Cyber Security Notebook

Cyber Security Notebook


  • Category Archives Cyber Strategy

  • PennTest Threat Intelligence

    Posted on February 16, 2012 by gatomalo Comment

    PennTest Threat Intelligence - part-1

    gAtO bEen ThInKiNg - In the hyper connected world we live in Pen-Testers have a lot on their hand, hardware, firmware, OS, web-apps. The facts are that a simple web-app upgrade, may open new holes that off-set the problem they had to begin with. A pen-test, is a method of evaluating the security of a computer system or network by simulating an attack from malicious outsiders. Who are the outsider? How do the outsiders pen-test your system? Non-state actors have played an important part in many international cyber conflicts in the past two years- game changers. With the Anonymous crew(z), China, Russia, India, Iran out in force in cyberspace a company needs to know if they are the target from a political, competition or worse yet a loneWolf or activist.

    Many think that with BackTrack anyone can be a tester, but it’s different today. Companies need to understand the Geo-Political aspect of their company and who are their markets and how does it play out in the real world. Look at Sony, HBGrays these are two different companies but their reputation has been tarnish by what, a bunch of kids, naw, these boy’s and girls are the new breed, smart, educated and connected. These people are System Admin in their day job and Anonymous during off-hours. They know how to work in the box and also see out-of-the-box tips and tricks and have thousands that want to try their game and imitate them. Whatever you think these new boy’s and girls will multiply, it’s a fab, a movement but they all want to be a cool hackers and the next generation of hacktivist will make these people look like amateurs.

    Who knew that a Low Orbit Ion Cannon (LOIC) used to test how many connection your server will handle, would be used by the attackers themselves. A long time ago in cyber years (2-3 years ago) only the geeks had the knowledge and skills to do some of the hacks that we see today. Today Anonymous is not only a social movement but it’s a cause celeb, people want to belong and these social 4chan outcast have started a revolution in cyberspace that governments and corporations now are worried about, and well they should be.

    Break out Backtrack and do some pen-testing and yes you may find misconfigured servers like gAtO hAs -(SCADA systems to boot) and such but if you can see what your enemy is looking at, planning. Nothing is better than threat intelligence to guide you in mitigating your company as to future attacks.

    Look at the RSA and Diginotar APT attacks, the bad guy’s went after the certificate authority how does a typical pen-test tools know that, they don’t if you don’t have your pulse on the game your in, you may be next.

    Remember the technical aspect is one thing but if you have many, many hands trying new things on your site guess what, they will hack you if your connected to the Internet. Your company cannot live in a bubble and so must expose themselves to customers, vendors and business partners your company cannot control all those aspects. When a simple email attachment to the c-Suite boys just like with the Nortel hack they got you big time, in Nortel chase they were inside their network for 10 years. The reputation, the technical all this means nothing if you don’t have good solid threat intelligence to know what’s going on in the world.

    If you don’t have a team to look at threat intelligence for your company, get some people fast. If your connected you can be hacked, learn and be silent – Can’t stop the signal. Everything goes somewhere, and I go everywhere…. -gAtO oUt

    Share on TwitterShare on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
    Link to this post!
    This entry was posted in Anonymous, Bad Code, Black Hats, Cyber Espionage, Cyber Intelligence, Cyber Monitoring, Cyber Notebook, Cyber Strategy, Cyber Study. Bookmark the permalink.

  • Cyber Iran

    Posted on February 12, 2012 by gatomalo Comment

    gAtO hEaR- In Iran the nation’s telecommunications ministry publicized in early 2011, it would disconnect Iran from the rest of the world and run a parallel internal service (“Islamically permissible  ‘halal’ network”) that would automatically censor material and block popular global sites. In Iran two-thirds of the country’s 78 million people are under the age of 35, and about 40 percent of the population have Internet in their homes, according to Internet World Stats, making Iran one of the highest per capita cyber-connected populations in the world. Iran has a pollution of about 77 million people, about 53% of the people are on the Internet and not one of them is a Facebook user. In nearby Jordans they have 1.7 million users and 1.6 millions of them are on Facebook.

    Stuxnet was deployed and stopped their nuclear weapons program. 2 leading scientist were killed Iran blames Massad -CIA. Iran is spending billion on cyber Hardware. Arab Spring. Iran took down U.S Drones. Iran threatens closing down the Straits of Hormuz. Iran claims new Cyber Army is ready for war in Cyberspace.

    Now with the March 2, 2012 parliamentary elections we see official of Iran’s Judiciary announced “new limitations” on using cyber space and content publishing on the internet. A task force of 250,000 cyber police currently monitors the Internet, specific sites, blogs and individuals suspected of using circumvention tools. Israeli intelligence officials have revealed that they believe Iran has, in the last few years, spent over a billion dollars to upgrade their Cyber War capabilities.

    Iranians have friends like Venezuela and China-based Hauwei corporation which is being investigated by Senators like Rhodes Islands Sheldon’s Whitehouse (“gAtO knows Senator Sheldon Whitehouse he is one of several leaders that understand the complex cyber security issues”) for supplying critical cyber infrastructure to Iran while it supplies equipment and supports the (TS)Top Secret DOD projects. This is clearly a violation when a communist country is providing TS support to our governments and we hear that some of the equipment may have digital backdoors into the infrastructure defeating  all virus scanning software. On the other side of friendships Univision uncovered Iranina and Venezuelan diplomats working on launching cyber-strikes against energy facilities and to other U.S assets (NYT 12-13-2011).

    Iran’s leaders saw what the Arab Spring brought down last year and they see the Parliamentary elections in March as the most sensitive in the history of the Islamic republic and they will do everything to control it. Beacause of the March 2 elections Iran has ordered all Internet Cafe implement all cyber security monitoring software installed and functioning by Jan. 18. The monitoring include requiring a user to provide full name, father’s name, Iranian identification number, zip code and telephone number, in addition to presenting photo identification. The laws require cafes to install closed-circuit surveillance cameras that must be checked at the end of every business day. Cafes also must keep records of all websites and browsing history, along with surveillance tapes, for six months.

    The new restrictions forbid cafes to allow the use of any circumvention technology, such as Virtual Private Networks (VPNs) or proxy servers, the devices Iranians typically use to access blocked sites.

    This latest attack on Internet users comes amid increasing tensions between Iran and the West and deteriorating economic conditions as the Islamic Republic preemptively prepares for possible civilian unrest during its parliamentary elections. The Iranian people use tools like TOR to circumvent authorities to get their message thru even though these free TOR networks are getting hammered by the Iranians to try and take them down or get the information of the dissidents.

    Let’s support these projects and keep Freedom of Speech open in cyberspace -gAtO oUt.

    References:

    Internet cafes to install surveillance cameras,

    U.S. Expels Venezuelan Diplomat Reportedly Involved in Cyber Attack Plot

    http://www.nti.org/gsn/article/us-expels-venezuelan-diplomat-reportedly-involved-cyber-attack-plot/

    Parliamentary elections in March seen as the most sensitive in the history of the Islamic republic

    http://www.guardian.co.uk/world/2012/jan/08/iran-upcoming-parliamentary-elections-march

    Huawei’s Work in Iran May Violate U.S. Sanctions, Lawmakers Say

    http://www.businessweek.com/news/2012-01-10/huawei-s-work-in-iran-may-violate-u-s-sanctions-lawmakers-say.html

    Iran blocks Tor; Tor releases same-day fix

    https://blog.torproject.org/blog/iran-blocks-tor-tor-releases-same-day-fix

    Iran’s strict cyber regulations lay groundwork for ‘halal’ network

    http://www.foxnews.com/world/2012/01/11/irans-strict-cyber-regulations-lay-groundwork-for-halal-network/#ixzz1jYfN3DAV

    Iran Sets Cyber Crime Policy ahead of New Elections

    http://www.stopfundamentalism.com/index.php?option=com_content&view=article&id=1299:iran-sets-cyber-crime-policy-ahead-of-new-elections&catid=70:iran-uprising&Itemid=80

    Share on TwitterShare on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
    Link to this post!
    This entry was posted in Cyber Intelligence, Cyber Policy, Cyber Strategy, Cyber Study, Cyber Threats, Huawei -China telecom, Iran, Iran Cyber Army, Middle East. Bookmark the permalink.

  • Recon the Deep Web

    Posted on February 5, 2012 by gatomalo Comment

    Tools – NAT FW – Lil’Snitch – VPN – ToR —> Bandwidth Graph – View Network -Message Log

    See bottom for UpDaTe 2/22/11

    gAtO wAnTeD -to explore the Deep Web to see what all the chatter is all about. So I went to torproject.org to see what tools were available. Tor has many tools like -Tails is a Live CD/USB distro preconfigured to use Tor safely and easily. gAtO has used Vidalia and firefox before just for a test drive but the slowness stopped me the first time. I have noticed Anonymous and others using the Deep Web to re-launch the LulzBoat on one of the taunts they made they gave an .onion chat room were you need to register to get in. So what is different from any other Chat room not on .onion.

    First the mechanics of a Tor network hides you from anyone the good the bad and the ugly that simple. With a VPS (Virtual Private Network) from any hosting service you can create a website and deploy it in the .onion only visible Deep Web. Now even popular WebSite tools like Drupal and WordPress can publish to the deep web so people under censorship can still see your websites thru ToR. For a dissident who is monitored they can go into a Tor network and publish a site were other like mined can share information without their government or anyone else knowing. No trace. Yes the bad guy’s uses the Deep Web to peddle their wear but there is a lot of good stuff —if you can find it.

    gAtO went into the Deep Web testing the water but verifying[1] that I had my shields on at all times. First it’s slow so take your time when you hit a wiki they but first check yourself http://torcheck.xenobite.eu/ this will check your safe and sound. 

    First stop is TorDir http://suw74isz7wqzpmgu.onion [2] This will give you a chance to look and the tip of the iceberg. When you get to this first site – I right away went to Hacking and Related Section( to see what is out there) As you can see this is different than google search :

    Comments: 5 read or add comments about this link (Anonymous) | Rating: *****

    Last check: 04-02-2012 16:54:21 | Result: On | Lag: 19 seconds

    Here are a few different thing about this site 1st it has comments(read Them) You should read these so you know what’s in these site. 2nd Last checked and Results and Lag Time these vary some in places I seen have 50 second lag time. Remember these are .onion sites and sometimes there on and sometimes there not. A nefarious website may not keep normal times of business so if you really thing that that site is real check back it may come back on the air. 

    If you want to do more than look I recommend us a boot CD/USB with NO WRITE to your hard drive. These are tech savvy people and they may try to put a bot,worm,spy, whatever on your device as for the .onion on my personal Mobile device-NoWayDude.

     

    Example of a BAD Site: do not click

    CardersPlanet

    First carding service from russian community. Credit cards, bank accounts, DDoS service.

    http://wihwaoykcdzabadd.onion

    Last check: 03-02-2012 04:41:02 | Result: Off

    Just look at this site Carders Planet would you really enter this site without your bells and whistles all tight as a submarine. By the way Results:Off (so the site is Off). Then there is the monetary part BitCoins looks to be all right but I have not used them so until I experience them I will not comment. Anyway try http://k4bmdpobhqdguh2y.onion/ This has a basic list to a few site that are rather safe. I listed a few sites I found most all of them work at least when I tried them as security people we need to understand the deep web so we can use it as another tool on our belts. USCYberLabs.com/blog will be adding a .onoin site in the coming weeks and we will also use Tor-Bridge to publish to both worlds. The Deep Web needs good solid content sometimes depending on the time and place their is no other way to read information that may save a life. Freedom must be preserve the .onion network is no Dark Web it just different let work to make it better -gAtO oUt

    What is a .onion site?

    .onion, for all intents an purposes, acts like a top level domain (like your .com’s, .org’s, etc), but is not accessible like a normal webpage. For this reason, it’s called a pseudo top level domain. .onions are run through the Tor network (there are at least two text files on that subject, here, by Mr_Scotty and in the second section of the text here, by myself). Not only does this encrypt server-side data, but increases anonymity as well. On your normal web, a website hosting illegal content would be shut down by the country’s government that governs the host. But on your Tor Network, not only is it impossible to tell where the site is hosted – it’s impossible to take it down, as well.

    References:

    Tor Services

    [2] Messaging – Activism, Political and Revolutionary – Adult – Blogs – Business – Email, IM, Communications – Gambling – Hacking and Related – Hosting and Content Share – Librarys – Personal Pages – Reference  – Security – Social- Social File/happiness sharing

    Software

    Normal Web:

    Virtual Private Server (VPS)  http://en.wikipedia.org/wiki/Virtual_private_server

    Wiki Tor http://en.wikipedia.org/wiki/Tor_(anonymity_network)

    Tor Onion Sites

    [1]Tor Check torcheck.xenobite.eu <http://torcheck.xenobite.eu/

    Torando:  http://b6kpigzhrdhibmos.onion/d6/

    Qpastebin http://4eiruntyxxbgfv7o.onion/paste/browse.php

    PasteOnion http://xqz3u5drneuzhaeo.onion/users/boi/

    The Hidden Wiki – contains all SORTS of info on tor sites http://xmh57jrzrnw6insl.onion/

    TORCH, a tor search engine http://eqt5g4fuenphqinx.onion/

    Core .onion, a tor site directory http://4jbxjjrbakmdcmvb.onion/

    Tor Check torcheck.xenobite.eu <http://torcheck.xenobite.eu/

    AntiSec Embacy -http://ibhg35kgdvnb7jvw.onion/

    Odd K5: http://k5oddprhqyfvhwh4.onion

    Search Engine Torgler: http://oqznfi3tdo6nwg3f.onion

    Leaks: Wikileaks: http://suw74isz7wqzpmgu.onion

    Messaging: TorPM: http://4eiruntyxxbgfv7o.onion/pm/

    File Hosting: sTORage: http://utovvyhaflle76gh.onion/

    BLOLYLO: http://46lm7zhgildryehk.onion

    ES Uploader: http://i7hknwg4up2jhdkx.onion

    AnonyShares: http://4eiruntyxxbgfv7o.onion

    Gatways to I2P Susi Mail: 

    German http://a5ec6f6zcxtudtch.onion

    The Silk Road where u can buy drugs  http://ianxz6zefk72ulzz.onion/index.php

    The Hidden Wiki! Can potentially find everything from here! http://kpvz7ki2v5agwt35.onion/wiki/index.php/Main_Page

    Contains Tor Library http://am4wuhz3zifexz5u.onion/

    The General Store (more drugs) http://xqz3u5drneuzhaeo.onion/users/generalstore/

    A bunch of rather popular boards (like Intel Exchange) http://4eiruntyxxbgfv7o.onion/snapbbs/sitedex.php


    ‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡‡

    2/22/11 -Update:

    gAtO found this list it is still raw and some nasty shit is on this that gAtO will never need to go,, sick bastard..

     

    Here’s the hidden wiki that you can access when on Tor

    http://kpvz7ki2v5agwt35.onion/wiki/index.php/Main_Page

     

    • Assassination Market – Anonymous assassination market using Tor Bank and TorPM
    • TOR Free For All – Unmoderated area for political and other topics. Anything goes. (Guest account: user=public01 pass=public01)
    • TorTSE – A continuation of the infamous TOTSE forum which has existed since the late 80s covering almost every topic.
    • Democrat Watch – Right-wing board dedicated to criticizing Democrats (registration required)
    • The Intel Exchange – Know or need to know something? Ask and share at this underground intelligence gathering network…
  • talk.masked, clearnet version (read only) – Talks/Notes. A Janitor Joint. Mirror: rsync://ci3hn2uzjw2wby3z.onion:873/
  • K5 Odd Forums – Forum with a different interface than the common ones. Poop’s joint. (Requires HTTP referrers)
  • OnionWarez – Uncensored warez/multimedia forum. Eng/Pol. Pedo/necro/bestia/murder talk only in allowed channels.
  • anonymous bbs, gopher interface, telnet interface – Another variation of the talks style of board.
  • Tajna Community – A WIP Underground forum & file dump. Caters for most tastes. (LUP 2010-12-06)
  • TextForest – Kinda like talk.masked, but personalized. A Janitor Joint.
  • Hosted by: Freedom Hosting
  • Muchan – Imageboard for discussing music and random stuff. Boards : /b/ (random)

    •  

     

     

    1. OnionIB: b4yrk2nkydqfpzqm.onion/onionib
    2. The Tor Library: am4wuhz3zifexz5u.onion
    3. Hidden Wiki: http://kpvz7ki2v5agwt35.onion/wiki/index.php/Main_Page
    4. TORDIR: http://dppmfxaacucguzpc.onion/
    5. Torch: http://xmh57jrzrnw6insl.onion/
    6. TorStatus: http://lotjbov3gzzf23hc.onion/
    11. Intel exchange boards (nothing really useful, except for gathering links) – Channers present
    12. http://4eiruntyxxbgfv7o.onion/snapbbs/736364f4/threadlist.php?
    13. Hidden Wiki
    14. http://kpvz7ki2v5agwt35.onion/wiki/index.php/Main_Page
    15. LiberaTor (info dump site – pdf files, risk to security)
    16. http://p2uekn2yfvlvpzbu.onion/
    17. Dangler’s site – hired thief
    18. http://627kx22vati6uqkw.onion/
    20. cheese pizza sites
    21. Secret Corner – imageboard
    22. 7cov2loswjrmaqot
    23. Image gallery
    24. 6x77gb7ngu6nymwl
    25. video hosting
    26. opva2pilsncvtwmh
    27. http://b4yrk2nkydqfpzqm.onion/girls/topic/1045+full/
    28. lolitas
    29. http://m3hjrfh4hlqc67gb.onion/inliner.php?num=50&size=120&filter=00
    31. Core onion – directory
    32. http://eqt5g4fuenphqinx.onion/
    33. Onion chan – Captain piccard everywhere
    34. http://b4yrk2nkydqfpzqm.onion/
    36. Ebook colection
    37. https://w4dzvkf6hu5d5pha.tor2web.org/index.html
    38. Pastebin
    39. http://4eiruntyxxbgfv7o.onion/paste/browse.php
    42. List of bbs
    43. http://4eiruntyxxbgfv7o.onion/snapbbs/sitedex.php
    44. OnionIRC file host? Contains cherry pie
    45. http://nissehqau52b5kuo.onion/
    46. * axqzzpkfwezf3kku.onion – Tor Project: Anonymity Online
    47. * dppmfxaacucguzpc.onion – TORDIR – Link List
    48. * eqt5g4fuenphqinx.onion – Core.onion
    49. * oqznfi3tdo6nwg3f.onion – Tor network search – Torgle v3
    50. * xqz3u5drneuzhaeo.onion – Freedom Hosting
    51. * 4jbxjjrbakmdcmvb.onion – TorMarks Tor Directory
    52. * a5ec6f6zcxtudtch.onion – Webinterface of “awxcnx”
    53. * c4wcxidkfhvmzhw6.onion – PrivacyBox
    54. * taswebqlseworuhc.onion – TasWeb
    55. * vdyrqdwjyx7kfnhy.onion – Welcome to vescum!
    56. * wf4df37hrebhwzts.onion – Web Design Guidelines: Onionland Style
    57. * torbankofpucsfo6.onion – Tor Bank is obsolete
    58. * vms43o4cqysakvyb.onion – The Bitcoin 4 Cash Service – Home
    59. * xqzfakpeuvrobvpj.onion – MyBitcoin – A web-based transaction processor for Bitcoin
    60. * 5pyq73pxm423mgzx.onion – potaoto – anonymous image hosting
    61. * i7hknwg4up2jhdkx.onion – ES Simple Uploader
    62. * xfq5l5p4g3eyrct7.onion – Onion Image Uploader
    63. * 6eranjd7c4f5rncf.onion – Public timeline – twat
    64. * ms4kc75hlvnfcxgz.onion – blog.masked
    65. * ci3hn2uzjw2wby3z.onion – talk.masked
    66.     * k5oddprhqyfvhwh4.onion – K5 Odd Forums
    67.     * qm3monarchzifkwa.onion – anonymous bbs
    68.     * tzdp6xe2upfbh5qv.onion – ^/\ TextForest
    69.     * 7ymfzygewl4n6usp.onion – Index of /
    70.     * clsvtzwzdgzkjda7.onion – HackBB » Index page
    71.     * cx4vwijytopjvedi.onion – A website
    72.     * 3terbsb5mmmdyhse.onion – hashparty ~ password cracking
    73.     * voba3xuuqisvloqe.onion – FirstSale | Convert your e-books for use on another Kindle™
    74.     * 2c2na76zih6lxmeo.onion – Index of /
    75.     * nwycvryrozllb42g.onion – Destination Unknown
    76.     * w4dzvkf6hu5d5pha.onion – BookPusher’s eBook Collection
    77.     * p2uekn2yfvlvpzbu.onion – LiberaTor
    78.     * wxbsxbatlwtdhvvo.onion – The Occupied Potty
    79.     * s7nbvdbky4xqim7h.onion – Male animal genitalia gallery – Makloo’s Free online pictures
    82. - galleries of male horses, dogs, stallions, elephants, bulls, and other male animal …
    83.     * 3g2upl4pq6kufc4m.onion – DuckDuckGo
    84.     * if65je4uxyznpbjk.onion – Television Downloads And Flash Streaming
    86. @ TV-DUMP.ORG – 1 file downloads
    87. * kpynyvym6xqi7wz2.onion – main.paraZite.org # Anarchy files and Underground links
    88. * mlz3apezci5ya6k6.onion – Moralize.us
    89. * 2ddjd7xsni7pefcx.onion – PURE EUROPE
    90. * iwdmsbpxclyjhi4e.onion – The LG enV2
    91. * naot2jryja6iyrp5.onion – Neutering NOT Org
    92. * ybi5yfcdw6mxqlvn.onion – Welcome to Onion Desktop
    93. * ie4hf3qxzoazywoi.onion – Index of /
    94. * zqiirytam276uogb.onion – Thorlauta
    95. * ar3ubs6cg6an4ylt.onion – beaglesnoop
    97. Lots of articles on searching – applicable to the deep web
    98. http://nwycvryrozllb42g.onion/searchlores/news.htm
    100.     * j4ddjgxetfx2ybcx.onion – Geheimkanal – Anal Fatal
    101.     * xiwayy2kn32bo3ko.onion – ONION Channel
    102.     * n2qxamb4ujm53cas.onion – .:: Strona posÅ‚a na Sejm RP Krzysztofa Brejzy ::.
    103.     * nemlq3kd36frgvzp.onion – TorPortal – bo wolność to wolność.
    104.     * ont6bv4bg7rtgaos.onion – Polska ukryta strona w sieci Tor
    105.     * qubsrxat5qsaw5u5.onion – Polska Cebulka
    106.     * uaga3aoawaj6hohg.onion – Index of /
    107.     * xlmg6p4ueely7mhh.onion – TorKnight forum – Polskie forum wielotematyczne – Indeks
    108.     * ximqy45aat273ha5.onion – ?????-??????
    109.     * rusinfoik4z4rgi3.onion – РИР Ð ÑƒÑ ÑŒÐ˜Ð½Ñ„Ð¾ | Ð Ð¾Ð²Ð¾Ñ Ñ‚Ð¸ Ð ÑƒÑ Ñ ÐºÐ¾Ð³Ð¾
    111. Рарода
    112.     * y4bzva6k3l2l7rla.onion – Detská pornografia – je to len zámienka
    113.     * honeynetvg7i4lc6.onion – Welcome to HoneyNet
    114.     * dg6exbqq42btatnw.onion – GNUnet files sharing
    115.     * taswebqlseworuhc.onion – TasWeb
    116.     * xfq5l5p4g3eyrct7.onion – Onion Image Uploader
    117.     * pdjfyv7v3pn34w4f.onion – House of Anonymous
    118.     * pdjfyv7v3pn34w4f.onion – House of Anonymous
    119.     * dsyghxm2xtmffaxx.onion -
    120.     * qubsrxat5qsaw5u5.onion – Polska Cebulka
    121.     * i7hknwg4up2jhdkx.onion – ES Simple Uploader
    122.     * pibn3ueheubjxv2z.onion – U kocurka
    123.     * y4bzva6k3l2l7rla.onion – Detská pornografia – je to len zámienka
    124.     * ar3ubs6cg6an4ylt.onion – beaglesnoop
    125.     * x64n42mkjidmy2zr.onion – Boy Vids V1.1 – Index
    126.     * 5cez64xymwnci47y.onion – Capri
    127.     * 7taxwkbteb6raduz.onion – CPHunter : Home
    128.     * c7lt62zuq46uywrn.onion – Index of /
    129.     * waivt2ksvjukhsps.onion – Imageboard Gateway
    130.     * yl2wafirpac6rtqz.onion – KindzazaChan
    131.     * c7jh7jzl3taek4eh.onion – Onion II
    132.     * b4yrk2nkydqfpzqm.onion – OnionIB
    133.     * opva2pilsncvtwmh.onion – OnionPedo Video Archive
    134.     * ke56zgxebernbbpz.onion – Pedofilska strona MichaÅ‚a BraÅ„skiego
    135.     * 6x77gb7ngu6nymwl.onion – TorPedo 2.0 – Tor Pedo Gallery > 9KPix > 2GB
    136.     * kdq2y44aaas2aiu4.onion – Proxy error: 502 Couldn’t parse server status line.
    137.     * vs5hb2ybldb4gfja.onion – 3D Boys • Index page
    138.     * 7bm7p4ttba5tanme.onion – Login :: 7bm7p4ttba5tanme.onion
    139.     * x3zrcuuaa3oryn3h.onion – Welcome To Paradise Village
    140.     * 7ufb532zwap5gpyc.onion -
    141.     * w4b46jaqe3pgsvnf.onion – FreedomChan – Redirecting to Gallery..
    142.     * acdcoduomhlthume.onion – Index of /
    143.     * nk3amln4w62pepqt.onion -
    144.     * aiw2jgiqm5n2v77s.onion – KINDZAZA ::
    145.     * rtfl7xrmcsc4pdvk.onion -
    146.     * 5sdehmaqvrjho7xn.onion -
    148.     * 4fj7juxplvsxgocy.onion -
    149.     * l6nvqsqivhrunqvs.onion -
    150.     * ms4kc75hlvnfcxgz.onion – blog.masked
    151.     * qx7j2selmom4ioxf.onion – main.paraZite.org # Anarchy files and Underground links
    152.     * ci3hn2uzjw2wby3z.onion – talk.masked
    153.     * xqz3u5drneuzhaeo.onion – Freedom Hosting
    154.     * 5cez64xymwnci47y.onion – Capri
    155.     * 6p7rd57bd6ph3hlp.onion – KindzazaNew
    156.     * oivabkctz4ajdnwa.onion – Index of /
    157.     * oivabkctz4ajdnwa.onion – Index of /
    158.     * clsvtzwzdgzkjda7.onion – HackBB » Index page
    159.     * c7jh7jzl3taek4eh.onion – Onion II
    160.     * waivt2ksvjukhsps.onion – Imageboard Gateway
    161.     * 6x77gb7ngu6nymwl.onion – TorPedo 2.0 – Tor Pedo Gallery > 9KPix > 2GB
    162.     * b4yrk2nkydqfpzqm.onion – OnionIB
    163.     * yl2wafirpac6rtqz.onion – KindzazaChan
    164.     * x64n42mkjidmy2zr.onion – Boy Vids V1.1 – Index
    165.     * opva2pilsncvtwmh.onion – OnionPedo Video Archive
    166.     * 7taxwkbteb6raduz.onion – CPHunter : Home
    167.     * eqt5g4fuenphqinx.onion – Core.onion
    168.     * hkfjbmo2rdjun56b.onion -
    169.     * wuvdsbmbwyjzsgei.onion -
    170.     * juzocitzjuqpo2rx.onion -
    171.     * mlz3apezci5ya6k6.onion – Moralize.us
    172.     * 5pyq73pxm423mgzx.onion – potaoto – anonymous image hosting
    173.     * mf7ww4oo2ztz3xuv.onion – Browse Album :: TorGallery
    174.     * curatorqztgkvf34.onion – Curator – Sort, Search, Share.
    178. http://xqz3u5drneuzhaeo.onion/users/mister/
    180. http://xqz3u5drneuzhaeo.onion/users/library/ another Tor library
    181. http://xqz3u5drneuzhaeo.onion/users/dosbox2/
    182. http://g7pz322wcy6jnn4r.onion/opensource/polyfront/index.html
    183. http://am4wuhz3zifexz5u.onion/ tor library
    184. http://wuvdsbmbwyjzsgei.onion/DOWNLOAD/ music downloads
    185. http://xqz3u5drneuzhaeo.onion/users/iskanderarchiv/ free bibliotheca alexandrina
    187. Lolita:
    188. http://m3hjrfh4hlqc67gb.onion/search.php?sort=newest

     

Share on TwitterShare on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
Link to this post!
This entry was posted in Cyber Criminals, Cyber Dissident, Cyber Intelligence, Cyber Monitoring, Cyber Politics, Cyber Strategy, Cyber Study, Cyber Warfare, Deep Web, Gray Hats, Hackers, Hacktivist, human rights, Information Warefare, Internet -Player, Onion Web. Bookmark the permalink.

  • Is DDoS a Legitimate Civil Disobedience

    Posted on February 1, 2012 by gatomalo Comment

    gAtO’s -Digital Sit-insDistributed denial of service (DDOS) is a favorite tactic of Anonymous. While the media likes to call DDOS a form of ‘hacking’, this is at best a technical misunderstanding. DDOS does no permanent damage and doesn’t involve breaking into servers or stealing data. Rather, it simply overwhelms a server with UDP traffic – the online equivalent of fans at a football game yelling so loud that the offensive line can’t hear the quarterback. This XKCD comic explains it best:

    In the US, DDOS has been treated as a felony under the Computer Fraud and Abuse Act punishable by a mandatory 10 years in prison. Given its similarity to long-accepted civil disobdience tactics such as sit-ins and blocking building entrances, this harsh penalty is outrageous and unfair.

    Anonymous is not unanimous, and opinion on DDOS is perhaps more divided than any other tactic. Indeed, this very faction, in consultation with anti-ACTA NGOs, has been calling for a halt to DDOS for the last several days.

    But after this photo of Polish politicians protesting ACTA went viral yesterday, is it time we all re-evaluate the role & legitimacy of DDOS. These Parlimentarians were wearing Anonymous Guy Fawkes mask while the Parliament’s website was down due to DDOS by Anonymous. They can’t emphasize that point enough – this is a game-changer.

     

    DDOS has been a remarkably effective tactic for bringing the world’s attention to injustice, from repression in Tunisia and Egypt to censorship by SOPA and ACTA. A symbolically rich response, DDOS says “If you silence us, we will silence you”. In that respect, it works.

    But DDOS is a single tool in our arsenal of protest, not the only one. Hacktivist need to engage in the mainstream political process as well – and for many of us, deeply frustrated by decades of corruption and unresponsiveness, this will require holding our nose.

    As events in Poland have shown, protesters have allies in unexpected places. There comes a time when dissident must use words to articulate their demands and desires, instead of UDP packets. There are still many ways to protest- in the form of mass emails, fax blasts and overloaded telephone switchboards.

    Protesters everywhere therefore call on dissidents, talkers, Dem, Rep and all freedom loving Internauts to contact your politicians directly;  “No SOPA, No ACTA!

    Hands off the Internet! - YOU CAN’T HAVE IT BACK!

    Europe

    United States

    Global

    -gAtO oUt

    Share on TwitterShare on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
    Link to this post!
    This entry was posted in Anonymous, Cyber Civilian Militia -WH, Cyber Dissident, Cyber Politics, Cyber Strategy, Cyber Study, Cyber Tools, Cyber Warfare, Cyber Weapon, Gray Hats, Hacktivist, human rights, Occupy Wall Street. Bookmark the permalink.

  • Predictive Behavioral Security Analysis part 1:

    Posted on January 27, 2012 by gatomalo Comment

    Predictive Behavioral Security Analysis part 1:

    gAtO bEeN -watching a mouse hole called Twitter lately, it’s an OSINT Open Source Intelligence source that monitors real events in real time. OSINT – is a form of intelligence collection management that involves finding, selecting, and acquiring information from publicly available sources and analyzing it to produce actionable intelligence.

     

    cool dashboard – internet Storm Center - http://isc.sans.edu/dashboard.html

    gAtO bEeN -watching World Web War (WWW) hacktivismn has jumped started this new year, #OpMegaUpload upset lot’s of people and the organization structure of Anonymous is getting more refine. Things happened in #poland #ireland and during the middle of a DoS attack Anonymous told their warrior on twitter:

     

    http://trendsmap.com/

    @AnonyOps: #DDOS of European Parliament must stop NOW. They’re not the ones #ACTA

    Later they tweeted this:@AnonyOps: europarl.europa.eu back up after #DDOS. Thanks for listening to logic #Anonymous.go persuade the MEPs:

    http://www.msisac.org/apps/dashboard/

    Command and Control in your face and people responded to this organized movement. Each new attack everyone get’s better more coordination Anonymous is growing up. Just look at the causes #SOPA #PIPA  #ACTA #OpMegaUpload #poland #Ireland #SOPAIreland #France #Belgium  #FreeTopiary. The Anonymous thingy has grown up it’s a social conscious mindset created, manipulated, organic, ???? leaderless ????. The evolution of this movement has spawned OWS the Occupy Wall Street political movement has it’s roots in Anonymous, but you can see the worldwide community support for this group that is anyone. This movement will grow and mature.

    http://www.fsisac.com/

    Think about it.

    This Week gAtO Learned mUcHo-mUcHo, we have not only the technical means but now the social monitoring needs that can be used to gather information like no other time before. Of course our governments are getting in on the fun.

    Homeland Security DHS- Human Factors/Behavioral Sciences Projects:

    • Actionable Indicators and Countermeasures Project
    • Biometric Detector Project
    • Community Perceptions of Technology Panel Project
    • Community Resilience Project
    • Enhancing Public Response and Community Resilience Project
    • Future Attribute Screening Technology (FAST) Project
    • Hostile Intent Detection – Automated Prototype Project
    • Hostile Intent Detection – Validation of Observable Indicators of Suspicious Behavior Project
    • Human Systems Engineering Project
    • Human Systems Research Project
    • Insider Threat Detection Project
    • Mobile Biometrics System Project
    • Multi-modal Biometrics Project
    • Passive Methods for Precision Behavioral Screening Project
    • Predictive Screening Project
    • Quantitative Psychosocial Impacts Index Project
    • Rapid DNA Project
    • Risk Prediction Project
    • Violent-Intent Modeling and Simulation Project

    http://www.dhs.gov/files/programs/gc_1218480185439.shtm

    http://k.root-servers.org/

    And the CIA got into the fun[1] way before it was hip to monitor the web. We know the government has all kinds of databases of all kinds of things they collect remember echelon and carnivore the FBI first grab at data. Then we yell at the CHinese for doing the same thing we did, they learned from us about gathering information about people. Now cyberspace ties us in even tighter with SMS, streaming video, encrypted mobile chats for the masses. But as more is piled on more tools are developed. Recorded Future[2] was a little geek company sucking in the data and developing Analytical tools for Intelligence forecasting and the CIA loves them.

    Predictive Behavioral Security Analysis is just monitoring choice which is freedom for it is predictive and can then be manipulated to plant an idea, a spark, a tweet. “Egypt can be free” this little spark is setting the fuel for the flames that will burn in Cairo by it’s people via Twitter, Facebook and any other social media. The Arab Awakening -Arab Spring was an simple idea, manipulated in cyberspace by protester, dissidents and governments in Tunisia, Bahrain, Syria and others, we will see Iraq’s move in March of this years with it’s election, they are closing down their Internet but will the idea of freedom explode anyway. We will be monitoring this – gAtO OuT

     

    References:

    [1] CIA Invest in ‘Future’ of Web Monitorin http://www.wired.com/dangerroom/2010/07/exclusive-google-cia/

    [2] https://www.recordedfuture.com/

     

    Share on TwitterShare on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
    Link to this post!
    This entry was posted in Anonymous, AntiSec, Black Hats, Cyber Civilian Militia -WH, Cyber Discussion Threads, Cyber Dissident, Cyber Intelligence, Cyber Strategy, Cyber Study, Cyber Threats, human rights, Information Warefare, International Cyber Policy, Occupy Wall Street, SOPA. Bookmark the permalink.

  • Open Source Threat Intelligence

    Posted on January 24, 2012 by gatomalo Comment

    Open Source Threat Intelligence -Defense – Monitoring – Recon and Strike capabilities. OSINT- Tools for Cyber Investigation -

    gAtO sAy -In today’s world Threat Intelligence is always right at your finger tips. With Twitter and Facebook it’s a researchers dream come true. Before we start let’s become invisible on the web I would read -Anon Security -How to be Anonymous[1]. This is a guide written by the group Anonymous and frankly they do a great job of hiding. Just add your favorite and be safe and private. In the white hat world Anonymous is one of the bad guy’s but this growing movement will inspire the young and the lonely a place to be accepted. These crew(z) help you to help yourself, just read and educate yourself. If you want to be good at TI you have to learn from your advisories and friends.

    A simple TOR and Best Free VPN will give you basic protection so you can start your work.

     

    Get a Twitter account and ad TweetDeck to your tool kit and your world will open up to twitterSphere. Go to PasteBin.com and check the trends this will give you another view into the hacker world. I won’t cover the darkWeb. Now with a simple browser (Firefox recommended) and a translate button you can start.

     

     

    Take a look at http://trendsmap.com/ This is a real-time mapping of twitter. There are dozens of tools like this that will let you gather Intelligence on what’s out there. Add country by country and you can see trends come out at you real-time. Enter SOPA in trendsMap and you can see that SOPA is a U.S thing but it’s getting world wide attention. We are speaking about free real time information at the people level. There are many more tools like these that can take the growing social aspect of the technology, the way the new adapters of this technology are using it and gather some great intel.

    Example: During the Bradley Manning Trial because of the Anonymous Movement support for him the army was worried something would happened. With the capabilities that the new breed of hacktivism this is a reasonable threat.  The US Army hired Twitter Trend to monitor the Bradley chatter and were able to anticipate physical security depending on twitter-sphere chatter.

    Learn how to search!!!!!

    Look at google hacks[5] and see how the smart guy’s are using simple search commands and extracting tons of information. Read gAtO Cyber Security Tools[2] I found some really good tools to help any cyber investigation or researcher.

     

    Google and other search engines are your best friends don’t forget to look at the wayBackMachine -http://www.archive.org if it was online since 1996 then they have that site mirrored. But wait let’s back up before we start down the road to discovery let’s look at what other successful folks have done to learn how to do it.

    In order to have a starting point I took a look at what LulzSec was doing and then reverse-engineer them, this would give me the basic model for what the attackers are looking for.

    This is the basic LulzSec 50 days of mayhem this bunch were(are?) the OCG (Original Cyber Gangster). If you look at there escapades you could reverse engineer it and build a basic model[7]. This is what gAtO came up with.

    LulzSec Team 

    Sabu - Captain of the Ship, organizing the team and planning strategies.

    Topiary - Basically PR, updating Twitter and interviews with media.

    Kayla - Mostly focused on RFI / LFI / SQLi and coordinating with the rest.

    Tflow - Maintenance of LulzSec website and torrents.

    Storm  - DDOS and also involved in PBS hack.

    Pwnsauce - Coding required tools for the team and involved in Infragard hack.

    Neuron - Coding and also involved in Sownage.

    M_nerva - Deus Ex Game hack.

    TrollPoll - Involved in Fox hack and seems to be the most paranoid of all.

    JoePie - Updating the team with news related to LulzSec and other channels of interest.

    Avunit - Seems focused on XSS and SQLi

    Kl0ps, io, Palladium and Devrandom - Hackers supporting the team

    Bitcoin Donations handled by Tflow, Topiary and Joepie

    Team Strength - 13 or 15. It could be possible that some handles are used by same person.

    Who are these Hacker?

    gAtOmAlO sAy's

     

    For law enforcement and Intelligence operators learn how “they” do it, look at how they adapt and develop new way of communication -right in front of our face, these groups are becoming the model of how to get things done online, we have terrorist organizations[8] looking at this model and adapting it to their needs. There are so many more resources out there for any researcher you just have to think like what your looking for and the resources are somewhere in cyberspace. The U.S is already [9]monitoring it own people why can’t you… -gAtO oUt 

    References:

    [1] http://uscyberlabs.com/blog/2012/01/22/anon-security-how-anonymous/

    [2] http://uscyberlabs.com/blog/2012/01/11/cyber-security-tools/

    [3] Underground Cyber War-TangoDown  OpMegaupload  – http://uscyberlabs.com/blog/?p=1771

    [4]

    [5] http://geekology.co.za/article/2009/02/how-to-use-advanced-google-search-hacks-and-tricks

    [6] #TangoDown #OpMegaUpload Cyber War #anonymous  vs FiB  – http://uscyberlabs.com/blog/?p=1771

    [7] Hacker Cyber crewz Diagram http://uscyberlabs.com/blog/2011/07/13/hacker-cyber-crew-crewz-diagram/

    [8] Timeline Middle East Hacker CyberWar ?0xomar – Hannibal http://uscyberlabs.com/blog/2012/01/19/timeline-middle-east-hacker-cyberwar-0xomar-hannibal/

    [9] U.S Monitors Social Media – http://uscyberlabs.com/blog/2012/01/19/timeline-middle-east-hacker-cyberwar-0xomar-hannibal/

    Real Time Web Monitoring – Traffic – Attacks – Latency – http://www.akamai.com/html/technology/dataviz1.html

    Visualizing Akamai – http://www.akamai.com/html/technology/dataviz3.html

    Akamai -Visualizing the Internet -http://www.akamai.com/html/technology/visualizing_akamai.html

     

    Share on TwitterShare on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
    Link to this post!
    This entry was posted in Cyber Intelligence, Cyber Notebook, Cyber Strategy, Cyber Study, Cyber Threats, Cyber Tools, Diagram -, Hackers, Notes to Myself. Bookmark the permalink.

  • Underground Cyber War-TangoDown OpMegaupload

    Posted on January 23, 2012 by gatomalo 1 Comment

    gAtO wItNeSs – LIVE International Underground Cyber War via  Twitter this weekend. #Anonymous #Megaupload #OpMegaupload #TangoDown …

    If you haven’t heard, police in New Zealand raided MegaUpload.com took down the site and confiscated the servers and all the materials, copyrighted or original content. Remember SOPA protest last week this raid was a SOPA raid by the New Zealand government. They used (Low Orbit Ion Canon) and other tools plus  Twitter (Twitter follower could click on a link and that would launch a dDoS attack -live crowd-source enabled TangoDown attack.

    http://pastebin.com/WEydcBVV

    1. Twitter – @AnonymousWiki - January 19th, 2012
    3. Popular file-sharing website megaupload.com gets shutdown by U.S Justice – FBI and charged its founder with violating piracy laws. Four Megaupload members were also arrested. The FBI released a press release on its website which you can view here:

      German Internet millionaire Kim Schmitz (Kim Dotcom) arrives for. a trial at a district court in Munich in these May 27, 2002 file photos. New Zealand police broke through electronic locks and cut their way into a mansion safe room to arrest the alleged kingpin of an international Internet copyright theft case and seize millions of dollars worth of cars, artwork and other goods. German national Schmitz, also known as Kim Dotcom, was one of four men arrested in Auckland on January 20, 2012, in an investigation of the Megaupload.com website led by the U.S. Federal Bureau of Investigation. Reuters

    4. http://www.fbi.gov/news/pressrel/press-releases/justice-department-charges-leaders-of-megaupload-with-widespread-online-copyright-infringement
    5. We Anonymous are launching our largest attack ever on government and music industry sites. Lulz. The FBI didn’t think they would get away with this did they? They should have expected us.

    Anonymous Twitter feeds kept everyone informed, supporters retweeted it,  joined in the attack  and soon you could see the traffic increase 100% over the course of the event. The attack vector was dDoS but they manage to delete sites like cbs.com down to the bone. Another defiance stance from Anonymous and their crew(z) this weekend showing who has bad security. This is a way for Anonymous to be job creators (mEoW), because these companies need more security people fast…  

    **- Will these companies try and hide these attacks? Will these organization disclose if any identifiable USER INFO was compromised? – Will we see unencrypted USER INFO (credit cards -mastercard.com was tango down)in the wild of cyberspace? -**

    When gAtO saw Justice.gov and http://justinbieberweb.com/ got TangoDown gAtO kNeW they meant business. When the .gov took a hit you saw thing start to happened…like Anonymous.action-24.com is a fake forum created by the authorities (FBI).

    “A security expert (name withheld -Tweeted)” *** Is the (fully unsecure) #AnonGroup social network really run by #AnonOps / #Antisec ?

    gAtO sEe- conspiracy theory (FBI vs Anonymous) all around this, but if this was true, or maybe a plant to throw distress amongst the Anons or to capture participants IP address. \I see some links to news Items pop up in pasterBin all the time to a blank post, one way of seeing who is following the #OpMegaupload / I still haven’t found out but I’m sure people are looking into this. Trust in the crowd-sourcing communication and tracking tools coordinating attacks and status is something any dissident groups is concern about, but that the FBI and other’s took notice of these attacks thats for sure Dude:

    GOV TANGO DOWN! #Megaupload. » anonops AnonOps. “The Internet Strikes Back” is TT! » anonops AnonOps. The Internet Strikes Back #Megaupload info

    At the end of the day we see the power of the people in cyber space, a world wide movement like the SOPA, OWS support. Most people don’t have a clue what’s been happening in the underground cyber war to keep it FREE.  |gAtO is no judge as to the protesters wether it’s right or wrong first #SOPA blackout then this massive attack on some major companies -movers and skaters bAbY. I just want these companies to come clean and do the responsible thing, full Disclosure  what happened. Protect my data or else I will not do business with you. Hacktivismn has taken a new turn and people want to belong, they want to be empowered, some are hipsters but the majority are real protesters, the new breed of (hacktivist ) that comes after this one will blow our minds.

     **- 5:17 P.M. Update: RIAA.org is now down.

    5:55 Update 3: Tweets indicate there may be more attacks to come this evening.

    5:55 Update 3: Tweets indicate there may be more attacks to come this evening.

    7:47 Update 4: Anonymous is reporting FBI.gov as down. Some people report being able to get through, but the site is clearly under a lot of stress.

    8:19 Update 5: Now it’s definitely down. FBI.gov, that is. MPAA and RIAA sites are back now though

    - **

     A masked hacker, part of the Anonymous group, hacks the French presidential Elysee Palace website on January 20, 2012 near the eastern city of Lyon. Anonymous, which briefly knocked the FBI and Justice Department websites offline in retaliation for the US shutdown of file-sharing site Megaupload, is a shadowy group of international hackers with no central hierarchy. On the left screen, an Occupy mask is seen. Getty

    Expect Us! is their motto, we better be prepared - gAtO oUt

    Until this mess is clear , I hope you saved copies and can upload them to alternative sites like megaupload.com like Putlocker.comFilebox.com or Depositfiles.com or one of the many other cyberlockers available so that people can continue to enjoy them while Megaupload is not working. 

    References:

    Universal, RIAA, FBI, MPAA and Department of Justice Sites Go Down, Anonymous Claims Responsibility -http://www.geekosystem.com/anon-justice-universal/

    Anonymous deletes CBS: Operation Megaupload continues -http://www.examiner.com/anonymous-in-national/anonymous-deletes-cbs-operation-megaupload-continues?@anonymouspress

    If Megaupload is not working what happens to the files? http://www.examiner.com/video-game-in-honolulu/if-megaupload-is-not-working-what-happens-to-the-files?@anonymouspress

    Anonymous tricked people into joining Web site attacks - http://news.cnet.com/8301-27080_3-57363103-245/anonymous-tricked-people-into-joining-web-site-attacks/

    MegaUpload Photo’s of the Bust  - http://cryptome.org/2012-info/megaupload/0051.htm

    TangoDown 4 opMegaUpload -List

    CBS.com

    http://warnerbros.com

    http://www.vivendi.com/

    mastercard.com

    fightprivacy.com

    universalmusic.com

    http://paidcontent.co.uk/

    http://store.warnerbrosshop.com/

    wando.com.br

    Justice.gov

    http://justinbieberweb.com/

    http://www.europarl.europa.eu/

    http://ms.gov.pl/ Poland

    http://universalmusic.es/

    http://www.brasilia.df.gov.br/

    http://www.fbi.gov/

    Department of Justice http://www.justice.gov/

    http://www.riaa.com/

    http://www.universalmusic.com/

    http://www.wmg.com/

    http://www.BMI.com/

    http://www.mpaa.org/

    Motion Picture Association of America (MPAA.org) Universal Music (UniversalMusic.com) Belgian Anti-Piracy Federation (Anti-piracy.be/nl/) Recording Industry Association of America (RIAA.org) Federal Bureau of Investigation (FBI.gov) HADOPI law site (HADOPI.fr) U.S. Copyright Office (Copyright.gov) Universal Music France (UniversalMusic.fr) Senator Christopher Dodd (ChrisDodd.com) Vivendi France (Vivendi.fr) The White House (Whitehouse.gov) BMI (BMI.com) Warner Music Group (WMG.com)

    Brazil - MEGA TANGO DOWN

    http://pastebin.com/H4NpqCDC -

    Invadimos denovo : http://imgur.com/6bmFe. Havittaja – @Havittaja – www.twitter.com/Havittaja -The evilc0de – @theevilc0de – www.twitter.com/theevilc0de -Todos os servidores foram desligados -MEGA TANGO DOWN -(TODOS DEVEM ESTAR OFFLINE AGORA 22/01/2012 19:47)

    ?antigo.se.df.gov.br (OFFLINE)

    ?brasiliasustentavel.seduma.df.gov.br (OFFLINE)

    ?www.admjardimbotanico.df.gov.br (OFFLINE)

    ?www.agecom.df.gov.br (OFFLINE)

    ?www.agenciabrasilia.df.gov.br (OFFLINE)

    ?www.aguasclaras.df.gov.br (OFFLINE)

    ?www.arpdf.df.gov.br (OFFLINE)

    ?www.bandeirante.df.gov.br (OFFLINE)

    www.brasilia.df.gov.br (OFFLINE)

    www.brasiliatur.df.gov.br (OFFLINE)

    www.brazlandia.df.gov.br (OFFLINE)

    www.candangolandia.df.gov.br (OFFLINE)

    www.capitaldigital.df.gov.br (OFFLINE)

    www.carnaval.df.gov.br (OFFLINE)

    www.cbhparanaiba.seduma.df.gov.br (OFFLINE)

    www.ceasa.df.gov.br (OFFLINE)

    www.ceilandia.df.gov.br (OFFLINE)

    www.cepceilandia.df.gov.br (OFFLINE)

    www.codeplan.df.gov.br (OFFLINE)

    www.codhab.df.gov.br (OFFLINE)

    www.coorsep.seg.df.gov.br (OFFLINE)

    www.cruzeiro.df.gov.br (OFFLINE)

    www.defensoria.df.gov.br (OFFLINE)

    www.defesacivil.df.gov.br (OFFLINE)

    www.der.df.gov.br (OFFLINE)

    www.detran.df.gov.br (OFFLINE)

    www.df.gov.br (OFFLINE)

    www.dfdigital.df.gov.br (OFFLINE)

    www.distritofederal.df.gov.br (OFFLINE)

    www.educacaointegral.df.gov.br (OFFLINE)

    www.emater.df.gov.br (OFFLINE)

    www.escoladegoverno.seplag.df.gov.br (OFFLINE)

    www.esporte.df.gov.br (OFFLINE)

    www.etc.se.df.gov.br (OFFLINE)

    www.etc.sect.df.gov.br (OFFLINE)

    www.fap.df.gov.br (OFFLINE)

    www.fhb.df.gov.br (OFFLINE)

    www.gama.df.gov.br (OFFLINE)

    www.gdf.df.gov.br (OFFLINE)

    www.gdfdireto.df.gov.br (OFFLINE)

    www.governo.df.gov.br (OFFLINE)

    www.guara.df.gov.br (OFFLINE)

    www.hbdf50anos.df.gov.br (OFFLINE)

    www.ibram.df.gov.br (OFFLINE)

    www.inas.df.gov.br (OFFLINE)

    www.iprev.df.gov.br (OFFLINE)

    www.itapoa.df.gov.br (OFFLINE)

    www.jardimbotanico.df.gov.br (OFFLINE)

    www.juventude.df.gov.br (OFFLINE)

    www.lagonorte.df.gov.br (OFFLINE)

    www.lagosul.df.gov.br (OFFLINE)

    www.matricula.df.gov.br (OFFLINE)

    www.metro.df.gov.br (OFFLINE)

    www.nahora.df.gov.br (OFFLINE)

    www.novacap.df.gov.br (OFFLINE)

    www.orgaos.df.gov.br (OFFLINE)

    www.ouvidoriageral.df.gov.br (OFFLINE)

    www.paranoa.df.gov.br (OFFLINE)

    www.parceirosdaescola.df.gov.br (OFFLINE)

    www.parkway.df.gov.br (OFFLINE)

    www.pedala.df.gov.br (OFFLINE)

    www.pg.df.gov.br (OFFLINE)

    www.planaltina.df.gov.br (OFFLINE)

    www.prg.df.gov.br (OFFLINE)

    www.procon.df.gov.br (OFFLINE)

    www.protec.df.gov.br (OFFLINE)

    www.recanto.df.gov.br (OFFLINE)

    www.revista.seduma.df.gov.br (OFFLINE)

    www.riachofundo.df.gov.br (OFFLINE)

    www.riachofundoii.df.gov.br (OFFLINE)

    www.sa.df.gov.br (OFFLINE)

    www.samambaia.df.gov.br (OFFLINE)

    www.santamaria.df.gov.br (OFFLINE)

    www.saosebastiao.df.gov.br (OFFLINE)

    www.saude.df.gov.br (OFFLINE)

    www.scia.df.gov.br (OFFLINE)

    www.scs.df.gov.br (OFFLINE)

    www.sde.df.gov.br (OFFLINE)

    www.sdet.df.gov.br (OFFLINE)

    www.se.df.gov.br (OFFLINE)

    www.seade.df.gov.br (OFFLINE)

    www.seapa.df.gov.br (OFFLINE)

    www.sect.df.gov.br (OFFLINE)

    www.sedest.df.gov.br (OFFLINE)

    www.seduma.df.gov.br (OFFLINE)

    www.sehab.df.gov.br (OFFLINE)

    www.sejus.df.gov.br (OFFLINE)

    www.semarh.df.gov.br (OFFLINE)

    www.seops.df.gov.br (OFFLINE)

    www.seplag.df.gov.br (OFFLINE)

    www.setur.df.gov.br (OFFLINE)

    www.sga.df.gov.br (OFFLINE)

    www.sia.df.gov.br (OFFLINE)

    www.slu.df.gov.br (OFFLINE)

    www.so.df.gov.br (OFFLINE)

    www.sobradinho.df.gov.br (OFFLINE)

    www.sobradinhoii.df.gov.br (OFFLINE)

    www.ssp.df.gov.br (OFFLINE)

    www.st.df.gov.br (OFFLINE)

    www.sudoeste.df.gov.br (OFFLINE)

    www.taguatinga.df.gov.br (OFFLINE)

    www.tcb.df.gov.br (OFFLINE)

    www.varjao.df.gov.br (OFFLINE)

    www.vice.df.gov.br (OFFLINE)

    www.visitbrasilia.df.gov.br (OFFLINE)

    www.vlt.df.gov.br (OFFLINE)

    Share on TwitterShare on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
    Link to this post!
    This entry was posted in Anonymous, Anonymous Hackers, AntiSec, Black Hats, Cyber Civilian Militia -WH, Cyber Dissident, Cyber Reputation, Cyber Strategy, Cyber Threats, Cyber Warfare, Hackers, Hacks, Hacktivist, Information Warefare, Political, SOPA. Bookmark the permalink.

  • Iran China Cyber BFF

    Posted on January 21, 2012 by gatomalo Comment

    GaTo tHiNk -that we are naïve not to see the new cyber BFF relationship between these two countries.    Iran feigns that relations between the two countries are “cordial”, but it’s complicated. Iran has spent billions of dollars in it new digital infrastructure and China’s Huawei corporation is taking a big chunk of the cyber dollars as we seen with the US investigations into the company.

    Iran-Cyber-Guard Network

    Last year China was accused of a number of cyber attacks of espionage and Intelligence gathering and now they are transferring that hacking knowledge to the Iranians. The “Iranian Cyber Army” had hacked a few popular social networking site and claimed their dominance in the cyber world but this was mainly a few Iranians militants now with the purchase of the new equipment the real Iranian Cyber Army is getting it’s feet wet. Iran was accused of hacking in Voice of America Farsi website, Twitter as well as Baidu, Dutch government-funded Radio Zamaneh, which also broadcasts in Farsi. My only question is did they go after China’s Baidu.

    **”- With the United States and Israel as the developers of Stuxnet the first cyber weapon to be deployed gAtO can see why the Iranians are worried **”-

    The biggest hacking by the Iranian CYber Army to -gAtO was Comodo Group. This was the Dutch certificate authority that the hacker created 9 major fraudulent certificates sites for companies like Google, Yahoo, Microsoft, Skypes and Mozilla. The names say it all these were speculated to be used by the Iranians to monitor it’s own people.

    **”- seizing entry to such high-traffic consumer sites looks like a government attempting surveillance of Internet use by dissident groups.**”-

    gAtO found out that Chinese agents who began work for the Iranian regime in early 2011, are providing Tehran with significant intelligence information. The Iranian officers who were assigned to contact the Chinese agents are using aliases and claim to be businessmen from other countries. China, which imports 11 percent of its oil from Iran thinks it OK for a little spying (between BFF’s) going as long as they can do the same with Iranians agent recruitment by China.

    With the re-election of President Mahmoud Ahmadinejad in March 2, 2012 The Iranian cyber polices will certainly be on the lookout for the protesters that are guarantee to protest empowered by the Arab Spring last year. China will do it’s best to keep the U.N sanctions as open as possible during this time-frame, for Iran as long as trade and their mutual enemies keep hammering them in cyberspace. The enemy of my enemy is my friend.

    Last year a PBS and Frontline published the activities of Iran’s Cyber Army have attracted growing notice in the Iranian and international media. The suspicion that the Cyber Army’s constituent hacker groups are connected to the Iranian government was strengthened when, after several sites were hacked, they issued warnings to the Green Movement. The scope of the measures taken by the Cyber Army discredits the theory that a group of Ahmandinejad’s admirers spontaneously carried out such acts. The nature of their communications and of the sites targeted for attack indicate that there are hidden hands (China mAyBe)  that support the Cyber Army.

    Let’s hope this BFF relations comes to an end soon. - gAtO oUt

    References:

    http://www.rawstory.com/rs/2011/03/14/iran-cyber-army-target-enemy-sites/

    PBS – Frontline – Pulling the Strings of the Net: Iran’s Cyber Army

    http://www.pbs.org/wgbh/pages/frontline/tehranbureau/2010/02/pulling-the-strings-of-the-net-irans-cyber-army.html#ixzz1k7Zsumlg

    Iran Cyber-Army Strikes Digital Certificate Authority COMODO

    http://www.readwriteweb.com/archives/iran_cyber_army_strikes_digital_certificate_author.php

    Irans President Official web site hacked

    http://countermeasures.trendmicro.eu/iranian-president-ahmadinejad-official-web-site-compromised/

    Cyber recruiting: The Shifting Digital Sands of Online Jihad

    http://cyberwarzone.com/cyberwarfare/cyber-recruiting-shifting-digital-sands-online-jihad

    Share on TwitterShare on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
    Link to this post!
    This entry was posted in China, china espionage, China Huawei, Chinese Goverment, Cyber Strategy, Huawei -China telecom, Iran, Iran Cyber Army. Bookmark the permalink.

  • Compliance Security Balancing Act

    Posted on January 9, 2012 by gatomalo Comment

    gAtO sAy – as we seen with just script kiddies (anonymous and such) causing serious data breach in corporate world, the c-suite is finally waking up to the fact that lack of cyber security can ruin your company instantly. Look at the current Stratfor hack and release of customer credit cards and let’s not forget the donations that the hackers made.

    If this was a criminal organization do you know how many billions of dollars they could of charged their customers without them knowing anything. Stratfor found out about the hack from the Twitter-sphere. “If data loss continues on this current trend, it will cost the U.S economy alone $290 billion by 2018” said  cyber security expert Kevin West announced in a recent Forbes guest column.

    This equates to 1.6 percent of GDP. mUcHo $$$

    That’s only the hard side of the coin if you look at the IP (intellectual property) that is being lost by U.S organization this alone will make every company less valuable every year until the diminishing returns forces the collapse of the US economy or pulls us out of the world markets altogether.

    Compliance will make our company safe from hackers -wRoNg

    Business is business and unless your saving money or a revenue stream, management will vote down doing the right thing, even legislative doesn’t help, look at HIPPA with over 200 security points if you do a risk assessment you can get away with doing the minimum and still be regulatory compliant.

    u gOt hAcKeT - pLaY mE a sOnG

    However, a number of organizations are learning that data security and data compliance may not be complementary, but competing priorities. Simply assuming that achieving data compliance equates to optimal cyber security could be a misguided philosophy and leave you open for an attack.

    According to PCWorld, complex and conflicting compliance mandates may be jeopardizing overall data protection efforts. Several of the most notable victims of data breaches in 2011 actually had consistently successful audit records. As a result, the new era of data protection may call for distinct compliance and cyber security strategies -gAtO oUt

    Read More ..> http://www.proformative.com/news/1467254/balancing-data-security-compliance

    Share on TwitterShare on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
    Link to this post!
    This entry was posted in Cyber Compliance, Cyber Criminals, Cyber Policies, Cyber Reputation, Cyber Revenue, Cyber Strategy. Bookmark the permalink.

  • How Can Iran Censor Cyberspace

    Posted on January 6, 2012 by gatomalo 1 Comment

    How does Iran censor cyberspace? -iranian cyber army

    gAtO tHiNk the same software that we might use to prevent our children from looking at porn on the Internet is basically the same software that is “sold to regimes everywhere”, but instead of entering pornography-related terms, you put in terms like student union, protest or democratization. or Deep Packet Inspection which I’ll explain later.

    ** Some of the best commercial grade censorship software sold “to regimes everywhere” comes from Nokia-Siemens and out of Silicon Valley **

    The gathering of information as well as covert action against computer networks that occurred in Iran in 2011 can be expected to continue and grow during 2012. Iranian counter-action in the form of a stepped-up cyber and sabotage campaign of their own citizens and against American installations in the Gulf will continue

    ** Control over the flow of information is a key issue for Iran — home to most Internet users in the Middle East with more than 36 million people of the 75 million populace. **

    June 2009 Was the first time Iran Internet was turned off – Following the controversial re-election of President Mahmoud Ahmadinejad in June 2009, the country was cut off for about 24 hours.

    Iran-Cyber-Guard Network

    The Iranian government asked the three (3) largest Internet service providers to shut down, the problem was they didn’t bother with the smaller ones and a few activists with satellite phoneswere ready and connections to Internet service were providers thru friend and activist in Europe, Dubai or Cyprus.

    The technical underground is available to the younger people and they are spreading the word, the pictures, the videos and news from the world that they matter, their voices are being heard. gAtO tHiNk that is the best example of “power to the people” in cyberspace.

    ** What the west has yet to learn is, there are not many Muslim countries which have a population as networked as that of Iran. :—: The good news is that the more Iran uses cyberspace the more vulnerable they will become **

    Instead of using landlines, some Iranian bloggers have taken to using satellite dishes to access the Internet, but they are increasingly being destroyed by special police units. Some of the problems that the Iranian government is facing is that Universities often have their own distinct connections to one another Universities. Major trading houses or major financial centers also sometimes have backup connections.

    ** Ali Hakim Javadi, Iran’s deputy minister for communications and information technology **

    If Iran shuts down the Internet, the price wouldn’t just be political (€€€-$$$). Were Iran to disconnect its oil industries from global information flows, the impact on those industries’ ability to deliver what little they can sell would be enormous. When Hosni Mubarak shut off the Internet in Egypt during the protests there, the impact was disastrous. The five days offline cost the Egyptian economy an estimated €250 million.

    Another problem for Iran is other countries are helping the dissidents hide in cyberspace, the US is working on developing the ability to send digital packets that are invisible and are only interpretable for other machines that you set up on the network that know what to look for. It’s called a dark Web infrastructure.

    ** Tor Project is another source that enables anyone to be anonymous in cyberspace and gain access to otherwise blocked sites **

    One way that Iran may be able to control cyberspace in Iran is Deep Packet Inspection (DPI) (also called complete packet inspection and Information eXtraction – IX -). The idea is to slow down the Internet traffic so much that you can use a program to inspect each piece of information that comes and goes.

    President Ahmadinejad has indicated he wants to provide an alternative, a so-called intranet (internal network Iranians only) which will allow Iranians to communicate among themselves, as the song said recording “every word you said”. China has the best example of a national network that is relatively disconnected from the rest of the global information infrastructure. The Chinese have built software that basically mimics anything we develop in the West and embed surveillance algorithms deeply into them. But I’d be very surprised if the Iranians were able to launch all of this.

    ** It’s a lot easier to say “you have a cyber army and have defenses to do battle in cyberspace” and let them prove other wise. We are talking about diplomatic bull-shit -mEoW -mEoW gOsE gAtO**

    Proxy servers are one of the things that activists have put to work for themselves. So when the state tries to shut down the Internet or when you learn that an authoritarian regime is watching particular sites or trying to disable YouTube or Twitter, proxy servers are very helpful as ways of getting around some of those barriers. They open doors where other doors have been shut.  Gaming consoles such as PlayStation or Xboxes can be turned into devices for sending out information without having to go through Internet exchange points. Learn from the young they know the technology and they will out live you anyway.

    As long are there are ways for freedom of speech to get out it’s OK “the world is watching you now”. gAtO oUt

    References:

    http://www.gatewaygulf.net/teleport.php

    http://en.wikipedia.org/wiki/List_of_Internet_exchange_points

    http://www.payvand.com/news/11/dec/1273.html

    http://en.wikipedia.org/wiki/Deep_packet_inspection

     

     

    Share on TwitterShare on TumblrSubmit to StumbleUponSave on DeliciousDigg ThisSubmit to reddit
    Link to this post!
    This entry was posted in Cyber Dissident, Cyber Intelligence, Cyber Notebook, Cyber Policies, Cyber Politics, Cyber Strategy, Cyber Study, Cyber Tools, Cyber Warfare, cyber-spies, human rights, Infrastructure, Iran. Bookmark the permalink.


    • gAtO had -15097 Unique visitors since June 2011
    BitCoin Donations # -1A9nBLgdhf4NJadXiBppqqU96AhbMBQrgV

  • @gAtOmAlO2

  • London

  •  

    February 2012
    M T W T F S S
    « Jan    
     12345
    6789101112
    13141516171819
    20212223242526
    272829  

  • gAtO Cloud

    Anonymous Anonymous Hackers Black Hats Cell Phone China Attacks china cyber china espionage China Hack China security China Weakness Chinese Goverment cyber-spies cyber-thieves Cyber Blue Team Cyber Criminals Cyber Dissident Cyber Espionage Cyber Intelligence Cyber Notebook Cyber Policies Cyber Policy Cyber Politics Cyber Reputation Cyber Revenue Cyber Strategy Cyber Study Cyber Threats Cyber Tools Cyber USA Cyber War Cyber Warfare Cyber Weapon Goverment Hackers Hacks Hacktivist Huawei -China telecom human rights Information Warefare Infrastructure Internet -Player Middle East Notes to Myself US- D.Homeland Security White Hat

  • RSS China Cyber Warfare Log

    • China’s Iran-Oil Import Angst February 20, 2012
      Thus far, Beijing has found little wiggle room to resist the U.S.-E.U.-Saudi common vision that severe sanctions be used to shut down the bulk of Iran’s oil exports by June. The reality being revealed in this confrontation is that China has much less ability to maneuver independently in the global oil system—whether in the market […]
      gatoMalo
    • Iranian ships reach Syria, Assad allies show support February 20, 2012
      Russia, China and Iran showed support for Syrian President Bashar al-Assad on Monday, days before an international meeting likely to pile more pressure on him to step down in the face of an increasingly bloody uprising. Assad met a senior Russian politician in Damascus, who reiterated Moscow’s support for his self-styled reform programme and spoke […]
      gatoMalo
    • U.S. Not Afraid To Say It: China’s The Cyber Bad Guy : NPR February 18, 2012
      American officials have long complained about countries that systematically hack into U.S. computer networks to steal valuable data, but until recently they did not name names. In the last few months, that has changed. China is now officially one of the cyber bad guys and probably the worst. “We know, and there’s good evidence … […]
      gatoMalo
    • Joint Chiefs Chair: Chinese Hackers ‘Not Necessarily Hostile February 18, 2012
      This headline from CNN – “Joint Chiefs Chair: Chinese Hacking Not Necessarily a Hostile Act” – reads like it came from the Onion. But don’t jump into your bunker yet – the reasoning behind this apparently blissfully naive statement by General Martin Dempsey is at least slightly plausible: Gen. Martin Dempsey, the chairman of the […]
      gatoMalo
    • China’s Hacking Of U.S. Remains A Top Concern : NPR February 18, 2012
      U.S officials have long complained about countries that systematically hack into U.S. computer networks to steal valuable data, but until recently they did not name names. In the last few months, that has changed. China is now officially one of the cyber bad guys and probably the worst. “We know and there’s good evidence … […]
      gatoMalo
    • China Cyber Attack Threat February 17, 2012
      It is clear that cyber warfare will be part of any future conflict and we must become prepared for that type of combat here on the homeland front. Two recent NPR stories highlighted the continuing potential for cyber attacks.  One focused on the threat that China poses and the other story on what we should […]
      gatoMalo
    • Are Chinese Telecoms acting as the ears for the Sri Lankan government? February 17, 2012
      The title is inspired by the article Are Chinese Telecoms Acting as the Ears for Central Asian Authoritarians? published in Eurasianet.org, examining the probable role of Chinese telecoms firms, notably Huawei and ZTE, in espionage and surveillance. The article notes that both ZTE and Huawei have signed contracts worth tens of millions of US dollars with gov […]
      gatoMalo
    • Hacked: How China is stealing Americas business secrets February 17, 2012
      Sen. John Kerry is fed up with Chinas penchant for looting technology from U.S. businesses — up to $400 billion worth of data each year. When will it stop?POSTED ON FEBRUARY 16, 2012, AT 3:52 PMChinese gamers at an internet cafe: Sen. John Kerry D-Mass. says Chinese hackers are illegally stealing business secrets from American […]
      gatoMalo
    • Cyber-Spies Intercepted Sensitive Files, Emails From Nortel: Report – Security – News & Reviews – eWeek.com February 15, 2012
      Attackers breached Nortel and had free rein to spy on its internal network and communications from 2000 to 2009, according to an internal report. As usual, China is the prime suspect. Chinese hackers allegedly breached telecommunications company Nortel in 2000 and these cyber-spies gained access to reams of sensitive technical documents, as well as internal […]
      gatoMalo
    • McConnell, Chertoff and Lynn: Chinas Cyber Thievery Is National Policy—And Must Be Challenged – WSJ.com February 1, 2012
      By MIKE MCCONNELL, MICHAEL CHERTOFF AND WILLIAM LYNNOnly three months ago, we would have violated U.S. secrecy laws by sharing what we write here—even though, as a former director of national intelligence, secretary of homeland security, and deputy secretary of defense, we have long known it to be true. The Chinese government has a national […]
      gatoMalo

    • ©2012 US Cyber Labs - Blog Entries (RSS) and Comments (RSS)  Raindrops Theme  
    gAtO had -15097 visitors