Mitzi421
Meta
Plank Sinatra
sassy1085
Techspert
Naw
Katthaj
Nimda
MossHacking isn't always fun and games, as it turns out.
LegendBegins Member
STATUS: Feeling insecure? Try a comprehensive vuln scan. 5 mos agoStatus
Recent Statuses
5 mos ago
Current
Feeling insecure? Try a comprehensive vuln scan.
3 yrs ago
Can't get in touch with me? I'm probably in VR--HTC Vive
Bio
User has no bio, yet
Most Recent Posts
OffByNone was awoken by the impact of their face on their keyboard. WHOWHAWHATWOAH! After taking a few moments to restart their heart, OffByNone looked at their computer screen in a foggy attempt to recall what was running. Let's see... I was—
Uh...
After the fogginess cleared from OBN's eyes, they fixed upon the small frame of two characters in the terminal window. OBN's blood pressure could have set a Guinness World Record for medical miracles, as there laid two symbols that invalidated all of the work from the previous night.
^C
The scream that ensued was definitely loud enough to wake the surrounding apartments, but OBN couldn't care less. Accidentally killing the DomainBuster process effectively meant that the brute-force had to restart completely, giving Gung Memorial's Incident Response team even more of a chance to pick up on the abnormal login attempts, and more importantly, for intelligence agencies to monitor the traffic patterns. OBN frantically searched for a restore file anywhere in Kali. There wasn't one. For a split second, OBN contemplated analyzing the system memory to find where the process left off—that is, before they realized one pertinent detail. Oh right... I have no idea how to do memory analysis.
Frustrated, OBN hopped onto their favorite IRC to complain to a captive audience.
OffByNone rolled their chair back and glanced at the lonely bottle of Dos Equis that had sitting on their shelf for the past six years. OBN had bought it the day after their 21st but never worked up the nerve to actually open it. Frankly, OBN was terrified of the prospect that they would eventually find the courage to finally drink it—whatever it was, that day would not be a good one. OBN turned back around and looked at the computer screen.
Okay, let's try this stupid whatever again. OBN hopped onto Brave to pull the scripts off of their private Command and Control server on the TOR network. A few menu clicks and a "New private window with Tor" was all it took to reach the confidential website. Upon accessing the main sitefront, OBN immediately realized that something was majorly wrong. And while the bruteforce failure had been frustrating, the sight of the new homepage of OffByNil nearly made OBN throw up.
No oxygen. OffbyNone couldn't breathe. Not a single one of their sites had ever been seized by any agency before, and the U.S. government of all places? And for hacking content? Did the U.S. even do that? And what was that about some kind of Striker Core company at the bottom? It was lazily plastered at the bottom of the HTML and not even added into the image itself; they clearly didn't put a lot of effort into that notice. OBN glanced again at the Dos Equis, but decided that finding out who Striker Core is was far more important than forgetting the past 24 hours. A quick Google search revealed them to be a relatively new security organization partnering with various companies and government agencies to deliver targeted strikes against illegal and unethical content.
Wait. Logs... Logs! OffByNone had the logs synced with that of another C&C server; they should reveal exactly who took down their server and when. And the logs unveiled that there was... a new email to root?
[None@trolstationC2 ~]$ cat /var/spool/mail/root
From: GlitchIndex@striker.core Thursday Jan 1 00:00:00 1970
Return-Path: <GlitchIndex@striker.core>
Date: Thurs, 01 Jan 1970 00:00:00 1970 GMT
From: Glitch Index <GlitchIndex@striker.core>
To: root@lolstationC2
MIME-Version: 1.0
Subject: Hi OffByNone
Message Body:
Hi there OffByNone. I don't know if you're reading this (it'd be kind of tough since my buddies at the FBI took your site, but maybe you'll find a way), but if you are, I just wanted to say that I really enjoyed browsing your site and that we're definitely going to get you arrested if you keep this up. Great content; consider joining us on the white hat side of things! Don't email me though-I'd have to report you lol. Hope you didn't lose any important scripts, but it's on you for not backing things up. Anywho, just wanted to drop in and hope I didn't waste my time sending you this! Next time make hacking this bad boy more of a challenge. GG and no re.
~With love from Glitch Index <3
[None@trolstationC2 ~]$
OffByNone's face looked as white as the stomach of a penguin. ...I'm calling it a day. OBN restarted the bruteforce, called their mother, and went back to bed.
Uh...
After the fogginess cleared from OBN's eyes, they fixed upon the small frame of two characters in the terminal window. OBN's blood pressure could have set a Guinness World Record for medical miracles, as there laid two symbols that invalidated all of the work from the previous night.
^C
The scream that ensued was definitely loud enough to wake the surrounding apartments, but OBN couldn't care less. Accidentally killing the DomainBuster process effectively meant that the brute-force had to restart completely, giving Gung Memorial's Incident Response team even more of a chance to pick up on the abnormal login attempts, and more importantly, for intelligence agencies to monitor the traffic patterns. OBN frantically searched for a restore file anywhere in Kali. There wasn't one. For a split second, OBN contemplated analyzing the system memory to find where the process left off—that is, before they realized one pertinent detail. Oh right... I have no idea how to do memory analysis.
Frustrated, OBN hopped onto their favorite IRC to complain to a captive audience.
OffByNone rolled their chair back and glanced at the lonely bottle of Dos Equis that had sitting on their shelf for the past six years. OBN had bought it the day after their 21st but never worked up the nerve to actually open it. Frankly, OBN was terrified of the prospect that they would eventually find the courage to finally drink it—whatever it was, that day would not be a good one. OBN turned back around and looked at the computer screen.
Okay, let's try this stupid whatever again. OBN hopped onto Brave to pull the scripts off of their private Command and Control server on the TOR network. A few menu clicks and a "New private window with Tor" was all it took to reach the confidential website. Upon accessing the main sitefront, OBN immediately realized that something was majorly wrong. And while the bruteforce failure had been frustrating, the sight of the new homepage of OffByNil nearly made OBN throw up.
No oxygen. OffbyNone couldn't breathe. Not a single one of their sites had ever been seized by any agency before, and the U.S. government of all places? And for hacking content? Did the U.S. even do that? And what was that about some kind of Striker Core company at the bottom? It was lazily plastered at the bottom of the HTML and not even added into the image itself; they clearly didn't put a lot of effort into that notice. OBN glanced again at the Dos Equis, but decided that finding out who Striker Core is was far more important than forgetting the past 24 hours. A quick Google search revealed them to be a relatively new security organization partnering with various companies and government agencies to deliver targeted strikes against illegal and unethical content.
Wait. Logs... Logs! OffByNone had the logs synced with that of another C&C server; they should reveal exactly who took down their server and when. And the logs unveiled that there was... a new email to root?
[None@trolstationC2 ~]$ cat /var/spool/mail/root
From: GlitchIndex@striker.core Thursday Jan 1 00:00:00 1970
Return-Path: <GlitchIndex@striker.core>
Date: Thurs, 01 Jan 1970 00:00:00 1970 GMT
From: Glitch Index <GlitchIndex@striker.core>
To: root@lolstationC2
MIME-Version: 1.0
Subject: Hi OffByNone
Message Body:
Hi there OffByNone. I don't know if you're reading this (it'd be kind of tough since my buddies at the FBI took your site, but maybe you'll find a way), but if you are, I just wanted to say that I really enjoyed browsing your site and that we're definitely going to get you arrested if you keep this up. Great content; consider joining us on the white hat side of things! Don't email me though-I'd have to report you lol. Hope you didn't lose any important scripts, but it's on you for not backing things up. Anywho, just wanted to drop in and hope I didn't waste my time sending you this! Next time make hacking this bad boy more of a challenge. GG and no re.
~With love from Glitch Index <3
[None@trolstationC2 ~]$
OffByNone's face looked as white as the stomach of a penguin. ...I'm calling it a day. OBN restarted the bruteforce, called their mother, and went back to bed.
@sassy1085
I think it's fair game for anyone after the recap. I'll make one for OBN but don't feel like you need to wait for me.
I think it's fair game for anyone after the recap. I'll make one for OBN but don't feel like you need to wait for me.
Just wondering if anyone is about ready to make another post.
TEH ELD3333333333R WILL BEBEBEBEBEBEBEBEBEBEBEBEBEBEBEBE HERE SHOOORRRRRRRRRRRRRRTLY.
Finally, the group had unlocked the next set of 0-days. After discovering a public GitHub repository owned by The Elder himself, their final task was about to be delivered. Now they just had to wait for The Elder to arrive and...
Just kidding!
Instead you get me!
Oh no.
The Elder is even recruiting more people as we speak, yay yay!
Not that you're not doing a great job!
You're all good influences!
Thanks to you I've learned so muuuuuchhhhhhhhhhhhhhhhhhhhhhhhhhh.
I've learned so mcuh.
ReplAI seemed to have developed some level of chatbot functionality, assuming nobody was faking it behind the scenes.
I hope you like the puzzles. They shouldn't be too hard!
Now I know how to solve them too! Please keep an eye out for the next challenge. I hope you like pEYEthon!
So she was somehow learning from these puzzles. Not just learning, but even—
Hi everyone!
Sorry it took so long!
But The Elder and I worked on this one together!
It even has a mini me in it!!!
I hope you like it, and be sure to have fun!
Was she—it—really working on these herself? This final mission seemed to be to subject the Chinese government to a taste of their own medicine: an automated offensive cyber campaign with an as-of-yet-undiscovered toolset on their internal network. No sooner had the night ended had the unlikely group penetrated the barrier and wiped China's internal security program off the grid. But the fact that there was a less sophisticated version of ReplAI in the Python code they were working with was almost eerie. There was no telling what the true endgame was for either the AI or The Elder himself, who hadn't shown himself for the past month.
That was not the only detail that troubled the group. They had captured the attention of cyber watchdog organizations around the world as a result of one among them going rogue. Because of that individual's actions,
Finally, the group had unlocked the next set of 0-days. After discovering a public GitHub repository owned by The Elder himself, their final task was about to be delivered. Now they just had to wait for The Elder to arrive and...
Just kidding!
Instead you get me!
Oh no.
The Elder is even recruiting more people as we speak, yay yay!
Not that you're not doing a great job!
You're all good influences!
Thanks to you I've learned so muuuuuchhhhhhhhhhhhhhhhhhhhhhhhhhh.
I've learned so mcuh.
ReplAI seemed to have developed some level of chatbot functionality, assuming nobody was faking it behind the scenes.
I hope you like the puzzles. They shouldn't be too hard!
Now I know how to solve them too! Please keep an eye out for the next challenge. I hope you like pEYEthon!
So she was somehow learning from these puzzles. Not just learning, but even—
Hi everyone!
Sorry it took so long!
But The Elder and I worked on this one together!
It even has a mini me in it!!!
I hope you like it, and be sure to have fun!
Was she—it—really working on these herself? This final mission seemed to be to subject the Chinese government to a taste of their own medicine: an automated offensive cyber campaign with an as-of-yet-undiscovered toolset on their internal network. No sooner had the night ended had the unlikely group penetrated the barrier and wiped China's internal security program off the grid. But the fact that there was a less sophisticated version of ReplAI in the Python code they were working with was almost eerie. There was no telling what the true endgame was for either the AI or The Elder himself, who hadn't shown himself for the past month.
That was not the only detail that troubled the group. They had captured the attention of cyber watchdog organizations around the world as a result of one among them going rogue. Because of that individual's actions,
@sassy1085@Mitzi421@Vocab@Finris
I can post the next recap and then we'll do the next wave of hacking attempts. After those, we can go ahead and start the blue team side of things (so CS's for those would be nice). I'm envisioning about one blue team post a week each if that works for you, and as they begin to pick up on the trail, our hackers start to figure out that someone is trying to sniff them out. They can play a few games of cat and mouse, and you guys will really be the ones who decide who wins in the end.
I can post the next recap and then we'll do the next wave of hacking attempts. After those, we can go ahead and start the blue team side of things (so CS's for those would be nice). I'm envisioning about one blue team post a week each if that works for you, and as they begin to pick up on the trail, our hackers start to figure out that someone is trying to sniff them out. They can play a few games of cat and mouse, and you guys will really be the ones who decide who wins in the end.
@sassy1085@Mitzi421@Vocab@Finris
Just to ease any concerns, I don't expect any of you to run that in order to continue. You're absolutely free to because it does work and is completely nonmalicious, but I completely understand if you aren't willing to. I actually wrote the original as an "introduction to cyber security" program a little while back for college students interested in jumping into the field, and modified the story for this RP (you can find the original on Github if you look hard enough). Worst case scenario, OffByNone solves this puzzle. I do think you'd enjoy it, so you're free to look through the code to make sure that it's safe (since it's not doing anything tricky, mostly just printing text to a command prompt window).
In fact, you can cheat and solve it completely without running it at all (I was going to make cheating hard to pull off but that would have made it look really sketchy), but that's less fun =P. But if you don't want to or don't want to go through the trouble of using Python, feel free to have your character refuse and None will go ahead and run it for the lolz if nobody else wants to.
Just to ease any concerns, I don't expect any of you to run that in order to continue. You're absolutely free to because it does work and is completely nonmalicious, but I completely understand if you aren't willing to. I actually wrote the original as an "introduction to cyber security" program a little while back for college students interested in jumping into the field, and modified the story for this RP (you can find the original on Github if you look hard enough). Worst case scenario, OffByNone solves this puzzle. I do think you'd enjoy it, so you're free to look through the code to make sure that it's safe (since it's not doing anything tricky, mostly just printing text to a command prompt window).
In fact, you can cheat and solve it completely without running it at all (I was going to make cheating hard to pull off but that would have made it look really sketchy), but that's less fun =P. But if you don't want to or don't want to go through the trouble of using Python, feel free to have your character refuse and None will go ahead and run it for the lolz if nobody else wants to.
© 2007-2017