[ News ] [ Paper Feed ] [ Issues ] [ Authors ] [ Archives ] [ Contact ]


..[ Phrack Magazine ]..
.:: Introduction ::.

Issues: [ 1 ] [ 2 ] [ 3 ] [ 4 ] [ 5 ] [ 6 ] [ 7 ] [ 8 ] [ 9 ] [ 10 ] [ 11 ] [ 12 ] [ 13 ] [ 14 ] [ 15 ] [ 16 ] [ 17 ] [ 18 ] [ 19 ] [ 20 ] [ 21 ] [ 22 ] [ 23 ] [ 24 ] [ 25 ] [ 26 ] [ 27 ] [ 28 ] [ 29 ] [ 30 ] [ 31 ] [ 32 ] [ 33 ] [ 34 ] [ 35 ] [ 36 ] [ 37 ] [ 38 ] [ 39 ] [ 40 ] [ 41 ] [ 42 ] [ 43 ] [ 44 ] [ 45 ] [ 46 ] [ 47 ] [ 48 ] [ 49 ] [ 50 ] [ 51 ] [ 52 ] [ 53 ] [ 54 ] [ 55 ] [ 56 ] [ 57 ] [ 58 ] [ 59 ] [ 60 ] [ 61 ] [ 62 ] [ 63 ] [ 64 ] [ 65 ] [ 66 ] [ 67 ] [ 68 ] [ 69 ] [ 70 ]
Current issue : #69 | Release date : 2016-05-06 | Editor : The Phrack Staff
IntroductionThe Phrack Staff
Phrack Prophile on Solar DesignerThe Phrack Staff
Phrack World NewsThe Phrack Staff
Linenoisevarious
LoopbackThe Phrack Staff
The Fall of Hacker GroupsStrauss
Revisiting Mac OS X Kernel RootkitsfG!
Adobe Shockwave - A case study on memory disclosureaaron portnoy
Modern Objective-C Exploitation Techniquesnemo
Self-patching Microsoft XML with misalignments and factorialsAlisa Esage
Internet Voting: A Requiem for the Dreamkerrnel
Attacking Ruby on Rails Applicationsjoernchen
Obituary for an Adobe Flash Player bughuku
OR'LYEH? The Shadow over Firefoxargp
How to hide a hook: A hypervisor for rootkitsuty & saman
International scenesvarious
Title : Introduction
Author : The Phrack Staff
                              ==Phrack Inc.==

                Volume 0x0f, Issue 0x45, Phile #0x01 of 0x10

|=-----------------------------------------------------------------------=|
|=-------------------------=[ Introduction ]=----------------------------=|
|=-----------------------------------------------------------------------=|
|=----------------------=[ by the Phrack staff ]=------------------------=|
|=-----------------------=[ staff@phrack.org ]=--------------------------=|
|=-----------------------------------------------------------------------=|
|=-------------------------=[  May 6, 2016  ]=---------------------------=|
|=-----------------------------------------------------------------------=|

               ... A long time ago in a galaxy far far away ...

                     ______ _                    _
                     | ___ \ |                  | |
                     | |_/ / |__  _ __ __ _  ___| | __
                     |  __/| '_ \| '__/ _` |/ __| |/ /
                     | |   | | | | | | (_| | (__|   <
                     \_|   |_| |_|_|  \__,_|\___|_|\_\


                            _  _    ____  _____
                          _| || |_ / ___||  _  |
                         |_  __  _/ /___ | |_| |
                          _| || |_| ___ \\____ |
                         |_  __  _| \_/ |.___/ /
                           |_||_| \_____/\____/




--[ Introduction

Hello Phrack readers! It has been a long time, hasn't it? Aren't you
relieved that the world didn't end in 2012?! What if the Mayans were right?
What if comets hit Earth? Yes, we were worried too, so we decided to take
some time off and enjoy the last days of this planet. Once enough time had
passed, we were pretty sure our species was not going to disappear. It was
about time we returned to our blinking terminals again and finish what we
started :>

Um... yeah, that's the reason the last Phrack release was back in 2012...
Um... Kind of...

Damn, it took so long that even a Star Wars sequel was shot in the
meantime!

Anywayz, the Phrack Staff is back again, with a slightly different
editorial, bringing you an awesome collection of articles from several
respected hackers and other thinkers. No, we are not going to write a
Prophile on our new team. Yes, there are still people who prefer Phrack
over media whoring. The world is full of surprises. It took quite some
time, but we hope this issue of Phrack will meet your expectations.

One new addition to Phrack is the "Paper Feed" feature. The way it works is
that you submit a paper, we review it and it gets published. No need to
wait a month (or two years ;-) until you see your article in the next
Phrack issue. When the time has come, we'll decide to compile a new issue
from the articles that have been submitted. The usual rules do however
still apply: we are proud of being one of the longest-running magazines and
we're especially proud of presenting quality content to our readers (yes,
that's you). Papers submitted to the paper feed are no exception!

Phrack #69 brings you three new technical articles in addition to paper
feed and the standard Linenoise, Loopback and International Scenes philes.
The Firefox hater code-named argp presents advanced exploitation techniques
and attempts to build abstract primitives for taking advantage of various
memory-related vulnerabilities on your "favorite" multi-heap browser ;>
Huku, some guy who, obviously, visits porn sites a lot, has written an art
of exploitation phile focusing on Adobe Flash Player (hey, this is not
P0 man!). Last but not least, uty presents a VT-x based technique for
installing inline hooks and backdooring a whole system. We have spent much
time debugging this, we hope you *do* like it.

This release also comes with an excellent prophile on Solar Designer, a
person we all respect for his knowledge, attitude and contributions. We
were initially hesitant to contact him (yeah this guy has a damn busy
schedule), but it turned out that Solar was positive about being
prophiled. We believe this prophile will inspire a lot of people in the
scene - it's undoubtedly one of the best prophiles ever published in Phrack
and a great honor for all readers.

Enjoy maafakaz!


--[ Dark thoughts about the future

As we mentioned above, you have probably noticed a big change in the way
Phrack papers are released. We have decided to also have a paper feed mode
in addition to periodic releases, where each submitted work, that meets the
requirements, is released as soon as it has undergone proper reviewing. We
understand that this may not be as cool as releasing an issue at once, but
it was a necessary choice we had to make to avoid having Phrack fade out of
existence. The hope with this, is that now all you crazy world traveling,
conference speaking rockstars may have a medium for releasing a deeper dive
into the technology that you are presenting, and we can publish this at
the exact moment you are on stage. Personally, we would much prefer this
than trying to extract it ourselves from your pretty slide decks.

I guess we are all responsible for this. The community as a whole. The
hackers, the phreakers and all those tech perverts out there who have
stopped supporting Phrack. Trust me you would be disappointed if you had a
look at our inbox... or maybe no one uses ANTISPAM anymore? :>

For all you hackers out there thinking "I don't have a large project
ready for paper generation", consider writing something for Linenoise. 
Linenoise submissions take between a few hours and one day. As a community 
everyone has some small technique or cool trick that can save other people 
time, Linenoise offers an easy place to share these.

In this issue you will find a very interesting article titled "The Fall of
Hacker Groups". Take some time to read it through and wonder why the fuck
did we get here. The state of mind of the community seems to be changing
dramatically - what have you done to prevent hacking from practically
disappearing?

Quoting Phrack #63:

    "As long as there are hackers, there will be PHRACK magazine."

Now take some time, read this issue carefully, and notice the "as long as"
part in the previous sentence :>


--[ Table of contents

  0x01  Introduction ........................................ Phrack Staff

  0x02  Phrack Prophile on Solar Designer ................... Phrack Staff

  0x03  Phrack World News ................................... Phrack Staff

  0x04  Linenoise ........................................... various

  0x05  Loopback ............................................ Phrack Staff

  0x06  The Fall of Hacker Groups ........................... strauss

  0x07  Revisiting Mac OS X Kernel Rootkits ................. fG!

  0x08  Adobe Shockwave:
        A case study on memory disclosure ................... Aaron Portnoy

  0x09  Modern Objective-C Exploitation Techniques .......... nemo

  0x0a  Self-patching Microsoft XML with misalignments
        and factorials ...................................... Alisa Esage

  0x0b  Internet Voting: A Requiem for the Dream ............ kerrnel

  0x0c  Attacking Ruby on Rails Applications ................ joernchen

  0x0d  Obituary for an Adobe Flash Player bug .............. huku

  0x0e  OR'LYEH? The Shadow over Firefox .................... argp

  0x0f  How to hide a hook: A hypervisor for rootkits ....... uty & saman

  0x10  International Scenes ................................ various


--[ Greetings & thanks

For this issue we have a long list of people we would like to thank. This
issue wouldn't be complete had it not been for their support.

  * strauss       : Straus.. staruss... strsauss.. whatever man!
  * fG!           : The legendary white hat(ed) hero!
  * Aaron Portnoy : Real name detected!
  * nemo          : That lolcat you see in various memes ;-)
  * Alisa Esage   : Knows how to write exploits and doesn't work for P0
  * kerrnel       : What's with the extra "r"?
  * joernchen     : Ruby two-handed fapper
  * argp          : Hardcore Shakira fan - Favorite song "Heaps don't lie"
  * huku          : Casual youporn uploader
  * sysk          : Proud yolo Phrack supporter
  * uty & saman   : Makefiles suck!
  * solardiz      : Awesomeness prophiled
  * fjserna       : Guest reviewer of, well, you can figure out what
  * anonymous     : You know who you are, thanks for you support!

Last but not least, Phrack Staff is indebted to <redacted> *wink *wink*
for his support all these years. You have our respect for everything you
have offered to this magazine. We are now in different teams, but we will
always be glad to have some beers with you and talk about dirty hacks ;>
See you soon man!

Phrack is back! Prepare your arse for a new awesome release of your
favorite zine.


--[ Phrack policy

phrack:~# head -77 /usr/include/std-disclaimer.h
/*
 *  All information in Phrack Magazine is, to the best of the ability of
 *  the editors and contributors, truthful and accurate.  When possible,
 *  all facts are checked, all code is compiled.  However, we are not
 *  omniscient (hell, we don't even get paid).  It is entirely possible
 *  something contained within this publication is incorrect in some way.
 *  If this is the case, please drop us some email so that we can correct
 *  it in a future issue.
 *
 *
 *  Also, keep in mind that Phrack Magazine accepts no responsibility for
 *  the entirely stupid (or illegal) things people may do with the
 *  information contained herein.  Phrack is a compendium of knowledge,
 *  wisdom, wit, and sass.  We neither advocate, condone nor participate
 *  in any sort of illicit behavior.  But we will sit back and watch.
 *
 *
 *  Lastly, it bears mentioning that the opinions that may be expressed in
 *  the articles of Phrack Magazine are intellectual property of their
 *  authors.
 *  These opinions do not necessarily represent those of the Phrack Staff.
 */


                      ----( Contact )----

       <  Editors           : staff[at]phrack{dot}org   >
       >  Submissions       : staff[at]phrack{dot}org   <
       <  Commentary        : loopback[@]phrack{dot}org >
       >  Phrack World News : pwned[at]phrack{dot}org   <


    Submissions may be encrypted with the following PGP key:
    (Hint #1: Always use the PGP key from the latest issue)
    (Hint #2: ANTISPAM or it didn't happen)


-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: PHRACK
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=cK7U
-----END PGP PUBLIC KEY BLOCK-----

|=[ EOF ]=---------------------------------------------------------------=|
[ News ] [ Paper Feed ] [ Issues ] [ Authors ] [ Archives ] [ Contact ]
© Copyleft 1985-2021, Phrack Magazine.