Ну что, посоны, кто уже взломал Васяна из соседнего подъезда?Дамп: https://github.com/x0rz/EQGRP_Lost_in_TranslationСообщение: https://steemit.com/shadowbrokers/@theshadowbrokers/lost-in-translationThe Shadow Group released another dump, this time with some fucking juicy ass shit. Last week was old vulnerabilities, this week they dumped EIGHT NEW ZERO-DAY VULNS IN WINDOWS. That means anyone can download the tools and own any Windows machine connected to the Internet right now. Why isn't /pol/ and /baph/ all over this shit? We could be hacking the ADL right now. Also, it was revealed that the NSA hacked into the SWIFT network and set up backdoors to monitor financial translations. The NSA knew about the theft of their tools 96 days ago, yet the vulns released today proves the NSA failed to tell Microsoft about the vulns and possible leaks, oops! Their message contained the word Kek and the password to the encrypted files was REEEEEEEEE, so I think it's obvious the Shadow Brokers are one of us. In fact, they may be here reading this right now.https:// motherboard.vice.com/en_us/article/the-latest-shadow-brokers-dump-of-alleged-nsa-tools-is-awful-news-for-the-internethttps:// motherboard.vice.com/en_us/article/shadow-brokers-dump-alleged-windows-exploits-and-nsa-presentations-on-targeting-banks
EASYBEEappears to be an MDaemon email server vulnerabilityEASYPIis an IBM Lotus Notes exploit that gets detected as StuxnetEWOKFRENZYis an exploit for IBM Lotus Domino 6.5.4 to 7.0.2EXPLODINGCANis an IIS 6.0 exploit that creates a remote backdoorETERNALROMANCEis a SMB1 exploit over TCP port 445 which targets XP, 2003, Vista, 7, Windows 8, 2008, 2008 R2, and gives SYSTEM privilegesEDUCATEDSCHOLARis a SMB exploitEMERALDTHREADis a SMB exploit for Windows XP and Server 2003EMPHASISMINEis a remote IMAP exploit for IBM Lotus DominoENGLISHMANSDENTISTsets Outlook Exchange WebAccess rules to trigger executable code on the client's side to send an email to other usersERRATICGOPHERis a SMBv1 exploit targeting Windows XP and Server 2003ETERNALSYNERGYis a SMBv3 remote code execution flaw for Windows 8 and Server 2012ETERNALBLUEis a SMBv2 exploit [source] that also works on Windows 10, even if it wasn't designed toETERNALCHAMPIONis a SMBv1 exploitESKIMOROLLis a Kerberos exploit targeting 2000, 2003, 2008 and 2008 R2 domain controllersESTEEMAUDITis an RDP exploit and backdoor for Windows Server 2003ECLIPSEDWINGis an RCE exploit for the Server service in Windows Server 2008 and laterETREis an exploit for IMail 8.10 to 8.22FUZZBUNCHis an exploit framework, similar to MetaSploit, which was also part of the December-January "Windows Tools" Shadow Brokers auctionDOUBLEPULSARis a RING-0 multi-version kernel mode payload, EquationGroup used this to scrape Oracle databases for SWIFT dataODDJOBis an implant builder and C&C server that can deliver exploits for Windows 2000 and later, also not detected by any AV vendorsJEEPFLEA_MARKETappears to be a tool for collecting data from several banks around the world
Сложнааа, еще и реализацию писать по наводкам, ну нахуй.
https://medium.com/@msuiche/the-nsa-compromised-swift-network-50ec3000b195https://medium.com/@networksecurity/latest-shadow-brokers-dump-owning-swift-alliance-access-cisco-and-windows-7b7782270e70
>>151041802>Keep in mind that Windows Vista/2008 is out of support since Monday, and Windows XP/2003 has been unsupported for more than 3 years. This means that security vulnerabilities found on those systems will never be corrected. Exploits on Windows 8 and Server 2012 are 0days.
В чем профит выкладывать это в открытый доступ?
васян за роутером, нихуя не ломается :с
>>151042257Для рекламы.Это уже их второй слив.Они спиздили кучу софта у АНБ.Прозили за всё 1 лимон битков, никто не купил.До этого уже выкладывали одну пачку допотопных эксплоитов:https://github.com/x0rz/EQGRPhttps://medium.com/@shadowbrokerss/dont-forget-your-base-867d304a94b1Сейчас выложили уже вполне действующие 0-day эксплоиты.Но это, очевидно, не всё, что у них имеется в наличии и они всё еще ищут, кому бы продать всё, что у них есть на руках.
>>151042446По заявлениям викиликс, роутеры многие тоже поломали, так что могут и выложить в следующий раз.
>>151044253то есть мне сначала ломать ему роутер, потом систему, и всё разными эксплоитами? сложна. пойду лучше так сломаю ему ебало, по старинке.
>>151040414 (OP)Вин10 ломает?
>>151049052Нет, по крайней мере из того, что тестили - не работало. Мелкомягкие с утра сказали, что прикрыли эти дыры.