След дълго двумесечно обмисляне взех решение да напусна настоящата си работа. Днес ми беше последния работен ден. So far I have been working for 4 years and a half (roughly) мога да кажа, that it was a hell of a pleasure and a privilege for me to work with some of the best- the best linux administrators in bulgaria. I worked in one of the largest internet providers in southern Bulgaria, which gave me an awful lot of experience, stimulus, thirst for new knowledge as well as the need for such. I owe everything I have achieved to my colleagues who helped and encouraged me, but there comes a time when one does not feel well enough. In the last 1 year I stopped loving the place where I live, I stopped feeling that frantic urge to discover the new world every day and kill my brain with some interesting puzzle. Everything was starting to become more and more a kind of routine, which is not good.

I am terribly sad for my colleagues for my work on the aromatic coffee lunches early in the morning. I will miss all this but some things just need to change. He thinks for me, that is the final moment for that. I hope I made the right decision in before I was like a rock in my current place, no one had the power to displace me from the position I was in. And now I'm starting something with a not radically different activity, but to a very different extent than what I was doing. I know that more or less everything is an adventure, but how do we know we are alive. 🙂 It is not always safe to play.

Squeeze my thumbs and wish me luck!

A few days ago I came across holynix. This is a distribution prepared for hacking based on someone Ubuntu with apache installed + mind + php and some page. The goal is to exploit the launched applications and services to reach the root rights. Now I will not describe how services and applications break but how to solve the problem with a non-bootable network. I used virtualbox to run holynix v1. I put my image and vision for a new device on my network – I decided to do it like people don't know what the IP to exploit is, but I did not find one. I restarted and removed the silent start and saw, that during network startup roars, that there is not /var / run /network/ifstate. Решението е елементарно трябва при стартиране на мрежата да се провери дали съществуват съответната директория и ако не да се зaдаде и същото за файлът. Това е тривиална операция в /etc/init.d/networking the following are added at the beginning of the start function 2 order

[ -d /var/run/network ] || mkdir /var/run/network
[ -f /var/run/network/ifstate ] || touch /var/run/network/ifstate

This is a clear solution, however, we do not have a password for the root user 😀 Now follows the fun part and our first hack 😉 To get the root user in the grub menu we need to do some magic. We have to press esc the menu will be displayed shortly before the system starts. Then with E we enter the menu editing mode in the kernel part we finally add init=/bin/bash and we change ro on rw so that the file system has write permissions during installation after taking the root shell.

Then we fix the file for network interfaces. We need to change /etc/network/interfaces to raise eht1 and take dhcp network settings. Because by default it looks for eth0 and we have a new device that will be initialized with eth1. You restart and should now have a new device on your network.

ps A little hint to break the login part in the password field has sql injection 😉 Have a nice laugh

ps 2 I have used it VirtualBox for visualization in bridge mode for the network.

Enhanced by Zemanta

About half a year after my last announcement on Dreambox monitoring system I can announce the new and probably one of my latest versions of Nuki. The version was ready before 2 months but out of laziness where due to debugging things were delayed with the announcement. Has been working on for several days 32 dreambox 500-s and overall the results are very good. The changes are many – the idiotic dependence on Linux server to which to transfer the logs – you already need to have apache + php, because the new system for writing logs is by passing parameters to a php script on the server. I have separately changed the script to work without a server part – if you have a few satellite receivers, it doesn't make sense to have a server running from which to get the info, so you can put the hardcode in the script with 2 variables CAM information. I also declared an additional variable for debug – if you don't want it I won't throw logs at you – again a stupid omission compared to before 🙂 Slight corrections to the code were made, that it looked like it was written by a semi-literate oligophrenic (not that I'm not). They were away from us 2 critical code errors leading to the script crashing at some random moment, again oligophrenic omissions on my part. In general, writing was not very simple, you had to think about doing it like people, that busybox and ash are not the easiest things to tame. This time I think to save the big tirade with the code and directly explain the variables what it is for and what manipulations can be done with it (the new ones) 🙂

SERVER="192.168.100.1"
 STANDALONE="FALSE" #using like stand alone app no server side depends ; )
 HCAM1="" ## if starting like stand alone app give me CAM namezzz if HCAM1 is empty its means chanel is free
 HCAM2="" ## CAM2 name
 PORT="666" # port rockzzz : D : )))))))))))))))))
 IP=$(ifconfig eth0 | grep inet | awk '{print $2}' | sed -e '[email protected]:@@')
 FILE='/tmp/debug'
 INFO='/tmp/info_file'
 NC=$(which nc)
 WGET=$(which wget)
 MAX_DAYS="10"
 TIMEOUT="600"
 MAX=70 #max cpu usage per process
DEBUGING="TRUE" #if u wanna script send debug information set DEBUGING to TRUE if SEVERLESS is set to true this var will be skiped
 NEWDBGSTYLE="TRUE" #debuging new style sending info to apache derectly, old style using nc

So obviously the names of the variables speak for themselves enough, but still I have to say some clever words..

STANDALONE is one of the most important variables if it is set to TRUE no calls to the server will be made and will no longer require server dependency if you use it you have to put values ​​on the following HCAM1 (I don't know why I named her that way, I don't remember anymore, but it doesn't matter). If there is no value in it and the script is independent, the script assumes that it will work on an unencrypted channel and does not check for a decryption module., if there is it will check according to the set value. HCAM2 is optional if your decoder module only uses 1 process let's say CCcam for example.

DEBUGING the second interesting variable will give you information or keep silent depending on what value you have scored. Automatically switches to quiet mode if STANDALONE е TRUE

NEWDBGSTYLE waste is an important variable. It determines how the logs will be transferred to the server. If it is TRUE it will be in the new way without the idiotic dependence on netcat. If you still stick to the old method, put FALSE. Basically, these are the things you need to emphasize, but I think, that the changes, although cardinal, will remain an idea transparent because of the default values ​​🙂

I am definitely already very happy with how things turned out – the script became flexible enough idiots departed dependence on additional files for functions as well as already departed and dependence on nc I think or the need for a server and so on not everyone uses 30+ the box to have a server or it can only have some kind of home router. There is still something to improve but for now I think I should refrain from such things because it is not necessary 🙂

The files are usually found in directory and the crypto for entering logs can be downloaded from here

And in the case of a good script, one accelerated track for all accelerators 😀

Enhanced by Zemanta