The Irony Of A Site For Disclosing Site Being Itself Vuln To Something So Trivial

Basically I tried to report this issue to them through a private message on youtube and then a follow request on twitter (so I could DM them) but to no avail. Eventually rem0ve joined freenode and messaged me and told me he didn’t want to be cooperative with me or even be friendly. Sometimes being a prick just makes you look like an idiot.

Cya In Cyberspace

I won’t get into how you would get an interactive reverse shell spawned as I’m sure you guys all already have your favorite methods instead this mini-tutorial starts off after your netcat listener goes crazy with the new reverse shell you just spawned. Without being able to use su, sudo, ssh, and stuff like nano/vim this shell pretty much sucks so let’s go ahead and upgrade it with this $up3r 31337 0dayz . Lol honestly it’s just something that has been done by python programmers for years now:

python -c 'import pty; pty.spawn("/bin/bash");'

What this does is starts the python interpreter and executes everything in the single  quotes. Inside the single quotes we import the code to create a pseudo-terminal. After loading this code we use a psuedo-terminal to spawn a bash shell while gives you a pseudo-terminal bash shell which allows you to nano, vim, ssh, whatever you want.

Bit of warning, don’t just press Ctrl+C if you wanna exit out of things, in fact, generally speaking before using any escape sequence prepend it with Ctrl+V. Ctrl+V lets you print the literal character to stdin. If you want to use Ctrl+C type Ctrl+V Ctrl+C [enter] and it’ll cause the pseudo-terminal to execute the Ctrl+C as opposed to just killing your netcat connection

Enjoy.

Cya in Cyberspace

As I’m sure many of you HackTalkers have read, UFC.com was recently defaced which led to Dana White essentially daring Anonymous to do it again.

More after the fold

I see stuff like this time and time again, a hacking forum will get pwned by some group and after picking up the pieces, the site which got hacked will talk crap about their attackers and essentially dare them to try it again. Inevitably the site will be hacked again because the administrators of the site are still leaving gaping security holes in their site. This is something that has been done time and time again.

This doesn’t relate only to hacking either. In pretty much every walk of life, if someone kicked your ass once you can be certain they can do it again, especially if you egg them on.

This was the case with Dana White who egged Anonymous on to try to hack UFC again and even went so far as insulting Anonymous members.

Shortly after egging them on Dana White once again became a household name as his name was all over the twittersphere attached to a very interesting link: http://pastebin.com/D1zRYSYd Dana White was dox’d. Anonymous didn’t stop there though, in their response to Dana’s comments they went ahead and defaced UFC once again (for the hat trick) and posted this : http://www.cyberwarnews.info/2012/01/27/ufc-website-hacked-and-defaced-by-anonymous-after-dana-white-starts-trouble-opufc

In the end if you have a target on your back and you’ve already been owned, why talk crap; it’s only going to get you messed with more and it will give your attackers fuel with which to continue attacking until they eventually get through.

Cya in cyberspace.

• @Wh1t3Rabbit anytime #
• @ashby hacktalk.net #
• @ashby the blog is at blog.hacktalk.net but I haven't been keeping up with it lately, hope to get back to blogging VERY soon #
• @ashby yea it's pretty nice in there and some really knowledgeable people too #
• @ashby check out IRChon #
• How are you tweeps tonight ? #
• New Exploit [webapps] – WordPress http://t.co/4cdDpKv8 #Exploit #
• @Dawseeeyy Glad to hear you are doing good #
• @grap3_ap3 Pretty okay I guess, contemplating wtf to do tbh #
• #SOTU I don't have anything to say about it just wondering how many new followers I'll get by using this hashtag. Bring On The Bots! #
• HackTalk Forum Daily is out! http://t.co/QLiogMNK #
• Confessions of a Google junkie (or, Privacy? What privacy?): A lot has been made of Google's new privacy policy … http://t.co/kjylbjZk #
• @c0rrupt_net old and fake #
• @MrAnonymous2600 KF? #
• Windstream's customer database used by employee for identity theft: A now-former Windstream employee is in jail … http://t.co/T3dcPd7A #

• RT @k3170Makan: Added some google dorks to my blog,check out the top of the right column @hacktalkblog @grap3_ap3 @philippdowling @WokoFreak #
• New Exploit [webapps] – DirectAdmin ADD Sub Domain CSRF Exploit: http://t.co/lq9QwXmZ #Exploit #
• @ctrl1T Thanks for your follow as well #
• @realytcracker haha nice #
• @realytcracker Like a boss #
• 15 leaders in smart grid security: Security concerns for the intelligent power distribution system will require … http://t.co/IVoxhLEV #
• New Exploit [papers] – A Backdoor in the Next Generation Active Directory: http://t.co/kDugXo6P #Exploit #
• RT @k3170Makan: PhpBridges Blog System SQL injection: inurl:"members.php?id=*" + intext:"Warning:" | intext:"MySQL" #
• @jadedsecurity @purehate_ yea but you should be used to it by now #
• @jadedsecurity @purehate_ NOU!!! <31337 #
• @jadedsecurity Don't make me order pizza to your hotel room. ph33r! #
• @jadedsecurity #SoDMMeYourHotelInfoOrFuckYou or gimme a paypal donate button #
• RT @k3170Makan: You can extend that last one by specifying more popular php shells #
• @jadedsecurity #
• @bl0nde_b0ricua haha omg YES!!! I can't remember how many of those things I had to stop using cause I lost a single piece of lead #
• New Exploit [webapps] – Stoneware WebNetwork6 Multiple Vulnerabilities – [CVE: 2012-0286]: http://t.co/bWrTIaqn #Exploit #
• "Can't keep a pet like a house cat or lap dog. The only thing sittin on my couch is a laptop" – Int80 #
• Global spam declines as malware encounters pick up: report: Enterprise users experienced an average of 339 malwa… http://t.co/b0R2n0cf #
• @bl0nde_b0ricua haha I ended up just saving the tips so if I lost one I had spares #
• @M3TALH3AD71 or an arrow to the knee #
• BrowserID testing waters, but missing pieces weaken story: The Mozilla Foundation is finally testing its Browser… http://t.co/tnp5RvUT #
• Which twitter user do YOU guys follow for the latest and greatest database leaks? #

• New Exploit [local] – Mempodipper – Linux Local Root for >=2.6.39, 32-bit and 64-bit: http://t.co/2HRWWokK #Exploit #
• おやすみなさい And for my followers that don't read/speak Japanese, GOOD NIGHT!! #
• Lessons in online culture from Plancast – when sharing fails: It turns out that people are picky about what, and… http://t.co/UuZY4ozj #
• @MrAnonymous2600 haha I've got work today, how about you? #
• @cockneyreject thanks for the mention #
• @k3170Makan thanks for the mention #
• Pwning With Backtrack dnsdict6: http://t.co/BdymH012 via @youtube #
• Pwning With Backtrack – DNSEnum: http://t.co/RgJZB2kD via @youtube #
• @georgemilnes you have me confused with @anonymousabu sir #
• Since the #MPAA can apparently threaten the Govt. I've decided to do the same. I will kill 1 script kitten every hour my demands aren't met #
• http://t.co/d1yE2h5R the script kittens in question #
• RT @ax0us: Third Security breach at Core Security Technologies ..http://tinyurl.com/72q3qpr ? Anybody knows more about it ? #
• RT @k3170Makan: The Google cache : Time travel for hackers http://t.co/9Bd39ibg @hacktalkblog @magnologan @WokoFreak @grap3_ap3 @pretorienx #
• Trying out #HootSuite #
• Hmm, #HootSuite really isn't doing what I need it to (I haz too many list). Anyone use lots of lists? What twitter client do you use? #
• @MrAnonymous2600 haha. God I hate #Mondays #
• @MrAnonymous2600 likewise here but having to wake up early after going to bed late on the weekends SUCKS #
• @fjhackett While TweetDeck helps it doesn't really help with my 10 lists (and quickly growing). Management is just a bit of a pain #
• @cinnamon_carter yea I'm checking out seemsic web now as I really like their android app #
• New Exploit [webapps] – WordPress Kish Guest Posting Plugin 1.0 Arbitrary File Upload: http://t.co/m21HdzOg #Exploit #
• Weekend Anonymous attacks bring down major websites: CBS, Universal Music, and Vivendi, among others, were broug… http://t.co/e0WSNxWR #
• IETF closer to finalizing ID standard to secure mobile apps, APIs: OAuth 2.0, a key framework for securing nativ… http://t.co/n7xOklWC #
• CanSecWest Pwn2Own hacker challenge gets a $105,000 makeover: HP Zero Day Initiatives revamps the annual hacker … http://t.co/8PvuTso6 #
• RT @k3170Makan: Gonna bring you guys some more SQL injection dorks #
• RT @k3170Makan: database login dork: filetype:UDL Password #
• RT @k3170Makan: Generic Dork for Joomla SQL injection: inurl:"*?option=content*" + intext:"You have an error" #
• @k3170Makan Haha, I'll do my best to RT as many of them as possible #
• New Exploit [webapps] – SpamTitan Application v5.08x – SQL Injection Vulnerability: http://t.co/zik3m7rL #Exploit #
• RT @k3170Makan: Hacking Estate Agents: inurl:"option=com_hotproperty" + inurl:".?php*=*" + intext:"You have an error" #
• @k3170Makan yea go for it #

• HackTalk Forum Daily is out! http://t.co/QLiogMNK #
• New Exploit [webapps] – AllWebMenus http://t.co/9Uhirspo #Exploit #
• New Exploit [webapps] – miniCMS v1.0 : v2.0 php inject code: http://t.co/OUIojU9J #Exploit #
• New Exploit [webapps] – Parsp Shopping CMS [V5] Multiple Vulnerability: http://t.co/35BiZVP5 #Exploit #
• @iHex0x7821 I can examine the human brain, the same cannot be said about god #
• If you are Google Dork Impaired I suggest checking out http://t.co/obluJjND by @k3170Makan as it will help you out greatly #
• @iHex0x7821 Yes, it's called an MRI and/or CAT scan #
• @iHex0x7821 yes, medical procedures would allow me to cut through my skull and poke at my brain if I truly wanted to #
• @iHex0x7821 Yes, all you would need is a local anesthetic which would numb the pain but keep you awake #
• To all my potential followers, if your avatar is an egg don't expect to get followed back… #

• @ThemsonMester Because I like you buddy I give you deal, 4 payments $9.99 just for you #
• @jadedsecurity @ThemsonMester @spridel11 @drb0n3z I have business proposition for you, give me money or milo stabs you eh? hahahaha #
• @jadedsecurity @drb0n3z @spridel11 @ThemsonMester When you Johnny Wrong den you tawk wif me #
• New Exploit [webapps] – php ireport v1.0 Remote Html Code injection: http://t.co/IB3SPcWF #Exploit #
• New Exploit [remote] – Savant Web Server 3.1 Buffer Overflow Exploit (Egghunter): http://t.co/y7iTqQHE #Exploit #
• New Exploit [webapps] – Nova CMS Directory Traversal: http://t.co/z5QCrhPd #Exploit #
• New Exploit [webapps] – ARYADAD Multiple Vulnerabilities: http://t.co/n7A7LNtT #Exploit #
• New Exploit [webapps] – iSupport v1.x CSRF HTML Code Injection to Add Admin: http://t.co/9XO1fhYB #Exploit #
• @k3170Makan You'd like to watch a geek spend 2 days fuzzing a protocol only to find a local root he can't use cause he's not on the network? #
• @grap3_ap3 sweet dude, thanks. I'll look into your buddy's about now #
• New Exploit [webapps] – Zone Rouge CMS 2012 – SQL Injection Vulnerability: http://t.co/BEJsHoLA #Exploit #

• HackTalk Forum Daily is out! http://t.co/QLiogMNK #
• @ArtByAlida The Hacktalk Forum Daily is just a recap of forum post #
• @ArtByAlida Haha, one of the necessary evils of being a hacking journalist #
• @ArtByAlida Hacking Tools are like normal tools they can be used for good or bad. I just do my best to educate people on using them for good #
• @ArtByAlida Yea, sadly the line is crossed a lot when trying to report the news. My sources are typically the hacking groups themselves tbh #
• @ArtByAlida By that reasoning we should get rid of the 2nd amendment which allows us to have guns. #
• @_f0rsaken Haha love that movie #
• @ArtByAlida Technology bloggers blog about the latest gadgets, security blogs blog about the latest security/hacking tools. Same thing #
• @ArtByAlida India? I'm a proud American citizen #
• @ArtByAlida The reason many of my sources confide in me is because I do my best to educate skids instead of enabling them #
• @ArtByAlida I'm more than willing to have this conversation through instant message or IRC if you wish to continue it #
• @ArtByAlida Many "hack tools" are tools used by network and system administrators which just so happen to also be used maliciously #
• @ArtByAlida http://t.co/MGwOHmRP Is that a hacking tool? #
• @ArtByAlida Or how about http://t.co/6ZZzlb2e #
• @ArtByAlida both are used by network administrators to monitor and analyze network traffic. They can also be used by hackers #
• @ArtByAlida Hacktalk is a security site. We blog about security, have a forum for infosec enthusiasts and report the latest hacking news #
• @ArtByAlida Without letting people know tools they need exist they wouldn't be able to download them from my site or otherwise #
• @ArtByAlida that's like saying people shouldn't buy products from stores they should just buy directly from the creator of the prodcuts #
• @ArtByAlida take a look at the forum and I'm sure you'll see it's more of a knowledge exchange between likeminded individuals not a skidfest #
• @ArtByAlida Everyone needs to learn somewhere, even security pros. I guess EthicalHacker.net is bad too? #
• @ArtByAlida We do not condone illegal activity and it's a ban-able offense so if they aren't ethical they don't act unethical on the forum #
• @ArtByAlida Just as I'm sure not everyone on EthicalHacker.net is ethical #
• @ArtByAlida what's that I'm smelling? Ah, the smell of troll #
• RT @hler07: http://109.236.83.66/ & http://t.co/7LWLk8iS are fake links ..just looking 4 publicity ~> #MegaFake #Retwitt @AnonymousWiki #
• @ArtByAlida Also, you improperly used a comma in your statement and then comma-spliced. Congratulations on failing grammar. #
• @ArtByAlida I like how you support the 99% but look down on hackers. The concept of OWS was spawned by hacktivists #
• @ArtByAlida Regardless, no hard feelings and I still like some of your art. Good luck as being an artist is hard (I should know) #
• @ArtByAlida Trust me, I've got a day job and I'm one of the "good guys" #
• Good night Twitter. ./autoPilotMode –on #
• New Exploit [webapps] – EasyPage SQL Injection Vulnerability: http://t.co/zE9ymVcd #Exploit #
• New Exploit [webapps] – ICTimeAttendance Authentication Bypass Vulnerability: http://t.co/FF8tN5UK #Exploit #
• New Exploit [remote] – HP OpenView Network Node Manager ov.dll _OVBuildPath Buffer Overflow – [CVE: 201... http://t.co/VhIptEdo #Exploit #
• New Exploit [remote] – Gitorious Arbitrary Command Execution: http://t.co/EiGXDFTI #Exploit #
• @B1gGaGa thanks for #FF #
• @k3170Makan thanks for #FF #
• #FF @jadedsecurity @drb0n3z @Cyber_War_News @TheHackersNews @blixnawaka @k3170Makan @cinnamon_carter @jneera @isdpodcast @B1gGaGa #FF #
• TED video: Three types of online attacks: Mikko Hypponen talks about the three types of online attacks on our pr… http://t.co/s9Uw6xPI #
• @G4RYB1 haha it's definitely picking up #
• RT @k3170Makan: LFI attacks for predators http://t.co/o20ESNmb @0xerror @philippdowling @hacktalkblog @mooslee #
• @k3170Makan anytime #
• @AnonOpGreece In spanish SOPA means "Soup" and PIPA means Pipe #
• @paulrouget look into hootsuite #
• New Exploit [webapps] – WhatsApp Status Changer v0.2 Exploit: http://t.co/xLAFHARV #Exploit #
• New Exploit [dos] – VLC 1.2.0 (libtaglib_pluggin.dll) DoS: http://t.co/VJoxWoHF #Exploit #
• New Exploit [remote] – Avaya WinPDM UniteHostRouter http://t.co/4ZNUeQN0 #Exploit #
• New Exploit [papers] – iPhone Forensics on iOS 5: http://t.co/tBqQz0ol #Exploit #
• How Anonymous took down the DoJ, RIAA, MPAA and Universal Music Websites: Anonymous, the Internet-based hacker a… http://t.co/4WtUD1pU #
• @EdgarUlloa Worked for me but I went ahead and uploaded it to my server. http://t.co/BLzgUYYV enjoy #
• @B1gGaGa anytime #
• New variants of premium rate SMS trojan 'RuFraud' detected in the wild: Researchers from AegisLab, have intercep… http://t.co/AxW68oiB #
• Research: Spammers actively harvesting emails from Twitter in real-time: Security researchers from WebSense, hav… http://t.co/1twEOZ1P #
• @MrAnonymous2600 Glad I could help I'm totally loving my Kindle Fire as well #
• @MrAnonymous2600 Hell yea, first day xD #
• @MrAnonymous2600 nah just left stock rom but trying to get Marketplace working now #
• @MrAnonymous2600 yea I've got all that but whenever I try to download apps the download insta fails #
• @MrAnonymous2600 nah but I heard that often times the app is just retarded when downloading some other apps. I'm about to reinstall though #
• @NoSmutsAllowed I'd say, "Ohai thar" #
• @NoSmutsAllowed they just don't have their own phones #
• @NoSmutsAllowed you make music with the buttons ofc http://t.co/8A0k8QEc #
• @_f0rsaken wanna interview for my site #
• @_f0rsaken Sounds good #
• @encryptedsorrow Just noticed you changed your twitter avatar #
• @encryptedsorrow haha it looks good #
• @cinnamon_carter anytime #

• HackTalk.net is officially back #BlackOut #FUCKSOPA #J18 #
• New Exploit [webapps] – PhpBridges Blog System members.php SQL Injection: http://t.co/2iQIJDVH #Exploit #
• New Exploit [webapps] – pGB 2.12 kommentar.php SQL Injection Vulnerability: http://t.co/CK4XX98H #Exploit #
• New Exploit [papers] – Malware Reverse Engineering Part 1 – Static Analysis: http://t.co/kXPOHKpN #Exploit #
• New Exploit [webapps] – deV!L`z Clanportal 1.5.5 Moviebase Addon Blind SQL Injection Vulnerability: http://t.co/UX0tbjBz #Exploit #
• New Exploit [webapps] – deV!L`z Clanportal Gamebase Addon SQL Injection Vulnerability: http://t.co/XVuWyM7q #Exploit #
• Facebook exposes hackers behind Koobface worm: Facebook has confirmed it is releasing as much information as it … http://t.co/qE82B8PV #
• Apple's iOS cited as the most popular mobile OS for enterprise: Apple's iOS has been labeled as the most commonl… http://t.co/40V4n20S #
• Shock as tech news site researches own story: Kudos to InfoWorld for researching and breaking its story about th… http://t.co/IjiZuuFh #
• DARPA authentication project focuses on humans as secrets: DARPA is working on a plan to create innovative biome… http://t.co/ujuCTVmf #
• European antitrust ruling on Google expected by late March: European antitrust regulators are reportedly poised … http://t.co/8WAKIhhA #
• Thanks to all the people who followed me today, I'm following back now #
• @megatr0nz thanks for the mention #
• @cinnamon_carter thanks for the mention #
• For everyone trying to get past the block on #Wikipedia : Just Disable Javascript I've waited all day to say that #
• @corq Haha yea you could use mobile or visit the spanish wikipedia using chrome and auto translate to english #
• Pwning With Backtrack 0×02 #DNSEnum – http://t.co/v74HaklM: http://t.co/IkY2xXXw #
• Pwning With Backtrack 0×03 #dnsdict6 – http://t.co/v74HaklM: http://t.co/pq9Ye2wq #
• @learn_to_sw1m yea there were about 4 or 5 ways to get passed it but I wanted to keep them to myself so the msg would spread #
• RT @drb0n3z: #theblackmatrix thanks for promoting @hacktalkblog and in turn myself and @isdpodcast! #
• @Cyber_War_News Hey are you guys looking for affiliates? #
• McAfee to plug spam hole this week: McAfee will release a fix this week for a bug in its software that scammers … http://t.co/TpN2s8Hq #
• New Exploit [webapps] – Drupal CKEditor 3.0 – 3.6.2 – Persistent EventHandler XSS: http://t.co/07rABB1A #Exploit #
• New Exploit [webapps] – PostNuke Module pnAddressbook SQL Injection Vulnerability: http://t.co/kvvPpq5z #Exploit #
• New Exploit [webapps] – WordPress uCan Post plugin http://t.co/qakO4o1C #Exploit #
• @biggest_G_in_CT when it rains it pours #
• New Exploit [webapps] – appRain CMF http://t.co/jA7p6SgH #Exploit #
• Apple education event: Winners and losers: With Apple's announcement just out the door, we take a look at some o… http://t.co/fDbH9fzb #
• HackTalk.net Now Proudly Affiliated with @Cyber_War_News #CyberWarNews Info #
• Koobface gang pulls server after Facebook exposes hackers: After Facebook released their identities, the five ha… http://t.co/rIGVC3OO #
• Adobe: Tablet owners spend more money online than smartphone owners: Tablet visitors spent more per purchase tha… http://t.co/YMqtWWRj #
• @standardman write it.. NOW #
• @standardman haha brilliant #
• RT @k3170Makan: http://t.co/LKs1AzNd new blog on its way thanks to @0xerror #
• @0xerror Yea I noticed Glad to know his blog is back up now. Why did they delete it though #
• @0xerror yea. I've been banned/deleted from blogspot before which is why I only use blogspot for testing site ideas now =\ #
• Not saying the retaliation is right but taking down a filesharing site the day after #J18 and pissing off hackers prolly wasn't smart… #
• Apple's textbook plan's biggest flaw is that it's tied to the iPad: Apple may aim to reinvent the textbook marke… http://t.co/mBEGgZJX #