|
surebet posted:the partner vaguely hinted that they could add support for the missing feature for an additional cost. rummaging through some more with ida i can see that the code to subscribe us to stuff is in there, but it's just not enabled. Have you ever heard of Feature Flags?
|
# ? Aug 15, 2016 17:58 |
|
|
# ? Jun 6, 2024 09:59 |
|
pseudorandom name posted:berth certificates, duh.
|
# ? Aug 15, 2016 17:58 |
|
Wiggly Wayne DDS posted:yeah an old toolset is likely - why expose a fresh set from an active hostile actor? the auction part is very fishy, nothing around this you'd want connected to someone financially. maybe they never intend to actually sell it just to send a message, which makes some sense for another actor Yeah agreed the whole auction thing is very fishy. I'm fairly sure that some other nation is behind this.
|
# ? Aug 15, 2016 18:05 |
|
Looks like the github has been taken down but the tumblr is still up https://theshadowbrokers.tumblr.com/ Really interested to see if this is bullshit or not
|
# ? Aug 15, 2016 18:18 |
|
so I know the US govt names poo poo random junk like this, but do other countries? did some dev server for the NSA actually get pwned? loving hilarious
|
# ? Aug 15, 2016 18:56 |
|
Could they have just used the ANT catalog to make the sample? There are certainly a few matches between the two....
|
# ? Aug 15, 2016 19:07 |
|
https://twitter.com/riskbased/status/765243212843790336 lol/yikes if true
|
# ? Aug 15, 2016 19:12 |
|
if its fake then someones put an absolutely insane amount of effort into making all this
|
# ? Aug 15, 2016 19:13 |
|
Nah gently caress it my money is now that Digital Network Technologies got owned They make BANANAGLEE so it makes sense
|
# ? Aug 15, 2016 19:14 |
bicycle posted:https://twitter.com/riskbased/status/765243212843790336
|
|
# ? Aug 15, 2016 19:21 |
|
Daman posted:so I know the US govt names poo poo random junk like this, but do other countries? did some dev server for the NSA actually get pwned? loving hilarious toolset is too varied to be from a single box. the tools are infrastructure-specific but are far too specific e.g. topsecos. you'd only put tools like that on an untrusted device if you were sure it existed on the other end to attack there's interesting parts to their documentation such as: https://twitter.com/tristanc/status/765194943258365954 want to see the crypto in their tools analysed as well kalstrams posted:callback as in it does leak info to dod or from dod
|
# ? Aug 15, 2016 19:25 |
|
I'd be curious if the SECONDDATE client is entirely boring also NIGHTHUNTER is a newly public codename afaik
|
# ? Aug 15, 2016 20:20 |
|
let's all kick in some bitcoins and buy the nsa dump massdrop-style
|
# ? Aug 15, 2016 20:25 |
|
best breakdown so far: https://www.riskbasedsecurity.com/2016/08/the-shadow-brokers-lifting-the-shadows-of-the-nsas-equation-group/
|
# ? Aug 15, 2016 20:27 |
|
Rufus Ping posted:if its fake then someones put an absolutely insane amount of effort into making all this yeah massive amounts of work, although might be worth it for heaps and heaps of bitcoin? probably not one thing that i noticed is the level of english proficiency is very different between their announcement and the files, so that may be a clue
|
# ? Aug 15, 2016 20:39 |
|
the english proficiency is so stilted in the announcement that it feels deliberate
|
# ? Aug 15, 2016 20:42 |
|
Bhodi posted:the english proficiency is so stilted in the announcement that it feels deliberate yeah right?
|
# ? Aug 15, 2016 20:44 |
|
if i'd made off with all that and wanted to write anything non-trivial about it, I sure wouldn't use my default writing voice
|
# ? Aug 15, 2016 20:44 |
|
bicycle posted:https://twitter.com/riskbased/status/765243212843790336 also 30.40.50.60... obviously a poorly chosen placeholder ip
|
# ? Aug 15, 2016 20:44 |
|
spankmeister posted:also 30.40.50.60... obviously a poorly chosen placeholder ip Agreed on this one. some seem too coincidental to be true though. some of the following are DoD, UK mod, etc. quote:Edit: actually im scared of breaking thread rules, grep the dump for "my_ret_addr_snmp" but then again, as posted before, why callback to a gov/associated org ip? bicycle fucked around with this message at 21:17 on Aug 15, 2016 |
# ? Aug 15, 2016 21:13 |
|
auction not going so well for now https://blockchain.info/address/19BY2XCgbDe6WtTVbTyzM9eR3LYr6VitWK
|
# ? Aug 15, 2016 23:30 |
|
Volmarias posted:Have you ever heard of Feature Flags? i wouldn't mind all of the upselling if they actually were clear with their intent, and i take offence to the fact that they keep referring to activating a feature as ~bespoke artisan integration~
|
# ? Aug 15, 2016 23:33 |
|
who's gonna bid .219 butts?
|
# ? Aug 15, 2016 23:40 |
|
surebet posted:i wouldn't mind all of the upselling if they actually were clear with their intent, and i take offence to the fact that they keep referring to activating a feature as ~bespoke artisan integration~ lol if your config files aren't all ~~~bespoke~~~~
|
# ? Aug 15, 2016 23:51 |
|
Powerful Two-Hander posted:lol if your config files aren't all ~~~bespoke~~~~ i used to have a 3.5" floppy called das boot my config.sys and command.com met all my doom playing needs (jeez it took me hours to figure out what i could trim and what i needed without any internet help)
|
# ? Aug 15, 2016 23:53 |
|
does anyone use let's encrypt with a custom csr (to use your own private key for hpkp purposes) and have auto renew working? If i use the --csr option then it just dumps the cert in the current directory and it doesn't do the nice symlinks in /etc/letsencrypt I could script around it but I think the client should be able to handle this use case?
|
# ? Aug 15, 2016 23:58 |
|
syscall girl posted:i used to have a 3.5" floppy called das boot fe: autoexec.bat not command.com derr
|
# ? Aug 16, 2016 00:13 |
|
Bhodi posted:the english proficiency is so stilted in the announcement that it feels deliberate i was thinking about this earlier, it reads like they're writing from the voice of a parody of a chinese-american person
|
# ? Aug 16, 2016 00:31 |
|
syscall girl posted:i used to have a 3.5" floppy called das boot I actually read the DOS manual about what all those system files actually did, as well as which options I should use. himem.sys and emm386 were pretty much all you needed it turns out.
|
# ? Aug 16, 2016 00:31 |
|
DEVICEHIGH C:\DOS\VAPE.SYS LOADHIGH C:\DOS\WEED.EXE
|
# ? Aug 16, 2016 00:36 |
|
Powercrazy posted:I actually read the DOS manual about what all those system files actually did, as well as which options I should use. himem.sys and emm386 were pretty much all you needed it turns out. it depended on if you had enough hdd or you had to run off of a cd myst and t7g you needed to have cdrom.sys i actually mailed a request to the makers of the seventh guest so they could mail me back a graphics driver update and they did it
|
# ? Aug 16, 2016 01:07 |
|
lol what bitches https://twitter.com/wikileaks/status/765342384821534722
|
# ? Aug 16, 2016 01:45 |
|
Powercrazy posted:I actually read the DOS manual about what all those system files actually did, as well as which options I should use. himem.sys and emm386 were pretty much all you needed it turns out. DOS=HIGH,UMB
|
# ? Aug 16, 2016 01:57 |
|
Ozu posted:lol what bitches anyway, would suck if this is the start of a NSA vs. GRU hackathon
|
# ? Aug 16, 2016 02:30 |
|
Ozu posted:lol what bitches Lol what. that's such a joke
|
# ? Aug 16, 2016 03:03 |
|
Ozu posted:lol what bitches
|
# ? Aug 16, 2016 03:06 |
|
pseudorandom name posted:berth certificates, duh. signed by the port authority
|
# ? Aug 16, 2016 03:11 |
|
Ozu posted:lol what bitches julian assange is currently trying to figure out how to make sure metasploit stops identifying itself as "metasploit"
|
# ? Aug 16, 2016 03:41 |
|
Ozu posted:lol what bitches Christ WikiLeaks is awful
|
# ? Aug 16, 2016 04:38 |
|
|
# ? Jun 6, 2024 09:59 |
|
apseudonym posted:Christ WikiLeaks is awful
|
# ? Aug 16, 2016 04:45 |