/bant/ - International/Random

[301 / 51 / ?]

61KiB, 675x1200, ooops.jpg

Calling all SQL-savy Anons - Iowa and Shadow, inc exploit?

Anonymous Tue 04 Feb 2020 15:18:44 No.9495636 View View Reply Original Report

I am not a "coder". Cisco CLI does not count, as I understand it. Can you correct me if I have misunderstood the following?

If you setup the connection from your web facing server to your sql server improperly you can get a situation where normal data inputs will work just fine; HOWEVER, if a 'hacker' enters a query using the app from outside the network in a crafty way, they can turn that query into a command. If you mess up really really badly, the output will be displayed back to the 'hacker', making it 1000x easier to mess your database up.

Preventing this is called sanitation, its super easy to do correctly and its literally something you cant pass your first SQL class without mastering. It only shows that the creator of the app was absolutely incompetent at best and at worst intentionally created a backdoor to exploit/break the app for nefarious advantage.

Pic Related

Partial follow up/copy pasta

Anonymous

Anonymous Tue 04 Feb 2020 15:20:27 No.9495637 Report

Quoted By: >>9495695

Of course it had a backdoor... DUH

Anonymous

Anonymous Tue 04 Feb 2020 15:21:40 No.9495638 Report

Quoted By: >>9495758 >>9495767

>>9495636
hacker here, that is sql back door easy to hack. seen this before. probably time to stop getting your back door hacked with twin BBCs. i'll double fist your ass if you pay me.

Anonymous

Anonymous Tue 04 Feb 2020 15:21:55 No.9495639 Report

Quoted By: >>9495660 >>9495728 >>9495750 >>9495784 >>9495790 >>9495849 >>9495866

>>9495636
>Pete ButtFag made an app with a backdoor
Heh heh

Anonymous

Anonymous Tue 04 Feb 2020 15:24:43 No.9495640 Report

Quoted By: >>9495645

>>9495636
https://www.guru99.com/learn-sql-injection-with-practical-example.html

Anonymous

Anonymous Tue 04 Feb 2020 15:25:28 No.9495641 Report

Quoted By: >>9495648 >>9495671 >>9495679 >>9495699 >>9495748

>>9495636
SQL injection look up some SQL codes snippets not hard, if you can access a search or entry text bar into the database via thw website and the sanitation is incomplete you can break in easily. Keep in mind they're probably will track you based on cookies or session ID.

Anonymous

Anonymous Tue 04 Feb 2020 15:27:37 No.9495642 Report

Quoted By: >>9495647

>>9495636
drop table

Anonymous

Anonymous Tue 04 Feb 2020 15:27:55 No.9495643 Report

Quoted By: >>9495671 >>9495916

>>9495636
wow lol that is some super amateur shit to be displaying SQL errors right in the browser

what a bunch of fucking idiots

Anonymous

Anonymous Tue 04 Feb 2020 15:27:58 No.9495644 Report

Quoted By: >>9495674 >>9495788

>>9495636
SELECT Candidate, COUNT(Candidate_ID) as Votes FROM Ballot_Table
INNER JOIN Voter_Table ON Voter_Table.Voter_ID = Ballot_Table.Voter_ID
INNER JOIN Candidate_Table ON Candidate_Table.Candidate_ID = Ballot_Table.Candidate_ID

Anonymous

Anonymous Tue 04 Feb 2020 15:28:45 No.9495645 Report

Quoted By:

>>9495640
https://mystery.knightlab.com/

Better link

Anonymous

Anonymous Tue 04 Feb 2020 15:29:43 No.9495646 Report

Quoted By: >>9495658

>>9495636
Them leaking the SQL command doesn't necessarily mean you can do injections.
Also you should be cautious if you don't want to have bubba pound your but in prison for 30 years.

Anonymous

Anonymous Tue 04 Feb 2020 15:29:49 No.9495647 Report

Quoted By: >>9495651

>>9495642
nah man select *

Anonymous

Anonymous Tue 04 Feb 2020 15:29:55 No.9495648 Report

Quoted By: >>9495671 >>9495820 >>9495882

>>9495641

Yup. If the error message is giving you the actual SQL script, this app is wide open to SQL injection. They aren't using a prepared statement at all.

Someone should enter this snippet, followed by a semicolon, followed by DELETE FROM VOTER and then sit back and laugh.

Anonymous

View Same Google ImgOps iqdb SauceNAO exploits_of_a_mom.png, 31KiB, 666x205

Anonymous Tue 04 Feb 2020 15:30:02 No.9495649 Report

Quoted By: >>9495663

>>9495636
Wow that's bad. Unironically this xkcd comic example might work here

Anonymous

Anonymous Tue 04 Feb 2020 15:30:11 No.9495650 Report

Quoted By:

Did you try to drop the table or put in Admin to see what the error is?

Anonymous

Anonymous Tue 04 Feb 2020 15:30:36 No.9495651 Report

Quoted By:

>>9495647
from Voter

Anonymous

Anonymous Tue 04 Feb 2020 15:30:49 No.9495652 Report

Quoted By: >>9495683 >>9495686

>>9495636
What website is that?

Anonymous

Anonymous Tue 04 Feb 2020 15:30:58 No.9495653 Report

Quoted By: >>9495664

>>9495636
Please tell me that’s not a picture of the app

Anonymous

Anonymous Tue 04 Feb 2020 15:31:26 No.9495654 Report

Quoted By:

>>9495636
You can test if it's sanitized by trying to escape that query by including an ' (something like first name is "S' OR 'Johnson'" ) in your query, you can also test for html vulnerability by putting in html code and see if it sanitizes that.

Anonymous

Anonymous Tue 04 Feb 2020 15:31:52 No.9495655 Report

Quoted By:

If it's a website you can run SQLmap on it and it might tell you what you can get out of it.
Doing blind injections can be hard, it's better to scan and see what there is

Anonymous

Anonymous Tue 04 Feb 2020 15:32:29 No.9495656 Report

Quoted By:

I'll tell you what to try and shit but you have to do it, I'm not putting my hands on this.

Anonymous

Anonymous Tue 04 Feb 2020 15:32:33 No.9495657 Report

Quoted By: >>9495689

>>9495636
Show element fagit

Anonymous

Anonymous Tue 04 Feb 2020 15:33:25 No.9495658 Report

Quoted By: >>9495714 >>9495843

>>9495646
Obviously OP is bait to get some retard here to fuck with it so they can blame 4chins.

Anonymous

View Same Google ImgOps iqdb SauceNAO LulzSec.png, 427KiB, 1200x1360

Anonymous Tue 04 Feb 2020 15:33:26 No.9495659 Report

Quoted By: >>9495662 >>9495665 >>9495859

>>9495636
LulzSec also hacked via SQL injection. I wonder if there's a connection.

Anonymous

View Same Google ImgOps iqdb SauceNAO external-content.duckduckgo.com.jpg, 97KiB, 1280x720

Anonymous Tue 04 Feb 2020 15:33:38 No.9495660 Report

Quoted By:

>>9495639
You literally can't make this shit up

Anonymous

View Same Google ImgOps iqdb SauceNAO bassdrop.jpg, 55KiB, 600x622

Anonymous Tue 04 Feb 2020 15:33:41 No.9495661 Report

Quoted By: >>9495674 >>9495681 >>9495694

Drop the tables, anon.

Anonymous

Anonymous Tue 04 Feb 2020 15:34:06 No.9495662 Report

Quoted By: >>9495669

>>9495659
SQL injection was Hammond's thing yes

Anonymous

Anonymous Tue 04 Feb 2020 15:34:42 No.9495663 Report

Quoted By: >>9495668

>>9495649
I'd hope - at the very least - the requests aren't run by root, but some unprivileged user.

Anonymous

View Same Google ImgOps iqdb SauceNAO 1580809607466.png, 1MiB, 1208x1420

Anonymous Tue 04 Feb 2020 15:35:11 No.9495664 Report

Quoted By: >>9495666 >>9495670 >>9495672 >>9495682 >>9495706 >>9495738 >>9495743 >>9495755 >>9495759 >>9495764 >>9495856 >>9495913

>>9495653
Just look at their crack team. Would you expect anything less?

Anonymous

Anonymous Tue 04 Feb 2020 15:36:28 No.9495665 Report

Quoted By: >>9495667 >>9495676

>>9495659
SQL injection is babby's first step up from script kiddying.
It's also the easiest way for some 2-bit operation to set up a easily tweakable "voting app" that'll give whatever results you want it to.

Anonymous

Anonymous Tue 04 Feb 2020 15:36:40 No.9495666 Report

Quoted By: >>9495695

>>9495664
Yeah, it's ripe for an injection.
One look and those guys are idiots

Anonymous

Anonymous Tue 04 Feb 2020 15:37:06 No.9495667 Report

Quoted By: >>9495673

>>9495665
It's not baby, you can get paid 2 grand and up for SQLi

Anonymous

Anonymous Tue 04 Feb 2020 15:37:07 No.9495668 Report

Quoted By: >>9495716 >>9495811 >>9495892

>>9495663
Their CTO was a womyn, so...

Also reading some of the descriptions of the apps workflow was completely hilarious as someone who works in the real tech industry. It's literally just an app that uploads pics from your phone.

Never let women do tech work

Anonymous

Anonymous Tue 04 Feb 2020 15:37:13 No.9495669 Report

Quoted By:

>>9495662
Stratfor hack. Got the CEO’s wife for a judge. 2 decades. Seems legit. I mean he is dumb but still.

Anonymous

View Same Google ImgOps iqdb SauceNAO 1520183398636.gif, 3MiB, 301x405

Anonymous Tue 04 Feb 2020 15:37:17 No.9495670 Report

Quoted By:

>>9495664
some things just make perfect sense

Anonymous

View Same Google ImgOps iqdb SauceNAO sneakyredpillin.jpg, 688KiB, 1066x1563

Anonymous Tue 04 Feb 2020 15:37:40 No.9495671 Report

Quoted By: >>9495707 >>9495710

>>9495636
>>9495641
>>9495643
>>9495648
you're fucking retards. this is an obvious honey pot. no one shows SQL errors on standard alphanumeric strings. don't touch.

Anonymous

Anonymous Tue 04 Feb 2020 15:37:52 No.9495672 Report

Quoted By:

>>9495664
always the macbooks, that's how you know your code is going to be incompetent

Anonymous

Anonymous Tue 04 Feb 2020 15:38:10 No.9495673 Report

Quoted By: >>9495675

>>9495667
If you think 2 grand is good enough blackhat pay to risk 20 years of jail and never being able to use the internet again, you're a child

Anonymous

Anonymous Tue 04 Feb 2020 15:38:43 No.9495674 Report

Quoted By: >>9495695

>>9495661
select * from Voter

figure out what joins you can make , then

select * from voter
left join x on voter.x_id = x.id
left join y on voter.y_id = y.id
etc...

finally

drop table *

>>9495644
no one cares about the resutls

Anonymous

Anonymous Tue 04 Feb 2020 15:39:03 No.9495675 Report

Quoted By: >>9495677

>>9495673
You're a literal retard and obviously not in the security industry

Anonymous

Anonymous Tue 04 Feb 2020 15:39:06 No.9495676 Report

Quoted By: >>9495678 >>9495747

>>9495665
It's also the best thing to drop on a pseudo-political board full of retards who will try to fuck with it if you want a scapegoat.

Anonymous

Anonymous Tue 04 Feb 2020 15:40:13 No.9495677 Report

Quoted By: >>9495696

>>9495675
That's correct.

if you're a whitehat then congrats on not being a degenerate. I take it back

Anonymous

Anonymous Tue 04 Feb 2020 15:40:48 No.9495678 Report

Quoted By:

>>9495676
this.

Anonymous

Anonymous Tue 04 Feb 2020 15:40:52 No.9495679 Report

Quoted By: >>9495840

>>9495641
>SQL injection look up some SQL codes snippets not hard, if you can access a search or entry text bar into the database via thw website and the sanitation is incomplete you can break in easily. Keep in mind they're probably will track you based on cookies or session ID.

Anyone doing this, which they shouldn't, should use an Israeli vpn for the keks.

Anonymous

Anonymous Tue 04 Feb 2020 15:41:23 No.9495680 Report

Quoted By: >>9495823 >>9495827 >>9495869 >>9495877 >>9495878 >>9495881

>>9495636
If i was undertaking that attack vector that output would be gold dust...

I'm certain that output is a result of an injection attack?

Easy to do, grab the app run a tcpdump on a DHCP server the device is attached to, grab the url string and API with the query string, then either with a basic URL lib python script or with a browser start passing queries to the server.

Weak as fuck America....

Anonymous

Anonymous Tue 04 Feb 2020 15:41:35 No.9495681 Report

Quoted By: >>9495691

>>9495661
>let the tables hit the floor

Anonymous

Anonymous Tue 04 Feb 2020 15:42:29 No.9495682 Report

Quoted By:

>>9495664
It’s not their fault Russia hacked their app. Democracy is at stake here. If Trump lets this happen again we must IMPEACH him and arrest all of his supporters.

Anonymous

View Same Google ImgOps iqdb SauceNAO shd.jpg, 48KiB, 987x445

Anonymous Tue 04 Feb 2020 15:42:51 No.9495683 Report

Quoted By:

>>9495652
https://shadowinc.io/
Pic related - 1/2

Anonymous

Anonymous Tue 04 Feb 2020 15:43:29 No.9495684 Report

Quoted By:

Someone call the hacker known as 4 chinz

Anonymous

Anonymous Tue 04 Feb 2020 15:43:45 No.9495685 Report

Quoted By:

Those of you willing to take the risk and try it, here's syntax
https://www.tutorialspoint.com/sql/sql-syntax.htm

Anonymous

View Same Google ImgOps iqdb SauceNAO lel.jpg, 68KiB, 1585x435

Anonymous Tue 04 Feb 2020 15:43:49 No.9495686 Report

Quoted By: >>9495702

>>9495652

Me again - 2/2 lel

Anonymous

Anonymous Tue 04 Feb 2020 15:43:50 No.9495687 Report

Quoted By:

And here it is.
https://theweek.com/speedreads/893609/iowa-democratic-party-says-there-coding-issue-caucus-app--which-nevada-also-intends-use

Anonymous

Anonymous Tue 04 Feb 2020 15:44:54 No.9495688 Report

Quoted By:

>>9495636
What you are talking about is called an SQL injection and it's what happens when you don't scrub your data. Which I highly doubt they did.

Anonymous

View Same Google ImgOps iqdb SauceNAO 1578466441628.jpg, 68KiB, 618x741

Anonymous Tue 04 Feb 2020 15:45:03 No.9495689 Report

Quoted By:

>>9495657
You are smarter than me and I am sorry

Anonymous

Anonymous Tue 04 Feb 2020 15:46:18 No.9495690 Report

Quoted By: >>9495703

>>9495636
What you guys plan to do is a federal felony you fucking racist bigots.

Anonymous

Anonymous Tue 04 Feb 2020 15:46:29 No.9495691 Report

Quoted By:

>>9495681
was gonna post this

Anonymous

Anonymous Tue 04 Feb 2020 15:46:38 No.9495692 Report

Quoted By: >>9495693

To check for sql injection, first try putting a single-quote ' in the last name field.
If this creates weird errors, then the quote is not being escaped and the app is vulnerable.
I'm not gonna explain how to exploit it, because I don't fancy a v& ride.

Anonymous

Anonymous Tue 04 Feb 2020 15:47:08 No.9495693 Report

Quoted By:

>>9495692
>To check for sql injection, first try putting a single-quote ' in the last name field.
This
>I'm not gonna explain how to exploit it, because I don't fancy a v& ride.
This

Anonymous

Anonymous Tue 04 Feb 2020 15:47:10 No.9495694 Report

Quoted By:

>>9495661
I'm sorry, I am not that smart. Glad you're out there anon

Anonymous

Anonymous Tue 04 Feb 2020 15:47:20 No.9495695 Report

Quoted By:

>>9495637
>Of course it had a backdoor... DUH
so does your mother
>>9495666
>it's ripe for an injection.
the only injection they know about is for hormones
>>9495674
>SELECT * from canada WHERE isShitskin=FALSE || isFaggot=FALSE
>0 RESULTS FOUND

Anonymous

View Same Google ImgOps iqdb SauceNAO 1575485843235.png, 354KiB, 626x974

Anonymous Tue 04 Feb 2020 15:47:36 No.9495696 Report

Quoted By:

>>9495677
Never be afraid of what you are, fren.

Anonymous

Anonymous Tue 04 Feb 2020 15:48:24 No.9495697 Report

Quoted By: >>9495700 >>9495706 >>9495711 >>9495740 >>9495745 >>9495851

>>9495636
Wow, did they actually hard coded sql statements in their application? Why didn't they encapsulate it in a separate api library and only allowed sanitized input parameters?

Anonymous

Anonymous Tue 04 Feb 2020 15:48:32 No.9495698 Report

Quoted By:

>>9495636
All Russianons should start fucking with this.

Anonymous

Anonymous Tue 04 Feb 2020 15:49:04 No.9495699 Report

Quoted By: >>9495726 >>9495729

>>9495641
Just proxy through Russia for bants

Anonymous

Anonymous Tue 04 Feb 2020 15:49:21 No.9495700 Report

Quoted By:

>>9495697
They are progressive idiots anon, they barely understand what they are doing

Anonymous

Anonymous Tue 04 Feb 2020 15:49:54 No.9495701 Report

Quoted By: >>9495754

>>9495636
It's just an error because it cannot find what the user entered in the database. The popup tells us how the database looks.
>SELECT * FROM voter LEFT JOIN precinct ON voter.precinct_serial = precinct.precinct_serial LEFT JOIN party ON party.party_serial = voter.party_serial WHERE last_name=${last_name} AND first_name=${first_name} AND zip LIKE ${zip_code} AND house_number=${house_number}
tfw unsure why they are overcomplicating things, but all we know is the architecture of the database... Also, I think they might have copied and pasted this from somewhere. Which is sad because working with *SQL isn't all that difficult.

Anonymous

View Same Google ImgOps iqdb SauceNAO 1532768626767.png, 634KiB, 1280x1280

Anonymous Tue 04 Feb 2020 15:50:04 No.9495702 Report

Quoted By: >>9495709 >>9495712 >>9495787

>>9495686
>[email protected]

I bet they'd find an assortment of rare memes comforting during this trying time.

Anonymous

Anonymous Tue 04 Feb 2020 15:50:10 No.9495703 Report

Quoted By:

>>9495690
It's already too late. All over the news since before OP.

Anonymous

Anonymous Tue 04 Feb 2020 15:50:12 No.9495704 Report

Quoted By:

I really hope any of you trying it are running tor->proxychains at least

Anonymous

Anonymous Tue 04 Feb 2020 15:50:16 No.9495705 Report

Quoted By:

WordPress Engineer here. You should modify the codebase to use two unrelated sans-serif fonts in the same interface. It's really jarring.

Anonymous

Anonymous Tue 04 Feb 2020 15:50:23 No.9495706 Report

Quoted By:

>>9495697
See >>9495664

Anonymous

Anonymous Tue 04 Feb 2020 15:50:41 No.9495707 Report

Quoted By: >>9495720 >>9495822

>>9495671
Nah.. this was created by former Clinton campaign staffers who were already retarded at campaigning. This is their first foray into tech which they received due to political connections. I have no doubt the developers are that retarded.

Anonymous

Anonymous Tue 04 Feb 2020 15:50:46 No.9495708 Report

Quoted By:

>>9495636
Probably SQL injection. They can still sanatize the inputs, but this kind of poor error handling leads me to believe that it was a sloppy job.

Anonymous

Anonymous Tue 04 Feb 2020 15:50:57 No.9495709 Report

Quoted By:

>>9495702
LOL THIS

Anonymous

Anonymous Tue 04 Feb 2020 15:51:44 No.9495710 Report

Quoted By: >>9495795 >>9495806 >>9495852

>>9495671
I think they want to get hacked on purpose to get evidence that “Russian hackers” are influencing the election

Anonymous

View Same Google ImgOps iqdb SauceNAO 1541025771979.gif, 801KiB, 250x195

Anonymous Tue 04 Feb 2020 15:52:10 No.9495711 Report

Quoted By: >>9495825

>>9495697
>Wow, did they actually hard coded sql statements in their application? Why didn't they encapsulate it in a separate api library and only allowed sanitized input parameters?

Leftists don't believe in borders, anon.

Anonymous

Anonymous Tue 04 Feb 2020 15:52:28 No.9495712 Report

Quoted By:

>>9495702
I wonder how many applications they just got with the name Bobby Tables.

Anonymous

Anonymous Tue 04 Feb 2020 15:54:35 No.9495713 Report

Quoted By:

>>9495636

Yes essentially the first server handling the web shit hands info off to the sql server. Yes this can be exploited to get the web server to essentially hand commands to that sql server. Yes this has been solved for a long fucking time and there are entire frameworks and libraries dedicated to avoiding it.

It still happens constantly. Thats what happens when you chase the cheap solution and the cheap labor. Even if you didnt people would still fuck up though.

Anonymous

View Same Google ImgOps iqdb SauceNAO EPoP8aUUUAE3Qsa.jpg, 62KiB, 828x470

Anonymous Tue 04 Feb 2020 15:54:58 No.9495714 Report

Quoted By: >>9495769

>>9495658
Untrue, but thanks for being hyper-vigilant

Anonymous

Anonymous Tue 04 Feb 2020 15:55:12 No.9495715 Report

Quoted By:

From what I'm hearing, they closed source developed this app and wouldn't let security researchers test it for them so they get what they deserve

Anonymous

Anonymous Tue 04 Feb 2020 15:55:31 No.9495716 Report

Quoted By: >>9495719 >>9495725 >>9495829 >>9495868

>>9495668
I'd guess it's not directly related to the dev's sex.

We are just as bad as women, but they get hired more easily.
Seriously, women in CS are rarer than women in the Vatican.
So if a company direly wants to hire a woman as dev, they will hire even the most incapable one that applies. A male on a similar skill level would remain unemployed.
That's the difference.

Anonymous

Anonymous Tue 04 Feb 2020 15:55:50 No.9495717 Report

Quoted By:

Results of the caucus might not come in today: https://www.latimes.com/politics/story/2020-02-04/iowa-might-not-have-results-even-today

Anonymous

Anonymous Tue 04 Feb 2020 15:56:54 No.9495718 Report

Quoted By:

This was a setup to run with the 'Russian Interference' narrative.

Anonymous

Anonymous Tue 04 Feb 2020 15:57:00 No.9495719 Report

Quoted By:

>>9495716
Yeah, as a decent human I acknowledge women can be as good as men at most things and I was just being a stupid internet troll

Don't tell anyone, anon, I have a reputation to uphold on here

Anonymous

Anonymous Tue 04 Feb 2020 15:57:14 No.9495720 Report

Quoted By: >>9495884

>>9495707
threadly reminder her tech guy that was supposed to be super smart went to reddit and posted on the clear net for advice lel

Anonymous

Anonymous Tue 04 Feb 2020 15:57:58 No.9495721 Report

Quoted By: >>9495723

is it a good idea to do everything as procedures and grant users permission to use those procedures, instead of specific permissions?

Anonymous

Anonymous Tue 04 Feb 2020 15:58:18 No.9495722 Report

Quoted By: >>9495724

>>9495636
/g/ can help you with this

Anonymous

Anonymous Tue 04 Feb 2020 15:58:46 No.9495723 Report

Quoted By:

>>9495721
It's a good idea to limit permissions for sure

Anonymous

Anonymous Tue 04 Feb 2020 15:59:20 No.9495724 Report

Quoted By: >>9495730

>>9495722
I'm from /g/, I told you I won't do it for you.
If you're gonna do it you guys gotta do it, most of us are trying to stay white

Anonymous

Anonymous Tue 04 Feb 2020 16:00:04 No.9495725 Report

Quoted By:

>>9495716
>We are just as bad as women, but they get hired more easily.
Typically, they hire around culture and social bullshit, rather than skill/talent. We got rid of mit-scheme and now we teach top-down, rather than bottom-up. No shit everyone is retarded, they intentionally made it easier. They purposefully lowered the bar in the 90's and now we're feeling the effect.

Anonymous

Anonymous Tue 04 Feb 2020 16:00:33 No.9495726 Report

Quoted By:

>>9495699
lmao

Anonymous

View Same Google ImgOps iqdb SauceNAO 1555523443812.png, 112KiB, 512x512

Anonymous Tue 04 Feb 2020 16:00:46 No.9495727 Report

Quoted By:

There is an honest to Kek chance for Russians to hack the election right now and it isn't happening.

Anonymous

Anonymous Tue 04 Feb 2020 16:00:55 No.9495728 Report

Quoted By:

>>9495639
bwahahahahahahahahahaha

Anonymous

Anonymous Tue 04 Feb 2020 16:01:13 No.9495729 Report

Quoted By:

>>9495699
>Just proxy through Russia for bants

ISRAEL

Anonymous

Anonymous Tue 04 Feb 2020 16:02:06 No.9495730 Report

Quoted By: >>9495733

>>9495724
Yeah it’s not worth getting your hands dirty over this

Anonymous

Anonymous Tue 04 Feb 2020 16:02:12 No.9495731 Report

Quoted By: >>9495736

OP link me to this.

Anonymous

Anonymous Tue 04 Feb 2020 16:03:26 No.9495732 Report

Quoted By: >>9495737

Does /b/ know about this?
Back in the day they'd be all over this. They'd have that app spitting out Hitler as the caucus winner. For the lulz of course.

Anonymous

Anonymous Tue 04 Feb 2020 16:03:33 No.9495733 Report

Quoted By:

>>9495730
cheese isn't worth 60 dollars but that doesnt stop you, leaf.

Anonymous

Anonymous Tue 04 Feb 2020 16:03:56 No.9495734 Report

Quoted By:

>>9495636
They would be able to see everything if you set it up wrong

https://www.bitchute.com/video/Cyp8HJRkGuQ3/

Anonymous

Anonymous Tue 04 Feb 2020 16:04:05 No.9495735 Report

Quoted By: >>9495741

>>9495636
Yup. SQL injection attacks will DEFINITELY work on this site, judging by the output you posted. Under no circumstances should something like that, with database column names, ever be returned to a regular user. Who the fuck made this?

Anonymous

View Same Google ImgOps iqdb SauceNAO 1574555597172.jpg, 185KiB, 1242x1228

Anonymous Tue 04 Feb 2020 16:04:47 No.9495736 Report

Quoted By:

>>9495731

I would like to state for the record that nobody should do anything illegal, ever, and all of my comments indicating otherwise are satirical performance art. I am and always will be with Her. Some of my favorite people are federal agents and Disney Star Wars is the best. Thank you.

Anonymous

Anonymous Tue 04 Feb 2020 16:05:19 No.9495737 Report

Quoted By: >>9495886

>>9495732
Most of the hackers that hung out in /b/ have likely moved to /g/ or darkweb sites if they are black hats.

Anonymous

Anonymous Tue 04 Feb 2020 16:05:31 No.9495738 Report

Quoted By:

>>9495664
An excess of gaping butt cracks.

Anonymous

Anonymous Tue 04 Feb 2020 16:05:32 No.9495739 Report

Quoted By:

LMAO who writes this garbage, it must be deliberate

Anonymous

Anonymous Tue 04 Feb 2020 16:06:23 No.9495740 Report

Quoted By: >>9495746

>>9495697
If you see the screenshot it's not hardcoded, what they did "wrong" is show the full sql statement when error thrown.
It's useful if you can't debug or just lazy, showing the statement on popup to debug.

Anonymous

Anonymous Tue 04 Feb 2020 16:06:39 No.9495741 Report

Quoted By: >>9495749 >>9495857

>>9495735
Seems like a honey trap that they set to try and get groups like /pol/ to fall into so they have a scapegoat for "hackers" that rigged the election. Doesnt matter who it is, just stay far away from this shit

Anonymous

View Same Google ImgOps iqdb SauceNAO Glenn Jacobs.jpg, 35KiB, 520x346

Anonymous Tue 04 Feb 2020 16:07:04 No.9495742 Report

Quoted By:

There were irregularities in the Knox county Tennessee voting machines, resulting in Glenn Jacobs becoming mayor.

Anonymous

Anonymous Tue 04 Feb 2020 16:07:06 No.9495743 Report

Quoted By:

>>9495664
Well no fucking wonder this app is such a steaming pile of shit. They deserve everything they get because “muh diversity”. Diversity is our strength my white ass.

Anonymous

Anonymous Tue 04 Feb 2020 16:07:30 No.9495744 Report

Quoted By:

>>9495636
Hello journalists. Include me in the article.

Anonymous

Anonymous Tue 04 Feb 2020 16:07:31 No.9495745 Report

Quoted By: >>9495765 >>9495835

>>9495697
>encapsulate it in a separate api library
doesn't matter except for reuse. at a single application scale this is just developer masturbation
>only allowed sanitized input parameters
sanitization is fucking horseshit. use prepared statements. "yeah i'll just hand off this untrusted string to an interpreter running with nuclear level permissions but it's okay because i ran a series of regular expressions to edit the text playing whack a mole with known exploits because it's the year 2002 and i just want to get back to playing counter-strike"

Anonymous

Anonymous Tue 04 Feb 2020 16:07:42 No.9495746 Report

Quoted By:

>>9495740
Yeah but it shouldn't be in the public domain like that, they are stupid for not using custom error messages and sanitizing.

Anonymous

Anonymous Tue 04 Feb 2020 16:08:29 No.9495747 Report

Quoted By:

>>9495676
Like I said, babbys first step up from script kiddying.
"Oh noooo! How could we have known that our software was that easy to penetrate? That sucks!"

Anonymous

Anonymous Tue 04 Feb 2020 16:09:13 No.9495748 Report

Quoted By: >>9495762 >>9495774

>>9495641
Legitimate question. What's a safe way to do hacking like this without being caught? Would only a VPN be a solution if the VPN isn't owner by someone that would give up your name? I'm guessing hiding under another layer of virtual machines doesn't do shit right? I used to meme proctor exams doing that but I think it doesn't matter because your public ip is your gateway router

Anonymous

Anonymous Tue 04 Feb 2020 16:09:16 No.9495749 Report

Quoted By: >>9495760

>>9495741
>Seems like a honey trap that they set to try and get groups like /pol/ to fall into so they have a scapegoat for "hackers" that rigged the election.

this, they'll use it to try shut pol down

Anonymous

View Same Google ImgOps iqdb SauceNAO backdoor.gif, 6KiB, 612x101

Anonymous Tue 04 Feb 2020 16:09:45 No.9495750 Report

Quoted By:

>>9495639
For (You), faggot.

Anonymous

Anonymous Tue 04 Feb 2020 16:09:52 No.9495751 Report

Quoted By: >>9495756 >>9495759

>>9495636
I that a fucking SQL injection?
How fucking incompetent can you be?

Anonymous

Anonymous Tue 04 Feb 2020 16:10:02 No.9495752 Report

Quoted By:

Im too lazy, whats the app called?

I have already broke through

shadow.io/admin

Anonymous

Anonymous Tue 04 Feb 2020 16:10:11 No.9495753 Report

Quoted By:

>>9495636

just write && 1 = 1

Anonymous

View Same Google ImgOps iqdb SauceNAO 1580563672965m.jpg, 253KiB, 699x1024

Anonymous Tue 04 Feb 2020 16:10:13 No.9495754 Report

Quoted By: >>9495792 >>9495793

>>9495701
>first, last, house # equals
>zip code LIKE
What did they mean by this?

Anonymous

Anonymous Tue 04 Feb 2020 16:10:58 No.9495755 Report

Quoted By: >>9495818

>>9495664
There's only one type of coder I trust
The kind that's slightly overweight, browses 4chan, low-key fucks traps, and is basically NEET doing occasional free-lance work for on-demand tendies, but could be a sys admin making 100k+ if he wanted to
If your coder isn't the above they'll be shit

Anonymous

Anonymous Tue 04 Feb 2020 16:11:02 No.9495756 Report

Quoted By: >>9495768

>>9495751
>Implying it's not by by design
The DNC does not tolerate upstarts. You will accept the machine candidate.

Anonymous

Anonymous Tue 04 Feb 2020 16:11:26 No.9495757 Report

Quoted By:

>>9495636
>hey fellow anons
>wanna tamper with elections with me?

Anonymous

Anonymous Tue 04 Feb 2020 16:11:27 No.9495758 Report

Quoted By: >>9495781

>>9495638
Can you hack into my exs photobucket account please?

Anonymous

Anonymous Tue 04 Feb 2020 16:11:41 No.9495759 Report

Quoted By:

>>9495751
>>9495664
There's your answer

Anonymous

Anonymous Tue 04 Feb 2020 16:11:59 No.9495760 Report

Quoted By:

>>9495749
>this, they'll use it to try shut pol down

They would have by now. /pol/ is a containment board and b& it would defeat the purpose.

Anonymous

Anonymous Tue 04 Feb 2020 16:13:04 No.9495761 Report

Quoted By:

https://twitter.com/mikko/status/1224619526370840578?s=20

Anonymous

Anonymous Tue 04 Feb 2020 16:14:05 No.9495762 Report

Quoted By:

>>9495748
Learn PHP, create your own server and practice with your own servers database. Most people who allow access to databases that arent sanitized are small time retails that let you search through some catalog. This shit is barely hacking.

Anonymous

Anonymous Tue 04 Feb 2020 16:14:33 No.9495763 Report

Quoted By: >>9495766 >>9495770 >>9495772 >>9495777 >>9495805

Also another question. How do you perform a sql injection on an unsanitized site but you don't know the names of the tables?

Anonymous

Anonymous Tue 04 Feb 2020 16:15:12 No.9495764 Report

Quoted By:

>>9495664
jfc, we unironically need to start up the rwds just to eliminate these mentally retarded soi people.

Anonymous

Anonymous Tue 04 Feb 2020 16:15:24 No.9495765 Report

Quoted By:

>>9495745
this

Anonymous

Anonymous Tue 04 Feb 2020 16:15:34 No.9495766 Report

Quoted By: >>9495797

>>9495763
Im pretty sure you have to use some other injections to probe around and find references or some shit

Anonymous

Anonymous Tue 04 Feb 2020 16:16:20 No.9495767 Report

Quoted By: >>9495778 >>9495903

>>9495638
Your not a haxor dumb ass as thats a broken query. Not an exploit. Its morons like you that continue to push Muh Russian narrative. Im beginning to hate the US cause of people like you, Borrat...

Anonymous

View Same Google ImgOps iqdb SauceNAO Mayor.jpg, 75KiB, 856x570

Anonymous Tue 04 Feb 2020 16:17:46 No.9495768 Report

Quoted By:

>>9495756
Just like Knox County Tennessee accepted the big red machine candidate after hacking took place.

Anonymous

Anonymous Tue 04 Feb 2020 16:17:52 No.9495769 Report

Quoted By:

>>9495714
Nah I saw it was already all over the news. Doesn't matter at this point.

Anonymous

Anonymous Tue 04 Feb 2020 16:18:40 No.9495770 Report

Quoted By:

>>9495763
Update statements hate unclosed quotes. Try signing up for a site then edit some of your info with an unclosed ' or ". If it gives you an error just examine it.

Anonymous

Anonymous Tue 04 Feb 2020 16:18:51 No.9495771 Report

Quoted By: >>9495775 >>9495904

>>9495636
How in the fuck do you publish an app that is vulnerable to SQL injection in 2020?

Anonymous

Anonymous Tue 04 Feb 2020 16:19:35 No.9495772 Report

Quoted By:

>>9495763
The name of the table is listed right there in the error pop up. It’s “voter”.

Anonymous

View Same Google ImgOps iqdb SauceNAO mcmahon.gif, 3MiB, 520x293

Anonymous Tue 04 Feb 2020 16:19:39 No.9495773 Report

Quoted By: >>9495779

did anyone figure out what you can do with it yet? can you show tables, elements, etc? can you add hitler as a candidate and then make him #1?

Anonymous

Anonymous Tue 04 Feb 2020 16:19:52 No.9495774 Report

Quoted By:

>>9495748
If you want to be anonymous you have to use tor, but there are a shitload of ways to kill your anonymity and you obviously aren't prepared to do anything, so just move to some shit country with no extradition treaty with america. Be sure to have cash ready to bribe the local law enforcement and you're good to go.

Anonymous

Anonymous Tue 04 Feb 2020 16:20:11 No.9495775 Report

Quoted By:

>>9495771
You would be amazed at how often SQLi is still a thing, people get paid for them in security almost monthly

Anonymous

Anonymous Tue 04 Feb 2020 16:20:29 No.9495776 Report

Quoted By:

>>9495636

Get out Buttgag

Youre not blaming this on us

Anonymous

Anonymous Tue 04 Feb 2020 16:20:35 No.9495777 Report

Quoted By:

>>9495763
Heartbleed exploit?

Anonymous

Anonymous Tue 04 Feb 2020 16:20:57 No.9495778 Report

Quoted By:

>>9495767
Displaying table and column and join information in an error message is absolutely a good way to get your shit pwned

Anonymous

Anonymous Tue 04 Feb 2020 16:21:21 No.9495779 Report

Quoted By:

>>9495773
>can you add hitler as a candidate and then make him #1?

Hitler wins with 6,000,000 votes.

Anonymous

View Same Google ImgOps iqdb SauceNAO mikko.jpg, 93KiB, 905x821

Anonymous Tue 04 Feb 2020 16:21:32 No.9495780 Report

Quoted By: >>9495786

Anonymous

Anonymous Tue 04 Feb 2020 16:21:38 No.9495781 Report

Quoted By:

>>9495758
yes, easy, $250 usd.

Anonymous

Anonymous Tue 04 Feb 2020 16:21:44 No.9495782 Report

Quoted By:

Is OP a faggot, cause I'm waiting for more screenshots of shit he tried

Anonymous

Anonymous Tue 04 Feb 2020 16:22:19 No.9495783 Report

Quoted By:

whats the fucking name of the app faggots?

Anonymous

View Same Google ImgOps iqdb SauceNAO Screen Shot 2020-02-03 at 4.24.1 (...).png, 431KiB, 635x978

Anonymous Tue 04 Feb 2020 16:23:04 No.9495784 Report

Quoted By:

>>9495639
>>Pete ButtFag made an app with a backdoor
KEK

Anonymous

Anonymous Tue 04 Feb 2020 16:23:22 No.9495785 Report

Quoted By: >>9495789

>>9495636
Just gonna remind people here that this will get you 20 years in a federal prison

Anonymous

Anonymous Tue 04 Feb 2020 16:23:43 No.9495786 Report

Quoted By: >>9495791 >>9495794 >>9495901

>>9495780
This is getting fucking pathetic. A 10 grade programming class could have made a better app than this. WTF?

Anonymous

Anonymous Tue 04 Feb 2020 16:24:21 No.9495787 Report

Quoted By:

>>9495702
SHADOOOWWWWW, WE HAVE YOUR TAABBLEEESS

Anonymous

Anonymous Tue 04 Feb 2020 16:25:05 No.9495788 Report

Quoted By:

>>9495644
You need to GROUP BY Candidate you dumbass.

Anonymous

Anonymous Tue 04 Feb 2020 16:25:07 No.9495789 Report

Quoted By:

>>9495785
QUIET LEAF

Anonymous

View Same Google ImgOps iqdb SauceNAO nudge nudge wink wink.jpg, 60KiB, 694x480

Anonymous Tue 04 Feb 2020 16:25:48 No.9495790 Report

Quoted By:

>>9495639

Anonymous

Anonymous Tue 04 Feb 2020 16:26:00 No.9495791 Report

Quoted By:

>>9495786
https://twitter.com/KirbyGlad/status/1224606779171991552
this guy apparently. a sad old white utahn who hasn't updated his skills in 20 years, not a nonbinary womyn or whatever. /pol/ btfo

Anonymous

Anonymous Tue 04 Feb 2020 16:26:31 No.9495792 Report

Quoted By: >>9495802

>>9495754
I was wondering the same thing. I guess they are using ms access, due to the `%` usage instead of `*` for a wild card.

Anonymous

Anonymous Tue 04 Feb 2020 16:26:42 No.9495793 Report

Quoted By:

>>9495754
They want to get zip plus 4 addresses.

Anonymous

Anonymous Tue 04 Feb 2020 16:26:45 No.9495794 Report

Quoted By:

>>9495786
Maybe that's exactly the problem.

It's gotten too easy to create something that LOOKS like it's working.
And if you then do no testing...

Anonymous

Anonymous Tue 04 Feb 2020 16:26:56 No.9495795 Report

Quoted By:

>>9495710
This

Anonymous

Anonymous Tue 04 Feb 2020 16:28:18 No.9495796 Report

Quoted By: >>9495799

>>9495636
>It only shows that the creator of the app was absolutely incompetent at best
It shows that he was an incompetent low IQ anti-Christ (jew) and got the job through nepotism and in group preference.

Anonymous

Anonymous Tue 04 Feb 2020 16:29:04 No.9495797 Report

Quoted By:

>>9495766
Yep then once you get info like OP it can be devastating. Bobby drop table incoming

Anonymous

Anonymous Tue 04 Feb 2020 16:29:05 No.9495798 Report

Quoted By:

if anyone wants to know what privileges you got, just remember its SHOW GRANTS;

Anonymous

Anonymous Tue 04 Feb 2020 16:29:21 No.9495799 Report

Quoted By:

>>9495796
Not passing strings through a prepared statement suggests the creator is either retarded, a minority, or a woman. Basic security here.

Anonymous

Anonymous Tue 04 Feb 2020 16:29:56 No.9495800 Report

Quoted By: >>9495816

4CHINZ haxed DNC
OMG kvetch kvetch
SHUT IT DOWN

Anonymous

Anonymous Tue 04 Feb 2020 16:31:44 No.9495801 Report

Quoted By: >>9495804

>4chan hacked the election to ensure a young white man won

Could be a fun narrative.

Anonymous

Anonymous Tue 04 Feb 2020 16:31:54 No.9495802 Report

Quoted By: >>9495817

>>9495792
Its access, most likely 2007+ version

Anonymous

Anonymous Tue 04 Feb 2020 16:32:03 No.9495803 Report

Quoted By:

>>9495636
>xir didn't use bind variables
NGMI. Bet it's SQL Express, too.

Anonymous

Anonymous Tue 04 Feb 2020 16:32:15 No.9495804 Report

Quoted By: >>9495808

>>9495801
>4chan dropped the table and deleted the whole thing
Could be even funnier

Anonymous

View Same Google ImgOps iqdb SauceNAO 1580801570578.jpg, 82KiB, 1024x957

Anonymous Tue 04 Feb 2020 16:32:17 No.9495805 Report

Quoted By:

>>9495763
By doing unions or digging through the info schema table if the apps sql perms allows.

Anonymous

View Same Google ImgOps iqdb SauceNAO Screen Shot 2020-01-31 at 4.34.4 (...).png, 657KiB, 1087x1117

Anonymous Tue 04 Feb 2020 16:32:22 No.9495806 Report

Quoted By:

>>9495710

Anonymous

View Same Google ImgOps iqdb SauceNAO double-face-palm.jpg, 66KiB, 750x600

Anonymous Tue 04 Feb 2020 16:32:53 No.9495807 Report

Quoted By:

>>9495636

The process you described sounds like an SQL Injection exploit. If they left their election counting SQL servers open to THAT trivial of an attack, FROM THE INTERNET, then they are either COMPLETE FUCKING MORONS, or DELIBERATELY TRYING TO FUCK WITH THE RESULTS.

In EITHER case, they're better off HAND COUNTING PAPER BALLOTS. Which is how EVERYONE should do it. With _ONLY_ trusted people using a TRUSTED system of LOCKED BOXES and MULTIPLE SIGNATURES on each end of transport.

This way you can't just "find" a bunch of ballots...

Anonymous

Anonymous Tue 04 Feb 2020 16:33:33 No.9495808 Report

Quoted By:

>>9495804
>Could be even funnier

Yeah but I mean if Buttfaggot wins at all everyone would be primed to believe there was a gay op afoot.

Anonymous

Anonymous Tue 04 Feb 2020 16:34:00 No.9495809 Report

Quoted By: >>9495812

https://www.youtube.com/watch?v=v5hfbALvhMo

Anonymous

Anonymous Tue 04 Feb 2020 16:34:42 No.9495810 Report

Quoted By:

>>9495636
Better yet, get this to /r/politics. They'll rage even more about Bernie lel

Anonymous

Anonymous Tue 04 Feb 2020 16:35:12 No.9495811 Report

Quoted By:

>>9495668
Reminds me of that overpass in Florida that collapsed before they even finished it, kek.

Anonymous

View Same Google ImgOps iqdb SauceNAO bc3.png, 249KiB, 680x521

Anonymous Tue 04 Feb 2020 16:35:15 No.9495812 Report

Quoted By: >>9495814

>>9495809
oh no no no

Anonymous

Anonymous Tue 04 Feb 2020 16:35:40 No.9495813 Report

Quoted By:

I can't wait for this year's Defcon talk about this.

Anonymous

Anonymous Tue 04 Feb 2020 16:35:56 No.9495814 Report

Quoted By:

>>9495812
>We'll test that shit for you
>Go fuck yourself DHS
LMFAO

Anonymous

Anonymous Tue 04 Feb 2020 16:36:59 No.9495815 Report

Quoted By:

>>9495636
If your large block of text is asking
>could this be used for SQL injection

The answer is probably yes

Having the error message display raw SQL goes far beyond pajeet-tier, it shows a total lack of ability and disregard for security that's almost kind of impressive

Someone start fucking around with comments and see what happens

Anonymous

Anonymous Tue 04 Feb 2020 16:37:30 No.9495816 Report

Quoted By: >>9495894

>>9495800
When Kane was elected, there was a DDOS attack. That's 4chan's MO.

Anonymous

Anonymous Tue 04 Feb 2020 16:40:15 No.9495817 Report

Quoted By:

>>9495802
>Its access.
That is what I said, when I said "ms access".

Anonymous

Anonymous Tue 04 Feb 2020 16:40:20 No.9495818 Report

Quoted By: >>9495824 >>9495832 >>9495834 >>9495875

>>9495755
The stereotype for coders always tends to depict a fat, balding, out of shape, ugly, basement-dwelling, cheetoh-dust covered, jizz and shit smelling, neckbearded, hyper-aggressive, highly opinionated, socially retarded autist for a reason. Those sorts of people see code like fucking Neo. The truth is, if you're not this deep into it, you are, at best, a supporting role for people like this. They have shed their human essence to merge with machines the best they can with today's technology. Given the option, they would willingly connect their brain to the system just so they could get past the carpal tunnel injuries and avoid bathroom breaks.

Anonymous

Anonymous Tue 04 Feb 2020 16:40:29 No.9495819 Report

Quoted By:

Paste a "show tech-support" from the firewall as well as a "sh crypto isakmp sa" and "sh crypto ipsec sa"

Anonymous

Anonymous Tue 04 Feb 2020 16:40:56 No.9495820 Report

Quoted By: >>9495821 >>9495838 >>9495873

>>9495648
You mean "DELETE * FROM VOTER"

Anonymous

Anonymous Tue 04 Feb 2020 16:41:14 No.9495821 Report

Quoted By:

>>9495820
Kek

Anonymous

Anonymous Tue 04 Feb 2020 16:41:14 No.9495822 Report

Quoted By:

>>9495707
I wonder if they are retarded Reddit furries like Hilldawg's tech guy LOL

Anonymous

Anonymous Tue 04 Feb 2020 16:41:54 No.9495823 Report

Quoted By:

>>9495680

this is the most retarded shit jesus christ you're so fucking retarded

Anonymous

Anonymous Tue 04 Feb 2020 16:42:18 No.9495824 Report

Quoted By:

>>9495818
>Given the option, they would willingly connect their brain to the system just so they could get past the carpal tunnel injuries and avoid bathroom breaks.
and sleep. I loathe sleep.

Anonymous

Anonymous Tue 04 Feb 2020 16:42:59 No.9495825 Report

Quoted By: >>9495828

>>9495711
underrated

Anonymous

View Same Google ImgOps iqdb SauceNAO laughs_geologicaly.jpg, 151KiB, 500x461

Anonymous Tue 04 Feb 2020 16:43:39 No.9495826 Report

Quoted By: >>9495876

>>9495636
amazing to me that these "shadow" idiots are such noobs that they wouldn't redirect STDERR to a local log, or at least /dev/null. Nope, just broadcast the error on every device, what could go wrong?

Anonymous

Anonymous Tue 04 Feb 2020 16:43:54 No.9495827 Report

Quoted By:

>>9495680
You can literally just `curl -F` bullshit in. What kind of a brainlet needs to rely on libraries?

Anonymous

Anonymous Tue 04 Feb 2020 16:44:55 No.9495828 Report

Quoted By:

>>9495825
Kek code without borders

This is such a disaster and now they will claim 4chan did something

Anonymous

Anonymous Tue 04 Feb 2020 16:45:00 No.9495829 Report

Quoted By:

>>9495716
Nepotism always plays a part too ofc.
I'm sure all those idiots were someone's buddy, roommate, sister, girlfriend etc.

Anonymous

Anonymous Tue 04 Feb 2020 16:45:44 No.9495830 Report

Quoted By: >>9495833

>>9495636
Comp sci major here.

Securing a DB is easy. Not doing so is ultimate retard incompetent or deliberate.

Anonymous

Anonymous Tue 04 Feb 2020 16:46:06 No.9495831 Report

Quoted By:

>>9495636
You are in violation of US law and will be reported to the authorities. Fucking retard thinking 4chan is a safe space for breaking the law.

Anonymous

View Same Google ImgOps iqdb SauceNAO elfin-ass.jpg, 62KiB, 349x523

Anonymous Tue 04 Feb 2020 16:46:45 No.9495832 Report

Quoted By: >>9495853 >>9495874

>>9495818
>Those sorts of people see code like fucking Neo.
if you don't, you will be quickly pwned by those who do.
PS I don't fit your description at all.

Anonymous

Anonymous Tue 04 Feb 2020 16:46:50 No.9495833 Report

Quoted By: >>9495839

>>9495830
All the dnc has to do is rig it using a russian vpn and they can scapegoat putin

Anonymous

Anonymous Tue 04 Feb 2020 16:46:51 No.9495834 Report

Quoted By:

>>9495818
so many managers think exactly this. then they're surprised when the programmer they hired turns out to be an unpleasant idiot and a pedophile and nobody else wants to work there

Anonymous

Anonymous Tue 04 Feb 2020 16:47:07 No.9495835 Report

Quoted By: >>9495844 >>9495848 >>9495854

>>9495745
how would you search a huge fucking database without being able to filter by names, zips, etc. that is a mostly prepared statement with just text inputs being interpolated.

Anonymous

Anonymous Tue 04 Feb 2020 16:47:54 No.9495836 Report

Quoted By:

reported for illegal hacking.

Anonymous

Anonymous Tue 04 Feb 2020 16:48:07 No.9495837 Report

Quoted By:

>>9495636
>/
I do not know what the picture I posted means in totality. Maybe I have made things less ideal because I have made something easier to break. This was not my intention. I just had questions. I am an engineer. May God have mercy on my soul. Link related.

https://www.youtube.com/watch?v=BKorP55AqvgType a message

Anonymous

Anonymous Tue 04 Feb 2020 16:48:11 No.9495838 Report

Quoted By:

>>9495820
Nevermind the * would create an error. Delete all is implied without the *.

Anonymous

View Same Google ImgOps iqdb SauceNAO 1580067554639.gif, 14KiB, 220x220

Anonymous Tue 04 Feb 2020 16:48:29 No.9495839 Report

Quoted By:

>>9495833
>blame russia
I expected them to be doing this already.
That they aren't means they may be truly incompetent.

Anonymous

Anonymous Tue 04 Feb 2020 16:49:07 No.9495840 Report

Quoted By: >>9495845 >>9495850

>>9495679
>use an Israeli vpn for the keks.
ironically this!

Anonymous

Anonymous Tue 04 Feb 2020 16:49:23 No.9495841 Report

Quoted By: >>9495847

are you sure you're not all being baited? the app is just printing out an SQL error. where's the proof that the user can actually change stuff?

Anonymous

Anonymous Tue 04 Feb 2020 16:49:38 No.9495842 Report

Quoted By:

No way this is real

Anonymous

Anonymous Tue 04 Feb 2020 16:49:46 No.9495843 Report

Quoted By:

>>9495658
This. "Oh no we didn't have the results, because of the nefarious hacker known as 4chan."

Anonymous

Anonymous Tue 04 Feb 2020 16:49:53 No.9495844 Report

Quoted By: >>9495854

>>9495835
you could use google to look up the term. basically you hand the query string and the parameters to the database separately instead of mashing them together in the application, which is always the correct solution unless you're using an ancient version of mysql or never learned any better

Anonymous

Anonymous Tue 04 Feb 2020 16:50:07 No.9495845 Report

Quoted By: >>9495850

>>9495840
lol

Anonymous

Anonymous Tue 04 Feb 2020 16:50:39 No.9495846 Report

Quoted By:

>>9495636
DROP DATABASE democucks;

Anonymous

Anonymous Tue 04 Feb 2020 16:51:00 No.9495847 Report

Quoted By: >>9495850

>>9495841
there's no proof of anything and not even a link in the entire thread. welcome to 4chan, we're all here to waste our time

Anonymous

Anonymous Tue 04 Feb 2020 16:52:01 No.9495848 Report

Quoted By:

>>9495835
rather than DESCRIBE it for you,
https://www.geeksforgeeks.org/sql-describe-statement/

Anonymous

View Same Google ImgOps iqdb SauceNAO paulie 1.jpg, 26KiB, 739x415

Anonymous Tue 04 Feb 2020 16:53:17 No.9495849 Report

Quoted By: >>9495864

>>9495639
You hear what I said Tone? I said Pete ButtFag made an app with a backdoor.

Anonymous

View Same Google ImgOps iqdb SauceNAO boomer_meme2.jpg, 102KiB, 960x960

Anonymous Tue 04 Feb 2020 16:53:24 No.9495850 Report

Quoted By: >>9495865

>>9495840
>>9495845
>hello, based department? -- yes, there's something you need to see

>>9495847
i think everyone in this thread has been well and truly set up and owned.

Anonymous

Anonymous Tue 04 Feb 2020 16:53:38 No.9495851 Report

Quoted By:

>>9495697
it was designed explicitly to malfunction so results could be changed from the inside

Anonymous

Anonymous Tue 04 Feb 2020 16:53:44 No.9495852 Report

Quoted By:

>>9495710
Bingo

Anonymous

Anonymous Tue 04 Feb 2020 16:54:06 No.9495853 Report

Quoted By:

>>9495832
tranny-kun your code is shit
show wound or gtfo

Anonymous

Anonymous Tue 04 Feb 2020 16:54:19 No.9495854 Report

Quoted By: >>9495858 >>9495860

>>9495835
>huge
Irrelevant, filter by names + zip makes sense though. Sanitize the strings. Alternatively, you could just hand out a user id.
>>9495844
>use google to look up the term
Don't use google.
>hand the query string + args to the database separately instead of mashing them together in the application.
They should have just done this:
>SELECT * FROM users WHERE first_name=${first_name} AND last_name=${last_name} AND zip_code=${zip_code}

Anonymous

View Same Google ImgOps iqdb SauceNAO 1578934750775.png, 289KiB, 637x474

Anonymous Tue 04 Feb 2020 16:54:59 No.9495855 Report

Quoted By:

https://www.youtube.com/watch?v=LkH2r-sNjQs

Anonymous

Anonymous Tue 04 Feb 2020 16:55:16 No.9495856 Report

Quoted By: >>9495867

>>9495664
Oh god. Those two men must do so much extra work.

Nightmare level imagery there. I bet they get paid less, etc. also.

Anonymous

Anonymous Tue 04 Feb 2020 16:55:22 No.9495857 Report

Quoted By: >>9495861

>>9495741
Or their tech team is literally run by a bunch of diversity hired women and beta orbiters

Anonymous

Anonymous Tue 04 Feb 2020 16:55:57 No.9495858 Report

Quoted By: >>9495870

>>9495854
user id + password wouldn't be terrible.
Although, expecting them to use proper salting and hashing would be outrageous at this point.
The problem is all this is trivial -- I could build this app in a matter of 30-45 minutes, and it would work fine.

Anonymous

Anonymous Tue 04 Feb 2020 16:56:11 No.9495859 Report

Quoted By:

>>9495659
SQL injection is one of the first things you will learn about in any class that covers backend development for a website, a class on PHP, or a class on database design/administration.

There's a connection because its easy and back then people were fucking retards that consistently made the mistake of not sanitizing database inputs.
They still exist but most of them either have learned the hard way it seems. The retards that designed this sight seem to be stuck in 2005.

Anonymous

Anonymous Tue 04 Feb 2020 16:56:25 No.9495860 Report

Quoted By: >>9495871 >>9495899

>>9495854
i stick to /pol/ instead of /g/ to avoid you dunning-kruger idiots. at least the teenage neonazis are amusing

Anonymous

Anonymous Tue 04 Feb 2020 16:56:46 No.9495861 Report

Quoted By:

>>9495857
>Or their tech team is literally run by a bunch of diversity hired women and beta orbiters

If reporting bugs is misogyny, there are no bugs.

Adolf/fit/ler !!e9x9LKCQ0h1

Adolf/fit/ler !!e9x9LKCQ0h1 Tue 04 Feb 2020 16:57:13 No.9495862 Report

Quoted By:

>>9495636
Yah. There is a reason SQL injections are illegal.

If you were to do it to their servers you could figure out the weights to their system and expose them for misappropriating data.

But that would be "illegal"

Anonymous

Anonymous Tue 04 Feb 2020 16:57:35 No.9495863 Report

Quoted By:

DO IT FAGGOT

Anonymous

Anonymous Tue 04 Feb 2020 16:58:00 No.9495864 Report

Quoted By:

>>9495849
Hey Tone, how did his wooden backdoor keep the gas in?

Anonymous

Anonymous Tue 04 Feb 2020 16:58:15 No.9495865 Report

Quoted By: >>9495879

>>9495850
>i think everyone in this thread has been well and truly set up and owned.
you would think that the moron "coders" of the left could find an easier way to take the "Avoiding SQL Injection For Beginners" course than learning it in this thread.

Anonymous

Anonymous Tue 04 Feb 2020 16:59:17 No.9495866 Report

Quoted By:

>>9495639
Wew Pete.

Anonymous

Anonymous Tue 04 Feb 2020 16:59:26 No.9495867 Report

Quoted By: >>9495883

>>9495856
>men
Anon, I...

Anonymous

Anonymous Tue 04 Feb 2020 17:00:05 No.9495868 Report

Quoted By:

>>9495716
I have first hand experience in this, passed over multiple times for promotions so that my company could hire zero experience, zero education females at a higher pay rate than me. I left that company.

Anonymous

View Same Google ImgOps iqdb SauceNAO Hye-91a5_400x400.jpg, 28KiB, 400x400

Anonymous Tue 04 Feb 2020 17:00:33 No.9495869 Report

Quoted By:

>>9495680
What the fuck did you just say, Nigga?

Anonymous

Anonymous Tue 04 Feb 2020 17:00:51 No.9495870 Report

Quoted By: >>9495899

>>9495858
>I could build this app
why even bother with a stupid "app?" which of course requires at least two separate versions for IOS vs Android?
Any decent web developer could crank this out in minutes, inventing nothing, with a very high degree of security.

Anonymous

Anonymous Tue 04 Feb 2020 17:01:53 No.9495871 Report

Quoted By:

>>9495860
Mister, mister, you've got to listen to this song, it is extremely on-topic related to your post
https://www.bitchute.com/video/HAYySGVkxDiJ/

Anonymous

Anonymous Tue 04 Feb 2020 17:02:12 No.9495872 Report

Quoted By:

This app is such a disaster...for Pete's sake!

Anonymous

Anonymous Tue 04 Feb 2020 17:02:18 No.9495873 Report

Quoted By:

>>9495820
Or just DROP TABLE voter;

Anonymous

Anonymous Tue 04 Feb 2020 17:02:48 No.9495874 Report

Quoted By:

>>9495832
I love Elfins now

Anonymous

Anonymous Tue 04 Feb 2020 17:03:16 No.9495875 Report

Quoted By:

>>9495818
I'm a junior programmer and I feel this. The main problem is that I'm not autistic. Programming is like the one thing where being autism automatically gives you an advantage.

Anonymous

Anonymous Tue 04 Feb 2020 17:03:18 No.9495876 Report

Quoted By:

>>9495826
Yep an error that literally displays your database table and column information. What could go wrong?

Anonymous

View Same Google ImgOps iqdb SauceNAO i backtraced your IP.jpg, 38KiB, 403x396

Anonymous Tue 04 Feb 2020 17:03:32 No.9495877 Report

Quoted By:

>>9495680

Anonymous

View Same Google ImgOps iqdb SauceNAO 1488993560523.jpg, 40KiB, 1278x638

Anonymous Tue 04 Feb 2020 17:04:39 No.9495878 Report

Quoted By:

>>9495680

Anonymous

Anonymous Tue 04 Feb 2020 17:05:28 No.9495879 Report

Quoted By: >>9495885

>>9495865
they sure failed to avoid it, but that doesn't mean it's possible either. i see no proof that the user has permission to delete, update or create where they shouldn't be able to. i probably coulda checked myself by now but i dont have a goy phone

Anonymous

Anonymous Tue 04 Feb 2020 17:07:22 No.9495880 Report

Quoted By:

>>9495636
replace all candidates with Trump

Anonymous

Anonymous Tue 04 Feb 2020 17:07:36 No.9495881 Report

Quoted By:

>>9495680
>grab the app run a tcpdump on a DHCP server
DHCP server won't have squat that you couldn't get from ARP table.
if you want the URL, put your DNS server into verbose and check the logs.

Anonymous

Anonymous Tue 04 Feb 2020 17:07:55 No.9495882 Report

Quoted By:

>>9495648
mysql usually only executes the first part.

Anonymous

Anonymous Tue 04 Feb 2020 17:08:10 No.9495883 Report

Quoted By:

>>9495867
Even poodles are a Type of dog.

Anonymous

Anonymous Tue 04 Feb 2020 17:09:30 No.9495884 Report

Quoted By:

>>9495720
stonetear

Anonymous

Anonymous Tue 04 Feb 2020 17:09:51 No.9495885 Report

Quoted By:

>>9495879
>i see no proof that the user has permission to delete, update or create where they shouldn't be able to.
Considering the existing level of fail, I doubt that proper authentication is taking place, and even if it was, SQL injection can readily circumvent. Would bet that the "app" relied on obscurity for security, which of course is nonsense.

Anonymous

Anonymous Tue 04 Feb 2020 17:10:22 No.9495886 Report

Quoted By: >>9495888 >>9495890

>>9495737
Lol no one worth a shit is on /g/. /g/ is for fucking retarded degenerates that argue about linux distros despite being too stupid to actually use linux on a day to day basis. I once got a bunch of compliments for explaining how one would go about setting up their own isp and I only explained the bare minimum of getting a peering agreement and buying ips and those motherfuckers were in awe.

t.uses Debian on a daily basis to lurk /pol/, the only good board.

Anonymous

Anonymous Tue 04 Feb 2020 17:10:53 No.9495887 Report

Quoted By:

I understand a fair bit of SQL, but is this really as retarded as it looks? What I'm seeing is that you could literally just type your SQL query into those blanks and they will insert it into their query string without any verification? That's just amateur coding in general. Always sanitize input.

Anonymous

Anonymous Tue 04 Feb 2020 17:11:29 No.9495888 Report

Quoted By: >>9495889 >>9495893

>>9495886
Install Gentoo fagit

Anonymous

View Same Google ImgOps iqdb SauceNAO archlinux.png, 184KiB, 400x400

Anonymous Tue 04 Feb 2020 17:12:45 No.9495889 Report

Quoted By:

>>9495888

Anonymous

Anonymous Tue 04 Feb 2020 17:13:04 No.9495890 Report

Quoted By: >>9495895

>>9495886
>t.uses Debian on a daily basis to lurk /pol/, the only good board.

I believe you entirely because of the boost to my ego.

Anonymous

Anonymous Tue 04 Feb 2020 17:13:06 No.9495891 Report

Quoted By:

SELECT * FROM LOLOLOLOL WHERE MASSIVEKEK = TRUE

Anonymous

View Same Google ImgOps iqdb SauceNAO 5DBB6475-0D2E-4C9A-9766-76B49E4A (...).jpg, 169KiB, 1024x595

Anonymous Tue 04 Feb 2020 17:13:42 No.9495892 Report

Quoted By: >>9495896

>>9495668
>Never let women do tech work
pic related
t.Chad

Anonymous

Anonymous Tue 04 Feb 2020 17:13:44 No.9495893 Report

Quoted By: >>9495905

>>9495888
only niggers and tryhards use gentoo as their daily driver. I want a machine that works.
You wouldn't happen to be a negro anon, would you?

Anonymous

Anonymous Tue 04 Feb 2020 17:14:47 No.9495894 Report

Quoted By: >>9495900 >>9495910

>>9495816
>4chan's MO
Nigger ddos has been around as long as the internet. It used to be called flooding.

Anonymous

View Same Google ImgOps iqdb SauceNAO cooldoggo.jpg, 563KiB, 3024x4032

Anonymous Tue 04 Feb 2020 17:15:18 No.9495895 Report

Quoted By: >>9495898

>>9495890

Anonymous

Anonymous Tue 04 Feb 2020 17:15:31 No.9495896 Report

Quoted By:

>>9495892
From MSNBC (last night as story was breaking) about Shadow, Inc which made the app
>app sent to precinct big whigs a week ago
>when downloaded normies received security warnings
>'app can harm phone; click ok to continue'
>msm knew this a week ago
>on election night, big whigs couldn't log in or even download app
>Dems wouldn't tell msm who made the app (as of 3 weeks ago)
>some tech reporter figured it out
>Iowa and Nevada dems hired Shadow, Inc
>paid over $50K
>Shadow site claims: we are campaign & technology veterans who have built and implemented technology for (wait for it)...
>Hillary for America
>Obama for America
>Google
>Apple
>AFLCIO
>The DNC
Happens every time

Anonymous

Anonymous Tue 04 Feb 2020 17:16:00 No.9495897 Report

Quoted By:

>>9495636
Failed validation because you entered bs zip and names.

Whoever coded the front end is a moron and didn't do his/her error handling properly
>t. IT anon

Anonymous

Anonymous Tue 04 Feb 2020 17:16:52 No.9495898 Report

Quoted By: >>9495902

>>9495895
Your boyfriend is cute.

Anonymous

Anonymous Tue 04 Feb 2020 17:17:28 No.9495899 Report

Quoted By: >>9495906 >>9495909

>>9495860
But I don't go to /g/ -- On top of that, where is the dunning-kruger effect accusation coming from?
>>9495870
Ok, you don't want me to be broad when I say "app". Understood, I'll rephrase. I could design, create, and implement this solution in a rather quick and efficient manner, with reasonable security. [ooh job lingo!]
I would use nginx+php+postgresql,and yes even though php is terrible. It would work fine for this problem. A mobile application is pointless.
Let's go a step further, a dozen sbcs with a minimalist gentoo install + Qutebrowser in kiosk mode in the building for people to vote with. That's what I would do. Also, I'd have redundancy. rsync to a dozen different servers, every 60 seconds.

Anonymous

Anonymous Tue 04 Feb 2020 17:17:29 No.9495900 Report

Quoted By:

>>9495894
>Nigger ddos has been around as long as the internet. It used to be called flooding.

Back in my day every anon had a personal low orbit ion cannon.

Anonymous

Anonymous Tue 04 Feb 2020 17:19:00 No.9495901 Report

Quoted By:

>>9495786
UI and frontend shit is like 10% of an app for something like this. Bells and whistles are the easy part.

Anonymous

Anonymous Tue 04 Feb 2020 17:19:11 No.9495902 Report

Quoted By:

>>9495898
He's whiter than you at least.

Anonymous

Anonymous Tue 04 Feb 2020 17:19:12 No.9495903 Report

Quoted By:

>>9495767
Its not a broken query. Its retarded front end coding with shit error handling and non existent front end validation. What it says is that there are no valid results for the name and zip entered after checking the DB

Anonymous

Anonymous Tue 04 Feb 2020 17:19:43 No.9495904 Report

Quoted By:

>>9495771
This

Anonymous

Anonymous Tue 04 Feb 2020 17:20:07 No.9495905 Report

Quoted By: >>9495928

>>9495893
>I want a machine that works.
Install Ubuntu. Dumb name, really solid OS, you won't spend days trying to get your WIFI to work.
Then upgrade it to Kubuntu.

Anonymous

Anonymous Tue 04 Feb 2020 17:20:22 No.9495906 Report

Quoted By:

>>9495899
you should go to /g/. i know you think you're the specialest snowflake who's too special to use search engines but in reality there are ten thousand cookie cutter copies of your autistic ass and they all hang out there

Anonymous

View Same Google ImgOps iqdb SauceNAO 8F0CF42F-1A35-4CF9-9DB6-52C229AF (...).jpg, 158KiB, 900x900

Anonymous Tue 04 Feb 2020 17:21:06 No.9495907 Report

Quoted By: >>9495911 >>9495912

#DemandPaperBallots
#DemandVoterID

Anonymous

Anonymous Tue 04 Feb 2020 17:22:07 No.9495908 Report

Quoted By:

Bump, this is getting slid fast.

Anonymous

View Same Google ImgOps iqdb SauceNAO thumbs-up-kid.jpg, 8KiB, 170x213

Anonymous Tue 04 Feb 2020 17:23:26 No.9495909 Report

Quoted By:

>>9495899
>nginx
>rsync
postgresql - prefer mariadb

Anonymous

View Same Google ImgOps iqdb SauceNAO becoming mayor.jpg, 266KiB, 2048x1147

Anonymous Tue 04 Feb 2020 17:23:30 No.9495910 Report

Quoted By: >>9495914

>>9495894
Getting a WWE wrestler to become mayor seems like something 4chan would do.

Anonymous

Anonymous Tue 04 Feb 2020 17:23:37 No.9495911 Report

Quoted By:

>>9495907
I don't understand why people think paper ballots are the silver bullet for election security. Ballot stuffing is literally a colloquialism.

Anonymous

Anonymous Tue 04 Feb 2020 17:24:05 No.9495912 Report

Quoted By:

>>9495907
unironically this

Anonymous

Anonymous Tue 04 Feb 2020 17:24:39 No.9495913 Report

Quoted By:

>>9495664
Like pottery. Thanks murrica.

Anonymous

Anonymous Tue 04 Feb 2020 17:24:49 No.9495914 Report

Quoted By:

>>9495910
>Getting a WWE wrestler to become mayor seems like something 4chan would do.

https://www.youtube.com/watch?v=dVxVDDYwNvU

Anonymous

Anonymous Tue 04 Feb 2020 17:25:17 No.9495915 Report

Quoted By:

Basic sql injection... look up some tutorials, easy pwn

Anonymous

View Same Google ImgOps iqdb SauceNAO C67D6AB1-BFB7-46D5-BDC3-A1C3763E (...).jpg, 43KiB, 594x688

Anonymous Tue 04 Feb 2020 17:26:46 No.9495916 Report

Quoted By:

>>9495643
Yes. Can verify that this is pajeet level coding and able to be injected. Use sqlmap in Kali. 5 minutes to dump the database.

t. CEH cyber security professional.

Anonymous

View Same Google ImgOps iqdb SauceNAO Adobe_20200204_122402.jpg, 134KiB, 1209x680

Anonymous Tue 04 Feb 2020 17:26:56 No.9495917 Report

Quoted By:

>Truth is, the game was rigged from the start.

Anonymous

Anonymous Tue 04 Feb 2020 17:27:27 No.9495918 Report

Quoted By: >>9495924

Someone post a real screenshot. That looks shopped as fuck. How did they get that ancient back button is iOS? Unless they’re using an incredibly old iPhone, this is clearly fake.

Anonymous

Anonymous Tue 04 Feb 2020 17:28:05 No.9495919 Report

Quoted By: >>9495921

>>9495636
It's a Honeypot, but good info is there. Be safe while hacking (literal CIA is watching you). Expose the info and tweet about it from ghost accounts.

The dude who originally exposed this is writer Lee Fabf, from intercept (magazine). Tweet him your results, along with other alternative news sources (Yung Turks, Jimmy Dore, Majority Report, etc...)

Anonymous

View Same Google ImgOps iqdb SauceNAO Img-1580752006041.jpg, 254KiB, 1089x648

Anonymous Tue 04 Feb 2020 17:28:22 No.9495920 Report

Quoted By: >>9495939 >>9495945

What is 777 in coding?

Anonymous

Anonymous Tue 04 Feb 2020 17:28:48 No.9495921 Report

Quoted By:

>>9495919
*Lee Fang

Anonymous

Anonymous Tue 04 Feb 2020 17:29:31 No.9495922 Report

Quoted By:

My name is Jimmy '); DROP TABLE voter;--

Anonymous

View Same Google ImgOps iqdb SauceNAO Img-1578779883375.jpg, 565KiB, 1255x648

Anonymous Tue 04 Feb 2020 17:29:52 No.9495923 Report

Quoted By: >>9495939

777 has to be something. Weird.

Anonymous

Anonymous Tue 04 Feb 2020 17:30:00 No.9495924 Report

Quoted By: >>9496058

>>9495918
nobody's posted a real link. it seems like it might be a screenshot of "caucus click" which is an extremely shitty iphone app built for the utah caucus, not used in iowa. built by an old white mormon republican, as it turns out

Anonymous

Anonymous ID:EaOFl5JF Tue 04 Feb 2020 17:30:46 No.9495926 Report

Quoted By:

mods=gods

Anonymous

Anonymous ID:XCOzO6+O Tue 04 Feb 2020 17:31:55 No.9495928 Report

Quoted By:

>>9495905
Debian is like that. Except it isn't absolute shit.

Anonymous

Anonymous ID:51ftW37G Tue 04 Feb 2020 17:32:32 No.9495929 Report

Quoted By:

MOVED TO /bant/

Lmfao I'm fucking done. What a sham all this is fuck mods. Fuck this website.

Anonymous

View Same Google ImgOps iqdb SauceNAO autism book.jpg, 55KiB, 500x500

Anonymous ID:EaOFl5JF Tue 04 Feb 2020 17:33:29 No.9495932 Report

Quoted By:

devuan with kde 3 on pic related. if it didnt have an intel x86 processor, it would be the ultimate master piece

Anonymous

Anonymous ID:8IjO16f2 Tue 04 Feb 2020 17:34:13 No.9495934 Report

Quoted By:

>>9495636
>Posted this in the last thread

It's a Honeypot, but good info is there. Be safe while hacking (literal CIA is watching you). Expose the info and tweet about it from ghost accounts.

The dude who originally exposed this is writer Lee Fang, from intercept (magazine). Tweet him your results, along with other alternative news sources (Yung Turks, Jimmy Dore, Breitbart, Majority Report, etc...)

Anonymous

Anonymous ID:diVF3soP Tue 04 Feb 2020 17:36:33 No.9495935 Report

Quoted By:

MOVED TO /bant/
LMFAO what a fucking retard

Anonymous

View Same Google ImgOps iqdb SauceNAO rwx-standard-unix-permission-bits.png, 34KiB, 600x400

Anonymous ID:RFAALTac Tue 04 Feb 2020 17:38:03 No.9495939 Report

Quoted By:

>>9495920
>>9495923
https://en.wikipedia.org/wiki/File_system_permissions

It is just unix permissions mask, retards.

Anonymous

Anonymous ID:XCOzO6+O Tue 04 Feb 2020 17:39:51 No.9495945 Report

Quoted By:

>>9495920
Are you retarded?

Anonymous

View Same Google ImgOps iqdb SauceNAO AB00B300-5F26-4558-89C1-DEAE440A (...).png, 244KiB, 500x313

Anonymous ID:Cb9IqwH8 Tue 04 Feb 2020 17:43:23 No.9495957 Report

Quoted By: >>9495963

>>9495636
Technology board is located at >>>/g/

/bant/ is dedicated to the discussion surrounding the procurement and consumption of large quantities of unadulterated cough syrup containing the active ingredient dextromethorphan hydrobromide

Anonymous

Anonymous ID:51ftW37G Tue 04 Feb 2020 17:44:38 No.9495963 Report

Quoted By:

>>9495957
Fucjking /pol/ mods moved it here.

They can't handle the amount of exposure.

>Seethe
>Cope

Anonymous

Anonymous ID:hj/oBwWD Tue 04 Feb 2020 17:52:51 No.9496058 Report

Quoted By:

>>9495924
But still, what are they using? An emulator of a iPhone 3? That shit is ancient UI that was deprecated years ago. You can’t even force it to go back. The best you can do is reskin it with old textures.

Anonymous

Anonymous ID:Uo7XGKTj Tue 04 Feb 2020 18:37:03 No.9496499 Report

Quoted By:

>>9495636
>mfw they use diverse and inclusive retards to make the app for the purpose of haxoring it

Capcode	All Only User Posts Only Verified Posts Only Moderator Posts Only Manager Posts Only Admin Posts Only Developer Posts Only Founder Posts
Show Posts	All Only With Images Only Without Images Only Spoiler Images Only Non-Spoiler Images
Deleted Posts	All Only Deleted Posts Only Non-Deleted Posts
Ghost Posts	All Only Ghost Posts Only Non-Ghost Posts
Post Type	All Only Sticky Threads Only Opening Posts Only Reply Posts
Results	All Grouped By Threads
Order	Latest Posts First Oldest Posts First

On these archives

Your latest searches

Calling all SQL-savy Anons - Iowa and Shadow, inc exploit?