+'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''+ | #xmrgang _______________ | | | undoxed ELITE MONERO HACKERZ! | __________ | | | `'\___/ ********************* | | beep | | | | elite | #htp ALL UR BASE R BELONG | | boop | | | | \__/'|'__/ 2 US. | \__________/ | | | \_|_/ ********************* \_______________/ | | | | XMR XMR XMR XMR!! | +---------------------------------------------------------------+ | #moneromonarchy | | * Table of Contents | | .-----------------. | | - 0x01 (toc) | p.s fux these | | | - 0x02 (op1) | kids: | | | - 0x03 (dscnl) | | #wtfux | | | * hades | | | * Shoutouts | * whitehats | | | | * doxbin | | | - whoremail '-----------------' | | - modbroker | | - moleman (swatnet)<-pikachu packetz | | \_[packet]->BRRR | | [010101 010101110 10010100] | | rw init=/bin/bash<-[payload]_/ | | \_[method]->zeroday_execution | | | | * ac1d_burn joined #xmr | | | | ac1d_burn: what's the score? | | zer0cool: let's hax the mufqn gibson! | | | | * sd joined #xmr | | | | sd: the gibson? nah let's hack the mufqn planet. | | | | #hacktheplanet. | +---------------------------------------------------------------+ | xmrxmrxmrxmrxmrxmrxmrxmrxmrxmrxmrxmrxmrxmrxmrxmrxmrxmrxmrxmr :| '---------------------------------------------------------------' | | | * sd joined #op1 | | | | sd: we have successfully breached the planet | | "theoretically", using IoT search engines. | | - we can mass scan for open directory, mis- | | configured web servers leaking database | | files and/or full source data. | | | | sd: in this ezine i will explain how even you, | | a script kiddie, can feed your ego and obtain | | unlimited data. | | | | please note: you will not always find high-quality | | data. there a lot of honeypots/old servers | | | | sd: to begin, lets first explore our method of | | choice. a few of my personal favorite IoT | | search engines are: | | | | 1. shodan.io (elite, top tier) | | 2. hunter.how (elite, nearly as good as 1) | | 3. fofa.info (chinese, decent) | | | | depending on the search engine you use, | | the dorks will be a little different. | | | | i will be showcasing with "hunter.how" | | | | firstly, the dork for hunter.how is this: | | > web.title="Index of /" and web.body=".sql" | | | | * newbie075 joined #op1 | | | | newbie075: okay but how do we download data fast? | | | | sd: well its rather easy if you are a skid. | | sd: simply go to https://github.com/dk0m/HakuScan, | | my pal dk0m wrote it. | | | | newbie075: but what data can we find? | | | | sd: it's obviously going to be hit n miss but, | | i personally have found a lot of juicy data. | | | | sd: some of the breaches i have alledgedly | | obtained from this method have been quite high | | profile companies, | | such as: governments, phone companies, and a | | tech university in Canada with a revenue of | | 400M+. all have been dealt with responsible | | disclosure. | | | | newbie075: nice, but how do we navigate honeypots? | | | | sd: easy, avoid chinese servers and only look for | | listings that of "Index of /" in the title. | | | | sd: not all data will be high quality but you'd be | | surprised how lazy and stupid corporations | | are. | | | | sd: now i will be showing an example. | +---------------------------------------------------------------+ | | | * sd joined #dscnl | | | | sd: first victim, "Construction Co in Nigeria" | | | | sd: http://217.**.**.142:8080/, via this open dir | | we can access a backup file from 2024. | | bare in mind, year old data is still decent | | data. | | | | 217.**.**.142:8080/fake-data-backup.sql | | | | sd: here is our first backup .sql data. | | | | sd: the data inside contains the following: | | UserName,User_Account,UserPassword,FullName | | sd: again, please note - not all data will be HQ. | | | | thanks 4 reading <3. please come back again when i real- | | ize another ezine. | | | | yours truly - sd #xmrgang | '---------------------------------------------------------------'