HackTalk

From Reverse Shell To Reverse PTY Shell

This post will be very brief and just cover a little known technique for spawning a pseudo-terminal which allows for executing commands such as su, sudo, ssh, telnet, etc.

READ MORE

How to do it wrong

As I’m sure many of you HackTalkers have read, UFC.com was recently defaced which led to Dana White essentially daring Anonymous to do it again.

More after the fold

READ MORE

Tweets for 2012-01-26

• @Wh1t3Rabbit anytime #
• @ashby hacktalk.net #
• @ashby the blog is at blog.hacktalk.net but I haven't been keeping up with it lately, hope to get back to blogging VERY soon #
• @ashby yea it's pretty nice in there and some really knowledgeable people too #
• @ashby check out IRChon #
• How are you tweeps tonight ? #
• New Exploit [webapps] – WordPress http://t.co/4cdDpKv8 #Exploit #
• @Dawseeeyy Glad to hear you are doing good #
• @grap3_ap3 Pretty okay I guess, contemplating wtf to do tbh #
• #SOTU I don't have anything to say about it just wondering how many new followers I'll get by using this hashtag. Bring On The Bots! #
• HackTalk Forum Daily is out! http://t.co/QLiogMNK #
• Confessions of a Google junkie (or, Privacy? What privacy?): A lot has been made of Google's new privacy policy … http://t.co/kjylbjZk #
• @c0rrupt_net old and fake #
• @MrAnonymous2600 KF? #
• Windstream's customer database used by employee for identity theft: A now-former Windstream employee is in jail … http://t.co/T3dcPd7A #

Tweets for 2012-01-25

• RT @k3170Makan: Added some google dorks to my blog,check out the top of the right column @hacktalkblog @grap3_ap3 @philippdowling @WokoFreak #
• New Exploit [webapps] – DirectAdmin ADD Sub Domain CSRF Exploit: http://t.co/lq9QwXmZ #Exploit #
• @ctrl1T Thanks for your follow as well #
• @realytcracker haha nice #
• @realytcracker Like a boss #
• 15 leaders in smart grid security: Security concerns for the intelligent power distribution system will require … http://t.co/IVoxhLEV #
• New Exploit [papers] – A Backdoor in the Next Generation Active Directory: http://t.co/kDugXo6P #Exploit #
• RT @k3170Makan: PhpBridges Blog System SQL injection: inurl:"members.php?id=*" + intext:"Warning:" | intext:"MySQL" #
• @jadedsecurity @purehate_ yea but you should be used to it by now #
• @jadedsecurity @purehate_ NOU!!! <31337 #
• @jadedsecurity Don't make me order pizza to your hotel room. ph33r! #
• @jadedsecurity #SoDMMeYourHotelInfoOrFuckYou or gimme a paypal donate button #
• RT @k3170Makan: You can extend that last one by specifying more popular php shells #
• @jadedsecurity #
• @bl0nde_b0ricua haha omg YES!!! I can't remember how many of those things I had to stop using cause I lost a single piece of lead #
• New Exploit [webapps] – Stoneware WebNetwork6 Multiple Vulnerabilities – [CVE: 2012-0286]: http://t.co/bWrTIaqn #Exploit #
• "Can't keep a pet like a house cat or lap dog. The only thing sittin on my couch is a laptop" – Int80 #
• Global spam declines as malware encounters pick up: report: Enterprise users experienced an average of 339 malwa… http://t.co/b0R2n0cf #
• @bl0nde_b0ricua haha I ended up just saving the tips so if I lost one I had spares #
• @M3TALH3AD71 or an arrow to the knee #
• BrowserID testing waters, but missing pieces weaken story: The Mozilla Foundation is finally testing its Browser… http://t.co/tnp5RvUT #
• Which twitter user do YOU guys follow for the latest and greatest database leaks? #

Tweets for 2012-01-24

• New Exploit [local] – Mempodipper – Linux Local Root for >=2.6.39, 32-bit and 64-bit: http://t.co/2HRWWokK #Exploit #
• おやすみなさい And for my followers that don't read/speak Japanese, GOOD NIGHT!! #
• Lessons in online culture from Plancast – when sharing fails: It turns out that people are picky about what, and… http://t.co/UuZY4ozj #
• @MrAnonymous2600 haha I've got work today, how about you? #
• @cockneyreject thanks for the mention #
• @k3170Makan thanks for the mention #
• Pwning With Backtrack dnsdict6: http://t.co/BdymH012 via @youtube #
• Pwning With Backtrack – DNSEnum: http://t.co/RgJZB2kD via @youtube #
• @georgemilnes you have me confused with @anonymousabu sir #
• Since the #MPAA can apparently threaten the Govt. I've decided to do the same. I will kill 1 script kitten every hour my demands aren't met #
• http://t.co/d1yE2h5R the script kittens in question #
• RT @ax0us: Third Security breach at Core Security Technologies ..http://tinyurl.com/72q3qpr ? Anybody knows more about it ? #
• RT @k3170Makan: The Google cache : Time travel for hackers http://t.co/9Bd39ibg @hacktalkblog @magnologan @WokoFreak @grap3_ap3 @pretorienx #
• Trying out #HootSuite #
• Hmm, #HootSuite really isn't doing what I need it to (I haz too many list). Anyone use lots of lists? What twitter client do you use? #
• @MrAnonymous2600 haha. God I hate #Mondays #
• @MrAnonymous2600 likewise here but having to wake up early after going to bed late on the weekends SUCKS #
• @fjhackett While TweetDeck helps it doesn't really help with my 10 lists (and quickly growing). Management is just a bit of a pain #
• @cinnamon_carter yea I'm checking out seemsic web now as I really like their android app #
• New Exploit [webapps] – WordPress Kish Guest Posting Plugin 1.0 Arbitrary File Upload: http://t.co/m21HdzOg #Exploit #
• Weekend Anonymous attacks bring down major websites: CBS, Universal Music, and Vivendi, among others, were broug… http://t.co/e0WSNxWR #
• IETF closer to finalizing ID standard to secure mobile apps, APIs: OAuth 2.0, a key framework for securing nativ… http://t.co/n7xOklWC #
• CanSecWest Pwn2Own hacker challenge gets a $105,000 makeover: HP Zero Day Initiatives revamps the annual hacker … http://t.co/8PvuTso6 #
• RT @k3170Makan: Gonna bring you guys some more SQL injection dorks #
• RT @k3170Makan: database login dork: filetype:UDL Password #
• RT @k3170Makan: Generic Dork for Joomla SQL injection: inurl:"*?option=content*" + intext:"You have an error" #
• @k3170Makan Haha, I'll do my best to RT as many of them as possible #
• New Exploit [webapps] – SpamTitan Application v5.08x – SQL Injection Vulnerability: http://t.co/zik3m7rL #Exploit #
• RT @k3170Makan: Hacking Estate Agents: inurl:"option=com_hotproperty" + inurl:".?php*=*" + intext:"You have an error" #
• @k3170Makan yea go for it #

Tweets for 2012-01-23

• HackTalk Forum Daily is out! http://t.co/QLiogMNK #
• New Exploit [webapps] – AllWebMenus http://t.co/9Uhirspo #Exploit #
• New Exploit [webapps] – miniCMS v1.0 : v2.0 php inject code: http://t.co/OUIojU9J #Exploit #
• New Exploit [webapps] – Parsp Shopping CMS [V5] Multiple Vulnerability: http://t.co/35BiZVP5 #Exploit #
• @iHex0x7821 I can examine the human brain, the same cannot be said about god #
• If you are Google Dork Impaired I suggest checking out http://t.co/obluJjND by @k3170Makan as it will help you out greatly #
• @iHex0x7821 Yes, it's called an MRI and/or CAT scan #
• @iHex0x7821 yes, medical procedures would allow me to cut through my skull and poke at my brain if I truly wanted to #
• @iHex0x7821 Yes, all you would need is a local anesthetic which would numb the pain but keep you awake #
• To all my potential followers, if your avatar is an egg don't expect to get followed back… #

Tweets for 2012-01-22

• @ThemsonMester Because I like you buddy I give you deal, 4 payments $9.99 just for you #
• @jadedsecurity @ThemsonMester @spridel11 @drb0n3z I have business proposition for you, give me money or milo stabs you eh? hahahaha #
• @jadedsecurity @drb0n3z @spridel11 @ThemsonMester When you Johnny Wrong den you tawk wif me #
• New Exploit [webapps] – php ireport v1.0 Remote Html Code injection: http://t.co/IB3SPcWF #Exploit #
• New Exploit [remote] – Savant Web Server 3.1 Buffer Overflow Exploit (Egghunter): http://t.co/y7iTqQHE #Exploit #
• New Exploit [webapps] – Nova CMS Directory Traversal: http://t.co/z5QCrhPd #Exploit #
• New Exploit [webapps] – ARYADAD Multiple Vulnerabilities: http://t.co/n7A7LNtT #Exploit #
• New Exploit [webapps] – iSupport v1.x CSRF HTML Code Injection to Add Admin: http://t.co/9XO1fhYB #Exploit #
• @k3170Makan You'd like to watch a geek spend 2 days fuzzing a protocol only to find a local root he can't use cause he's not on the network? #
• @grap3_ap3 sweet dude, thanks. I'll look into your buddy's about now #
• New Exploit [webapps] – Zone Rouge CMS 2012 – SQL Injection Vulnerability: http://t.co/BEJsHoLA #Exploit #

Tweets for 2012-01-21

• HackTalk Forum Daily is out! http://t.co/QLiogMNK #
• @ArtByAlida The Hacktalk Forum Daily is just a recap of forum post #
• @ArtByAlida Haha, one of the necessary evils of being a hacking journalist #
• @ArtByAlida Hacking Tools are like normal tools they can be used for good or bad. I just do my best to educate people on using them for good #
• @ArtByAlida Yea, sadly the line is crossed a lot when trying to report the news. My sources are typically the hacking groups themselves tbh #
• @ArtByAlida By that reasoning we should get rid of the 2nd amendment which allows us to have guns. #
• @_f0rsaken Haha love that movie #
• @ArtByAlida Technology bloggers blog about the latest gadgets, security blogs blog about the latest security/hacking tools. Same thing #
• @ArtByAlida India? I'm a proud American citizen #
• @ArtByAlida The reason many of my sources confide in me is because I do my best to educate skids instead of enabling them #
• @ArtByAlida I'm more than willing to have this conversation through instant message or IRC if you wish to continue it #
• @ArtByAlida Many "hack tools" are tools used by network and system administrators which just so happen to also be used maliciously #
• @ArtByAlida http://t.co/MGwOHmRP Is that a hacking tool? #
• @ArtByAlida Or how about http://t.co/6ZZzlb2e #
• @ArtByAlida both are used by network administrators to monitor and analyze network traffic. They can also be used by hackers #
• @ArtByAlida Hacktalk is a security site. We blog about security, have a forum for infosec enthusiasts and report the latest hacking news #
• @ArtByAlida Without letting people know tools they need exist they wouldn't be able to download them from my site or otherwise #
• @ArtByAlida that's like saying people shouldn't buy products from stores they should just buy directly from the creator of the prodcuts #
• @ArtByAlida take a look at the forum and I'm sure you'll see it's more of a knowledge exchange between likeminded individuals not a skidfest #
• @ArtByAlida Everyone needs to learn somewhere, even security pros. I guess EthicalHacker.net is bad too? #
• @ArtByAlida We do not condone illegal activity and it's a ban-able offense so if they aren't ethical they don't act unethical on the forum #
• @ArtByAlida Just as I'm sure not everyone on EthicalHacker.net is ethical #
• @ArtByAlida what's that I'm smelling? Ah, the smell of troll #
• RT @hler07: http://109.236.83.66/ & http://t.co/7LWLk8iS are fake links ..just looking 4 publicity ~> #MegaFake #Retwitt @AnonymousWiki #
• @ArtByAlida Also, you improperly used a comma in your statement and then comma-spliced. Congratulations on failing grammar. #
• @ArtByAlida I like how you support the 99% but look down on hackers. The concept of OWS was spawned by hacktivists #
• @ArtByAlida Regardless, no hard feelings and I still like some of your art. Good luck as being an artist is hard (I should know) #
• @ArtByAlida Trust me, I've got a day job and I'm one of the "good guys" #
• Good night Twitter. ./autoPilotMode –on #
• New Exploit [webapps] – EasyPage SQL Injection Vulnerability: http://t.co/zE9ymVcd #Exploit #
• New Exploit [webapps] – ICTimeAttendance Authentication Bypass Vulnerability: http://t.co/FF8tN5UK #Exploit #
• New Exploit [remote] – HP OpenView Network Node Manager ov.dll _OVBuildPath Buffer Overflow – [CVE: 201... http://t.co/VhIptEdo #Exploit #
• New Exploit [remote] – Gitorious Arbitrary Command Execution: http://t.co/EiGXDFTI #Exploit #
• @B1gGaGa thanks for #FF #
• @k3170Makan thanks for #FF #
• #FF @jadedsecurity @drb0n3z @Cyber_War_News @TheHackersNews @blixnawaka @k3170Makan @cinnamon_carter @jneera @isdpodcast @B1gGaGa #FF #
• TED video: Three types of online attacks: Mikko Hypponen talks about the three types of online attacks on our pr… http://t.co/s9Uw6xPI #
• @G4RYB1 haha it's definitely picking up #
• RT @k3170Makan: LFI attacks for predators http://t.co/o20ESNmb @0xerror @philippdowling @hacktalkblog @mooslee #
• @k3170Makan anytime #
• @AnonOpGreece In spanish SOPA means "Soup" and PIPA means Pipe #
• @paulrouget look into hootsuite #
• New Exploit [webapps] – WhatsApp Status Changer v0.2 Exploit: http://t.co/xLAFHARV #Exploit #
• New Exploit [dos] – VLC 1.2.0 (libtaglib_pluggin.dll) DoS: http://t.co/VJoxWoHF #Exploit #
• New Exploit [remote] – Avaya WinPDM UniteHostRouter http://t.co/4ZNUeQN0 #Exploit #
• New Exploit [papers] – iPhone Forensics on iOS 5: http://t.co/tBqQz0ol #Exploit #
• How Anonymous took down the DoJ, RIAA, MPAA and Universal Music Websites: Anonymous, the Internet-based hacker a… http://t.co/4WtUD1pU #
• @EdgarUlloa Worked for me but I went ahead and uploaded it to my server. http://t.co/BLzgUYYV enjoy #
• @B1gGaGa anytime #
• New variants of premium rate SMS trojan 'RuFraud' detected in the wild: Researchers from AegisLab, have intercep… http://t.co/AxW68oiB #
• Research: Spammers actively harvesting emails from Twitter in real-time: Security researchers from WebSense, hav… http://t.co/1twEOZ1P #
• @MrAnonymous2600 Glad I could help I'm totally loving my Kindle Fire as well #
• @MrAnonymous2600 Hell yea, first day xD #
• @MrAnonymous2600 nah just left stock rom but trying to get Marketplace working now #
• @MrAnonymous2600 yea I've got all that but whenever I try to download apps the download insta fails #
• @MrAnonymous2600 nah but I heard that often times the app is just retarded when downloading some other apps. I'm about to reinstall though #
• @NoSmutsAllowed I'd say, "Ohai thar" #
• @NoSmutsAllowed they just don't have their own phones #
• @NoSmutsAllowed you make music with the buttons ofc http://t.co/8A0k8QEc #
• @_f0rsaken wanna interview for my site #
• @_f0rsaken Sounds good #
• @encryptedsorrow Just noticed you changed your twitter avatar #
• @encryptedsorrow haha it looks good #
• @cinnamon_carter anytime #

Tweets for 2012-01-20

• HackTalk.net is officially back #BlackOut #FUCKSOPA #J18 #
• New Exploit [webapps] – PhpBridges Blog System members.php SQL Injection: http://t.co/2iQIJDVH #Exploit #
• New Exploit [webapps] – pGB 2.12 kommentar.php SQL Injection Vulnerability: http://t.co/CK4XX98H #Exploit #
• New Exploit [papers] – Malware Reverse Engineering Part 1 – Static Analysis: http://t.co/kXPOHKpN #Exploit #
• New Exploit [webapps] – deV!L`z Clanportal 1.5.5 Moviebase Addon Blind SQL Injection Vulnerability: http://t.co/UX0tbjBz #Exploit #
• New Exploit [webapps] – deV!L`z Clanportal Gamebase Addon SQL Injection Vulnerability: http://t.co/XVuWyM7q #Exploit #
• Facebook exposes hackers behind Koobface worm: Facebook has confirmed it is releasing as much information as it … http://t.co/qE82B8PV #
• Apple's iOS cited as the most popular mobile OS for enterprise: Apple's iOS has been labeled as the most commonl… http://t.co/40V4n20S #
• Shock as tech news site researches own story: Kudos to InfoWorld for researching and breaking its story about th… http://t.co/IjiZuuFh #
• DARPA authentication project focuses on humans as secrets: DARPA is working on a plan to create innovative biome… http://t.co/ujuCTVmf #
• European antitrust ruling on Google expected by late March: European antitrust regulators are reportedly poised … http://t.co/8WAKIhhA #
• Thanks to all the people who followed me today, I'm following back now #
• @megatr0nz thanks for the mention #
• @cinnamon_carter thanks for the mention #
• For everyone trying to get past the block on #Wikipedia : Just Disable Javascript I've waited all day to say that #
• @corq Haha yea you could use mobile or visit the spanish wikipedia using chrome and auto translate to english #
• Pwning With Backtrack 0×02 #DNSEnum – http://t.co/v74HaklM: http://t.co/IkY2xXXw #
• Pwning With Backtrack 0×03 #dnsdict6 – http://t.co/v74HaklM: http://t.co/pq9Ye2wq #
• @learn_to_sw1m yea there were about 4 or 5 ways to get passed it but I wanted to keep them to myself so the msg would spread #
• RT @drb0n3z: #theblackmatrix thanks for promoting @hacktalkblog and in turn myself and @isdpodcast! #
• @Cyber_War_News Hey are you guys looking for affiliates? #
• McAfee to plug spam hole this week: McAfee will release a fix this week for a bug in its software that scammers … http://t.co/TpN2s8Hq #
• New Exploit [webapps] – Drupal CKEditor 3.0 – 3.6.2 – Persistent EventHandler XSS: http://t.co/07rABB1A #Exploit #
• New Exploit [webapps] – PostNuke Module pnAddressbook SQL Injection Vulnerability: http://t.co/kvvPpq5z #Exploit #
• New Exploit [webapps] – WordPress uCan Post plugin http://t.co/qakO4o1C #Exploit #
• @biggest_G_in_CT when it rains it pours #
• New Exploit [webapps] – appRain CMF http://t.co/jA7p6SgH #Exploit #
• Apple education event: Winners and losers: With Apple's announcement just out the door, we take a look at some o… http://t.co/fDbH9fzb #
• HackTalk.net Now Proudly Affiliated with @Cyber_War_News #CyberWarNews Info #
• Koobface gang pulls server after Facebook exposes hackers: After Facebook released their identities, the five ha… http://t.co/rIGVC3OO #
• Adobe: Tablet owners spend more money online than smartphone owners: Tablet visitors spent more per purchase tha… http://t.co/YMqtWWRj #
• @standardman write it.. NOW #
• @standardman haha brilliant #
• RT @k3170Makan: http://t.co/LKs1AzNd new blog on its way thanks to @0xerror #
• @0xerror Yea I noticed Glad to know his blog is back up now. Why did they delete it though #
• @0xerror yea. I've been banned/deleted from blogspot before which is why I only use blogspot for testing site ideas now =\ #
• Not saying the retaliation is right but taking down a filesharing site the day after #J18 and pissing off hackers prolly wasn't smart… #
• Apple's textbook plan's biggest flaw is that it's tied to the iPad: Apple may aim to reinvent the textbook marke… http://t.co/mBEGgZJX #

Tweets for 2012-01-19

• #HackTalk has its #J18 #SOPABlackout page nice and ready #
• Security News We Are Joining The Blackout To Protest SOPA And PIPA: http://t.co/pWbXpVSu #
• Security News Israel Rattled As Hackers Hit Multiple Sites: http://t.co/Q0FKlrhf #
• HackTalk Forum Daily is out! http://t.co/QLiogMNK #
• #HackTalk net Officially Blacked Out. We'll be back in 24 hours #