operat0r_001

meebo does not support IRC that would be !@#ing sweet but ... you can use cgi-irc's for now :) http://irc.rmccurdy.com/ links at the bottom are full open CGI IRC proxies

slacker.com pandora.com my fav automated task is the full update of snort script I made * uses PHP/CURL to download the latest sigs from snort.org * adds sigs from www.bleedingthreats.net * cleans up conf and rule sets * fixes rule triggers to alert snortsam.net IDP heres the script ... http://rmccurdy.com/scripts/snortupdate.sh.txt http://rmccurdy.com/scripts/snort.php.txt its a total hack job but it works ..

NOTES: * ptunnel will not work on most routers ( routers do not forward ICMP to DMZ etc ) * http://thomer.com/howtos/nstx.html set this up if the only thing that works is DNS

prob owned yer VNC if you had it open. people don't go around owning boxes and then VNCing into them to see what sexy anime you have as the desktop wallpaper ... prob a friend or just some skidde running VNC scans use ulravnc with crypt or even better use sshd/whitelist man funny I saw this post I spent ALL DAY at work trying to get NSTX to work ... so PM me if you get it to work the idea I had was to get a VMware image with it all setup and automated so I could give it to my dad or something .. I am using freebsd so not sure if i got the forwarding right and also it's VMware so not sure it I can even do it with that... I know its not getting blocked or anything I can't even get the client side to do anything to the server side. ( tshark -f "not tcp" ) good for trouble shooting.. anyway let me know if you get it to work. I need to be spoon fed because my brain is fried ! here is my script so far .. SERVER =------------ killall nstxd ifconfig tun0 destroy ifconfig tun1 destroy ifconfig tun2 destroy /etc/rc.d/routing start ifconfig tun0 create;sleep 2 ifconfig tun0 10.0.0.1 255.255.255.0 mtu 1500;sleep 2 ifconfig tun0 10.0.0.1 255.255.255.0;sleep 2 ifconfig tun0 up;sleep 2 /usr/local/sbin/nstxd -g www.rmccurdy.com CLIENT ---------- ifconfig tun0 destroy ifconfig tun1 destroy ifconfig tun2 destroy nstxcd www.rmccurdy.com 66.194.149.138 &;sleep 2 /etc/rc.d/routing start ifconfig tun0 create;sleep 2 ifconfig tun0 10.0.0.2 255.255.255.0 mtu 1500;sleep 2 ifconfig tun0 10.0.0.2 255.255.255.0;sleep 2 ifconfig tun0 up;sleep 2 route delete default;sleep 2 route add -host 66.194.149.138 192.168.1.1;sleep 2 # needs to be tun0 route add default 10.0.0.1;sleep 2

no script FTW skiddie powers activate !

setup sshd on port 53 get porta putty get portable firefox tunnel if blocked use ping tunnel ( all you need is ICMP and DNS )

there about 10000000 cart out there I would go with one of thos and a custom script to gen the UID's

UPDATED:7:40 PM 1/23/2009 UPDATED 4:50 PM 2/9/2010 http://images.google.com/images?q=Directory+Opus http://images.google.com/images?q=Beyond+Compare http://images.google.com/images?q=UltraEdit http://images.google.com/images?q=GetDataBack http://images.google.com/images?q=regexbuddy DL : http://rapidshare.com/files/183298321/ultr...le_pack_1_0.zip dameware_portable DeFixed_Edition ( custom olly/plugins that most wont pick up ) neroportable I plan to check out RoboForm2go InfraRecorder VirtualDub Portable PuppyLinux here are mine ...that are not listed on this thred update: flash 500meg thinstall portable w3af ( see my site for details /download ) SWFDecompiler Replay Media Catcher WiresharkPortable ( not really portable requires root ) Google Earth Plus v4.3.7284.3916 Portable.exe winamplite potable FileZillaPortable.exe WinSCPPortable.exe office 2k7 sp1 portable thinstall th_office2007E_sp1 autohotkey unxutils ( sed awk etc .exe's for windows ) CCleaner ( but I ripped all the paths and made my own .bat that support ALL USERS see http://forums.hak5.org/index.php/topic,8571.0.html ) Chaoscope PortableDIA portaputty * YES ! FTW * SymantecNss.exe ( shh it still works I like nanoscan.com better but this is great for non network attached hosts ) Absinthe PRIAMOS ExploitTree Paros SQLPowerInjector CAL9000.zip Hijetter.exe nbtscan-1.0.33.exe RegCleanr.exe SensePost Aura.exe / wikito.exe winpenguins babyftp.exe SysRun.exe DisplayFusion.exe ( for dual monitors ) i_view32.exe CuteHTML.exe TreeSizeFree.exe SWFDecompiler.exe RegDoctor 1.92.exe ( via thinstall.com ) Foxit Reader.exe ( also thininstalled) PhotoShop CS3-Ext.exe ( thininstall 50megs :) hehehe thinstall FTW) custom scripts -- http://rmccurdy.com/scripts/ just read the ALL descriptions .. nirsoft_net ziped up WITH PASSWORD ( stupid anti virus will delete 1/2 the password crack apps on the stick ) or a full list I LIVE off USB .. I have backtrack windows XP and windows7 all on usb drives : win7: http://rmccurdy.com/scripts/usboot%20windows%207.bat winxp : www.usboot.org ( you can push a usboot image in 4min and have windows up an running in under 4min .. with driverpacks ) backtrack 4 prefinal with changes: http://forums.remote-exploit.org/bac...tml#post148380 I have recently added portable: GrabIt.exe dvdflick.exe MediaCoder 0.7.2.4582 portable.exe Premiere 6.0 Portable some of these windows apps are Thinstalls FYI you need admin for the dropbox portable

Its open source just SFX'ed :) PLEASE add anything you think that can be cleared that would be a sercurty risk as for the index.dat I use a 'indexcleaner.exe' .. sorry I can't code that good so I ripped that ..

check out DUMPSEC you also want to get UnxUtils and learn SED / AWK and EGREP etc .. here is a audit script I made to find all local admins administrators on a windows domain its a total hack job but it works... if all you want to do is keep track of network hosts just use whatsup is free for basic I think and also check out zenoss and nagios for more advanced stuff http://rmccurdy.com/stuff/www.twatech.org/ look for the nagios eps. #audit.bat net view | gawk "{print $1}"| sed "s//audit.vbs /g" > script.bat net view | gawk "{print $1}"| sed "s//audit.vbs /g" > script.bat cax /ruh script.bat | find /v "Domain Admins" | find /v "AGS" | find /v "adadmin" | find /v "adguest" | find /v "Microsoft" | find /v "Copyright" | grep " " > report.txt script.bat | find /v "Domain Admins" | find /v "adadmin" | find /v "Microsoft" | find /v "Copyright" | grep " " > report.txt type report.txt | find /v "audit" > report.wri start report.wri #audit.vbs On Error Resume Next strComputer = WScript.Arguments.Item(0) Set objGroup = GetObject("WinNT://" & strComputer & "/Administrators") For Each objUser In objGroup.Members Wscript.Echo strComputer & " " & objUser.Name Next

what is the model number of the router ?

http://rmccurdy.com/scripts/videos/sidejacking_hamster.swf skidde powers activate ! an old video I made

I setup a USB stick for my GF so she can surf any site she wants at her school * portable firefox * porta putty so when the puts it in the autorun just starts portaputty,tunnels and firefox if need be I can setup ping tunnel so all you need is ICMP and DNS

I think thats an evil twin or something

humm ill think about it .... only problem I have with it now is that it takes FOR EVER to securely delete a lot of stuff ... so if anything I will add a command line menu to do quick(unsecured) delete or something ...

3:25 PM 2/21/2008 Just use www.7-zip.org to open or winrar etc its just a SFX file. SOURCE: http://rmccurdy.com/scripts/quickclean.txt Basicly ganked all of CCleaners paths and added them too but what this does that ccleaner does not is ALL USERS HEY KIDS ! finally updated my quickclean to support vista !! http://rmccurdy.com/scripts/ quickclean.exe ============================== THE QUICK SECURE CLEANER :: rmccurdy.com :: 2.0 UPDATED : 02/20/2008 ============================== WARNING DO NOT RUN THIS IN SAFE MODE !!! Here are some of the files this program will delete * deletes c:temp * Internet explorer temp files for all users * firefox cookies,saved,cache passwords etc for all users * temp folders for all users * old windows updates * recycle bin * %SystemRoot%$ntuninstallK ( old windows updates ) * %SystemRoot%/$hf_mig$ ( old windows updates ) * c:WINDOWSInstaller ( install cabs for programs not really needed ) * OPTIONAL: all startup items for all users * OPTIONAL: all outlook mailbox data and everything under 'Local Settings' for all users[shadow=red,left][/shadow]

http://www.amazon.com click todays deals I like pricewatch.com tigerdirect etc

* hides * * guilty ! *

Ya its been a while have a lot more spare time now so I will be checking out the forums more. I updated the code on my site they do refer checking now or something I can't remember what they changed but it quit working about a week ago i had to fix it.

you may want to just do a VMware image .. if you are new to *nix http://www.binrev.com/forums/index.php?showtopic=34676 http://rmccurdy.com/scripts/fast-track.py

http://signal.slacker.com/transcodings/emi...a975fb95f01c232 http://signal.slacker.com/transcodings/sny...80a8ec4377bb5fe some urls from urlsnooper it appers the first one is the current song and the 2nd is always the next song I suck at java only thing I can think is some kind of crazy ettercap filter and a crazy shell script ..

idiot proof hamachi done right openvpn

Yes

http://www.rmccurdy.com/gal/ FTW :)

portaputty + sshd