API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 12th, 2012
46,956
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.64 KB | None | 0 0
raw download clone embed print report
  1. -----------------------------------------------------------------------
  2. 01001111 01110000 01100101 01110010 01100001 01110100 01101001 01101111
  3. 01101110 01000111 01101100 01101111 01100010 01100001 01101100
  4. 01000010 01101100 01100001 01100011 01101011 01101111 01110101 01110100
  5. -----------------------------------------------------------------------
  6. ___ _ _ ___ _ _ _
  7. / _ \ _ __ ___ _ _ __ _| |_(_)___ _ _ / __| |___| |__ __ _| |
  8. | (_) | '_ \/ -_) '_/ _` | _| / _ \ ' \ | (_ | / _ \ '_ \/ _` | |
  9. \___/| .__/\___|_| \__,_|\__|_\___/_||_| \___|_\___/_.__/\__,_|_|
  10. |_|
  11. ___ _ _ _
  12. | _ ) |__ _ __| |_____ _ _| |_
  13. | _ \ / _` / _| / / _ \ || | _|
  14. |___/_\__,_\__|_\_\___/\_,_|\__|
  15.  
  16. -----------------------------------------------------------------------
  17. 01001111 01110000 01100101 01110010 01100001 01110100 01101001 01101111
  18. 01101110 01000111 01101100 01101111 01100010 01100001 01101100
  19. 01000010 01101100 01100001 01100011 01101011 01101111 01110101 01110100
  20. -----------------------------------------------------------------------
  21. "The greatest enemy of freedom is a happy slave."
  22.  
  23. To protest SOPA, Wallstreet, our irresponsible leaders and the beloved
  24. bankers who are starving the world for their own selfish needs out of
  25. sheer sadistic fun, On March 31, the Internet will go Black.
  26.  
  27. In order to shut the Internet down, one thing is to be done. Down the
  28. 13 root DNS servers of the Internet. Those servers are as follow:
  29.  
  30. A 198.41.0.4
  31. B 192.228.79.201
  32. C 192.33.4.12
  33. D 128.8.10.90
  34. E 192.203.230.10
  35. F 192.5.5.241
  36. G 192.112.36.4
  37. H 128.63.2.53
  38. I 192.36.148.17
  39. J 192.58.128.30
  40. K 193.0.14.129
  41. L 199.7.83.42
  42. M 202.12.27.33
  43.  
  44. By cutting these off the Internet, nobody will be able to perform a
  45. domain name lookup, thus, disabling the HTTP Internet, which is,
  46. after all, the most widely used function of the Web. Anybody entering
  47. "http://www.google.com" or ANY other url, will get an error page,
  48. thus, they will think the Internet is down, which is, close enough.
  49. Remember, this is a protest, we are not trying to 'kill' the Internet,
  50. we are only temporarily shutting it down where it hurts the most.
  51.  
  52. While some ISPs uses DNS caching, most are configured to use a low
  53. expire time for the cache, thus not being a valid failover solution
  54. in the case the root servers are down. It is mostly used for speed,
  55. not redundancy.
  56.  
  57. I have compiled a Reflective DNS Amplification DDoS tool to be used for
  58. this attack. It is based on AntiSec's DHN, contains a few bugfix, a
  59. different dns list/target support and is a bit stripped down for speed.
  60.  
  61. The principle is simple; a flaw that uses forged UDP packets is to be
  62. used to trigger a rush of DNS queries all redirected and reflected to
  63. those 13 IPs. The flaw is as follow; since the UDP protocol allows it,
  64. we can change the source IP of the sender to our target, thus spoofing
  65. the source of the DNS query.
  66.  
  67. The DNS server will then respond to that query by sending the answer to
  68. the spoofed IP. Since the answer is always bigger than the query, the
  69. DNS answers will then flood the target ip. It is called an amplified
  70. because we can use small packets to generate large traffic. It is called
  71. reflective because we will not send the queries to the root name servers,
  72. instead, we will use a list of known vulnerable DNS servers which will
  73. attack the root servers for us.
  74.  
  75. DDoS request ---> [Vulnerable DNS Server ] <---> Normal answer <---> Normal Client request
  76. \
  77. | ( Spoofed UDP requests
  78. | will redirect the answers
  79. | to the root name server )
  80. |
  81. [ 13 root servers ] * BAM
  82.  
  83. Since the attack will be using static IP addresses, it will not rely
  84. on name server resolution, thus enabling us to keep the attack up even
  85. while the Internet is down. The very fact that nobody will be able to
  86. make new requests to use the Internet will slow down those who will try
  87. to stop the attack.
  88.  
  89. "He who sacrifices freedom for security deserves neither."
  90. Benjamin Franklin
  91.  
  92. We know you wont' listen. We know you won't change. We know it's because
  93. you don't want to. We know it's because you like it how it is. You bullied
  94. us into your delusion. We have seen you brutalize harmless old womans who were
  95. protesting for peace. We do not forget because we know you will only use that
  96. to start again. We know your true face. We know you will never stop. Neither
  97. are we. We know.
  98.  
  99. We are Anonymous.
  100. We are Legion.
  101. We do not Forgive.
  102. We do not Forget.
  103. You know who you are, Expect us.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!