2018-07-11 22:07:01 cdmnky I can see it right now, my mother walks in my room while doing system updates and asks "Are you hacking right now?"
2018-07-11 22:08:01 aewens cdmnky: This is exactly how my whole family reacted any time they say a terminal window on my computer.
2018-07-11 22:08:55 cdmnky aewens: my english teacher was a little suspicious at first of watching me take research notes in vim with markdown lol
2018-07-11 22:09:52 +jan6 https://quotes.tilde.chat/quote/26
2018-07-11 22:10:30 cdmnky now i'll forever be immortalized by that one quote lol
2018-07-11 22:10:50 @ben i think it's a good one
2018-07-11 22:10:58 aewens cdmnky: My teachers we less thrilled when they saw I'd loaded Omphcrack <?> onto one of the machines to pull the admin password off of it.
2018-07-11 22:11:46 @ben there was a challenge in undergrad to get a 000 permission file off the department server
2018-07-11 22:12:07 @ben one of my classmates put a keylogger on one of the lab computers and got a prof's password that way
2018-07-11 22:12:11 @ben didn't go over very well
2018-07-11 22:12:16 cdmnky oh boy
2018-07-11 22:12:34 +jan6 o boi indeed
2018-07-11 22:12:43 cdmnky what if I tricked someone into using suicide linux as their first distro
2018-07-11 22:12:46 @ben o boi
2018-07-11 22:12:59 aewens I did something similar to the lead tech teacher in my school using Chrome autofill and changing an <input type="password"> into a text field
2018-07-11 22:13:23 @ben that's pretty ez to do in the dev console lmao
2018-07-11 22:13:24 @ben nice
2018-07-11 22:13:46 aewens It took about a month until a freshman ratted me out. He then required I always be on the opposite side of the room when he types in his password
2018-07-11 22:14:03 @ben omfg
2018-07-11 22:14:06 @ben killin it
2018-07-11 22:14:36 @ben we had a couple macs for an ios class in the lab and i reset the root password on one of them for personal convenience
2018-07-11 22:14:37 cdmnky I just realized, I'll be a freshman again. Let's hope I won't be as awkward as I was four years ago
2018-07-11 22:14:49 @ben in college it matters a lot less
2018-07-11 22:15:00 aewens My favorite trick was when I got Google.com banned from the whole school district and all learning stopped for a week since nobody knew how to browse the web without google
2018-07-11 22:15:14 +jan6 lmao
2018-07-11 22:15:30 cdmnky remember when kde had that arbitrary code execution bug with flash drive labels?
2018-07-11 22:15:37 +jan6 ...
2018-07-11 22:15:39 cdmnky that was pretty good
2018-07-11 22:15:55 @ben aewens: how the heck did you do that
2018-07-11 22:16:03 +jan6 that must be pretty OP
2018-07-11 22:16:18 +jan6 also yes, how'd you get google.com banned?
2018-07-11 22:16:27 aewens So, the school had a firewall that blocked sites like wikipedia and youtube.
2018-07-11 22:16:29 +jan6 and did you put it on your resume?
2018-07-11 22:16:34 @ben block wikipedia!?
2018-07-11 22:16:56 aewens So I got around this using google translate, which acks as a domain proxy
2018-07-11 22:17:03 cdmnky *cough* duckduckgo *cough*
2018-07-11 22:17:12 @ben oh yeah google translate is a solid domain proxy
2018-07-11 22:17:15 aewens Someone saw me doing this and reported it to a teacher.
2018-07-11 22:17:27 @ben omf
2018-07-11 22:17:27 aewens So the answer: block google.com
2018-07-11 22:17:31 @ben i like it
2018-07-11 22:17:32 +jan6 heh
2018-07-11 22:18:01 aewens The next best thing was when I found out they put in the domains with http://, so if you put in https:// for any site it wasn't blocked.
2018-07-11 22:18:13 +jan6 heh
2018-07-11 22:18:14 @ben oh yeah that was good
2018-07-11 22:18:15 aewens So they then blocked ALL https sites
2018-07-11 22:18:17 +jan6 1337 hax
2018-07-11 22:18:24 @ben nooooo that's Bad
2018-07-11 22:18:30 aewens I know right?
2018-07-11 22:18:34 +jan6 block all https:// problem solved
2018-07-11 22:18:48 @ben no ssl aaaaaaand done
2018-07-11 22:18:51 aewens Yeah, the school techs were not a fan of my work.
2018-07-11 22:19:00 @ben :D
2018-07-11 22:19:07 +jan6 well, you better put that on your resume or something
2018-07-11 22:19:25 aewens Also, if you are ever on a shared network, check out what people put in the public directories.
2018-07-11 22:19:40 +jan6 "managed to block google.com in school, steal passwords, block all of https"
2018-07-11 22:19:57 cdmnky https://www.bleepingcomputer.com/news/linux/its-2018-and-you-can-still-p0wn-your-linux-box-by-plugging-in-a-usb-stick/
2018-07-11 22:20:07 +jan6 pff, what?
2018-07-11 22:20:13 @ben wew
2018-07-11 22:20:22 cdmnky it's a bit dated, already patched
2018-07-11 22:20:56 aewens They also kept an excel spreadsheet of every student's name, address, phone number, and social security number on the public directory
2018-07-11 22:21:10 +jan6 heh
2018-07-11 22:21:15 +jan6 dumbos
2018-07-11 22:21:16 @ben no fricken way
2018-07-11 22:21:32 aewens So I copied that, and it was really fun when they made every login be your first_last name and the password be your ssn.
2018-07-11 22:21:40 cdmnky aewens: It's stuff like that that makes me wish there was a law that allowed students to request a privacy audit
2018-07-11 22:21:51 +jan6 ^
2018-07-11 22:22:05 @ben srsly
2018-07-11 22:22:14 aewens So I wrote a python script that logged in as every user and send a spam email to all the teachers.
2018-07-11 22:22:19 +jan6 heh
2018-07-11 22:22:27 +jan6 I bet they KNEW it was you instantly
2018-07-11 22:22:29 @ben fkyea
2018-07-11 22:22:48 cdmnky aewens: you should go into cyber security lol
2018-07-11 22:22:59 aewens Nah, I did it from a friend's house, so it wouldn't come back to me
2018-07-11 22:23:03 +jan6 what you should have done was DDOS the school's own servers, lol
2018-07-11 22:23:18 aewens Well, I almost did, but I died laughing when I saw it.
2018-07-11 22:23:29 aewens It sat in a classroom on a file cabinet.
2018-07-11 22:23:45 aewens It had a keyboard and mouse with it, and was running Windows 7.
2018-07-11 22:23:49 +jan6 and yeah, if you ever apply at a security position, you'll have pretty good experience to show, lol
2018-07-11 22:24:03 cdmnky you know what the worst part is for my school? ALL districts in the county used the same server for everything but student accounts
2018-07-11 22:24:12 +jan6 ...
2018-07-11 22:24:14 cdmnky it was slow af
2018-07-11 22:24:16 aewens They couldn't keep it from following asleep and shutting down the server, so they put a tape dispenser on the space key to keep it awake
2018-07-11 22:24:33 +jan6 lmao
2018-07-11 22:25:38 aewens Another fun story was I was looking at the grading system's login prompt, they encrypted the passwords to the server using an MD5 implementation in javascript.
2018-07-11 22:26:02 +jan6 sooo
2018-07-11 22:26:27 aewens I was looking to see if I could exploit that in some way, and one of the freshman were telling the web server teacher about this.
2018-07-11 22:26:36 aewens Here's the problem: they didn't say who was doing this
2018-07-11 22:26:42 +jan6 good lad
2018-07-11 22:27:02 +jan6 good way to cause panic
2018-07-11 22:27:08 aewens So they called me to their office to ask me to write a new grading system software for them since the current one was being hacked by a student
2018-07-11 22:27:19 cdmnky oh nooo
2018-07-11 22:27:21 +jan6 XD
2018-07-11 22:27:26 +jan6 did you do it?
2018-07-11 22:28:07 aewens Well, they decided to first have me re-do the school's home page while they talk to the higher ups to approve me working on a new system
2018-07-11 22:28:42 aewens I told them I didn't have time for that, so they invented a class for just me so I could work on it on school time and get an auto A from that block hour
2018-07-11 22:28:54 @ben omf that's awesome
2018-07-11 22:29:07 aewens So I finished the website in one week, then watched game of thrones for the rest of the semester in that class.
2018-07-11 22:29:08 +jan6 heh
2018-07-11 22:29:19 +jan6 that's legit amazing
2018-07-11 22:30:16 aewens Do you guys remember jailbreaking iDevices?
2018-07-11 22:30:26 cdmnky yeah
2018-07-11 22:30:50 +jan6 jailbreaking didn't go anywhere?
2018-07-11 22:30:59 aewens Another thing I did in school was I made a side business of jailbreaking devices for $20 from those who wanted it done.
2018-07-11 22:32:18 cdmnky My school last year started blocking sites on the free guest wifi, so I taught people how to use a VPN and the admins were pissed. No one know I did it though...
2018-07-11 22:33:00 cdmnky I never noticed it tho 'cause I always use VPNs on open networks
2018-07-11 22:33:14 aewens Something fun to do at parties: Test to see if they changed the default user/password on their routers.
2018-07-11 22:33:26 +jan6 ^
2018-07-11 22:33:33 cdmnky o shit, i gotta do that
018-07-11 22:34:18 cdmnky my mother always hates me messing with dns settings because she thinks that messing with router settings is illegal
2018-07-11 22:34:19 aewens Almost no one changes the factory credentials. I logged in and would just randomly blacklist people from the Internet.
2018-07-11 22:34:35 cdmnky same thing with adblock and custom built computers
2018-07-11 22:35:00 aewens I'd turn it back after a moment, but it's funny watching your tech friends freak out when you hijack their own network
2018-07-11 22:35:58 @ben lmao
2018-07-11 22:36:01 +jan6 lel
2018-07-11 22:36:13 +jan6 "tech" friends
2018-07-11 22:36:24 @ben don't sound like very tech friends
2018-07-11 22:36:28 +jan6 ^
2018-07-11 22:36:44 aewens They were mainly people who liked computers and liked to tag along in my shenanigans
2018-07-11 22:37:18 +jan6 tell me moar of yar she-nani-cans
2018-07-11 22:38:07 aewens Oh, let's see. The public directory on the school network was always a source of fun.
2018-07-11 22:38:22 +jan6 why was it public anyway?
2018-07-11 22:38:31 @ben good question
2018-07-11 22:38:41 aewens We were never assigned computers since we were all given a folder on the network to put our stuff into.
2018-07-11 22:38:54 +jan6 of course
2018-07-11 22:39:08 @ben oh same
2018-07-11 22:39:10 +jan6 network folders = way better than personal computers
2018-07-11 22:39:13 aewens It was a network drive. When you logged in you were automatically mapped to X:\<whatever>\aewens
2018-07-11 22:39:18 @ben but you shouldn't have access to anything but your own share
2018-07-11 22:39:27 +jan6 ^in theory
2018-07-11 22:39:31 aewens ben: You'd think that, wouldn't you?
2018-07-11 22:40:04 aewens So, they went with "security through obsfuscation". They hoped no one would look where that folder actually mapped to on the X:\ drive.
2018-07-11 22:40:18 +jan6 lol
2018-07-11 22:40:19 @ben lmao
2018-07-11 22:40:20 @ben nice
2018-07-11 22:40:26 aewens I took a look one day and saw I could go into any user's folder.
2018-07-11 22:40:45 +jan6 any users folder?
2018-07-11 22:41:16 aewens So I would go into people's folders and write some text files to make an adhoc PM service.
2018-07-11 22:41:25 +jan6 heh
2018-07-11 22:41:27 +jan6 nice
2018-07-11 22:41:48 aewens And if a bully annoyed me that day, I'd go into their folder, create 100 folders that contain 5 layers deep of folders.
2018-07-11 22:42:03 +jan6 nobody ever dared to annoy you ever again
2018-07-11 22:42:04 aewens One directory held their classwork, let the games begin
2018-07-11 22:42:10 @ben omf
2018-07-11 22:42:16 @ben directory roulette
2018-07-11 22:42:23 cdmnky did you ever do that thing where you shut down the entire network with a two line batch file?
2018-07-11 22:42:28 @ben you'd just have to look at the sizes
2018-07-11 22:42:30 @ben but yeah
2018-07-11 22:42:33 +jan6 you sure were the god of the tech
2018-07-11 22:42:43 +jan6 nah, cdmnky, how'd you do that?
2018-07-11 22:42:50 aewens You think the average student knows how to lookup the size of a folder? xD
2018-07-11 22:43:30 aewens Anyways, it was also fun that the teachers used the same directory.
2018-07-11 22:43:59 aewens I'd every now and then check to see what they had planned, see if they kept any answer sheets there, etc
2018-07-11 22:44:17 +jan6 you sure had lots of fun
2018-07-11 22:44:42 aewens I got done with classwork fairly quickly, so I had a lot of free time.
2018-07-11 22:45:26 @ben and of course, they did
2018-07-11 22:46:10 aewens There was one day I came in early and wrote a batch script that was a fork bomb and replaced Chrome with it on all the machines.
2018-07-11 22:46:17 +jan6 lmao
2018-07-11 22:46:21 @ben omf no
2018-07-11 22:46:30 @ben that's just griefing for griefing's sake
2018-07-11 22:46:31 +jan6 how much did you charge for the "repair" ?
2018-07-11 22:47:02 aewens I didn't they just decided to make a free-hour while they send the school techs in to fix it.
2018-07-11 22:47:39 @ben oof
2018-07-11 22:47:49 aewens The trick is that most teachers didn't know this was all me, and thought this was all from various different students.
2018-07-11 22:48:04 cdmnky this calls for an aewens appreciation thread
2018-07-11 22:48:05 aewens So I tended to get away with most of this since I was not a suspect.
2018-07-11 22:48:45 aewens My friend would take credit for the stuff I did, so I let him so that I was not the one under a watchful eye
2018-07-11 22:50:16 aewens These days I've moved over to hardware gizmos. Did you know if you modify an esp8266, you can create a wifi deauther?
2018-07-11 22:51:04 aewens It can fit in an altoid's can and you can walk into any place with wifi and drop all users off that network on command.
2018-07-11 22:51:25 @khuxkm i swear
2018-07-11 22:51:35 @khuxkm when this channel is active it's really active
2018-07-11 22:51:43 @khuxkm but when it isn't it's pretty much dead
2018-07-11 22:51:57 aewens Isn't that how all social gatherings tend to be?
-topic change-
2018-07-11 22:57:08 aewens What's everyone else up to?
2018-07-11 22:57:11 cdmnky I've been sshing in from my laptop, if I copy the keypair to my desktop, will I still be able to ssh in?
2018-07-11 22:57:48 aewens cdmnky: The pair in keypair is important
2018-07-11 22:58:07 @ben cdmnky: yes
2018-07-11 23:07:56 aewens I keep mine stored in a jump server that's powered off until I send an API call to power it on. It's got lots of other security, but I prefer it to be offline to prevent brute force stuff.
2018-07-11 23:08:37 aewens I keep a script on all my devices that can access it's API.
2018-07-11 23:11:21 @ben the key fingerprint or the entire key?
2018-07-11 23:11:25 +jan6 how's the API working if it's offline?
2018-07-11 23:11:29 +jan6 that means it's not offline
2018-07-11 23:11:35 aewens Either, both
2018-07-11 23:12:01 aewens jan6, it's a digital ocean droplet, so I use their API to bring the server online.
2018-07-11 23:12:51 aewens If you wanted to do this with actual hardware and not a DO droplet, you'd get a server with an IPMI chip and use it to power on the machine.
2018-07-11 23:12:52 @ben derp
2018-07-11 23:12:57 @ben right
2018-07-11 23:13:34 aewens That's how my customers remotely power on/off all the nodes in their HPC systems.
2018-07-11 23:13:46 aewens IPMI is a weird but really awesome thing.
2018-07-11 23:13:50 @ben oh nice
- ending topic change -
2018-07-11 23:13:56 @ben aewens: what state are you in again?
2018-07-11 23:14:08 aewens I'm in MO
2018-07-11 23:14:52 @ben aka misery
2018-07-11 23:14:59 @ben amirite
2018-07-11 23:15:00 aewens And you're in MI, right?
2018-07-11 23:15:24 aewens Yes, misery, at least that's how the senator says it
2018-07-11 23:15:36 @ben yup
2018-07-11 23:15:41 @ben mizurruh
2018-07-11 23:15:53 @ben that's an alternate pronunciation right
2018-07-11 23:16:04 aewens Yes, a popular one here too