trustme

We're still around, just doing other stuff at the moment. Didn't pull in enough donations to keep developing :P We'll get back to it eventually.

No (provided you don't run hacksaw/vnc) - the ones that say install, they install things . Everything else just grabs stuff and doesn't modify anything. -- Not well, better security is better security, as advertised by microsoft. Some tools do still work. Run the antidote payload (search the forums for it). That will remove the two installables, hacksaw and vnc. Our site is currently being moved / we're fixing the database a bit so: http://gonzor228.com/wp-content/uploads/ You can get the latest payload from there. Sbconfig is the visual config utility.

Try clearing everything off of your drive first, uninstalling all your apps, etc etc. Sometimes the universal customizer hangs due to the data on the drive. It happened to me the first time I tried to flash mine.

I'm going to recommend using the 'search' button. And searching. Then, you will come upon several suggestions for why it doesn't work, and one or two people saying 'success!'. If those people posted what they used to make it work, then I suggest trying that. More likely they did not, so pm them asking what they did, then post the reply here if it is successful for you as well.

Plus, think of how a antivirus works. Its going to scan anything and everything into memory. Then its going to look for know signatures, evidence of packing, etc etc. Any app you make will be tagged soon enough.

You do know that antiviruses scan processes before they are allowed to execute, and when your program gets copied into memory to prepare to run it will get caught, right?

We didn't create the installer. Memorex did, they offer the U3 drives as well. Memorex's installer allows the flash drive to be imaged from a folder on a local drive, which we make use of. It is impossible to replicate the firmware flash software as it uses commands hidden within the U3 hardware API, which is unavailable to us.

I think that was why he asked. :P

1) You don't. If it doesn't like you, it doesn't like you. As far as I know the customizer does not work in Vista :( 2) You turn the payload on, and pick whatever options you want. Its all silent. o ya and what EXACTLY does hacksaw do? The hacksaw install stunnel and blat, and basically makes use of these to zip up the contents of any flash drive plugged in and send them to your email.

Our payload tends to work fine if there isn't an AV running, you prolly want to disable the hacksaw as well as vnc. Register at out site to get access to the beta (not really a beta, but it has updated (Read: not as likely to be detected) payload exes).

First of all, did you explicitly follow the install directions of the wiki on our site? Second, your issue is with memorex, who made the tool we call "Universal Customizer." We disclosed that we take no responsibility for anything the Universal customizer does. It still may be fixable, feel free to post in the help and support section of our forums for additional assistance.

USB hacks is under new moderation, things will be different shortly, please try to read the threads elsewhere before expressing your displeasure here. I know this post might offend people, so keep in mind as you read it that I am entirely sincere, at some parts bitter and saddened over the controversy this has caused, but at no part angry with those who feel otherwise. Not to discourage discussion, but USB hacks wants no further negative criticism in the forums, especially within this subforum. When the issue came up, it was not discussed here initially, as it should have been, where someone would have provided an opposing viewpoint. Instead, other areas were chosen to discuss the matter. Those who oppose usb hacks have made two conflicting points as well. The first is that too many script kiddies are moving from here out into the rest of the forums, and the other is that too many script kiddies are joining and not providing any benefit to the rest of the community. Personally I believe that USB hacks acts as its own community, and people here rarely leave. The reason everyone is pissed off, as far as I can discern, is that they personally hate skiddies, aren't mature enough to ignore something that in reality has no affect on themselves provided they stay out of these subforums, and are offended that this area has brought a lot of viewers to the show. In my opinion it's far too late to have this discussion, especially seeing how recent attempts have been carried out. As to the technical integrity of the project, I hope to convince you otherwise. Let's start here: http://gonzor228.com/ Our website was created as an extension of our payload. Looking at the site: [li]it was written in php (there's a lot behind the scenes that isn't public yet)[/li] [li]it required us to become proficient in managing and installing wordpress[/li] [li]numerous pieces of art were created for the site[/li] [li]we learned how to use mediawiki in order to provide our wiki[/li] [li]we learned how to use iframes with lytebox, and how to use them securely[/li] [li]we have experience calculating md5 sums[/li] [li]we have experience with smf and moderation[/li] [li]we have experience in running a website, all parts from start to finish[/li] Many of these things such as the md5 sum are easy, yet we had no practical experience of actually doing some of these tasks. Others like the as yet invisible php back end were more difficult, and required a substantial time investment to complete. I've also created other pieces of art for the payload and miscellaneous programs for it, learned numerous parts of the java language explicitly for this project, and have started picking up C++. I've learned how to manage a subversion repository, how to install and configure parts of apache, and learned additional parts of the windows API. Merely the experience of interacting with other users to resolve issues, to see positive results of my contributions has made my time here worthwhile. I've also made positive changes at my school. I'm quite friendly with the network admins, however resistant to change they may be, and have helped them remove risks they previous exposed themselves to. I think it would have been hard to provide a more convincing demonstration of their insecurities than the switchblade. Things like changing grades, abusing net send, and locking users out of computers (altering read privs of others for the system 32 directory) as well as people sniffing the network. Many of these issues are now essentially resolved. These are just a few examples of my experience working on the payload. Also others have had positive experiences as well as being inspired to learn more than they previously understood. People like g-stress, whose post here shows him exploring batch. http://forums.hak5.org/index.php/topic,660...2.html#msg74642 He was certainly inspired to learn at least a little, and his progress shows from the top of the page to the bottom. He picked up someone else's code, he changed it, his curiosity and desire for knowledge are demonstrated here. Isn't that what being a hacker is about? That drive to play with things, to modify it to your benefit? I believe the usb hacks subforum has the capacity to be an extremely beneficial experience in many peoples lives, if only those who oppose it will let it.

The post minimum has been removed... And as Darren said, your kinda censoring the forum. With proper moderation, there is no problem. Its bad to create artificial barriers to joining, especially since the internet is all about instant gratification. We've already talked it to death, just let it be.

Not going to happen. I know that can work well, so long as those who create the payloads maintain distance from their users. Here however, people take a certain amount of pride in making their payload easy to use. Also, I doubt you have been on the other side, when people constantly complain about how something is broken, but the other thousand people who have downloaded your payload clearly aren't having problems. In the future this is certainly an option, but I think its unrealistic, given how this is a community, not a site like milworm. On milworm people can post an exploit and no one will ever talk to them. Here the creators are very accessible, its a different atmosphere. As to usb hacks, I think it would be nice if just in general people kind of ignored it as an issue for a bit. With GonZor being made mod, there will be changes, why doesn't everyone wait and see how it goes, instead of suggesting more alternatives. Besides, only one thread has had any posts recently, though the number may start to go up w/o the post minimum in effect.

Cool down mate. I'm sure you're just trying to be encouraging, but some people can't handle following simple directions, and its those people who are going to blame him when something bad happens. Even if he has them read pages of warnings explicitly detailing the issue, people will still skip over it and screw up. I know we wouldn't release a payload in such a state, I wouldn't expect him too either. For that matter, if it was yours, would you?

We do ok in downloads per month from our site... I'm sure he sees somewhat similar amounts of traffic. We allowed people to see a beta release page in exchange for signing up, and even though its beta, we saw at least an additional 50 people join over a few days time.

Wildgene, everyone here is pretty much right. And Vako, didn't see this coming, did you? (I do support the post limit decision in general though)

Can you be a little more specific than, 'the guide didn't work'? If you can't get it to work following that guide, you will never be able to (as in theres no other way never) get it to work.

The cd partition can be stretched as far as you like. As to the iso, follow this guide: http://wiki.gonzor228.com/index.php/Installation Skip step 3. On step 4, copy your iso instead. Skip all steps after 7 as well.

Do you have a cardreader installed?

No parts of the program screws with it. It's not us (GonZor' Payload), if anything its the Universal Customizer. A few thoughts: a) Uninstall the usb driver on that port and then let it reinstall next time you plug something in. b) You ran the payload on yourself, otherwise stunnel wouldn't be bothering you. The payload doesn't run unless you enable settings in SBConfig and subsequently plug it into your pc and have it autorun. Hold shift to stop this from happening during drive insertion. SBConfig doesn't run anything, it writes to various dat files stored in a hidden directory on your flash drive called System. c) Use Remkow's White Hat payload (search the forums) to remove the items you installed on yourself (Hacksaw/VNC)

we want people who will help the community to stay. People who come in start pointless copies of existing threads, about simple point and click skiddy tools can fuck off QFE

Post the C++? Or an example of what the C++ contains?

Just add whatever special thing you did in the config settings to the wikis 'package' page and point people there (regarding your post in another thread). Honestly I don't see a lot of 'new' ideas in the payload, maybe you should try and find something unique, something that has never been done before. A lot of payloads now seem to have one minor change, and that's it. Look at all the other recent 'payloads'. You have the usbdumper payload, which is really a package, the keylogger payload, again just a package, and then you have payloads built around nothing new at all. The 7zip payload just seems to be an alternate form of already done ideas, encrypting the files, much like the pocket knife payload did. People need to learn when they only have a package, and are simply wrapping it around or sticking it in a vanilla generic switchblade payload. I'm not saying that anyone should stop working on their own personal payload, they can do whatever they want, and I'm sure someone will learn something along the way, however, it might be worth it to think about whats been done already before cloning off already existing payloads. Sorry about all the commas/run on sentences....

Those only work because its calling a built in function thats universal to all cd drives. With a webcam, each installs its own set of drivers and commands. It'd be nearly impossible to include instructions for each, and since most are closed source finding the correct method to control it would be extremely difficult.