] i [~] [ Prev Page | Goto Content | Next Page ]