Follow us on Twitter!
Ideas are far more powerful than guns.
Wednesday, April 16, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 21
Guests Online: 16
Members Online: 5

Registered Members: 82810
Newest Member: TheDuke777
Latest Articles
View Thread

HellBound Hackers | HellBound Hackers | Projects

Page 1 of 3 1 2 3 >
Author

NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-10-07 22:35
Hey guys! I joined recently and beat all the rooting challenges. I HUNGER FOR MORE! Because of this, and Mr_Cheese's thought on the shoutbox, I've decided to make another. I've never done a real rooting attack, so my knowledge as to what it would be are limited to the challenges I've beaten. If anyone can devise a story/plot, pm it to me or post it here (no spoilers here please). I heard you can root via IRC, thats an idea...
Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-10-07 22:51
varreon wrote:
my knowledge as to what it would be are limited to the challenges I've beaten.


Then, you're going to produce something that's already been done.
Please don't.

Also, rooting by IRC? What the fuck are you on?

Easy Basic Rule Of Life #54390182: If you don't know how to do it, then don't try to teach it.
Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-10-07 23:29
No really! Googling for rooting challenges came up with
http://www.criticalsecurity.net/index.php?showtopic=22577&mode=threaded
Double check before flaming. Any positive ideas?
Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-10-07 23:34
varreon wrote:
No really! Googling for rooting challenges came up with
http://www.criticalsecurity.net/index.php?showtopic=22577&mode=threaded
Double check before flaming. Any positive ideas?


No really! If it's already been done, then nobody wants to do it again. Simulated "challenges" are not comparable to what's out there in the wild. Double check before posting garbage and ignoring sound advice.
Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-10-07 23:37
Which is why im asking if anyone has an idea to be made into a challenge.
Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-10-07 23:59
How about a simulated buffer overflow?

Or, something where you'd have to monitor traffic to and from a computer on the local network using command-line utilities, and then manipulate some packets to exploit a particular vulnerability in its networking configuration?
Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 17-10-07 00:30
lesserlightsofheaven wrote:
How about a simulated buffer overflow?

Or, something where you'd have to monitor traffic to and from a computer on the local network using command-line utilities, and then manipulate some packets to exploit a particular vulnerability in its networking configuration?


yeah do the second one, it sounds great


Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 17-10-07 00:49
I think both Smile


Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 17-10-07 02:44
Also, rooting by IRC? What the fuck are you on?


Does that sound unrealistic to you? Wink


Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 17-10-07 02:47
netfish wrote:
Does that sound unrealistic to you? Wink


The IRC protocol is pretty much what you write is what you send, but I don't get why would you use IRC ?




Edited by on 17-10-07 02:48
Author

RE: NEW ROOTING CHALLENGE!

bl4ckc4t
Member

Your avatar

Posts: 591
Location: /etc/
Joined: 07.03.06
Rank:
Wiseman
Posted on 17-10-07 03:15
Arto_8000 wrote:
netfish wrote:
Does that sound unrealistic to you? Wink


The IRC protocol is pretty much what you write is what you send, but I don't get why would you use IRC ?


If you can send trojans through it, use ruby, perl, python and other scripting languages, why is it unfathomable?

To be honest, I would think a buffer overflow would be a good one, but a real root would be best.

-Bl4ckC4t


Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 17-10-07 03:19
bl4ckc4t wrote:
If you can send trojans through it, use ruby, perl, python and other scripting languages, why is it unfathomable?

To be honest, I would think a buffer overflow would be a good one, but a real root would be best.

-Bl4ckC4t


Do you know what the IRC protocol is ? Do you know what you are talking about ?




Edited by on 17-10-07 03:24
Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 17-10-07 03:34
netfish wrote:
Does that sound unrealistic to you? Wink


A tad, though perhaps I was quick to jump to conclusions.

What I will maintain, is that we need something NEW and ORIGINAL rather then a remake of a pre-existing idea.
Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 17-10-07 04:56
i like the buffer overflow concept.

maybe mission runs something like this:

there is a company that writes software for some purpose, web server or something.

SuperServer! Host files with this free, open source file client!

on their site, you can download the webserver.c file.

Code

#includes....
main(){
... //lots of code
filetoserver = string[200]; //vulnerable line
... //lots more code
}
} //i havent worked in c++ for a long time, forgive the syntax






then exploit it on some site running the server.

i dont know something like that, doesnt have to be a web server, whatever works.

[edit] irc rooting? huh crazy. that would be fun. [/edit]







Edited by on 17-10-07 04:57
Author

RE: NEW ROOTING CHALLENGE!

Uber0n
Member



Posts: 1963
Location: Sweden‭‮
Joined: 13.06.06
Rank:
Hacker Level 3
Posted on 17-10-07 07:01
DigitalFire wrote:
there is a company that writes software for some purpose, web server or something.

(...)

on their site, you can download the webserver.c file.


So you can find the vulnerability by looking in the source code? That's a quite original idea Smile could also be done as a patching challenge ^^


img230.imageshack.us/img230/724/uber0nsig3hj6.gif
http://uber0n.web. . .
Nope http://uber0n.webs.com/
Author

RE: NEW ROOTING CHALLENGE!

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 17-10-07 07:52
Uber0n wrote:
So you can find the vulnerability by looking in the source code? That's a quite original idea Smile


No it's not. RTB did that (on the box that was there during their new-server-getting thing, if you know what I mean)

Honestly, if someone is making a new chall is should be someone who can actually root, not some lame-ass punk who thinks he's leet because he learned to cat a file.

To OT: I think Fritzo said enough about this matter.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 17-10-07 14:22
spyware wrote:
Honestly, if someone is making a new chall is should be someone who can actually root, not some lame-ass punk who thinks he's leet because he learned to cat a file.


I agree, and this is why we only have three rooting challenges. Pfft



Author

RE: NEW ROOTING CHALLENGE!


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 17-10-07 16:27
i really like rooting challenges, i did all 3 without problems. i think that i have ability to code some rooting challenge in c++, then pack it or encrypt it so people cant read the strings, or add some protection for lames (when you have running disassembler or debugger, program will not run, but i know, everything is crackable) BUT I HAVENT IDEA! Angry


Author

RE: NEW ROOTING CHALLENGE!

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 17-10-07 16:50
dancuc wrote:
i really like rooting challenges, i did all 3 without problems. i think that i have ability to code some rooting challenge in c++, then pack it or encrypt it so people cant read the strings, or add some protection for lames (when you have running disassembler or debugger, program will not run, but i know, everything is crackable) BUT I HAVENT IDEA! Angry


Dude, I don't think you actually know rooting. Exploiting services, BoF's, do you know that stuff? Rooting doesn't stop with CAT.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: NEW ROOTING CHALLENGE!

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 17-10-07 16:57
Fritzo wrote:
At HBH it does xD


Then I am afraid our knowledge casts a shadow of despair that dresses HBH in the black night of mindless zombies.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Page 1 of 3 1 2 3 >