[USB Switchblade Development]

Hey all

When I put together the proof of concept U3 hack I wasn’t thinking it would get much attention so it is a bit primitive and kind of script kiddie. I gave it to Darren to see what he thought. I didn’t realise it would be so much fun to talk about and see Darren demo.

So I was thinking, How about we re-write it a bit better this time. I think it would be quite cool to evolve it a bit.

Some suggestions:

Works on U3 and USB

Automatic privilege escalation from any user to Admin

A real bind shell as well as the account adding and hiding.

Re-compile pwdump4 with new variables so none of the virus checkers find it.

A phone home option that can detect or create an SMTP server to send the results.

A switch to make it a passive as apposed to active hack.

Improve stealth and speed

Give it the ability to run bolt on’s such as anything you guys can think of.

An automated switchblade build routine.

And so on…… Hmmm maybe my black hat is showing sorry. :oops:

OK, back to gray.

It might be fun to do it together with all the skills we have we could make an awesome tool.

I have already written some of the above and am happy to share.

My only reservation is I don’t want this to tun into a real work type project. Just a bit of fun that mabe we could develop something that could be used in another segment.

What do you guys think?

_________________

MaxDamage

Max's Law: "Murphy was an Optimist!"

I'm with you.... and a way to switch it from passive to active and then back would really be helpful (sadly I know just about nothing about this but I'd love to help so if you can recomend some reading to bring my 1337 skillz up to where they need to be, that would be great meanwile off to google)

... murphy was totaly an optimist

[Interviews]

HELL NO

I liked the interview with the guy from md5lookup, that guy was cool he was not in it for the money, he was trying to do somthing cool and learn from it like y'all at hak5 are doing but.... Do we all need reminding of that CRAPPY interview on rainbow tables?.... I almost fell asleep trying to watch that crap (true story) if that interview was replaced with the md5lookup interview... might have been best eppy ever. you want to do interviews do it with cool people like that

</rant>

long story short Ya interviews would be cool as long as the people are cool not boring uptight figureheads

[USB Switchblade Development]

I think we are going to need two diffrent payloads, one stealth and one pwner.. If you have someone who is tight into securty and they see a account created, or a somthing droped on their computer you're boned because now their pissed and looking for you. But if you only take stuff off the computer there should be really no way to tell...

[whats the best mac like live linux ditro?]

I remember that to make you life even easyer there's a video of what it looks like and a nice install video how to on cnet.com I used to have the URL but lost it when they changed there video site I can't find it now but I didn't really look.

[Hack request: Autodump USB mem stick to HDD]

The problem with 'backing up' someone's USB stick is that it is a pretty slow medium, so if the thing's full or large or both this will take a while. It'll take some social engineering skills to keep the stick in and the other guy preoccupied while you're copying. The activity led that a lot of sticks seem to have won't help you either...

it may take some time but if you give the program a few secound to start copying... like mistakenly open c: drive and say wait what happend, and play dumb for a little while, the copy can start, and then when you want to copy that ONE file off it will take forever becasue another program it using the drive....

I have not tried this only have I tryed copying two files to a 2 GB usb drive and if you copy more then 1 at a time it take FOREVER

[Digg friends collaboration]

http://digg.com/users/GMullen/dugg

Coolness

[Hack request: Autodump USB mem stick to HDD]

......Sorry for the long post , but i hope it helps :)

Dude that was a perfect of post, and very well written

[2x02: 360, PS3, or Wii?]

I have the 360 for one game and one game ONLY SPLINER CELL 4 BABY!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!111!!!!!1!one!!!!!!!!!1

oh and LIVE is nice

[whats the best mac like live linux ditro?]

sorry that one was killed somthing about they can't bundle the nVidia dirvers in GPL or somthing like that.... or nothing like that.

but last time i checked no live cd anymore

[best and easiest way to hack a myspace profile]

<spank>

Bad noob...bad!

</spank>

5

[What does "RPG" mean?]

For The Win

and you could always use 5 if you don't want to say lol

1337ize (lol) = 101

101 in binary = 5 in decimale

therefor 5 = lol

1*2^2 + 0*2^1 + 1*2^0 = 1*4 + 0 + 1*1 = 4 + 0 + 1 = 4 + 1 = 5

[Whats more annoying?]

..... 45 10ng 45 7h3y d0n7 741k 1ik3 d15, ....

is it a bad thing that I understood that when I read it the first time?

[E-Mail Domains]

i'm running a mail server so if you want one i can hook you up with somthing @ProPwned.org or @ITMegaBytes.com and long as you don't screw me over

[Whats more annoying?]

vote!

You know. That 'v', Should be capalalized!!!!!!!111one

I dont care about it to much but if you're going to make everything in just one big block then you need to use it

see i'm not useing .'s or ,'s but you can still understand AND read this post without problems

but my eyes just scan over them anyways so it would never bother me, but i'll take small easy to read blocks over punctuation anyday

[Unlocking a windows xp user account]

If it's XP then ctrl+alt+del twice should pop up a log in window and then all you need to do is enter the admin name and password

[password protected]

Exactly how secure is this?

secure enough to stump most moms/girlfriends

but if you really want something better theres a nice set of tools on http://www.unfiction.com useing blowfish (and a few others)

[password protected]

*cough*pr0n*cough*

want something built in to windows of corse you do heres what you do

1. right mouse click anywhere

2. create a new zipped folder

3. MOVE your *cough*pr0n*cough* (sorry i have a cold) file in to the zipped folder MOVE not copy

4. rename all files (you can see the files but not run them)

5. click File > add a password

6. choose a good password

7. wait if the files are large this will take some time

8. i think thats it but i might be missing somthing

[E-MAIL]

No not really you phone just need to receve a simple "txt msg"

[lets make a haxxor song .... :D]

ok i got bored here you go

http://www.oddcast.com/home/demos/tts/fram...php?frame1=talk

[lets make a haxxor song .... :D]

theres a VERY good web interface one from digg

i've only used it on windows but it should work anywhere firefox does i'm to lasy to search for it my self but some keywords are

oddcast

vhost

it's one of dem sitepal things they are stupid as hell but should suit your needs just make sure you have cookies turned off for that site or you only get 3 lines

[lets make a haxxor song .... :D]

when are you going to put it to the music

and mad props if you use a tts prog to do the voice now that would be leet

[Usage of crap computer?]

and will you sell me a few i could always use a few more laptops?

[heh...]

noww... where have I heard of teabagging before?... maybe Wess would know?

Wess?...

Do you have a comment?

[Usage of crap computer?]

I freaking hate how there are topics like this where a 1Ghz machine is considered crap. The best machine in my house is less than that. A crap machine is a freaking Pentium 100Mhz with 30 Mbs of RAM, and a 1.2GB Hard Drive.

</vent>

that's becsaue they are didn't you know as soon as 2.60GHz came out 2.599999999999GHz became crap... didn't you get the memo

[remote access]

Thanks Cooper, i'm getting (slightly) better results now.

Thank you Computer_kid, for reminding me why i avoid forums.

YAY Computer_kid you just got pwned

(this is the start of my new "flame anyone that won't help someone asking a question" project)