Cyber Intelligence | US Cyber Labs

← Older posts

Category Archives Cyber Intelligence
PennTest Threat Intelligence

Posted on February 16, 2012 by gatomalo Comment

PennTest Threat Intelligence - part-1

gAtO bEen ThInKiNg - In the hyper connected world we live in Pen-Testers have a lot on their hand, hardware, firmware, OS, web-apps. The facts are that a simple web-app upgrade, may open new holes that off-set the problem they had to begin with. A pen-test, is a method of evaluating the security of a computer system or network by simulating an attack from malicious outsiders. Who are the outsider? How do the outsiders pen-test your system? Non-state actors have played an important part in many international cyber conflicts in the past two years- game changers. With the Anonymous crew(z), China, Russia, India, Iran out in force in cyberspace a company needs to know if they are the target from a political, competition or worse yet a loneWolf or activist.

Many think that with BackTrack anyone can be a tester, but it’s different today. Companies need to understand the Geo-Political aspect of their company and who are their markets and how does it play out in the real world. Look at Sony, HBGrays these are two different companies but their reputation has been tarnish by what, a bunch of kids, naw, these boy’s and girls are the new breed, smart, educated and connected. These people are System Admin in their day job and Anonymous during off-hours. They know how to work in the box and also see out-of-the-box tips and tricks and have thousands that want to try their game and imitate them. Whatever you think these new boy’s and girls will multiply, it’s a fab, a movement but they all want to be a cool hackers and the next generation of hacktivist will make these people look like amateurs.

Who knew that a Low Orbit Ion Cannon (LOIC) used to test how many connection your server will handle, would be used by the attackers themselves. A long time ago in cyber years (2-3 years ago) only the geeks had the knowledge and skills to do some of the hacks that we see today. Today Anonymous is not only a social movement but it’s a cause celeb, people want to belong and these social 4chan outcast have started a revolution in cyberspace that governments and corporations now are worried about, and well they should be.

Break out Backtrack and do some pen-testing and yes you may find misconfigured servers like gAtO hAs -(SCADA systems to boot) and such but if you can see what your enemy is looking at, planning. Nothing is better than threat intelligence to guide you in mitigating your company as to future attacks.

Look at the RSA and Diginotar APT attacks, the bad guy’s went after the certificate authority how does a typical pen-test tools know that, they don’t if you don’t have your pulse on the game your in, you may be next.

Remember the technical aspect is one thing but if you have many, many hands trying new things on your site guess what, they will hack you if your connected to the Internet. Your company cannot live in a bubble and so must expose themselves to customers, vendors and business partners your company cannot control all those aspects. When a simple email attachment to the c-Suite boys just like with the Nortel hack they got you big time, in Nortel chase they were inside their network for 10 years. The reputation, the technical all this means nothing if you don’t have good solid threat intelligence to know what’s going on in the world.

If you don’t have a team to look at threat intelligence for your company, get some people fast. If your connected you can be hacked, learn and be silent – Can’t stop the signal. Everything goes somewhere, and I go everywhere…. -gAtO oUt

Link to this post!

This entry was posted in Anonymous, Bad Code, Black Hats, Cyber Espionage, Cyber Intelligence, Cyber Monitoring, Cyber Notebook, Cyber Strategy, Cyber Study. Bookmark the permalink.
Cyber Iran

Posted on February 12, 2012 by gatomalo Comment

gAtO hEaR- In Iran the nation’s telecommunications ministry publicized in early 2011, it would disconnect Iran from the rest of the world and run a parallel internal service (“Islamically permissible ‘halal’ network”) that would automatically censor material and block popular global sites. In Iran two-thirds of the country’s 78 million people are under the age of 35, and about 40 percent of the population have Internet in their homes, according to Internet World Stats, making Iran one of the highest per capita cyber-connected populations in the world. Iran has a pollution of about 77 million people, about 53% of the people are on the Internet and not one of them is a Facebook user. In nearby Jordans they have 1.7 million users and 1.6 millions of them are on Facebook.

Stuxnet was deployed and stopped their nuclear weapons program. 2 leading scientist were killed Iran blames Massad -CIA. Iran is spending billion on cyber Hardware. Arab Spring. Iran took down U.S Drones. Iran threatens closing down the Straits of Hormuz. Iran claims new Cyber Army is ready for war in Cyberspace.

Now with the March 2, 2012 parliamentary elections we see official of Iran’s Judiciary announced “new limitations” on using cyber space and content publishing on the internet. A task force of 250,000 cyber police currently monitors the Internet, specific sites, blogs and individuals suspected of using circumvention tools. Israeli intelligence officials have revealed that they believe Iran has, in the last few years, spent over a billion dollars to upgrade their Cyber War capabilities.

Iranians have friends like Venezuela and China-based Hauwei corporation which is being investigated by Senators like Rhodes Islands Sheldon’s Whitehouse (“gAtO knows Senator Sheldon Whitehouse he is one of several leaders that understand the complex cyber security issues”) for supplying critical cyber infrastructure to Iran while it supplies equipment and supports the (TS)Top Secret DOD projects. This is clearly a violation when a communist country is providing TS support to our governments and we hear that some of the equipment may have digital backdoors into the infrastructure defeating all virus scanning software. On the other side of friendships Univision uncovered Iranina and Venezuelan diplomats working on launching cyber-strikes against energy facilities and to other U.S assets (NYT 12-13-2011).

Iran’s leaders saw what the Arab Spring brought down last year and they see the Parliamentary elections in March as the most sensitive in the history of the Islamic republic and they will do everything to control it. Beacause of the March 2 elections Iran has ordered all Internet Cafe implement all cyber security monitoring software installed and functioning by Jan. 18. The monitoring include requiring a user to provide full name, father’s name, Iranian identification number, zip code and telephone number, in addition to presenting photo identification. The laws require cafes to install closed-circuit surveillance cameras that must be checked at the end of every business day. Cafes also must keep records of all websites and browsing history, along with surveillance tapes, for six months.

The new restrictions forbid cafes to allow the use of any circumvention technology, such as Virtual Private Networks (VPNs) or proxy servers, the devices Iranians typically use to access blocked sites.

This latest attack on Internet users comes amid increasing tensions between Iran and the West and deteriorating economic conditions as the Islamic Republic preemptively prepares for possible civilian unrest during its parliamentary elections. The Iranian people use tools like TOR to circumvent authorities to get their message thru even though these free TOR networks are getting hammered by the Iranians to try and take them down or get the information of the dissidents.

Let’s support these projects and keep Freedom of Speech open in cyberspace -gAtO oUt.

References:

Internet cafes to install surveillance cameras,

U.S. Expels Venezuelan Diplomat Reportedly Involved in Cyber Attack Plot

http://www.nti.org/gsn/article/us-expels-venezuelan-diplomat-reportedly-involved-cyber-attack-plot/

Parliamentary elections in March seen as the most sensitive in the history of the Islamic republic

http://www.guardian.co.uk/world/2012/jan/08/iran-upcoming-parliamentary-elections-march

Huawei’s Work in Iran May Violate U.S. Sanctions, Lawmakers Say

http://www.businessweek.com/news/2012-01-10/huawei-s-work-in-iran-may-violate-u-s-sanctions-lawmakers-say.html

Iran blocks Tor; Tor releases same-day fix

https://blog.torproject.org/blog/iran-blocks-tor-tor-releases-same-day-fix

Iran’s strict cyber regulations lay groundwork for ‘halal’ network

http://www.foxnews.com/world/2012/01/11/irans-strict-cyber-regulations-lay-groundwork-for-halal-network/#ixzz1jYfN3DAV

Iran Sets Cyber Crime Policy ahead of New Elections

http://www.stopfundamentalism.com/index.php?option=com_content&view=article&id=1299:iran-sets-cyber-crime-policy-ahead-of-new-elections&catid=70:iran-uprising&Itemid=80

Link to this post!

This entry was posted in Cyber Intelligence, Cyber Policy, Cyber Strategy, Cyber Study, Cyber Threats, Huawei -China telecom, Iran, Iran Cyber Army, Middle East. Bookmark the permalink.
Syrian Electronic Army is Open to Hacking

Posted on February 8, 2012 by gatomalo Comment

gAtO SeEn- the news about Syria and the Homs murder of protesters and this is a bad thing for the people of Syria and the dissidents. While Russia and China think about this more and more killings have happened. So gAtO thought what is Syria doing in cyberspace? gAtO jimped in and started looking first at the Syrian Cyber Army website www.syrian-es.com this is their main site now with google translator I started to read the site.:

http://translate.google.com/translate?hl=en&sl=&tl=en&u=http%3A%2F%2Fwww.syrian-es.com%2F

As I looked over the site I noticed that they use Joomla 1.5, this is an older version of Joomla full of holes and an easy hack. There is so much open on this site were you can get any of the scripts and look at the code, all this from any browser[1]. This is not rocket science.

Well if the Syrian Army uses this version of Joomla maybe some other government offices in Syria do:

www.raqqa.gov.sy/ar/index.php/local-news.feed

www.industrialbank.gov.sy/index.php?…91

www.uok.edu.sy/…/index.php?

www.reefnet.gov.sy/reef/index.php?

http://parliament.sy/

http://www.rtv.gov.sy/

http://www.addounia.tv/web/main.php

http://www.sana.sy/

Here are a few more sites that yes you guessed it they have the same Joomla 1.5 app running their websites. Knowing that this version has security holes why would a government use it. My only guess is they started in 2008 and if something works well keep it. If this department uses this Application well others will use it. The Syrian government is built on treats and intimidation so anything that is accepted no one will call attention to it, under fear of reprisal this is how all dictatorships work.

Now it comes to us the rest of the world to do something. gAtO contacted USSTRATCOM and Ya’akov Yehudi (Israel Security) to report this and I got nothing back from them so what do I do with information that can help people from getting murdered and killed by an oppressive state. Well here it is I am publishing this information and hope that someone will pick this up and do something with it. It’s a moral thing that gAtO must do, I have seen murder and killings like this in my former country and I could do nothing at that time so here it is, let the chips fall were they fall -gAtO Out

[1] Here are some links from their site and their CODE:

<meta name=”generator” content=”Joomla! 1.5 – Open Source Content Management” />

http://www.facebook.com/pages/%D8%A7%D9%84%D8%AC%D9%8A%D8%B4-%D8%A7%D9%84%D8%B3%D9%88%D8%B1%D9%8A-%D8%A7%D9%84%D8%A5%D9%84%D9%83%D8%AA%D8%B1%D9%88%D9%86%D9%8A/340192589337632?sk=wall

http://twitter.com/syriansoldier1

http://www.youtube.com/user/syrianes1

www.syrian-es.com/templates/jv-framework/favicon.ico

www.syrian-es.com/templates/jv-framework/themes/jv-melody/css/horizontal.css

www.syrian-es.com/templates/jv-framework/themes/jv-melody/css/vertical.css

www.syrian-es.com/templates/jv-framework/themes/jv-melody/css/accordion.css

www.syrian-es.com/templates/jv-framework/basethemes/css/typo.css

www.syrian-es.com/templates/jv-framework/themes/jv-melody/css/layout.css

www.syrian-es.com/templates/jv-framework/themes/jv-melody/css/template.css

www.syrian-es.com/templates/jv-framework/themes/jv-melody/css/css3.css

www.syrian-es.com/templates/jv-framework/themes/jv-melody/css/template_rtl.css

www.syrian-es.com/modules/mod_nice_social_bookmark/css/nsb.css

www.syrian-es.commodules/mod_yt_content_slideshowii/assets/style.css

http://www.syrian-es.com/modules/mod_jvhotnews/assets/css/jvhotnews.css

Link to this post!

This entry was posted in Cyber Intelligence, Cyber Monitoring, Cyber Notebook, Cyber Study, Cyber Tools, Middle East, Syria Cyber Army. Bookmark the permalink.
Recon the Deep Web

Posted on February 5, 2012 by gatomalo Comment
Tools – NAT FW – Lil’Snitch – VPN – ToR —> Bandwidth Graph – View Network -Message Log

See bottom for UpDaTe 2/22/11

gAtO wAnTeD -to explore the Deep Web to see what all the chatter is all about. So I went to torproject.org to see what tools were available. Tor has many tools like -Tails is a Live CD/USB distro preconfigured to use Tor safely and easily. gAtO has used Vidalia and firefox before just for a test drive but the slowness stopped me the first time. I have noticed Anonymous and others using the Deep Web to re-launch the LulzBoat on one of the taunts they made they gave an .onion chat room were you need to register to get in. So what is different from any other Chat room not on .onion.
First the mechanics of a Tor network hides you from anyone the good the bad and the ugly that simple. With a VPS (Virtual Private Network) from any hosting service you can create a website and deploy it in the .onion only visible Deep Web. Now even popular WebSite tools like Drupal and WordPress can publish to the deep web so people under censorship can still see your websites thru ToR. For a dissident who is monitored they can go into a Tor network and publish a site were other like mined can share information without their government or anyone else knowing. No trace. Yes the bad guy’s uses the Deep Web to peddle their wear but there is a lot of good stuff —if you can find it.

gAtO went into the Deep Web testing the water but verifying[1] that I had my shields on at all times. First it’s slow so take your time when you hit a wiki they but first check yourself http://torcheck.xenobite.eu/ this will check your safe and sound.

First stop is TorDir http://suw74isz7wqzpmgu.onion [2] This will give you a chance to look and the tip of the iceberg. When you get to this first site – I right away went to Hacking and Related Section( to see what is out there) As you can see this is different than google search :

Comments: 5 read or add comments about this link (Anonymous) | Rating: *****

Last check: 04-02-2012 16:54:21 | Result: On | Lag: 19 seconds

Here are a few different thing about this site 1st it has comments(read Them) You should read these so you know what’s in these site. 2nd Last checked and Results and Lag Time these vary some in places I seen have 50 second lag time. Remember these are .onion sites and sometimes there on and sometimes there not. A nefarious website may not keep normal times of business so if you really thing that that site is real check back it may come back on the air.

If you want to do more than look I recommend us a boot CD/USB with NO WRITE to your hard drive. These are tech savvy people and they may try to put a bot,worm,spy, whatever on your device as for the .onion on my personal Mobile device-NoWayDude.

Example of a BAD Site: do not click

CardersPlanet

First carding service from russian community. Credit cards, bank accounts, DDoS service.

http://wihwaoykcdzabadd.onion

Last check: 03-02-2012 04:41:02 | Result: Off

Just look at this site Carders Planet would you really enter this site without your bells and whistles all tight as a submarine. By the way Results:Off (so the site is Off). Then there is the monetary part BitCoins looks to be all right but I have not used them so until I experience them I will not comment. Anyway try http://k4bmdpobhqdguh2y.onion/ This has a basic list to a few site that are rather safe. I listed a few sites I found most all of them work at least when I tried them as security people we need to understand the deep web so we can use it as another tool on our belts. USCYberLabs.com/blog will be adding a .onoin site in the coming weeks and we will also use Tor-Bridge to publish to both worlds. The Deep Web needs good solid content sometimes depending on the time and place their is no other way to read information that may save a life. Freedom must be preserve the .onion network is no Dark Web it just different let work to make it better -gAtO oUt

What is a .onion site?

.onion, for all intents an purposes, acts like a top level domain (like your .com’s, .org’s, etc), but is not accessible like a normal webpage. For this reason, it’s called a pseudo top level domain. .onions are run through the Tor network (there are at least two text files on that subject, here, by Mr_Scotty and in the second section of the text here, by myself). Not only does this encrypt server-side data, but increases anonymity as well. On your normal web, a website hosting illegal content would be shut down by the country’s government that governs the host. But on your Tor Network, not only is it impossible to tell where the site is hosted – it’s impossible to take it down, as well.

References:

Tor Services

[2] Messaging – Activism, Political and Revolutionary – Adult – Blogs – Business – Email, IM, Communications – Gambling – Hacking and Related – Hosting and Content Share – Librarys – Personal Pages – Reference – Security – Social- Social File/happiness sharing

Software

Normal Web:

Virtual Private Server (VPS) http://en.wikipedia.org/wiki/Virtual_private_server

Wiki Tor http://en.wikipedia.org/wiki/Tor_(anonymity_network)

Tor Onion Sites

[1]Tor Check torcheck.xenobite.eu <http://torcheck.xenobite.eu/

Torando: http://b6kpigzhrdhibmos.onion/d6/

Qpastebin http://4eiruntyxxbgfv7o.onion/paste/browse.php

PasteOnion http://xqz3u5drneuzhaeo.onion/users/boi/

The Hidden Wiki – contains all SORTS of info on tor sites http://xmh57jrzrnw6insl.onion/

TORCH, a tor search engine http://eqt5g4fuenphqinx.onion/

Core .onion, a tor site directory http://4jbxjjrbakmdcmvb.onion/

Tor Check torcheck.xenobite.eu <http://torcheck.xenobite.eu/

AntiSec Embacy -http://ibhg35kgdvnb7jvw.onion/

Odd K5: http://k5oddprhqyfvhwh4.onion

Search Engine Torgler: http://oqznfi3tdo6nwg3f.onion

Leaks: Wikileaks: http://suw74isz7wqzpmgu.onion

Messaging: TorPM: http://4eiruntyxxbgfv7o.onion/pm/

File Hosting: sTORage: http://utovvyhaflle76gh.onion/

BLOLYLO: http://46lm7zhgildryehk.onion

ES Uploader: http://i7hknwg4up2jhdkx.onion

AnonyShares: http://4eiruntyxxbgfv7o.onion

Gatways to I2P Susi Mail:

German http://a5ec6f6zcxtudtch.onion

The Silk Road where u can buy drugs http://ianxz6zefk72ulzz.onion/index.php

The Hidden Wiki! Can potentially find everything from here! http://kpvz7ki2v5agwt35.onion/wiki/index.php/Main_Page

Contains Tor Library http://am4wuhz3zifexz5u.onion/

The General Store (more drugs) http://xqz3u5drneuzhaeo.onion/users/generalstore/

A bunch of rather popular boards (like Intel Exchange) http://4eiruntyxxbgfv7o.onion/snapbbs/sitedex.php

‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡

2/22/11 -Update:

gAtO found this list it is still raw and some nasty shit is on this that gAtO will never need to go,, sick bastard..

Here’s the hidden wiki that you can access when on Tor

http://kpvz7ki2v5agwt35.onion/wiki/index.php/Main_Page
- graffiti.onion – A simple, editable page. No rules, total anarchy. (LUP 2010-12-06)
- Free Tradecraft Forum – Talk about pretty much anything, wide range of topics
- Freedom Security – Attacks, Defenses, The Underground, Security, Off-topic chat (LUP 2010-12-06)
- Hosted by: CircleServices
- Assassination Market – Anonymous assassination market using Tor Bank and TorPM
- TOR Free For All – Unmoderated area for political and other topics. Anything goes. (Guest account: user=public01 pass=public01)
- TorTSE – A continuation of the infamous TOTSE forum which has existed since the late 80s covering almost every topic.
- Democrat Watch – Right-wing board dedicated to criticizing Democrats (registration required)
- The Intel Exchange – Know or need to know something? Ask and share at this underground intelligence gathering network…
talk.masked, clearnet version (read only) – Talks/Notes. A Janitor Joint. Mirror: rsync://ci3hn2uzjw2wby3z.onion:873/
K5 Odd Forums – Forum with a different interface than the common ones. Poop’s joint. (Requires HTTP referrers)
OnionWarez – Uncensored warez/multimedia forum. Eng/Pol. Pedo/necro/bestia/murder talk only in allowed channels.
anonymous bbs, gopher interface, telnet interface – Another variation of the talks style of board.
Tajna Community – A WIP Underground forum & file dump. Caters for most tastes. (LUP 2010-12-06)
TextForest – Kinda like talk.masked, but personalized. A Janitor Joint.
Hosted by: Freedom Hosting

Warez and uncensored talk Forum – Forum for warez and uncensored talk
HackBB – Forums for hacking, phreaking, cracking, programming, anti-forensics, and other topics centered around technology.
Anarcho-Syndicalist Brigade – Forums for Collectivist Anarchists and leftists to discuss things, primarily revolution

Muchan – Imageboard for discussing music and random stuff. Boards : /b/ (random)

OnionIB: b4yrk2nkydqfpzqm.onion/onionib
The Tor Library: am4wuhz3zifexz5u.onion
Hidden Wiki: http://kpvz7ki2v5agwt35.onion/wiki/index.php/Main_Page
TORDIR: http://dppmfxaacucguzpc.onion/
Torch: http://xmh57jrzrnw6insl.onion/
TorStatus: http://lotjbov3gzzf23hc.onion/
Intel exchange boards (nothing really useful, except for gathering links) – Channers present
http://4eiruntyxxbgfv7o.onion/snapbbs/736364f4/threadlist.php?
Hidden Wiki
http://kpvz7ki2v5agwt35.onion/wiki/index.php/Main_Page
LiberaTor (info dump site – pdf files, risk to security)
http://p2uekn2yfvlvpzbu.onion/
Dangler’s site – hired thief
http://627kx22vati6uqkw.onion/
cheese pizza sites
Secret Corner – imageboard
7cov2loswjrmaqot
Image gallery
6x77gb7ngu6nymwl
video hosting
opva2pilsncvtwmh
http://b4yrk2nkydqfpzqm.onion/girls/topic/1045+full/
lolitas
http://m3hjrfh4hlqc67gb.onion/inliner.php?num=50&size=120&filter=00
Core onion – directory
http://eqt5g4fuenphqinx.onion/
Onion chan – Captain piccard everywhere
http://b4yrk2nkydqfpzqm.onion/
Ebook colection
https://w4dzvkf6hu5d5pha.tor2web.org/index.html
Pastebin
http://4eiruntyxxbgfv7o.onion/paste/browse.php
List of bbs
http://4eiruntyxxbgfv7o.onion/snapbbs/sitedex.php
OnionIRC file host? Contains cherry pie
http://nissehqau52b5kuo.onion/
* axqzzpkfwezf3kku.onion – Tor Project: Anonymity Online
* dppmfxaacucguzpc.onion – TORDIR – Link List
* eqt5g4fuenphqinx.onion – Core.onion
* oqznfi3tdo6nwg3f.onion – Tor network search – Torgle v3
* xqz3u5drneuzhaeo.onion – Freedom Hosting
* 4jbxjjrbakmdcmvb.onion – TorMarks Tor Directory
* a5ec6f6zcxtudtch.onion – Webinterface of “awxcnx”
* c4wcxidkfhvmzhw6.onion – PrivacyBox
* taswebqlseworuhc.onion – TasWeb
* vdyrqdwjyx7kfnhy.onion – Welcome to vescum!
* wf4df37hrebhwzts.onion – Web Design Guidelines: Onionland Style
* torbankofpucsfo6.onion – Tor Bank is obsolete
* vms43o4cqysakvyb.onion – The Bitcoin 4 Cash Service – Home
* xqzfakpeuvrobvpj.onion – MyBitcoin – A web-based transaction processor for Bitcoin
* 5pyq73pxm423mgzx.onion – potaoto – anonymous image hosting
* i7hknwg4up2jhdkx.onion – ES Simple Uploader
* xfq5l5p4g3eyrct7.onion – Onion Image Uploader
* 6eranjd7c4f5rncf.onion – Public timeline – twat
* ms4kc75hlvnfcxgz.onion – blog.masked
* ci3hn2uzjw2wby3z.onion – talk.masked
* k5oddprhqyfvhwh4.onion – K5 Odd Forums
* qm3monarchzifkwa.onion – anonymous bbs
* tzdp6xe2upfbh5qv.onion – ^/\ TextForest
* 7ymfzygewl4n6usp.onion – Index of /
* clsvtzwzdgzkjda7.onion – HackBB » Index page
* cx4vwijytopjvedi.onion – A website
* 3terbsb5mmmdyhse.onion – hashparty ~ password cracking
* voba3xuuqisvloqe.onion – FirstSale | Convert your e-books for use on another Kindle™
* 2c2na76zih6lxmeo.onion – Index of /
* nwycvryrozllb42g.onion – Destination Unknown
* w4dzvkf6hu5d5pha.onion – BookPusher’s eBook Collection
* p2uekn2yfvlvpzbu.onion – LiberaTor
* wxbsxbatlwtdhvvo.onion – The Occupied Potty
* s7nbvdbky4xqim7h.onion – Male animal genitalia gallery – Makloo’s Free online pictures
- galleries of male horses, dogs, stallions, elephants, bulls, and other male animal …
* 3g2upl4pq6kufc4m.onion – DuckDuckGo
* if65je4uxyznpbjk.onion – Television Downloads And Flash Streaming
@ TV-DUMP.ORG – 1 file downloads
* kpynyvym6xqi7wz2.onion – main.paraZite.org # Anarchy files and Underground links
* mlz3apezci5ya6k6.onion – Moralize.us
* 2ddjd7xsni7pefcx.onion – PURE EUROPE
* iwdmsbpxclyjhi4e.onion – The LG enV2
* naot2jryja6iyrp5.onion – Neutering NOT Org
* ybi5yfcdw6mxqlvn.onion – Welcome to Onion Desktop
* ie4hf3qxzoazywoi.onion – Index of /
* zqiirytam276uogb.onion – Thorlauta
* ar3ubs6cg6an4ylt.onion – beaglesnoop
Lots of articles on searching – applicable to the deep web
http://nwycvryrozllb42g.onion/searchlores/news.htm
* j4ddjgxetfx2ybcx.onion – Geheimkanal – Anal Fatal
* xiwayy2kn32bo3ko.onion – ONION Channel
* n2qxamb4ujm53cas.onion – .:: Strona posÅ‚a na Sejm RP Krzysztofa Brejzy ::.
* nemlq3kd36frgvzp.onion – TorPortal – bo wolnoÅ›Ä‡ to wolnoÅ›Ä‡.
* ont6bv4bg7rtgaos.onion – Polska ukryta strona w sieci Tor
* qubsrxat5qsaw5u5.onion – Polska Cebulka
* uaga3aoawaj6hohg.onion – Index of /
* xlmg6p4ueely7mhh.onion – TorKnight forum – Polskie forum wielotematyczne – Indeks
* ximqy45aat273ha5.onion – ?????-??????
* rusinfoik4z4rgi3.onion – Ð Ð˜Ð Ð ÑƒÑ ÑŒÐ˜Ð½Ñ„Ð¾ | Ð Ð¾Ð²Ð¾Ñ Ñ‚Ð¸ Ð ÑƒÑ Ñ ÐºÐ¾Ð³Ð¾
Ð Ð°Ñ€Ð¾Ð´Ð°
* y4bzva6k3l2l7rla.onion – DetskÃ¡ pornografia – je to len zÃ¡mienka
* honeynetvg7i4lc6.onion – Welcome to HoneyNet
* dg6exbqq42btatnw.onion – GNUnet files sharing
* taswebqlseworuhc.onion – TasWeb
* xfq5l5p4g3eyrct7.onion – Onion Image Uploader
* pdjfyv7v3pn34w4f.onion – House of Anonymous
* pdjfyv7v3pn34w4f.onion – House of Anonymous
* dsyghxm2xtmffaxx.onion -
* qubsrxat5qsaw5u5.onion – Polska Cebulka
* i7hknwg4up2jhdkx.onion – ES Simple Uploader
* pibn3ueheubjxv2z.onion – U kocurka
* y4bzva6k3l2l7rla.onion – DetskÃ¡ pornografia – je to len zÃ¡mienka
* ar3ubs6cg6an4ylt.onion – beaglesnoop
* x64n42mkjidmy2zr.onion – Boy Vids V1.1 – Index
* 5cez64xymwnci47y.onion – Capri
* 7taxwkbteb6raduz.onion – CPHunter : Home
* c7lt62zuq46uywrn.onion – Index of /
* waivt2ksvjukhsps.onion – Imageboard Gateway
* yl2wafirpac6rtqz.onion – KindzazaChan
* c7jh7jzl3taek4eh.onion – Onion II
* b4yrk2nkydqfpzqm.onion – OnionIB
* opva2pilsncvtwmh.onion – OnionPedo Video Archive
* ke56zgxebernbbpz.onion – Pedofilska strona MichaÅ‚a BraÅ„skiego
* 6x77gb7ngu6nymwl.onion – TorPedo 2.0 – Tor Pedo Gallery > 9KPix > 2GB
* kdq2y44aaas2aiu4.onion – Proxy error: 502 Couldn’t parse server status line.
* vs5hb2ybldb4gfja.onion – 3D Boys • Index page
* 7bm7p4ttba5tanme.onion – Login :: 7bm7p4ttba5tanme.onion
* x3zrcuuaa3oryn3h.onion – Welcome To Paradise Village
* 7ufb532zwap5gpyc.onion -
* w4b46jaqe3pgsvnf.onion – FreedomChan – Redirecting to Gallery..
* acdcoduomhlthume.onion – Index of /
* nk3amln4w62pepqt.onion -
* aiw2jgiqm5n2v77s.onion – KINDZAZA ::
* rtfl7xrmcsc4pdvk.onion -
* 5sdehmaqvrjho7xn.onion -
* 4fj7juxplvsxgocy.onion -
* l6nvqsqivhrunqvs.onion -
* ms4kc75hlvnfcxgz.onion – blog.masked
* qx7j2selmom4ioxf.onion – main.paraZite.org # Anarchy files and Underground links
* ci3hn2uzjw2wby3z.onion – talk.masked
* xqz3u5drneuzhaeo.onion – Freedom Hosting
* 5cez64xymwnci47y.onion – Capri
* 6p7rd57bd6ph3hlp.onion – KindzazaNew
* oivabkctz4ajdnwa.onion – Index of /
* oivabkctz4ajdnwa.onion – Index of /
* clsvtzwzdgzkjda7.onion – HackBB » Index page
* c7jh7jzl3taek4eh.onion – Onion II
* waivt2ksvjukhsps.onion – Imageboard Gateway
* 6x77gb7ngu6nymwl.onion – TorPedo 2.0 – Tor Pedo Gallery > 9KPix > 2GB
* b4yrk2nkydqfpzqm.onion – OnionIB
* yl2wafirpac6rtqz.onion – KindzazaChan
* x64n42mkjidmy2zr.onion – Boy Vids V1.1 – Index
* opva2pilsncvtwmh.onion – OnionPedo Video Archive
* 7taxwkbteb6raduz.onion – CPHunter : Home
* eqt5g4fuenphqinx.onion – Core.onion
* hkfjbmo2rdjun56b.onion -
* wuvdsbmbwyjzsgei.onion -
* juzocitzjuqpo2rx.onion -
* mlz3apezci5ya6k6.onion – Moralize.us
* 5pyq73pxm423mgzx.onion – potaoto – anonymous image hosting
* mf7ww4oo2ztz3xuv.onion – Browse Album :: TorGallery
* curatorqztgkvf34.onion – Curator – Sort, Search, Share.
http://xqz3u5drneuzhaeo.onion/users/mister/
http://xqz3u5drneuzhaeo.onion/users/library/ another Tor library
http://xqz3u5drneuzhaeo.onion/users/dosbox2/
http://g7pz322wcy6jnn4r.onion/opensource/polyfront/index.html
http://am4wuhz3zifexz5u.onion/ tor library
http://wuvdsbmbwyjzsgei.onion/DOWNLOAD/ music downloads
http://xqz3u5drneuzhaeo.onion/users/iskanderarchiv/ free bibliotheca alexandrina
Lolita:
http://m3hjrfh4hlqc67gb.onion/search.php?sort=newest

This entry was posted in Cyber Criminals, Cyber Dissident, Cyber Intelligence, Cyber Monitoring, Cyber Politics, Cyber Strategy, Cyber Study, Cyber Warfare, Deep Web, Gray Hats, Hackers, Hacktivist, human rights, Information Warefare, Internet -Player, Onion Web. Bookmark the permalink.

Cyber Security Sucks

Posted on February 2, 2012 by gatomalo Comment

gAtO rEaD -People have been working on computer system security for at least 30 years. During this time there have been many intellectual successes. Notable among them are the subject/object access matrix model, access control lists, multilevel security using information flow and the star-property, public key cryptography, and cryptographic protocols. In spite of these successes, it seems fair to say that in an absolute sense, the security of the hundreds of millions of deployed computer systems is terrible:

a determined and competent attacker could destroy most of the information on almost any of these systems, or steal it from any system that is connected to a network. Even worse, the attacker could do this to millions of systems at once.

How much harm is actually being done by attacks on these insecure systems…;) mEoW mEoW

There is no accurate data about the cost of failures in computer security. On the one hand, most of them are never made public for fear of embarrassment. On the other, when a public incident does occur, the security experts and vendors of antivirus software that talk to the media have every incentive to greatly exaggerate its costs. But money talks. Many vendors of security have learned to their regret that although people complain about inadequate security, they won’t spend much money, sacrifice many features, or put up with much inconvenience in order to improve it. This strongly suggests that bad security is not really costing them much.

Of course, computer security is not just about computer systems. We don’t have “real” security that guarantees to stop bad things from happening, and the main reason is that people don’t buy it. They don’t buy it because the danger is small, and because security is a pain.

Since the danger is small, people prefer to buy features. A secure system has fewer features because it has to be implemented correctly. This means that it takes more time to build, so naturally it lacks the latest features.
Security is a pain because it stops you from doing things, and you have to do work to authenticate yourself and to set it up.
A secondary reason we don’t have “real” security is that systems are complicated, and therefore both the code and the setup have bugs that an attacker can exploit. This is the reason that gets all the attention, but it is not the heart of the problem.
Will things get better?
Certainly if there are some major security catastrophes, buyers will change their priorities and systems will become more secure. Short of that, the best we can do is to drastically simplify the parts of systems that have to do with security:

- gAtO oUt

This entry was posted in Cyber Criminals, Cyber Intelligence, Cyber Law, Cyber Study, Insider Threat. Bookmark the permalink.

Security Dashboards -Visualization Tools

Posted on January 29, 2012 by gatomalo Comment

gAtO FoUnD – these security visualization Dashboards, there are many more. If you know of any please send it to gAtO and I will keep the list updated. gatoMalo_at_uscyberlabs_dot_com -

Security Dashboards:

Talisker Computer Network Defense – http://www.securitywizardry.com/radar.htm

Internet UnderSea Map http://www.cablemap.info/

IT Security DashBoards $$ 9.00 Year -COOL http://dashboard.certstation.com/

Submarine Cable Map - http://www.submarinecablemap.com/

IXP Maps http://www.datacentermap.com/ixps.html

SANS http://isc.sans.edu/dashboard.html

Google Postini Service http://www.google.com/postini/threat_network.html

Emagine Security – http://www.emagined.com/security_dashboard.php

Internet Traffic Report http://www.InternetTrafficReport.com/

DNS Stuff -http://www.dnsstuff.com/

Atlas arbor net http://atlas.arbor.net/

Symantec Cloud Threat Intelligence -Spam -Phishing -Virus http://www.symanteccloud.com/globalthreats

http://www.msisac.org/apps/dashboard/

Cyberspace Policy Dashboard -http://www.whitehouse.gov/cyberreview/documents

Cyber Dashboard Plans http://scap.nist.gov/events/2010/itsac/presentations/day2/Security_Management_and_Compliance_Automation-CMP-Cyber_Dashboard_Overview.pdf

- gAtO OuT

This entry was posted in Cyber Intelligence, Cyber Monitoring, Cyber Notebook, Cyber Study, Cyber Tools. Bookmark the permalink.

Predictive Behavioral Security Analysis part 1:

Posted on January 27, 2012 by gatomalo Comment

Predictive Behavioral Security Analysis part 1:

gAtO bEeN -watching a mouse hole called Twitter lately, it’s an OSINT Open Source Intelligence source that monitors real events in real time. OSINT – is a form of intelligence collection management that involves finding, selecting, and acquiring information from publicly available sources and analyzing it to produce actionable intelligence.

cool dashboard – internet Storm Center - http://isc.sans.edu/dashboard.html

gAtO bEeN -watching World Web War (WWW) hacktivismn has jumped started this new year, #OpMegaUpload upset lot’s of people and the organization structure of Anonymous is getting more refine. Things happened in #poland #ireland and during the middle of a DoS attack Anonymous told their warrior on twitter:

http://trendsmap.com/

“@AnonyOps: #DDOS of European Parliament must stop NOW. They’re not the ones #ACTA

Later they tweeted this: “@AnonyOps: europarl.europa.eu back up after #DDOS. Thanks for listening to logic #Anonymous.go persuade the MEPs:

http://www.msisac.org/apps/dashboard/

Command and Control in your face and people responded to this organized movement. Each new attack everyone get’s better more coordination Anonymous is growing up. Just look at the causes #SOPA #PIPA #ACTA #OpMegaUpload #poland #Ireland #SOPAIreland #France #Belgium #FreeTopiary. The Anonymous thingy has grown up it’s a social conscious mindset created, manipulated, organic, ???? leaderless ????. The evolution of this movement has spawned OWS the Occupy Wall Street political movement has it’s roots in Anonymous, but you can see the worldwide community support for this group that is anyone. This movement will grow and mature.

http://www.fsisac.com/

Think about it.

This Week gAtO Learned mUcHo-mUcHo, we have not only the technical means but now the social monitoring needs that can be used to gather information like no other time before. Of course our governments are getting in on the fun.

Homeland Security DHS- Human Factors/Behavioral Sciences Projects:

Actionable Indicators and Countermeasures Project
Biometric Detector Project
Community Perceptions of Technology Panel Project
Community Resilience Project
Enhancing Public Response and Community Resilience Project
Future Attribute Screening Technology (FAST) Project
Hostile Intent Detection – Automated Prototype Project
Hostile Intent Detection – Validation of Observable Indicators of Suspicious Behavior Project
Human Systems Engineering Project
Human Systems Research Project
Insider Threat Detection Project
Mobile Biometrics System Project
Multi-modal Biometrics Project
Passive Methods for Precision Behavioral Screening Project
Predictive Screening Project
Quantitative Psychosocial Impacts Index Project
Rapid DNA Project
Risk Prediction Project
Violent-Intent Modeling and Simulation Project

http://www.dhs.gov/files/programs/gc_1218480185439.shtm

http://k.root-servers.org/

And the CIA got into the fun[1] way before it was hip to monitor the web. We know the government has all kinds of databases of all kinds of things they collect remember echelon and carnivore the FBI first grab at data. Then we yell at the CHinese for doing the same thing we did, they learned from us about gathering information about people. Now cyberspace ties us in even tighter with SMS, streaming video, encrypted mobile chats for the masses. But as more is piled on more tools are developed. Recorded Future[2] was a little geek company sucking in the data and developing Analytical tools for Intelligence forecasting and the CIA loves them.

Predictive Behavioral Security Analysis is just monitoring choice which is freedom for it is predictive and can then be manipulated to plant an idea, a spark, a tweet. “Egypt can be free” this little spark is setting the fuel for the flames that will burn in Cairo by it’s people via Twitter, Facebook and any other social media. The Arab Awakening -Arab Spring was an simple idea, manipulated in cyberspace by protester, dissidents and governments in Tunisia, Bahrain, Syria and others, we will see Iraq’s move in March of this years with it’s election, they are closing down their Internet but will the idea of freedom explode anyway. We will be monitoring this – gAtO OuT

References:

[1] CIA Invest in ‘Future’ of Web Monitorin http://www.wired.com/dangerroom/2010/07/exclusive-google-cia/

[2] https://www.recordedfuture.com/

This entry was posted in Anonymous, AntiSec, Black Hats, Cyber Civilian Militia -WH, Cyber Discussion Threads, Cyber Dissident, Cyber Intelligence, Cyber Strategy, Cyber Study, Cyber Threats, human rights, Information Warefare, International Cyber Policy, Occupy Wall Street, SOPA. Bookmark the permalink.

Open Source Threat Intelligence

Posted on January 24, 2012 by gatomalo Comment

Open Source Threat Intelligence -Defense – Monitoring – Recon and Strike capabilities. OSINT- Tools for Cyber Investigation -

gAtO sAy -In today’s world Threat Intelligence is always right at your finger tips. With Twitter and Facebook it’s a researchers dream come true. Before we start let’s become invisible on the web I would read -Anon Security -How to be Anonymous[1]. This is a guide written by the group Anonymous and frankly they do a great job of hiding. Just add your favorite and be safe and private. In the white hat world Anonymous is one of the bad guy’s but this growing movement will inspire the young and the lonely a place to be accepted. These crew(z) help you to help yourself, just read and educate yourself. If you want to be good at TI you have to learn from your advisories and friends.

A simple TOR and Best Free VPN will give you basic protection so you can start your work.

Get a Twitter account and ad TweetDeck to your tool kit and your world will open up to twitterSphere. Go to PasteBin.com and check the trends this will give you another view into the hacker world. I won’t cover the darkWeb. Now with a simple browser (Firefox recommended) and a translate button you can start.

Take a look at http://trendsmap.com/ This is a real-time mapping of twitter. There are dozens of tools like this that will let you gather Intelligence on what’s out there. Add country by country and you can see trends come out at you real-time. Enter SOPA in trendsMap and you can see that SOPA is a U.S thing but it’s getting world wide attention. We are speaking about free real time information at the people level. There are many more tools like these that can take the growing social aspect of the technology, the way the new adapters of this technology are using it and gather some great intel.

Example: During the Bradley Manning Trial because of the Anonymous Movement support for him the army was worried something would happened. With the capabilities that the new breed of hacktivism this is a reasonable threat. The US Army hired Twitter Trend to monitor the Bradley chatter and were able to anticipate physical security depending on twitter-sphere chatter.

Learn how to search!!!!!

Look at google hacks[5] and see how the smart guy’s are using simple search commands and extracting tons of information. Read gAtO Cyber Security Tools[2] I found some really good tools to help any cyber investigation or researcher.

Google and other search engines are your best friends don’t forget to look at the wayBackMachine -http://www.archive.org if it was online since 1996 then they have that site mirrored. But wait let’s back up before we start down the road to discovery let’s look at what other successful folks have done to learn how to do it.

In order to have a starting point I took a look at what LulzSec was doing and then reverse-engineer them, this would give me the basic model for what the attackers are looking for.

This is the basic LulzSec 50 days of mayhem this bunch were(are?) the OCG (Original Cyber Gangster). If you look at there escapades you could reverse engineer it and build a basic model[7]. This is what gAtO came up with.

LulzSec Team

Sabu - Captain of the Ship, organizing the team and planning strategies.

Topiary - Basically PR, updating Twitter and interviews with media.

Kayla - Mostly focused on RFI / LFI / SQLi and coordinating with the rest.

Tflow - Maintenance of LulzSec website and torrents.

Storm - DDOS and also involved in PBS hack.

Pwnsauce - Coding required tools for the team and involved in Infragard hack.

Neuron - Coding and also involved in Sownage.

M_nerva - Deus Ex Game hack.

TrollPoll - Involved in Fox hack and seems to be the most paranoid of all.

JoePie - Updating the team with news related to LulzSec and other channels of interest.

Avunit - Seems focused on XSS and SQLi

Kl0ps, io, Palladium and Devrandom - Hackers supporting the team

Bitcoin Donations handled by Tflow, Topiary and Joepie

Team Strength - 13 or 15. It could be possible that some handles are used by same person.

Who are these Hacker?

gAtOmAlO sAy's

For law enforcement and Intelligence operators learn how “they” do it, look at how they adapt and develop new way of communication -right in front of our face, these groups are becoming the model of how to get things done online, we have terrorist organizations[8] looking at this model and adapting it to their needs. There are so many more resources out there for any researcher you just have to think like what your looking for and the resources are somewhere in cyberspace. The U.S is already [9]monitoring it own people why can’t you… -gAtO oUt

References:

[1] http://uscyberlabs.com/blog/2012/01/22/anon-security-how-anonymous/

[2] http://uscyberlabs.com/blog/2012/01/11/cyber-security-tools/

[3] Underground Cyber War-TangoDown OpMegaupload – http://uscyberlabs.com/blog/?p=1771

[4]

[5] http://geekology.co.za/article/2009/02/how-to-use-advanced-google-search-hacks-and-tricks

[6] #TangoDown #OpMegaUpload Cyber War #anonymous vs FiB – http://uscyberlabs.com/blog/?p=1771

[7] Hacker Cyber crewz Diagram http://uscyberlabs.com/blog/2011/07/13/hacker-cyber-crew-crewz-diagram/

[8] Timeline Middle East Hacker CyberWar ?0xomar – Hannibal http://uscyberlabs.com/blog/2012/01/19/timeline-middle-east-hacker-cyberwar-0xomar-hannibal/

[9] U.S Monitors Social Media – http://uscyberlabs.com/blog/2012/01/19/timeline-middle-east-hacker-cyberwar-0xomar-hannibal/

Real Time Web Monitoring – Traffic – Attacks – Latency – http://www.akamai.com/html/technology/dataviz1.html

Visualizing Akamai – http://www.akamai.com/html/technology/dataviz3.html

Akamai -Visualizing the Internet -http://www.akamai.com/html/technology/visualizing_akamai.html

This entry was posted in Cyber Intelligence, Cyber Notebook, Cyber Strategy, Cyber Study, Cyber Threats, Cyber Tools, Diagram -, Hackers, Notes to Myself. Bookmark the permalink.

Cyber Crime Units Around The Globe

Posted on January 18, 2012 by gatomalo Comment

Cyber Crime Units Around The Globe

Chile PDI

http://www.investigaciones.cl/

Mexico
ssp.gob.mx

http://ssp.gob.mx/portalWebApp/appmanager/portal/desk?_nfpb=false

Spain

http://www.cybex.es/en/

Peru

http://www.4law.co.il/peru1.htm

Computer Crime & Intellectual Property Section
United States Department of Justice

http://www.cybercrime.gov/

Austria

http://www.bmi.gv.at

Belgian
Welcome to the Belgian online reporting service

https://www.ecops.be/webforms/Default.aspx?Lang=EN

Croatia

http://www.mup.hr/

France

http://www.interieur.gouv.fr/

Durch NHTCC

http://www.politie.nl/

European Network and Information Security Agencies

http://www.enisa.europa.eu

Interpol – CyberCrime

http://www.interpol.int/Crime-areas/Cybercrime/Cybercrime

Ireland’s National Police Force

http://www.garda.ie/

Iran Cyber Police
www.cyberpolice.ir

Italy Police

http://translate.google.com/translate?hl=en&sl=&tl=en&u=http%3A%2F%2Fwww.poliziadistato.it%2F

http://www.poliziadistato.it/

Lithuanian Criminal Police Bureau is a specialized police agency

http://lkpb.policija.lt/index.php?option=com_content&view=article&id=83&Itemid=18

Norway

http://www.okokrim.no/

Portugal BICI

http://www.policiajudiciaria.pt/

Spain

https://www.policia.es/

Police in Sweden

http://www.polisen.se/

Swiss

http://www.cybercrime.admin.ch/kobik/de/home.html

Angola

http://www.policiaeconomica.gv.ao/

China

http://www.mps.gov.cn/n16/index.html

Hong Kong Police Force

http://www.police.gov.hk/hkp-home/english/tcd/index.htm

India Central Bureau of Investigation

http://cbi.nic.in/

Royal Thai Police

http://www.royalthaipolice.go.th/

Japan Cyber Unit

http://www.npa.go.jp/cyberpolice/

Korea CTRC

http://ctrc.go.kr/index.jsp

Pakistan Police

http://www.4law.co.il/pak1.htm

Philippine Criminal Investigation Group

http://cidg.pnp.gov.ph/

Australia Federal Police

http://www.afp.gov.au/

NASA Office of Inspector General

http://www.hq.nasa.gov/office/oig/hq/Welcome.html

This entry was posted in Cyber Cheat, Cyber Criminals, Cyber Intelligence, Cyber Law, Cyber Tools, Notes to Myself. Bookmark the permalink.

Internet Usage in the Middle East

Posted on January 14, 2012 by gatomalo Comment

gAtO fOuNd -this chart while chasing a mouse. When I saw this chart it’s a mirror of who and how the middle east is doing in cyberspace. First let’s look at who is not letting it’s people use the internet without restrictions. Iran, Syria and Gaza Strip as you can see they are not allowed to use Facebook. Iran has 46% of it’s people using the internet but it’s cut off and monitored (intranet only mAyBe). In Syria you can see the elite use the Internet and the local population is stopped flat. The disparity of who has and who hasn’t can be seen by this little chart.

http://www.internetworldstats.com/stats5.htm

Middle East Internet Usage and Population Statistics
MIDDLE EAST	Population ( 2011 Est. )	Users, in Dec/2000	Internet Usage, Latest Data	% Population (Penetration)	Users % Region	Facebook Subscribers
Bahrain	1,214,705	40,000	649,300	53.5 %	0.9 %	287,020
Iran	77,891,220	250,000	36,500,000	46.9 %	50.3 %	n/a
Iraq	30,399,572	12,500	860,400	2.8 %	1.2 %	860,400
Israel	7,473,052	1,270,000	5,263,146	70.4 %	7.3 %	3,442,680
Jordan	6,508,271	127,300	1,741,900	26.8 %	2.4 %	1,675,780
Kuwait	2,595,628	150,000	1,100,000	42.4 %	1.5 %	822,640
Lebanon	4,143,101	300,000	1,201,820	29.0 %	1.7 %	1,201,820
Oman	3,027,959	90,000	1,465,000	48.4 %	2.0 %	285,080
Palestine (West Bk.)	2,568,555	35,000	1,379,000	53.7 %	1.9 %	599,520
Qatar	848,016	30,000	563,800	66.5 %	0.8 %	245,580
Saudi Arabia	26,131,703	200,000	11,400,000	43.6 %	15.7 %	4,034,740
Syria	22,517,750	30,000	4,469,000	19.8 %	6.2 %	n/a
United Arab Emirates	5,148,664	735,000	3,555,100	69.0 %	4.9 %	2,340,880
Yemen	24,133,492	15,000	2,349,000	9.7 %	3.2 %	329,040
Gaza Strip	1,657,155	n/a	n/a	n/a	n/a	n/a
TOTAL Middle East	216,258,843	3,284,800	72,497,466	33.5 %	100.0 %	16,125,180

In places like Jordan almost every one in the country that has Internet access has an account in Facebook, Lebanon is also 100% online and on Facebook. Facebook and other social media is taking over the middle east. Their leaders will have to be careful in the muslin world the young are becoming more digitized every second. The smart phone has opened door to freedom more than any other device today -gAtO oUt.