Hey there, I hope you guy's an gal's are enjoying my blog so far, it's always nice to be able to reach out and touch a wider audience and give them a little visual stimulation for the old Grey matter.
So according to the wikipedia the Riddler is an expert hacker, well you've heard that right... Let me share a localized exploit for Linux Kernels 2.6.39 up to 3.0.1
Introducing Mempodipper, an exploit for CVE-2012-0056. /proc/pid/mem
is an interface for reading and writing, directly, process memory by
seeking around with the same addresses as the process’s virtual memory
space. In 2.6.39, the protections against unauthorized access to /proc/pid/mem were deemed sufficient, and so the prior #ifdef that prevented write support for writing to arbitrary process memory was removed.
But to read about it you have to visit the guy who originally discovered the exploits blog spot.
http://blog.zx2c4.com/749
Kudos to Jason for noticing this and writing a really cool local exploit which when executed locally on a machine causes it to dump the current user directly into the privileged root account.
If like the Riddler your using a Linux machine you might want to check your current kernel version and consider an upgrade to patch yourself against this with CVE-COMMIT CVE-2012-0056 Last revised 01/30/2012.
Riddle me this...
Saturday 25 February 2012
Friday 24 February 2012
David Mach's coat hanger crucifixion Die Harder has been installed in London England's Southwark Cathedral.
The Bishop of Southwark, the Rt Revd Christopher Chessun, said: "I am delighted that Southwark Cathedral has the opportunity to have this significant and challenging sculpture during Lent. It is a piece of art that evokes powerful responses and prompts important questions about the Christian faith.
The Bishop of Southwark, the Rt Revd Christopher Chessun, said: "I am delighted that Southwark Cathedral has the opportunity to have this significant and challenging sculpture during Lent. It is a piece of art that evokes powerful responses and prompts important questions about the Christian faith.
You know what Bishop, your absolutely right... I see this..
And all I immediately think about is...
HELLRAISER: "Do I look like someone who cares what God thinks"
Well, I can see no body is falling over themselves to solve the puzzle.. So here you go pea brains, let me solve it for you.. It's not like there where not enough clues.
"Give me your Kings let me squeeze them in my hands, Your puny princes, the so called leaders of your lands, I'll eat them whole before I'm done, The battle's fought and the game is won!" Is a line from the song Gimme the Prize by Queen on the Album "Its a kind of Magic!" also known as Kurgan's Theme.
So a close examination of the QRCode reveals it's an encrypted string but with what? If you thought Blowfish, your jumping too far ahead, try AES...
BYN9qTUBITAhITAhLSE5IUNuPLASHHxC51ZsyoKbEC11I5WXRD2k5ZR1RsTOEI8RLfTqUm2fINwm
TpYhMTIhWiExNjAh91l8LQa8EmKn
Decrypted with the word "Kurgan"
Which gives us the decrypted string:
http://dictionary.reference.com/browse/congratulation
Notice it says congratulation not congratulations.
And I did warn you about a Red Herring!
If you thought that was the answer you where only half way to the prize, now take another look at the QRCode bit of a bloated file size isn't it?
And whats with:
"All in mail, never clinking". What kind of Mail does not clink? The answer Chain Mail and now if your thinking "Fish" your on the right track... Chain & Fish. But notice it also specifically specifies a relevance to "new file"
So what happens if we save the QRCode and then decrypt the JPG with steghide set as 'Blowfish' with Cipher Block 'Chaining' telling it to parse the output to 'new file'
Ah we get the decrypted string that says:
"Blast you, you may have defeated me and solved my riddle this time, but I will return..."
I figured I would publish the answer as most of you would have probably never gotten half of it, well not in my life-time anyway...
"Give me your Kings let me squeeze them in my hands, Your puny princes, the so called leaders of your lands, I'll eat them whole before I'm done, The battle's fought and the game is won!" Is a line from the song Gimme the Prize by Queen on the Album "Its a kind of Magic!" also known as Kurgan's Theme.
So a close examination of the QRCode reveals it's an encrypted string but with what? If you thought Blowfish, your jumping too far ahead, try AES...
BYN9qTUBITAhITAhLSE5IUNuPLASHHxC51ZsyoKbEC11I5WXRD2k5ZR1RsTOEI8RLfTqUm2fINwm
TpYhMTIhWiExNjAh91l8LQa8EmKn
Decrypted with the word "Kurgan"
Which gives us the decrypted string:
http://dictionary.reference.com/browse/congratulation
Notice it says congratulation not congratulations.
And I did warn you about a Red Herring!
If you thought that was the answer you where only half way to the prize, now take another look at the QRCode bit of a bloated file size isn't it?
And whats with:
"All in mail, never clinking". What kind of Mail does not clink? The answer Chain Mail and now if your thinking "Fish" your on the right track... Chain & Fish. But notice it also specifically specifies a relevance to "new file"
So what happens if we save the QRCode and then decrypt the JPG with steghide set as 'Blowfish' with Cipher Block 'Chaining' telling it to parse the output to 'new file'
Ah we get the decrypted string that says:
"Blast you, you may have defeated me and solved my riddle this time, but I will return..."
I figured I would publish the answer as most of you would have probably never gotten half of it, well not in my life-time anyway...
Thursday 23 February 2012
INTJ - ah the Psychology Results are in...
Apparently according to my latest on-line psychology evaluation I am on par with the likes of Steven Hawking & Albert Einstein...
It's just a bit of a shame about the "Malignant narcissism with border line suppressed Schizophrenia & Homicidal rage."
"I'm on the Zoloft to keep from killing y'all." - Mike Tyson
Social psychologist Erich Fromm first coined the term malignant narcissism in 1964, describing it as a "severe mental sickness" representing "the quintessence of evil". However from my perspective to be what people consider 'insane' just requires a change of perspective, just like all you need for 'genius' is perspective. One common feature of mild mania is the result in an increased fluency and frequency of ideas that is highly conducive to creative achievement.
So genius and insanity do really go hand in hand after all...
A 1 in 4 % (percentile) well that can't be so bad, can it.
I always think of it as eye opening, when people of learned stature choose to vilify narcissism as the quintessence of evil, whilst they lavishly bestow justification in abundance on vigilantism.
In fact they Quantify it, the propaganda machine falls over itself to advertise it. Would anyone really care about any of it, if everyone simply chose to ignore it. A poignant and acute point of view that many of those who proclaim to be scholars would do well to heed.
Oh sedition how I love you, let me count the ways... Sedition complements treason and martial law while treason controls primarily the privileged opponents, martial law frightens commoners, the way that sedition frightens intellectuals.
When Anonymous declares acts of war against it's own government this is not an act of treason, but rather a direct act of Sedition leaving you to ponder and ask yourself the very real Question;
Who's in control here? The Puppet's or the Puppeteer?
When Anonymous first started it was clear it had people there at it's depths defining action's promoting and setting standards for policy but now it has progressed into an unstoppable uncontrollable seditious mass, known only amongst it's members as the "Hive".
As someone with an interest in current affairs I find myself following there actions closely along with everyone else as it leaves me with one of the best unique riddles, where do we go from here?
Should I do as they frequently suggest and Join there ranks.. Sorry no but like the great Gatsby the Riddler works solo and that my friends is narcissism...
Apparently according to my latest on-line psychology evaluation I am on par with the likes of Steven Hawking & Albert Einstein...
It's just a bit of a shame about the "Malignant narcissism with border line suppressed Schizophrenia & Homicidal rage."
"I'm on the Zoloft to keep from killing y'all." - Mike Tyson
Social psychologist Erich Fromm first coined the term malignant narcissism in 1964, describing it as a "severe mental sickness" representing "the quintessence of evil". However from my perspective to be what people consider 'insane' just requires a change of perspective, just like all you need for 'genius' is perspective. One common feature of mild mania is the result in an increased fluency and frequency of ideas that is highly conducive to creative achievement.
So genius and insanity do really go hand in hand after all...
A 1 in 4 % (percentile) well that can't be so bad, can it.
I always think of it as eye opening, when people of learned stature choose to vilify narcissism as the quintessence of evil, whilst they lavishly bestow justification in abundance on vigilantism.
In fact they Quantify it, the propaganda machine falls over itself to advertise it. Would anyone really care about any of it, if everyone simply chose to ignore it. A poignant and acute point of view that many of those who proclaim to be scholars would do well to heed.
Oh sedition how I love you, let me count the ways... Sedition complements treason and martial law while treason controls primarily the privileged opponents, martial law frightens commoners, the way that sedition frightens intellectuals.
When Anonymous declares acts of war against it's own government this is not an act of treason, but rather a direct act of Sedition leaving you to ponder and ask yourself the very real Question;
Who's in control here? The Puppet's or the Puppeteer?
When Anonymous first started it was clear it had people there at it's depths defining action's promoting and setting standards for policy but now it has progressed into an unstoppable uncontrollable seditious mass, known only amongst it's members as the "Hive".
As someone with an interest in current affairs I find myself following there actions closely along with everyone else as it leaves me with one of the best unique riddles, where do we go from here?
Should I do as they frequently suggest and Join there ranks.. Sorry no but like the great Gatsby the Riddler works solo and that my friends is narcissism...
Give me your Kings let me squeeze them in my hands, Your puny princes, the so called leaders of your lands, I'll eat them whole before I'm done, The battle's fought and the game is won! Are you ready for some more? Explore! Find my challenges and when you fail to solve them and lie blubbering like an ignorant child on the floor, you will know that I... The Riddler... am better than you.
Let me help your 2 dimensional brain. alive without breath, as cold as death; never thirsty, ever drinking, all in mail, never clinking. What am I and why am I of relevance to the new file above?
Be careful now, some part's of my puzzles are a Red Herring...
But thats far more than enough neuro-cortex stimulation for the likes of you.
Be careful now, some part's of my puzzles are a Red Herring...
But thats far more than enough neuro-cortex stimulation for the likes of you.
Wednesday 22 February 2012
Also in the where are they now category...
Jessi Slaughter (real name Jessica Leonhardt and formerly known as KerliGirl13 on YouTube) is a Florida teenager whose attention-seeking behaviors in her YouTube videos caused her to become the target of internet trolls and here is what basically happened...
Yes, she broke down and cried at her tormentors fueling their desire to make her life even more miserable...
Since then the internet has heard some fantastic things about and from Ms Slaughter, according to Jessi’s mom, Dianne Leonheardt, in addition to the prank calls placed after her phone number was spread on the internet by anonymous, the family began receiving death threats and pizza.
Since that day Jessica has made a new video with a very public apology for some of the outrageous lies she told over the internet like being raped by a lead singer of a rock band. (yes, folks your hearing it right, couldn't make this stuff up!)
Hold on, lets watch that again... no wait watch it again, did you hear and see that? She did not call herself Jessica Leonhardt just then did she... No, she called herself Jessica Rose... An wait up a minute what is that my keen cold and calculating mind spies, "you can resist me!" We would all love to do that, perhaps we could if you stopped making viral video's filled with lies.
Notice that in this video, Jessica claims to no longer be using the Internet, she also makes the wild claims that she is receiving counciling for her terrible ordeal at the hands of the Internet and that she no longer uses the Internet at all.
Ah-har... Stupid.. really stupid...
It would appear those shirts are on Sale on this web-site
A short and sharp search of the user profiles on that web-site for one Jessica Rose, reveals... Oh yes, here you are...
So off the Internet are we? Or spilling a load of lies again & again, sigh hopeless teen tween... Voiceless it cries, wingless flutters, toothless bites, mouth-less mutters.
Jessi Slaughter (real name Jessica Leonhardt and formerly known as KerliGirl13 on YouTube) is a Florida teenager whose attention-seeking behaviors in her YouTube videos caused her to become the target of internet trolls and here is what basically happened...
Yes, she broke down and cried at her tormentors fueling their desire to make her life even more miserable...
Since then the internet has heard some fantastic things about and from Ms Slaughter, according to Jessi’s mom, Dianne Leonheardt, in addition to the prank calls placed after her phone number was spread on the internet by anonymous, the family began receiving death threats and pizza.
Hold on, lets watch that again... no wait watch it again, did you hear and see that? She did not call herself Jessica Leonhardt just then did she... No, she called herself Jessica Rose... An wait up a minute what is that my keen cold and calculating mind spies, "you can resist me!" We would all love to do that, perhaps we could if you stopped making viral video's filled with lies.
Notice that in this video, Jessica claims to no longer be using the Internet, she also makes the wild claims that she is receiving counciling for her terrible ordeal at the hands of the Internet and that she no longer uses the Internet at all.
Ah-har... Stupid.. really stupid...
It would appear those shirts are on Sale on this web-site
A short and sharp search of the user profiles on that web-site for one Jessica Rose, reveals... Oh yes, here you are...
So off the Internet are we? Or spilling a load of lies again & again, sigh hopeless teen tween... Voiceless it cries, wingless flutters, toothless bites, mouth-less mutters.
Tuesday 21 February 2012
It's time for some unmasking of patronizing patriotism...
Lets start with The Jester (also known by the leetspeak handle th3j35t3r) a computer vigilante who describes himself as a grey hat "hacktivist." He or she claims to be responsible for attacks on Wiki-Leaks, 4chan, Anonymous, Iranian President Mahmoud Ahmadinejad and Islamic websites. and He or She has the cheek to be claiming to be acting out of American patriotism.
Just to be clear The Jester had stated that he is a former soldier and has served in Afghanistan and elsewhere... I am sorry to tell you all folk's this is a bare-faced lie. You see the Jester has no formal back-ground within the US Military and sadly the only military action he has engaged in has been whilst playing Gears of War on his x-Box.
It's terribly sad but it's also very true...
How do I know, I hear you all ask... Well you see the idea of activism when used in conjunction with computer hacking is not a grey area, it's as black as can be, just like these words right here in Black & White.
So in order to ascertain the merits of the Jester I decided to engage in a little "hacktivism" of my own!
That's right folk's I hacked into the Jester's connection and took a long hard look at this so called American patriot, this vigilante that so many look up to as a hero is not even American.. Yes you're hearing it right... But words are not enough without 'Proof' right.. So here's a little something for all you fellow hackers & trolls out there.
First lets take a long hard look at this fellows IP Address. (if you wonder how I obtained that, all will be revealed) what I did was send him a poisoned hyper-link from here which I uploaded onto his world-press blog, our super slick and ultra smooth hacking vigilante wasted no time at all clicking the link... As you can see in this next screen shot.
Yes, he clicked the hyper-link and whilst being re-directed to Google I snaffled his IP Address... Oh I am so awfully naughty!
Once I obtained his IP then performing a reverse lookup was simple and took a matter of seconds.
The Jesters IP Block of 193.35.134.17 belongs to Orange Personal Communications Services, who just happen to be located at Orange Personal Communications Services St. James Court, Great Park Road, Almondsbury Park Bradley Stoke BS32 4QJ
But thats not all, oh no I always save the best for last, once I had obtained proof of his provider I then went to phase two, Geo-Location mapping.
Would you all like to know where the "hacktivist" who calls themselves the Jester really lives?
Well that would be right here on this street silly...
Would you like an aerial view?
Thats right if you zoom in you'll notice that row of houses is called 'Jester Cottage' and Jester Cottage just happens to be located at:
Jester Place, Queensbury, Bradford, West Yorkshire, BD13 1JP
So in hindsight an American patriot, an uber vigilante? Or just some school kid masturbating at the thought of being a real soldier whilst playing with his Virtual Machine. You decide...
But know that Yorkshire is famous for something else, it spawned a generation of 'Tango' soft drink adverts and the Jesters favorite catch phrase would just happen to be "Tango Down!" leading one to conclude he must now know what it feels like to be "Tango'd"
Lets start with The Jester (also known by the leetspeak handle th3j35t3r) a computer vigilante who describes himself as a grey hat "hacktivist." He or she claims to be responsible for attacks on Wiki-Leaks, 4chan, Anonymous, Iranian President Mahmoud Ahmadinejad and Islamic websites. and He or She has the cheek to be claiming to be acting out of American patriotism.
Just to be clear The Jester had stated that he is a former soldier and has served in Afghanistan and elsewhere... I am sorry to tell you all folk's this is a bare-faced lie. You see the Jester has no formal back-ground within the US Military and sadly the only military action he has engaged in has been whilst playing Gears of War on his x-Box.
It's terribly sad but it's also very true...
How do I know, I hear you all ask... Well you see the idea of activism when used in conjunction with computer hacking is not a grey area, it's as black as can be, just like these words right here in Black & White.
So in order to ascertain the merits of the Jester I decided to engage in a little "hacktivism" of my own!
That's right folk's I hacked into the Jester's connection and took a long hard look at this so called American patriot, this vigilante that so many look up to as a hero is not even American.. Yes you're hearing it right... But words are not enough without 'Proof' right.. So here's a little something for all you fellow hackers & trolls out there.
First lets take a long hard look at this fellows IP Address. (if you wonder how I obtained that, all will be revealed) what I did was send him a poisoned hyper-link from here which I uploaded onto his world-press blog, our super slick and ultra smooth hacking vigilante wasted no time at all clicking the link... As you can see in this next screen shot.
Yes, he clicked the hyper-link and whilst being re-directed to Google I snaffled his IP Address... Oh I am so awfully naughty!
Once I obtained his IP then performing a reverse lookup was simple and took a matter of seconds.
The Jesters IP Block of 193.35.134.17 belongs to Orange Personal Communications Services, who just happen to be located at Orange Personal Communications Services St. James Court, Great Park Road, Almondsbury Park Bradley Stoke BS32 4QJ
But thats not all, oh no I always save the best for last, once I had obtained proof of his provider I then went to phase two, Geo-Location mapping.
Would you all like to know where the "hacktivist" who calls themselves the Jester really lives?
Well that would be right here on this street silly...
Would you like an aerial view?
Thats right if you zoom in you'll notice that row of houses is called 'Jester Cottage' and Jester Cottage just happens to be located at:
Jester Place, Queensbury, Bradford, West Yorkshire, BD13 1JP
So in hindsight an American patriot, an uber vigilante? Or just some school kid masturbating at the thought of being a real soldier whilst playing with his Virtual Machine. You decide...
But know that Yorkshire is famous for something else, it spawned a generation of 'Tango' soft drink adverts and the Jesters favorite catch phrase would just happen to be "Tango Down!" leading one to conclude he must now know what it feels like to be "Tango'd"
Subscribe to:
Posts (Atom)