Liberals, you have been had. - Revelation from the Vault 7 release.

Discussion in 'Serious Discussion' started by JFKI, Mar 7, 2017.

  1. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    Marble Framework

    https://wikileaks.org/vault7/releases/#Marble Framework

    C++
     
  2. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#Grasshopper

     
  3. Joe C

    Joe C MDL Guru

    Jan 12, 2012
    3,522
    2,093
    120
    All this has me wondering why all the crap a little while ago about the feds cracking into an Apple iPhone from a terrorist if they already had all these things already?
    I know they eventually did find someone to break into this phone but they didn't act like they could do it themselves
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    #44 JFKI, Apr 8, 2017
    Last edited by a moderator: Apr 20, 2017
    (OP)
    Watch closely...



    Pay no attention to the man behind the curtain. ;)
     
  5. Joe C

    Joe C MDL Guru

    Jan 12, 2012
    3,522
    2,093
    120
    That makes no sense, if they had the tech to do it in the first place then no need for the media attention that it got. They would have cracked the phone and not asked Apple to help them and nobody would have known or cared
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  6. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    Unless the guy with the phone the feds cracked went to the media after the fact.
    IMO that would be exponentially worse for the feds, because by the time they "legally" cracked the phone it was in the news for so long no one cared anymore.
     
  7. Joe C

    Joe C MDL Guru

    Jan 12, 2012
    3,522
    2,093
    120
    #47 Joe C, Apr 8, 2017
    Last edited: Apr 8, 2017
    https://www.washingtonpost.com/world/national-security/us-wants-apple-to-help-unlock-iphone-used-by-san-bernardino-shooter/2016/02/16/69b903ee-d4d9-11e5-9823-02b905009f99_story.html?utm_term=.d7c8843a9ed6

    I don't think he could say much about anything
    https://en.wikipedia.org/wiki/2015_San_Bernardino_attack#Car_pursuit_and_shootout
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  8. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    Comey LOL.
    This vault 7 release is from the CIA, not FBI.
    CIA does not play well... With anyone.

    My bad. :dunno:
     
  9. Joe C

    Joe C MDL Guru

    Jan 12, 2012
    3,522
    2,093
    120
    I just think somethings out of place when we hear of all these great tech hacking things by our govt and yet they can't crack the password on an iphone
    propaganda?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  10. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#Hive

     
  11. CHEF-KOCH

    CHEF-KOCH MDL Expert

    Jan 7, 2008
    1,192
    1,185
    60
    [​IMG]
    (Picture: Wikileaks leaks)​

    My own summarize about the tools/leaks:

    • Weeping Angel
      • Extract browser credentials or history
      • Extract WPA/WiFi credentials
      • Insert Root CA cert to facilitate MitM of browser, remote access, or Adobe application
      • Investigate the Remote Access feature
      • Investigate any listening ports & their respective services
      • Attempt to override /etc/hosts for blocking Samsung updates without DNS query and iptables (referred to by SamyGo)
      • Add ntpclient update calls to startup scripts to sync implant's system time for accurate audio collection timestamps
    • HIVE
      • Hive is a software implant designed with “Ring 2” operations in mind.
      • For establishing beacon and interactive shells on target host
      • Contains further tools and provides complete interface for agents to seize target systems
    • Flash Bang
      • A tool designed to be able to migrate from a browser process (using sandbox breakout), escalate privileges, and memory load a NOD Persistence Spec dll.
      • Basically hacks target system and sets up persistent backdoor through iframe media
    • Fight Club/RickyBobby
      • Fight Club is loaded onto sections of the target system where a set of future actions can be taken
      • RickyBobby allows constant monitoring of the network Fight Club is loaded on and performs persistent tasks
      • Agents then loaded a customized malware payload to USB for physical delivery
      • Software would be loaded onto target's system discretely by disguising itself as WinRAR, VLC Media Player, and more
      • Nicknames for each, customized payload included MelomyDropkick (TrueCrypt), MelomyRoundhouse (VLC Player), MelomyLeftHook (Shamela) and MelomyKarateChop (WinRar)
    • Bee Sting
      • Discrete tool for injecting data in to iFrame media
      • Would be coupled with something like Flash Bang to deliver a payload discretely through iFrame media (embedded videos, games, etc.)
    • Assassin
      • Exact purpose yet unknown
      • Listed under the hacking tools for Automated Implants, interestingly though
    • Frog Prince
      • A tool for testing and manipulating FI (dental?) implants
      • Values can also be get and set through Frog Prince, thus the system can be overridden, manipulated and even disabled
    • Maddening Whispers
      • Set of software components that provide beaconing and remote access capabilities to a Vanguard-based device (ET project)
      • "This proof-of-concept project is done in conjunction with ESD/CNB"

    Analyze:
    That's some pretty insidious s**t right there. Basically what HIVE does is that it creates a virtual server that hosts a VPN that listens for specific connections and lets you tunnel through the firewall, and push localized network attacks through whatever hardware the virtual server is sitting on and the existing physical network.


    Research:
    * Wikileaks
    * https://www.youtube.com/watch?v=tg84KbJYN5s&t=25m47s (Assange talking about HIVE and what it affects)
     
  12. CHEF-KOCH

    CHEF-KOCH MDL Expert

    Jan 7, 2008
    1,192
    1,185
    60
    #53 CHEF-KOCH, Apr 15, 2017
    Last edited: Apr 15, 2017
    Some good news .. we not alway should be so negative.

    MS already fixed almost every shadowbroker exploits (Leak currently 'disabled' - see github).
    https://blogs.technet.microsoft.com/msrc/2017/04/14/protecting-customers-and-evaluating-risk/

    We as community / user have a privilege, whenever we found something we can ask and work with them, or we just do nothing. I prefer first thing and I do think this is a good thing because it helps to fix things faster and the change is very high that focusing on security related things gets higher attention.
     
  13. gorski

    gorski MDL Guru

    Oct 21, 2009
    5,514
    1,452
    180
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  14. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#Weeping Angel

     
  15. Joe C

    Joe C MDL Guru

    Jan 12, 2012
    3,522
    2,093
    120
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  16. crashnburn

    crashnburn MDL Addicted

    Mar 18, 2010
    574
    25
    30
    Agree completely. Under lings made to fight a fake fight over non issues, while the top dogs play and win no matter which side comes up top .. or more so the appearance of up top i.e. the illusion of choice and democratic options via psuedo issues.

    Well, the second you identify with a "label" is the second they have you. Then you have to hold a bundled stance attached to that label. You cant UN-Bundle the issues and assess / think independently for each. It's time to stop fighting with stances - whether its alt right or whatever.
    Deeply research each issue - from all sides - from all stances and then let wisdom guide you.

     
  17. Michaela Joy

    Michaela Joy MDL Crazy Lady

    Jul 26, 2012
    4,071
    4,651
    150
    @crashnburn: I like that story. It means more when you actually watch 3 humans do it. :D
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  18. crashnburn

    crashnburn MDL Addicted

    Mar 18, 2010
    574
    25
    30
    Dont know if its funny or scary when we see thounds/ millions on both sides screaming their guts out and the game continues.
     
  19. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#Scribbles