I-Hacked.com syndication http://www.i-hacked.com 2012-02-03T22:18:13+01:00 http://www.i-hacked.com http://www.i-hacked.com/images/M_images/joomla_rss.png text/html 2012-01-01T23:39:06+01:00 http://www.i-hacked.com http://www.i-hacked.com/content/view/294/2/ The lack of updates in 2011 was nothing short of embarrassing. Well I have some exciting news, I-Hacked is evolving into a community-driven web application with a simple mission: Provide the most up-to-date and correct process for hacking all of your consumer electronics. In order for this to happen, I am reaching out to the hacking community for help. I am looking for people who are interested in joining a select team who will create a new internet application to fill this requirement. Specifically I am looking for: PHP developers API developers Web designers Product people (ideas)Find our more and how you can help at http://www.i-hacked.com/2012 (http://www.i-hacked.com/2012) text/html 2011-02-03T10:13:06+01:00 http://www.i-hacked.com http://www.i-hacked.com/content/view/293/2/ This presentation will explore the multiple security issues within Evite and exploit them using Social Engineering attacks for huge lulz. Grab a beer and sit back as you watch the fireworks while the bride confronts her friend who just called her fat. Go ahead, click YES to that Evite because after this presentation there will be no more dull parties! From taking over accounts, impersonating guests or banning them forever, Evite just got a whole lot more fun.<<< DOWNLOAD PRESENTATION (/freefiles/shmoo evite print.pdf) >>> text/html 2010-07-07T17:58:48+01:00 http://www.i-hacked.com http://www.i-hacked.com/content/view/289/2/ I-Hacked just turned 10 and we want YOU to win.. How about a free entry to Defcon18 (http://defcon.org)? I-Hacked will be giving away a free Defcon18 Human Badge which gives the holder entry to the World's largest hacker conference to a lucky winner! All you have to do to enter is:1) Follow @ihacked (http://twitter.com/ihacked) on twitter2) Tweet (http://twitter.com/home?status=So%20@ihacked%20turned%20ten,%20and%20this%20is%20my%20entry%20to%20win.%20Retweet%20this%20for%20a%20chance%20at%20a%20free%20defcon%20ticket%20(http://bit.ly/bOsqSL%204info)) this phrase:So @ihacked turned ten, and this is my entry to win. Retweet this for a chance at a free defcon ticket (http://bit.ly/bOsqSL 4info)Here are the rules:Each time you tweet the COMPLETE phrase above, it counts as an entry into the contestYou can enter as many times as you wantHowever, You can only enter ONCE per dayYou need to be following @ihacked to win The winner will be chosen randomly, so the more entries you have the better your chances. The winner will be notified via a Twitter direct message on Wed July 28th, You DO NOT need to be present in Vegas for Defcon to win. However, if you win and you are not in Vegas, you will be mailed a badge. I mean, it isn't our fault you were not there to use it. =)No purchase necessary, please click here (http://twitter.com/home?status=So @ihacked turned ten, and this is my entry to win. Retweet this for a chance at a free defcon ticket (http://bit.ly/bOsqSL 4info)) for a free entry LEADER BOARD STATS POSTED HERE (http://www.i-hacked.com/content/view/289/1/) text/html 2010-05-03T00:08:09+01:00 http://www.i-hacked.com http://www.i-hacked.com/content/view/288/42/ Recently I needed a way of building an executable on a remote machine using only a keyboard. Basically I needed to type out an executable (think of it as I had a very basic ah-hem shell that I wanted to make more secure). Because my target host was Windows based, it is not as easy as uploading and compiling from source. I could of course simply use tricks found at http://commandlinekungfu.com (http://commandlinekungfu.com) to download the file, however I wanted to find a solution where this system didn't create any outgoing requests that resulted in the downloading of an executable. The technique described below is already being used by some very common cyber-security tools such as Fasttrack (http://secmaniac.com/) and sqlmap (http://sqlmap.sourceforge.net/). It is an interesting solution, one that might help you out with a project in the future. The problem is that you cant simply type out an executable binary. There are multiple characters that are not printable ascii, so your binary will fail if you try. However there are some tools that will allow us to convert the already compiled binary into ascii printable debug scripts, which can be reassembled using the native debug command on windows machines. Thus creating a portable binary that is Ascii printable, therefore gives us the ability to type out an executable In order to do this we need a few things: The Executable we want to transfer UPX Packer (not needed but helpful) dbgtool (Python (https://svn.sqlmap.org/sqlmap/trunk/sqlmap/extra/dbgtool/dbgtool.py) / Windows (http://www.toolcrypt.org/)) For this article we will be using the windows Ncat binary (http://nmap.org/ncat/ (http://nmap.org/ncat/)) and since my machine is OSX, the python based tools in our example. Ncat Ncat is a feature-packed networking utility which will read and write data across a network from the command line. Ncat was written for the Nmap Project as a much-improved reimplementation of the venerable Netcat. It uses both TCP and UDP for communication and is designed to be a reliable back-end tool to instantly provide network connectivity to other applications and users. Ncat will not only work with IPv4 and IPv6 but provides the user with a virtually limitless number of potential uses. Because our target is a windows host, we need to download and unpack nmap (http://nmap.org/download.html) for Windows (ncat now is packaged with nmap). Because we are going to communicating this executable via ?keyboard? or some other slow method, we would be smart to compress this file as much as possible before we convert it. We will need to use a packer that self decompresses and retains the ability to execute. UPX is a free, portable, extendable, high-performance executable packer for several different executable formats. It achieves an excellent compression ratio and offers very fast decompression. Your executables suffer no memory overhead or other drawbacks for most of the formats supported, because of in-place decompression. Install UPX on your system: OSX: sudo port install upx Debian: sudo apt-get install upx-nrv Windows: Download (http://upx.sourceforge.net/) As you can see below, ncat can be compressed over 32% - totally worth it. (be warned, UPX packing executables decreases the stealthyness) hevnsnt$ upx -9 -o ncat-upx.exe ncat.exe Ultimate Packer for eXecutables Copyright (C) 1996 - 2009 UPX 3.05w Markus Oberhumer, Laszlo Molnar John Reiser Apr 27th 2010 File size Ratio Format Name -------------------- ------ ----------- ----------- 175104 -> 57344 32.75% win32/pe ncat-upx.exe Next we need to convert the UPX packed binary into a ASCII debug script, using the dbtool listed above: python ./dbgtool.py -i ncat-upx.exe -o ncat-upx.scr Take a second and open the ncat-upx.scr in whatever your favorite text editor is. As you can see, you now have a portable executable that is in printable ASCII. Upload nc_upx.scr to the target Windows system (either by pasting in your shell, or however you need to do it) and then reconvert your binary to an executable with the following command: debug<DEBUGSCRIPT.scr C:\>debug<ncat-upx.scr There will be some debug output such as this: e df00 57 53 32 5f 33 32 2e 64 6c 6c e df0c 4c 6f 61 64 4c 69 62 72 61 72 79 41 e df1a 47 65 74 50 72 6f 63 41 64 64 72 65 73 73 e df2a 56 69 72 74 75 61 6c 50 72 6f 74 65 63 74 ------SNIP------ This debug script will write a new file named #TEMP#. Simply rename this file to ncat-upx.exe and execute. Better get your ncat-fu ready, because your super over complicated, slow, ninja file upload is complete! text/html 2010-01-25T17:46:17+01:00 http://www.i-hacked.com http://www.i-hacked.com/content/view/287/2/ ShmooCon for Hope For Haiti TicketALL PROCEEDS TO GO TO RED CROSS FOR HAITI DONATIONSFor sale: 1 ShmooCon 2010 Entry Barcode (http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=130361885317). (via ebay) Please bid it up, because I will donate 100% of all proceeds of this action to help the unfortunate victims of the earthquake in Haiti via Red Cross. Do the right thing, bid often and please help spread the word via Twitter using hashtag #IhackedHaiti (http://search.twitter.com/search?q=%23i-hackedHaiti)What you will Receive:1 Unused Shmoocon 2010 Barcode which will allow you entry to one of the best security conferences in the world. You will receive this via email within one day of the auctions completion.FREE access to the exclusive Shmoocon party (featuring free drinks of course). Get to meet all the security celebs you have heard of! Free back-rub and lapdance from the DNS man himself, Dan Kaminsky!*Product InformationTitle: ShmooConEvent Type: Security ConfereceVenue Name: Wardman Park MarriottDate: Feb 5 - 7 2010Event Name: ShmooConCity: Washington D.C.State: D.C.*Note: Dan pretty much does this to everyone, so chances are you will get it -- but I am not promising anything.