READ THIS !!!!
READ THIS !!!!
There once was a time when hackers actually hacked. When they actually broke into computers and spent hours upon hours looking for exploits in popular software packages -- not to sell them, or to post them for the world to know about and get themselves a leet reputation -- no, they invested all the time and effort to get a working exploit and then *use* it for its intended purpose. To break into computers.
The modern definition of a hacker (at least in some circles, most noteably the more whitehat places) is essentially "someone who wants to become a whitehat/security professional later in life". These sites/people advocate such topics as having "ethics" and "full disclosure". Do you really know what your so called ethics are? Do you really know what full disclosure does?
Your ethics guide you; they're what you say keeps you on the straight and narrow path. They keep you from actively breaking into computers; you could eaisley go out and hack half the Internet at any given time -- at least that's what you tell yourself. When a site has a "root this box" style challenge you eagerly gather your team of whitehat buddies. You're all expected to win the challenge, after all, you're some of the more knowledgeable people on the site, you're read hundreds of text files documenting hacking techniques. You take a look at the box expecting to see a root prompt inside 5 minuets. An hour later you're sitting there frusterated, with no clue on how to procede. Looks like contrived site challenges haven't prepared you for the real thing, and text files just aren't as good as expirence. Nevertheless, you go on calling yourself a "security expert" and think about how easy it would be to get a job as a penetration tester, finding exploits and posting them publically on sites like SecurityFocus and milw0rm, and on lists like BugTraq and Full-Disclosure.
Speaking of Full-Disclosure, have you ever though about what it is you so activley support? You post fully functional exploit code to public places, along with detailed usage instructions. You give the script kiddies the digital munitions they need to attack more computers, and yet you decry them. You tell yourself "Oh, it's okay, I'm not responsible; I put a disclaimer in the comment header of the code!". It's not okay. The script kiddies still have the exploits to work with, and the boxen are still getting owned.
On the topic of script kiddies, you decide that anyone who actively hacks is a script kiddie. If someone hacks your shellbox they're a script kiddie. If someone hacks your whitehat website, they're a script kiddie. You laugh at groups like h0no, PHC, Gobbles, el8, dikline and ZF0. You call them script kiddies. You hear the name "pr0j3kt m4yh3m" and you associate it with script kiddies. You see leet speak in a zine and you assume that it's a script kiddie zine. Trust me, the real hackers laugh at you and your kind. They laugh because while you're talking about the dangers of XSS vulnerabilities in some sample web application, they're out auditing code, finding real 0day exploits. While you're talking about how great whitehats are, they're planning attacks on you. While you and your friends talk about how they're all script kiddies, they're cracking your passwords and reading your spools. Who's the script kiddies now?
The people that you like to term script kiddies are blackhats. The real hackers. They work to preserve the real spirit of hacking. Go read an old issue of Phrack. Notice how it's more underground, and doesn't have any articles written by corporate whitehats? Notice how it actively advocates breaking into computers? Notice how it was written by real hackers, by the modern day definition of the word -- that is, people who actively break into computers. People who actually hack.
Whitehats are the death of the scene. You leech off what we create and call it your own. You try to copyright ideas that have been around for years. You post digital munitions for anyone to download, compile and run. You think that software vendors are all lazy, incompetiant and corrupt. Trust me, they're smarter than you'll ever be. You think that Perl script you coded to exploit an RFI vuln in some PHP application is great code? Yea, right. That's anotehr thing, you want fame so damn badly that you rush to post an exploit to the public, even if the code is of poor quality, or the exploit is buggy. You want fame so badly that you sell out everything you believed in and become part of the corporate machine. You forget that beneath the shiney surface of the security industry there lurks a darker presence. And it is not happy. Again, you dismiss the pr0j3kt m4yh3m advocates as script kiddies. They hack your box and post your spools, all you can do is call them script kiddies. You call yourselves the real hackers so prove it.
Whitehats will be the death of the scene. They've created an atmosphere and fear and greed. Did you honestly expect that you'd be able to go on doing this forever? Did you honestly expect that we'd just sit back and allow you to destroy our world? Did you honestly expect that we'd allow you to define our image? Did you honestly expect that we'd let you redefine the word that describes us?
Hell, did you honestly think you were for real?
i didn't write this but i like it
The modern definition of a hacker (at least in some circles, most noteably the more whitehat places) is essentially "someone who wants to become a whitehat/security professional later in life". These sites/people advocate such topics as having "ethics" and "full disclosure". Do you really know what your so called ethics are? Do you really know what full disclosure does?
Your ethics guide you; they're what you say keeps you on the straight and narrow path. They keep you from actively breaking into computers; you could eaisley go out and hack half the Internet at any given time -- at least that's what you tell yourself. When a site has a "root this box" style challenge you eagerly gather your team of whitehat buddies. You're all expected to win the challenge, after all, you're some of the more knowledgeable people on the site, you're read hundreds of text files documenting hacking techniques. You take a look at the box expecting to see a root prompt inside 5 minuets. An hour later you're sitting there frusterated, with no clue on how to procede. Looks like contrived site challenges haven't prepared you for the real thing, and text files just aren't as good as expirence. Nevertheless, you go on calling yourself a "security expert" and think about how easy it would be to get a job as a penetration tester, finding exploits and posting them publically on sites like SecurityFocus and milw0rm, and on lists like BugTraq and Full-Disclosure.
Speaking of Full-Disclosure, have you ever though about what it is you so activley support? You post fully functional exploit code to public places, along with detailed usage instructions. You give the script kiddies the digital munitions they need to attack more computers, and yet you decry them. You tell yourself "Oh, it's okay, I'm not responsible; I put a disclaimer in the comment header of the code!". It's not okay. The script kiddies still have the exploits to work with, and the boxen are still getting owned.
On the topic of script kiddies, you decide that anyone who actively hacks is a script kiddie. If someone hacks your shellbox they're a script kiddie. If someone hacks your whitehat website, they're a script kiddie. You laugh at groups like h0no, PHC, Gobbles, el8, dikline and ZF0. You call them script kiddies. You hear the name "pr0j3kt m4yh3m" and you associate it with script kiddies. You see leet speak in a zine and you assume that it's a script kiddie zine. Trust me, the real hackers laugh at you and your kind. They laugh because while you're talking about the dangers of XSS vulnerabilities in some sample web application, they're out auditing code, finding real 0day exploits. While you're talking about how great whitehats are, they're planning attacks on you. While you and your friends talk about how they're all script kiddies, they're cracking your passwords and reading your spools. Who's the script kiddies now?
The people that you like to term script kiddies are blackhats. The real hackers. They work to preserve the real spirit of hacking. Go read an old issue of Phrack. Notice how it's more underground, and doesn't have any articles written by corporate whitehats? Notice how it actively advocates breaking into computers? Notice how it was written by real hackers, by the modern day definition of the word -- that is, people who actively break into computers. People who actually hack.
Whitehats are the death of the scene. You leech off what we create and call it your own. You try to copyright ideas that have been around for years. You post digital munitions for anyone to download, compile and run. You think that software vendors are all lazy, incompetiant and corrupt. Trust me, they're smarter than you'll ever be. You think that Perl script you coded to exploit an RFI vuln in some PHP application is great code? Yea, right. That's anotehr thing, you want fame so damn badly that you rush to post an exploit to the public, even if the code is of poor quality, or the exploit is buggy. You want fame so badly that you sell out everything you believed in and become part of the corporate machine. You forget that beneath the shiney surface of the security industry there lurks a darker presence. And it is not happy. Again, you dismiss the pr0j3kt m4yh3m advocates as script kiddies. They hack your box and post your spools, all you can do is call them script kiddies. You call yourselves the real hackers so prove it.
Whitehats will be the death of the scene. They've created an atmosphere and fear and greed. Did you honestly expect that you'd be able to go on doing this forever? Did you honestly expect that we'd just sit back and allow you to destroy our world? Did you honestly expect that we'd allow you to define our image? Did you honestly expect that we'd let you redefine the word that describes us?
Hell, did you honestly think you were for real?
i didn't write this but i like it
- Losing_grip
- Fame ! Where are the chicks?!
- Posts: 485
- Joined: 22 Apr 2007, 16:00
- 17
- Location: Behind Socks5
- Lyecdevf
- cyber Idi Amin
- Posts: 1222
- Joined: 16 Mar 2006, 17:00
- 18
- Location: In between life and death.
- Contact:
Re: READ THIS !!!!
I get that feeling many times when I am on certain boards. The fist day they told me to learn programing and you know what I still have not. I have attempted to learn some programing languages but I have not come very far. Maybe because I just do not understand the connection between programing and hacking. Maybe I just do not want to because I am feed up by people telling to learn it every time I ask some thing in relation to hacking. Sure I am going to learn programing if I stick with with hacking for the next couple of years.bubzuru wrote:The modern definition of a hacker (at least in some circles, most noteably the more whitehat places) is essentially "someone who wants to become a whitehat/security professional later in life".
I really feel like and you can laugh at me that this is some sort of white hat/corporate conspiracy to get people directly into programing. I figure you are going to program some RAT's for a while and than you are going to forget about how you wanted to hack and you are just going to leave it all together and become a security specialist or some thing.
For me programing is not even at the bottom of the list right now. You know what I want to learn right now. I want to learn how to write IPtables and I want to learn as well how to install the more difficult versions of linux like Slackware, FreeBSD,...That is what is going to be useful to me. That is what I can actually use in the next week.
We will either find a way, or make one.
- Hannibal
- Hannibal
Re: READ THIS !!!!
well how are you realy going to hackLyecdevf wrote:I just do not understand the connection between programing and hacking.
if you dont know how to code or to reverse
if you cant reverse you cant find exploits
if you cant code you cant write exploits
if you cant do that you cant hack
for some vid's to show you how programing
is involved with hacking goto http://milw0rm.com/video/
and watch
[Win32] Learn Stack Overflow Exploitation - Part 1
How to Exploit Stack Base Buffer Overrun Under Windows XP SP2
Last edited by bubzuru on 01 Sep 2007, 01:16, edited 1 time in total.
Re: READ THIS !!!!
perfectly written, bubzuru = kbubzuru wrote: well how are you realy going to hack
if you dont know how to code or to reverse
if you cant reverse you cant find exploits
if you cant code you cant write exploits
if you cant do that you cant hack
- Lyecdevf
- cyber Idi Amin
- Posts: 1222
- Joined: 16 Mar 2006, 17:00
- 18
- Location: In between life and death.
- Contact:
So goes the logic and I do not question it but I look at things from a different angle. Let's say that I stop hacking today. I do not know why but let's just say that I do. So let's say that I have been learning how to program all this time and now I know how to program but I have stoped hacking. Now how is programing going to help me later in life. Remember that I am not working in the field of computers. However, if I learn how install FreeBSD and Slackware maybe later in life I can use that knowledge. Do not you think so?
We will either find a way, or make one.
- Hannibal
- Hannibal
true .. .. .. but you could always go for aLyecdevf wrote:So goes the logic and I do not question it but I look at things from a different angle. Let's say that I stop hacking today. I do not know why but let's just say that I do. So let's say that I have been learning how to program all this time and now I know how to program but I have stoped hacking. Now how is programing going to help me later in life. Remember that I am not working in the field of computers. However, if I learn how install FreeBSD and Slackware maybe later in life I can use that knowledge. Do not you think so?
job in pen testing or just writing software
for money i dont think i will ever do any ov those
im just in it for the fun and the knowledge
- Lyecdevf
- cyber Idi Amin
- Posts: 1222
- Joined: 16 Mar 2006, 17:00
- 18
- Location: In between life and death.
- Contact:
I think that this is a good article and I would love to know who wrote it in order to quote it and use parts of it for my signature. I would not use it on this site but some where else.
I am not saying that I do not want to learn programing. I do but I do not think that it is for me at this point in time.
I am not saying that I do not want to learn programing. I do but I do not think that it is for me at this point in time.
We will either find a way, or make one.
- Hannibal
- Hannibal
- Corrosive-Killah
- Newbie
- Posts: 7
- Joined: 14 Oct 2007, 16:00
- 16
- Contact:
huh?
white hats will be the death of the scene? Sounds generalized. Actually I think people that abused the internet cause the government to step in and take control.
Thats like saying the police are the reason there is crime.
Everyone has an opinion of what hacking is, I think we did this thread ages ago.
I prefer the original Hacker's mantifeso by ThE MeNtOr...
It still reads true.
DNR
Thats like saying the police are the reason there is crime.
Everyone has an opinion of what hacking is, I think we did this thread ages ago.
I prefer the original Hacker's mantifeso by ThE MeNtOr...
It still reads true.
DNR
-
He gives wisdom to the wise and knowledge to the discerning. He reveals deep and hidden things; he knows what lies in Darkness, and Light dwells with him.
He gives wisdom to the wise and knowledge to the discerning. He reveals deep and hidden things; he knows what lies in Darkness, and Light dwells with him.