[Bit Bucket the class room game]

I was attending a lecture the other day and one of my teachers was discussing how access list’s work in Cisco device’s. In his talk he referred to packets that had a deny setting in the access list ended up in the Bit Bucket. When I queried what the hell is a bit bucket he explained that its memory that is set aside to dump useless rubbish and that memory clears its self in a set amount of time, in essence’s its much like the recycling bin on your windows desktop without you having to empty it.

A couple of days after this lecture I copped a bad case of the flu and was quite possibly high on prescription medications and was thinking about the humble bit bucket. I thought real life really needs a bit bucket due to the fact people being people say and do some really stupid shit (myself included). After a couple more pills to cure my headache and a swig of cough medicine it dawned on me, Bit Bucket the class room game.

Step 1:

Get yourself a Itty Bitty Bin or something that is the equivalent and label it Bit Bucket.

Step 2:

Make up 3 badges or clip on I.D type tags with text that reads My ass got Null0’ed

The Rules and how it works:

When class mate /you stuff’s up by saying or doing something completely stupid you are nominated by someone saying Bit bucket. The class then shows a raise of hands and if more than half have their hand raised you are Null0’d. In which case you wear your Trusty badge for the entire remainder of the class day and write your name, the date and what you said/did on a piece of paper a place it in the bit bucket.

At the end of the year you count the total number of bits in the bit bucket that belong to an individual and issue them with a prize.

The Prize:

I will be using a second itty bitty bin that I shall spray paint gold (if I can’t find a gold one) and mount it on a block of wood which will contain all the fuck ups they did over the year and have an engraving with something along the lines of. I bestow you with the golden bit bucket for being the single most useless piece of flesh that needs a bit bucket placed firmly under their mouth to catch the endless amounts of shit that comes out.

Suggestions:

I am open to suggestions to rules, wording on the prize etc… I am planning on introducing this as a class room game sometime in the next couple of weeks for shits and giggles.

[Lanschool v7.2]

lol Well that is another issue all in its own, I guess the overly paranoid will pick your tool apart.

I no longer need the keylogger option seeing as after the previous mentioned bullshit I came across on the schools network I cracked a shit fit and just purchased a new laptop that I can use. A few fellow class mates are considering doing the same But yeah for everyone else keylogging your work could come in handy.

[Laptops for 7th graders?]

Mike that was a fantastic write up and you made a a really valid arguement that I couldn't agree more with. I believe money would be the biggest issue though, most schools just like most people like to have things on the cheap and assume it will all just work. When things go wrong it's the poor I.T guy that cops the blame and has to put up with the on going B.S fixing all the problems.

lol @ Vako its funny cuz its true.

[Vulnerability Search?]

+1

Milw0rm

[BBC botnet]

Yeah that kind of blew me away, I was expecting more than 60 machines to take down a website.

[Dos]

L1k3 c0m3 0Nz V@k0 H31pz 7h3 n00bz pwn $h1tz!

Purdy pw3333zzzzz XD

lol sorry mate after reading your comment and having a laugh I just so had to play along.

[Episode 5x05]

No you don't. There's a reason why it is a twisted pair. We used a flat cable similiar to the FON cables (because that's all we had at the time during debug). Found out that when you approach 10Mb/s you get lots of collisions and problems

Well said and I couldn't have put it better myself.

I will agree that those cables are purdy and remind me of the rollover to DB9 type that cisco make =3

[Did you mean to type that?]

lol worst type I have ever came across was while chatting with a female freind were she said:

brb I am going to go out for a quick wank

either she was being a little to honest or she was suppose to say walk.

Fuck did I laugh when reading that, stupid women thought I wouldn't pick up on that bwahahahaha.

[Lanschool v7.2]

lol very true, but thats life for ya filled with those ironic momments. XD

I am sure you would much rather trust a keylogger you scripted yourself opposed to the 2nd option.

[Wow, synergy is awesome.]

A mate of mine was showing me this program in class the other day and highly recomended it for my current setup. After seeing it in action I will be adding this app.

[Laptops for 7th graders?]

I concur with dingle, I would much rather have a book than read of a computer.

7th graders should have access to computers but only in a lab enviroment, I don't see the point of any student needing a laptop unless they are in collage/uni.

[Episode 5x05]

Sounds really interesting and a little on the dark side (yet to view this ep) I may have to "intercept" some wifi so I can view it (fugging ISP shaping).

But first getting this 42u rack cabinet in a ebay auction *fingers crossed*. =)

[define:president[google]]

Damn, my stomach hurts! Its been a while since I have laughed that hard.

Nice post.

[Dos]

LFMAO @ Mach, well played.

Moonlit and mach the resident hak.5 firewall and b.s filter. XD

[ARP]

Correct me if I am wrong its been a while since I read ARP shit (and I am sure you guys will if I am) XD

ARP use's a broad cast address so all computers on a network will receive the ARP packet to view it from your routers prospective all you need to do is filter for only ARP in wireshark and look at source and destination of the packet (usually found via its MAC address or IP number). If you are unsure as to what your routers mac is, just flip it over and it should have it on a sticker at the bottom (or in the web gui config settings)

For a more detail inspection click on the packet of interest and view TCP/IP stream.

If I am missing something guys feel free to elaborating on this.

Anyways hope it helps.

[Funny Firefox Glitch]

LMFAO 4gb thats some plugin.

[Lanschool v7.2]

Lyzon I tried your app today and it wouldn't launch the .exe file, not that its your fault but more so the fact my school don't have the .net framwork installed. I suspect I may need a couple of .dll's to get it to load but as to which ones I have no idea.

lol I feel your pain with packet logging its easier if you create a custom filter that gets rid of the ARP and other assorted rubbish so you are only looking at lanschool packets also you can can select a packet of interest and follow tcp/ip stream to get the ascii output (in case you didn't know), Anyways I maybe able to fudge my way through it and if not I will make it a class project out of it and see what me and the boys can come up over a lunch break or two for ya. Also it may pay to capture/upload the wireshark log's and the teacher program hack for posting on here so anyone else interested can have a crack sifting through it.

MMMM good question, I was pondering over this today and I couldn't think of what else would be helpful........ maybe synergy, *shrugs*. In any case I am sure some of the hak5 higher ups and regulars will have some great suggestions. This could be a useful device for students to carry around on a thumb drive. XD

You thought of a name for it yet other than the crasher and teacher hack? If you go the student swiss army knife route may I suggest Lyzon's LAN tooled. Its a spin off from the older LAN school hack called LAN Schooled. Think of the slogan don't be a fucking tool use one Lyzon's you got LAN tooled =P

Edit due to that once a year brain wave

I have a cunning plan me lord! Now I can only speak from my own experience's but using a school network is a shit, how many times have you been working on an assignment and had your word document/computer crash or the stupid admins fire up their AV scans not after hours while you saving a word .doc and due to low resources your file gets corrupted/fucked (so far I am up to the 5th time in 3 months...... feel the rage!). Also you do a fair amount of google research during class and sometimes you neglect to copy and paste the url of some website that has really good info on something and when you get home to try and find it you can't.

The answer lies within, Lyzon's LAN tooled (I am calling it that for now, until you name it officially) with built in key logging feature to record assignments you are working on and visited websites.

Anyways thats just an idea, not sure if other students have the same problem but if you ever lost work or a good website for referencing you would WANT this feature. Only issue is this feature would be picked up by most AV's even though it has no malicious use intended (sucks).

[Wii Hard drive concept.. is it that hard?]

lmfao the KING of add-ons has found another way to milk money from its customers.

[Lanschool v7.2]

EDIT

Good luck on the port blocker venture I tried this already with a number off them in earlier posts and could't stop the bloody thing. I believe they mention that you can't do this on the website seeing as this was an issue with students working around it in previous versions.

lol a hidden dialog to close students, thats a nice find indeed. Hey I wonder if it is at all possible to make something that listens and allows LANschool teacher to connect to it so you can do some funky stuff with the techers desktop or some shit. I doubt this is possible, form what I remember about Lanschool when I put it to a sniffer the student constantly broadcasts and all the teacher does is listen in on that broadcast. I will have to take a look and see if it is possible to get the teachers desktop IP number from this, if you can maybe you could add a port flooder of some kind or some standard annoying windows shit like net send or what have you.

On the other hand if you could be arsed you could turn that app in to every students swiss army knife for class by adding shit like a packet sniffer, XB browser or what ever else tickels your fancy (just an idea).

I would love to help working on this but unforunitly I specialize in netwroks not programming (however it is on the to learn list).

[Spare USB stick - Ideas?]

Yeah BT4 and it being ubuntu based is totally kick ass (apt-get is every nix n00bs best friend/not to mention more practical).

+1

For sticking with BT3, as much as I totally love the BT4 layout my Atheros WPN311 is not supported and I don't think my asus eee 701 is either (yet to check it).

[My Picture Frame - Redo]

I love it, it blows all over the prefab shit you buy in stores.

Very nice and you were ahead of the times creating that.

[Lanschool v7.2]

What do people think about moving this topic to a newly created Active Projects section of Sercurity and hacking?

I say your the boss Vako and you can do whatever you want. XD Actually its a very good suggestion but that would be up to the people who actually have the program skills unlike myself.

Thanks for the reminder to others on that Lukar, yeap the secure version does have some of those feature's and I did briefly touch on them in a previous posting (just not in as much detail).

In any case this is not really an issue for me seeing as my school are to tight to purchase the secure version of LAN school.

Oh and Lyzon sorry I have been a slack arse and am still yet to test that crasher you so generously created (been bussy configuring cisco routers/switches for a class test coming up). I will get around to doing it sometime this week and post.

lol Oi what are the chances of getting snubs doing a demo on the Vmware work around and Lyzon's app in a future episode or is that wishful thinking XD

P.S Thanks again to all who contribute on this and really ran with the inital posting, you guys are FREAKING awesome.

[Video Tutorials on Hacking and Security]

Thanks Viv I shall eagerly await that tutorial on setting up the honey pot.

That barcode one sounds interesting too, especially cuz I use to work in a video/dvd rental store.

[BBC botnet]

Yeah I watched this a couple of days ago on www.securitytube.net was interesting but rather short.

I would rather have the BBC as the zombie master of my hijacked computer rather than some fuck tard skiddy who paid for em.

There was a talk at defcon a few years back about this sort of thing that I watched on youtube, from memory a bot retails for as low as 20 or so cents each.

remind me of the good old days when I went to the store and got $3 work of mixed lollies. Now days kids ask for $10 worth of bot nets =P

[Can't Boot]

I had the exact same thing happen to me, when I was doing the same thing (only I wasn't using vista).

Now don't hold me to this and to the others please correct me if I am wrong but when you partition a drive it also allowcates roughly 8mb for the MBR I believe and if this goes missing you have the above issue.

The way I corrected it was booting from my winxp CD (you could use Vista or Ubuntu) and remove created partitions and starting again.

Now when you are doing a dual boot, I just allowcate what ever I need with Windows and add that single partition, the rest is left as free space. Run your windows install to that partition and then fire up Ubuntu.

Use the manual partition option and set 1024 size partition and set it as swap from the drop down list.

Then create your partition of whatever size you would like for ubuntu and select ext3 file system. Also for the mount point select the / option from the drop down list and you are good to go.

Hope this helps.