Vsftpd Backdoor - Ekoparty Prectf - Amn3S1A Team

It's a 32bits elf binary of some version of vsftpd, where it have been added a backdoor, they don't specify is an authentication backdoor, a special command or other stuff.

I started looking for something weird on the authentication routines, but I didn't found anything significant in a brief period of time, so I decided to do a bindiff, that was the key for locating the backdoor quickly. I do a quick diff of the strings with the command "strings bin | sort -u" and "vimdiff" and noticed that the backdoored binary has the symbol "execl" which is weird because is a call for executing elfs, don't needed for a ftp service, and weird that the compiled binary doesn't has that symbol.

Looking the xrefs of "execl" on IDA I found that code that is a clear backdoor, it create a socket, bind a port and duplicate the stdin, stdout and stderr to the socket and use the execl:

There are one xrefs to this function, the function that decides when trigger that is that kind of systems equations decision:

The backdoor was not on the authentication, it was a special command to trigger the backdoor, which is obfuscated on that systems equation, it was no needed to use a z3 equation solver because is a simple one and I did it by hand.

The equation:

cmd[0] = 69

cmd[1] = 78

cmd[1] + cmd[2] = 154

cmd[2] + cmd[3] = 202

cmd[3] + cmd[4] = 241

cmd[4] + cmd[5] = 233

cmd[5] + cmd[6] = 217

cmd[6] + cmd[7] = 218

cmd[7] + cmd[8] = 228

cmd[8] + cmd[9] = 212

cmd[9] + cmd[10] = 195

cmd[10] + cmd[11] = 195

cmd[11] + cmd[12] = 201

cmd[12] + cmd[13] = 207

cmd[13] + cmd[14] = 203

cmd[14] + cmd[15] = 215

cmd[15] + cmd[16] = 235

cmd[16] + cmd[17] = 242

The solution:

cmd[0] = 69

cmd[1] = 75

cmd[2] = 79

cmd[3] = 123

cmd[4] = 118

cmd[5] = 115

cmd[6] = 102

cmd[7] = 116

cmd[8] = 112

cmd[9] = 100

cmd[10] = 95

cmd[11] = 100

cmd[12] = 101

cmd[13] = 106

cmd[14] = 97                    

cmd[15] = 118

cmd[16] = 117

cmd[17] = 125

The flag:

EKO{vsftpd_dejavu}

The binary:
https://ctf.ekoparty.org/static/pre-ekoparty/backdoor

Related links

1. Hack Tools For Pc
2. Easy Hack Tools
3. Hacker Tools For Pc
4. Pentest Tools Android
5. Install Pentest Tools Ubuntu
6. Underground Hacker Sites
7. How To Make Hacking Tools
8. Nsa Hack Tools
9. Hacking Tools Pc
10. Hacking Tools 2019
11. Hack Tools For Ubuntu
12. Hacking Tools Usb
13. Pentest Tools Subdomain
14. Pentest Tools Website
15. Physical Pentest Tools
16. Hacker Tools Windows
17. Game Hacking
18. Hacker Tools Apk
19. Pentest Tools For Windows
20. Hacker Tools 2019
21. Pentest Automation Tools
22. Hacking Tools Windows 10
23. Nsa Hacker Tools
24. Nsa Hack Tools Download
25. Pentest Tools Bluekeep
26. Pentest Tools Apk
27. Hacking Tools Download
28. Hack Tools 2019
29. Nsa Hacker Tools
30. Nsa Hack Tools Download
31. Github Hacking Tools
32. New Hacker Tools
33. Hacker Security Tools
34. Hacking Tools For Mac
35. Pentest Tools Url Fuzzer
36. Top Pentest Tools
37. What Is Hacking Tools
38. Pentest Box Tools Download
39. Hacking Tools Kit
40. Computer Hacker
41. Bluetooth Hacking Tools Kali
42. Hacking Tools Windows
43. Hacker Tools Linux
44. Hacker Tools Mac
45. Wifi Hacker Tools For Windows
46. Pentest Tools Android
47. Pentest Tools Website Vulnerability
48. Pentest Tools For Android
49. Hacker Tools For Windows
50. Hackers Toolbox
51. Hack Tools 2019
52. Pentest Tools Linux
53. Hack Tools For Games
54. Hacking Tools 2019
55. Physical Pentest Tools
56. Hacker Tools Software
57. Black Hat Hacker Tools
58. Best Pentesting Tools 2018
59. Hacking Tools 2020
60. Hack Tools For Ubuntu
61. Hacking Tools
62. Hacker Security Tools
63. Nsa Hack Tools
64. Black Hat Hacker Tools
65. Hacker Tools Online
66. Hacking Tools Mac
67. Pentest Tools Open Source
68. Pentest Tools Website
69. Hacking Tools For Games
70. Hack Tools Mac
71. Hack Tools For Games
72. Wifi Hacker Tools For Windows
73. Pentest Tools For Ubuntu
74. Tools 4 Hack
75. Easy Hack Tools
76. Pentest Reporting Tools
77. Hackrf Tools
78. Hack Tools For Games
79. Hacking Tools Github
80. Free Pentest Tools For Windows
81. Hacker Tools 2019
82. Hack Tools For Mac
83. Hacker Tools Github
84. Pentest Tools Linux
85. Hack Tools For Ubuntu
86. Hacking Tools For Beginners
87. Wifi Hacker Tools For Windows
88. Hack Tools Github
89. Nsa Hacker Tools
90. Best Pentesting Tools 2018
91. Android Hack Tools Github
92. Hacker Tools Software
93. Hacking Tools For Windows Free Download
94. Pentest Tools Url Fuzzer
95. Pentest Tools List
96. Best Hacking Tools 2020
97. Hack Tools 2019
98. Hacker Tools Github
99. Hacker Tools Windows
100. Hack Tools Pc
101. Hack Rom Tools
102. Hack And Tools
103. Hacking App
104. Hak5 Tools
105. Hacking Tools For Beginners
106. Hacker Tools Apk Download
107. Hacker Tools Linux
108. Pentest Box Tools Download
109. Pentest Tools Subdomain
110. Termux Hacking Tools 2019
111. Pentest Tools Url Fuzzer
112. How To Hack
113. Hacking Tools Hardware
114. Hacking Tools For Windows Free Download
115. Hacker Tools Github
116. Hacking App
117. Hacking Tools 2019
118. How To Install Pentest Tools In Ubuntu
119. Pentest Tools List
120. Pentest Tools Apk
121. Hacker Tools Free Download
122. Pentest Tools Bluekeep
123. Nsa Hacker Tools
124. Hacker Tools List
125. Top Pentest Tools
126. Hacking Tools Windows
127. Hacking Tools For Windows
128. Hak5 Tools
129. Pentest Tools For Ubuntu
130. Hacker Tools Online
131. Easy Hack Tools
132. Hacking Tools Download
133. Top Pentest Tools
134. Android Hack Tools Github
135. Pentest Tools Find Subdomains
136. Hacking Tools For Kali Linux
137. Github Hacking Tools
138. Hacker Tools
139. Hacker Tools Github
140. Hack Website Online Tool
141. Pentest Tools Review
142. Pentest Tools Online
143. Hacker Search Tools
144. Github Hacking Tools
145. Hacking Tools For Games
146. Hacking Tools Hardware
147. Best Hacking Tools 2020
148. Pentest Tools Alternative
149. Hacker Hardware Tools
150. Hacker Tools Linux
151. Pentest Recon Tools
152. How To Hack
153. Hack Tools
154. Easy Hack Tools
155. New Hacker Tools
156. Underground Hacker Sites
157. Beginner Hacker Tools
158. Pentest Tools Apk
159. World No 1 Hacker Software
160. Beginner Hacker Tools
161. Hack Tools Online
162. New Hacker Tools
163. Hacking Tools For Windows Free Download
164. Pentest Tools Website
165. Hacking Tools Github
166. Github Hacking Tools
167. World No 1 Hacker Software
168. Pentest Tools Online

DOWNLOAD BLACKMART ANDROID APP – DOWNLOAD PLAYSTORE PAID APPS FREE

Android made endless possibilities for everyone. It introduced a platform where are millions of apps that a user can download and buy depending on their needs. You're thinking about Google PlayStore, yes I am also talking about Google PlayStore. It's categorized app collection depending on every niche of life. Few of them are free and some of them are paid. Most of the paid apps are only charges small cost in between $2 to $8, but few apps are highly costly that make cost over $50 even, which is not possible for every user to buy and get benefit from it. So, here I am sharing a really useful app, that can make every Google PlayStore app for you to download it for free. You can download any paid app that may even cost about $50. It's totally free. Download blackmart Android app and download google play store paid apps freely.

DOWNLOAD BLACKMART ANDROID APP – DOWNLOAD PLAYSTORE PAID APPS FREE

• It's extremely easy to use.
• It has a Multilingual option for a global user experience.
• The app doesn't ask for any payments.
• Capable to download full of downloadable applications.
• Super fast in downloading and installation.

Continue reading

• Hacking Tools For Windows
• Hacking Tools For Pc
• What Is Hacking Tools
• Pentest Tools For Android
• Hacker Tools Apk
• Hack Tools For Games
• Hack Tools For Mac
• Hacker Tools List
• Hacker
• Pentest Tools Linux
• Pentest Reporting Tools
• New Hacker Tools
• Hacking Tools Online
• Best Hacking Tools 2019
• Hacker Tools For Pc
• Hacker Tools For Mac
• Hacking Tools Usb
• What Is Hacking Tools
• Pentest Tools Framework
• Pentest Tools Download
• Pentest Recon Tools
• Hacking Tools Github
• Hacker Search Tools
• Hacker Tools Windows
• Hacking App
• Black Hat Hacker Tools
• Hacking Tools 2020
• Hacking Tools And Software
• Best Hacking Tools 2020
• Hacker Tools List
• Hacking Tools For Mac
• Hacker Hardware Tools
• Pentest Tools Framework
• Hack Website Online Tool
• Tools 4 Hack
• Hacker Tools Linux
• Pentest Tools For Windows
• New Hack Tools
• Github Hacking Tools
• Hack Tools 2019
• Tools Used For Hacking
• Nsa Hack Tools
• Pentest Tools Android
• Pentest Tools Apk
• Pentest Tools Framework
• Pentest Tools Review
• Hacking Tools Mac
• Hack Tools For Pc
• Best Hacking Tools 2020
• Bluetooth Hacking Tools Kali
• Hacking Tools Mac
• Hak5 Tools
• Hacker Tools Mac
• Hacker Tools
• Github Hacking Tools
• Pentest Tools Review
• Hack And Tools
• Hack Tools Pc
• Pentest Tools For Windows
• Physical Pentest Tools
• What Are Hacking Tools
• Hack App

Hacking Facebook By Using PHP Script | Social Engineering Attack | LAN And WAN (Same Or Different Networks)

This Video is absolutely for Educational Purposes only, please don't do any illegal activity. If you do then I'm not responsible for your illegal activity. The purpose of this video is to show you How hackers can hack your social media by using their own local servers.

Basically these type of attacks  known as Social Engineering attacks or Phishing. Attacker just send the duplicate vulnerable HTML page to the victim, when victim enters any type of information to that vulnerable page it'll automatically received by the attacker.

Phishing is a form of fraud in which an attacker masquerades as a reputable entity or person in email or other communication channels. The attacker uses phishing emails to distribute malicious links or attachments that can perform a variety of functions, including the extraction of login credentials or account information from victims.

How phishing works 

Phishing attacks typically rely on social networking techniques applied to email or other electronic communication methods, including direct messages sent over social networks, SMS text messages and other instant messaging modes.

Phishers may use social engineering and other public sources of information, including social networks like LinkedIn, Facebook and Twitter, to gather background information about the victim's personal and work history, his interests, and his activities.

Hacking by PHP

As PHP is server side scripting language so first of all you have need to install a local server (WAMP, XAMPP or LAMPP) over your system. Because if there is no any server running on your system then you can't even run your PHP script. So if you wanna do a programming with PHP this is the first step to download and install a server from the Internet. You can easily download and install servers by watching my videos. Just visit my YouTube channel and watch there.

Hacking Facebook By Using PHP Script | Social Engineering Attack | You can perform this attack over LAN and WAN (Same or Different Networks)Continue reading

1. Hack Tools For Games
2. New Hacker Tools
3. Pentest Tools Github
4. Hack Tools
5. Hack Tool Apk No Root
6. Pentest Tools
7. Hacker Tools Free
8. Kik Hack Tools
9. Tools 4 Hack
10. Hacker Tools Linux
11. Hacker Tools For Pc
12. Hacker Search Tools
13. Hacking Tools Usb
14. Hack Rom Tools
15. Pentest Tools Framework
16. Hacker Tools Apk
17. Hacker Tools Hardware
18. Hacker Tools For Mac
19. Android Hack Tools Github
20. Hacking Tools
21. Tools For Hacker
22. Growth Hacker Tools
23. How To Install Pentest Tools In Ubuntu
24. Hacking Tools 2020
25. Hack Website Online Tool
26. Pentest Tools Url Fuzzer
27. Hacking Tools Software
28. Hacking Tools For Windows Free Download
29. Hacker Tools Software
30. Pentest Tools Find Subdomains
31. Pentest Tools Github
32. Nsa Hacker Tools
33. Top Pentest Tools
34. Pentest Automation Tools
35. Pentest Tools List
36. Hacking Tools Free Download
37. Android Hack Tools Github
38. Pentest Tools Download
39. Hacking Tools Free Download
40. Pentest Tools Review
41. Usb Pentest Tools
42. Hackers Toolbox
43. Hacking Tools For Windows
44. Hacking Tools For Windows 7
45. Pentest Tools Bluekeep
46. Termux Hacking Tools 2019
47. Hacker Tools Windows
48. Pentest Tools Port Scanner
49. Hacking Tools
50. Hack Website Online Tool
51. Hacking Tools 2019
52. Hacking Tools Online
53. Hack Tools For Pc
54. Nsa Hack Tools
55. Pentest Tools Android
56. Kik Hack Tools
57. Hack Tools
58. Hack Website Online Tool
59. Hack Tools For Ubuntu
60. Pentest Tools Android
61. Pentest Tools Framework
62. Computer Hacker
63. Kik Hack Tools
64. Hacking Apps
65. Ethical Hacker Tools
66. Hacking Tools 2019
67. Pentest Tools Website
68. Pentest Tools Linux
69. Hacker Tool Kit
70. Pentest Tools Apk
71. Game Hacking
72. Pentest Tools Kali Linux
73. Hacking Tools Free Download
74. Hack Tools
75. Hacking Apps
76. Hack Tools Download
77. Hacker Tools Online
78. Hacking Tools Hardware
79. Pentest Tools Nmap
80. Hack And Tools
81. Pentest Reporting Tools
82. Wifi Hacker Tools For Windows
83. Hack Tools
84. Hacker Tools Apk Download
85. Pentest Tools Bluekeep
86. Hacker Tools 2020
87. Hacking Tools 2020
88. Pentest Tools Subdomain
89. Pentest Tools Framework
90. Usb Pentest Tools
91. Hacking Tools And Software
92. Pentest Tools Review
93. Pentest Tools For Windows
94. Tools 4 Hack
95. Pentest Tools Kali Linux
96. Hacker Hardware Tools
97. Hacking Tools Download
98. Hacker Tools Apk Download
99. Underground Hacker Sites
100. Pentest Tools Website
101. Hacker Tools Github
102. Hack Website Online Tool
103. Install Pentest Tools Ubuntu
104. New Hacker Tools
105. Hacking Tools Usb
106. Beginner Hacker Tools
107. Hack Tools Pc
108. Hacker Tools List
109. Hack Tool Apk
110. Hacker Tools Software
111. Pentest Tools For Windows
112. Hacker Security Tools
113. Hack Tools For Windows
114. Hacking Tools Kit
115. Hacker Tools
116. New Hack Tools
117. Hack Tools Download
118. Hacker Tools List
119. Pentest Tools Online
120. Wifi Hacker Tools For Windows
121. Hacker Tools List
122. Pentest Tools Website Vulnerability
123. Hacker Tools Mac
124. Hacking Tools And Software
125. Hacking Tools Download
126. Pentest Tools Find Subdomains
127. Hacking Tools Hardware
128. Hacking Tools Kit
129. Hack Tool Apk
130. Hacker Tools Linux
131. Usb Pentest Tools
132. Tools 4 Hack
133. Pentest Tools Framework
134. Hack And Tools
135. Usb Pentest Tools
136. Kik Hack Tools
137. Physical Pentest Tools
138. Hacking Tools Software
139. Hacker Tools Online
140. Hacking Tools 2019
141. Pentest Tools Framework
142. Hacking Tools For Windows 7
143. Hacking Tools For Mac
144. Hack Tools For Ubuntu
145. How To Install Pentest Tools In Ubuntu
146. Ethical Hacker Tools
147. Hacker Tools Mac
148. Computer Hacker
149. World No 1 Hacker Software
150. Growth Hacker Tools
151. Hack And Tools
152. Hacking App
153. Bluetooth Hacking Tools Kali
154. Hack Tools Pc
155. Hack Tools For Mac
156. Pentest Recon Tools
157. Hacker Tools 2020
158. Hack Tools