Hack Attack...Who would win!

Please note this is just a joke thread and no money will actually be exchanged!

Now that the disclaimer is out lets get this started to see what everyone thinks.

Placing bets: Highlighted User Attacks: Cheese vs. Bouncer

I will give a 1:2 odd range and you place your bets on who you think would win in a hacking war between these two…

I will start the betting with a $300 USD bet on Bouncer taking Cheese out.

Oooooh tough call. .. .. .. I bet all my savings on bouncer (for the record, that includes €541,15, two gummibears and a paperclip I bended to a little circle)

£150GBP Cheesey Wins

Haha, you actually made a thread on it :p Well i would bet for Bouncer for music xD but im gonna bet on Mr_Cheese for a hack attack, i'll bet you all my 15 CP and a plate of milk and cookies :D

spyware wrote: I bet all my savings on bouncer (for the record, that includes €541,15, two gummibears and a paperclip I bended to a little circle)

I call dibs on the paperclip!

AldarHawk wrote: I call dibs on the paperclip!

three dollars and it's yours, or an extra gummibear.

Bouncer would pwn

Haha, well i sjut explained it all on MSN so you get it now :D

haha wow this actually sounds excellent. i've worked with bouncer in the past, we made an excellent team together.

sounds a very interesting thread.

any ideas how we could test this? i'd actually find it quite fun compeiting against bouncer.. in a friendly way obvioulsy.

aldarhawk, chat to me and bouncer and msn and we could set something up :)

well you could compete in a series of realistic challenges and then judge by time and creativity

If you're talking realistic we should set-up a windows server with a firewall :D, and let there be blood.

Bouncer. Doesn't he work as net security?

Besides, you guys would need multiple challenges.

Competition 1.) Website hacking 3-rounds or first to 2

Competition 2.) Software Cracking 3-rounds or first to 2

Competition 3.) Rooting 3-rounds or first to 2

And post the stats then! :D

my bets on bouncer. (2 dollars a psp and a shoe string)

Wow…I started this as a joke from another thread…

Now if both parties are interested we could set up a nice little fame game. I could set up a box at my home and first to root it and keep it rooted for more than 24 hours wins?

I would have to of course get a new hard drive(anyone wanting to donate to the "Hack Attack" game please paypal money to me).

If people are really interested we can make this into a kinnda king of the hill type of competition…see who can stay on top the longest…

Have competitions that last until someone has rooted the box and kept it for 24 hours…once this is done then we can set it up so that person is the "champion" and gets to accept "challengers"

What do you all think of this? Would you all be interested in it? I do have a spare PIII 8000MHz with 380(someodd)MB RAM that I can throw an OS on. but of course I have no hard drive :( I may be able to scrounge up something in my basement but we will see…

If it is all good let me know…and any donations are welcome!

AldarHawk wrote: Wow…I started this as a joke from another thread…

Now if both parties are interested we could set up a nice little fame game. I could set up a box at my home and first to root it and keep it rooted for more than 24 hours wins?

I would have to of course get a new hard drive(anyone wanting to donate to the "Hack Attack" game please paypal money to me).

If people are really interested we can make this into a kinnda king of the hill type of competition…see who can stay on top the longest…

Have competitions that last until someone has rooted the box and kept it for 24 hours…once this is done then we can set it up so that person is the "champion" and gets to accept "challengers"

What do you all think of this? Would you all be interested in it? I do have a spare PIII 8000MHz with 380(someodd)MB RAM that I can throw an OS on. but of course I have no hard drive :( I may be able to scrounge up something in my basement but we will see…

If it is all good let me know…and any donations are welcome!

24 HOURS!?!?!?!?!

[edit]Also, if it's only between 2 people, why not wait until they are both logged on, ready, and see who 'roots' it first?[/edit]

Yes…the guys need to sleep :P

personally i think i (and bouncer also) excell more in web based hacking, but im up for rooting, which ever you guys find better and/or easier to setup.

i'll have a chat with bouncer, see how he feels.

Cool, this is gonna be wkd, maybe we set up an irc channel so people can cheer people on :p (just an idea)

anyone willing to help in any way please contact me! I can set it up to get this all working with users. If you have any thoughts or want to set up the site to get hacked let me know I can still host it on the machine (if I can find a hard drive)

Yeah, but this needs to be completely REAL. We need owner permissions (to make it legal) to have these guys hack x amount of sites. Give them 6 hours on each site, if no exploit found, then shuffle to another site. No simulated crap.

Well we could make the websites, and leave an actual hole somewhere. It wouldn't be simulated, but it would be made by us.

Yea hereby I sign myself up on the list of website developers.

Aldar, you know where to contact me.

chislam wrote: Well we could make the websites, and leave an actual hole somewhere. It wouldn't be simulated, but it would be made by us.

…> and leave an actual hole somewhere != simulated?

That's the point of it though. If it HAS a hole built in, it's not as demanding/realistic as a….well, real site. It could be easier, it could be harder.

Well when you said simulated, I thought you meant that the exploit was fake in a sense. For example if the exploit was LFI, and you were "supposed to get the" password / shadow files in /etc/, but when you do that, its not really showing the real files in /etc/ of that website, but instead fake files. That's what I thought you meant when you said simulated. Now if we were to develop the websites, you are saying that you would try to secure it as much as possible, not leaving any holes (so you think)? If so then I did not even think of it like that until now.

I know what you were thinking.

I think we should get owner permission from real on-web sites to "test" their security. Then, if one isn't exploited within 6 hours, move to another site. Just to make it legal.

Although, if you wanted to, you could do it another way and just post some stats without telling us the site name. Not that i'm suggesting anything… <.< >.>

nights_shadow wrote: That's the point of it though. If it HAS a hole built in, it's not as demanding/realistic as a….well, real site. It could be easier, it could be harder.

I disagree, having a hole built in doesn't necessarily make it harder to hack… First site I ever hacked I did so with a simple "?eflag=login" creating an error containing password, this was before I even knew HTML, I had never even thought of learning to hack by this point… And the creator of that site makes open source forums which as far as I know are relatively safe…

Another time I got read access to all PHP files on a guys site (which no longer exists, but for other reasons) just by typing "ftp:sitename.com"… Which allowed me to get SQL password which was same as admin FTP password

Real sites often have crappier security for the simple reason that no-one tries to hack them… Whether the creator is good or not… And simulations are often harder as they use very specialised techniques just to test people, not simple mistakes made by leaving out a line or two

@most of happysmileman's reply - Where are you pulling this from my post? [edit]example:

I disagree, having a hole built in doesn't necessarily make it harder to hack… ^—don't remember writing such a thing… [/edit]

Are you saying that a competition to test the skills of "realistic" web-hacking shouldn't be on a "real" site?

Well since it will be my server set up (not any virtual shit) that will be getting hacked (obviously WITH my permission) it would not be simulated at all. They would be attempting to hack an actual set up…That is why I was thinking root instread of web hack. But I could simply put something like Fusion or Nuke on and have a few users and have the guys have at her!

But any other thoughts please let me know.

MSN: falrish@sympatico.ca AIM: AldarHawkHB

Thanks all who have responded to this (originally joke) posting!

spyware wrote: Yea hereby I sign myself up on the list of website developers.

Aldar, you know where to contact me.

Me too :D

nights_shadow wrote: @most of happysmileman's reply - Where are you pulling this from my post? [edit]example: [quote]I disagree, having a hole built in doesn't necessarily make it harder to hack… ^—don't remember writing such a thing… [/edit]

Are you saying that a competition to test the skills of "realistic" web-hacking shouldn't be on a "real" site?[/quote]

I either misquoted or misread but I thought someone was making that point

Definately not something like fusion.

I don't know, i guess it's just the thought of a website being built for the sole purpose of the user to find a hole(s) and exploit it/them that doesn't make it seem too realistic.

I have one offer for a small donation already…come on people…I am not asking for your unborn children…just a few bucks from each member would make this reality for at least a year!

i'd be willing to develope too. i'd love to get some of new anti-hack algorithms a test. also, aldar contact me on msn later and perhaps i can help with some funding and such. i may be able to score a 2nd webserver or something of the such. we'll talk.

btw….my money goes on cheese. not really based on anything other than the fact that he has a cooler name. (sorry bouncer)

How is a block of cheese cooler than someone who throws people outta bars cooler?

No offence Cheese ;)

By Far AldarHawk is the coolest most original name out there anyways so :P

Well I think you should have like an ftp you have to get to the ftp find the file go to another hidden site and then get the pass off of a rooted computer with the pass encrypted recrypted and then like backwards encrypted or something to this effect that I believe would be the hardest for them…

and completely unrealistic, i think the idea is to make this competition in the "real world" and as realistic as posible, which will probablly be as mentioned above, just someone offering their website to the competition and me and bouncer go and try to get in.

seems most realistic way.

We could try to hack the dutch police system, it shouldn't be all that hard. [I was just KIDDING.. seriously.. we'll do it in two years or something, I'll leave the idea in the fridge for now]

Also Illegal which HBH and iSecForce are against.

We are going for a safe legal system that people will be able to hack. We want people to learn! not just Spew forth crap off the net man.

I am planning a few phases to the hacking. Each one will have slightly altered system configurations (yes I know a lot of work but if we get a few people with systems this can work seamless) and there will be a different thing each time. Rooting, Web Exploiting, Datbase Hacking, FTP Hacking, Shell to Root, and so on. I will have it all ready hopefully this weekend for round one…

Again anyone interested in donating please let me know!

/me would like to participate in the rooting challenge. :o)

I could donate my BOX (on which I will install an OS – neither party will know what it is till competition day) and have them go at it.

OR, I can simply set up a windows box for them to root, maybe with an older microsoft service pack.

I will make the rules since the box is mine, of course. They won't be that strict.. it'll all be common sense stuff.

What'd yall say?!

I can also make a vulnerable HTTP(s)/FTP server and have them go at it.

AldarHawk, Cheese, or Bouncer contact me if you're all interested… or invite me to the preparatory discussion about the challenge in a chat room (preferably on IRC).

sure, I can set it up as such, so that if both of you succeed into hacking into my box, you can access the logs and get down each other's throats, and HOPEFULLY make hacklogs of the hack.

I'd be more than glad to host this competition (at least the rooting part). If you don't find someone to make a Web Hacking one, then I'll gladly take it too. How's that?

i am surrendering my site :) hack it all you want it's crap anyway - i'll just delete it when you're done and re-install a CMS. I'm not going to fix any exploits, because I simply don't have the time / im too lazy :) it's pretty much an empty CMS anyhow.

here is the url anyways: http://s0l1d.galekus.com

ps… please don't be too evil - it is a shared host account, although the owner is frozen flame and im sure he wont mind… but please keep it in your mind when you hack phpnuke to bits :p

pps, I haven't read all of this thread, so if I am missing something vital… sorry :happy:

sounds fun. it'll have to be a weekend though, i wont have any time at all during the week to do it due to work, and bouncer has his college course all week so we're usally pretty busy.

a saturday or sunday is fine with me.

(note im camping with mrs cheese on 26th - 28th May: so cant make it then either)

Greetz to Mrs_Cheese! lol – So do you want my "donated" server?

That sounds WICKED! Too bad I don't know NULL about rooting so maybe you could tape EVERYTHING you do while rooting and compile a lil podcast out of it ?? :D I'd really appreciate that!

Soulhunter wrote: That sounds WICKED! Too bad I don't know NULL about rooting so maybe you could tape EVERYTHING you do while rooting and compile a lil podcast out of it ?? :D I'd really appreciate that!

great idea! i think you guys should both record how u do and it, and each person gets rated on who hacks the box or eachother more …smoothly? or better or w/e

okay, as an idea for the web-based portion of this:

Let's make it an official HBH competitions for the members, structured this way:

One Submission per member. You will receive points based on the following

Entered Submission - XX CP Submission Accepted - X Points Submission 50% safe - 2x points Submission 100% safe - 4x points

Now, to elaborate. The % safe is based on who hacks it. If neither cheese, nor bouncer hacks it 100%, if 1 does 50% safe, if both hack, you only get the points for an accepted submission.

Now, to get your submission accepted it must meet the following criteria.

1.) Must be coded using PHP/ASP and MySQL/MsSQL 2.) Site must contain ALL of the following -Login -Registration (not email verified.) -Member's panel (profile or the such) -Other Members -A useable Search (or other SELECT query) -1 postable page (i.e. shoutbox, forum, etc) 3.) Site must contain 1 of the following: -Admin panel (backend) -.htaccess area -use of cookies -A $_GET used at some point -backups 4.) Site must not be… -a pre-made CMS (fusion or the like) -no pre-made parts (phpBB or the like) -simulated/purposely holey

We would then compile a list or entries (we being admins or contest moderators) and structure the competition for Cheese and Bouncer off of these various sites.

NOW…. this is not verified as being alright with Cheese, simply my proposal to get other into this competition and to make it a real competition for cheese and bouncer.

–samurai

Would the website require a vulnerability to be a valid submission?

4.) Site must not be… -a pre-made CMS (fusion or the like) -no pre-made parts (phpBB or the like) -simulated/purposely holey

So, no.

:/ i would submit noobschallenges.org but A) the only cookies are SESSION and b) its not finished. Also i reckon its fully secure.

mr noob wrote: :/ i would submit noobschallenges.org but A) the only cookies are SESSION and b) its not finished. Also i reckon its fully secure.

A bold statement, you might want to watch out with who you challenge ;), fully secure is something I never heard of.

Okay I think that netfish and I can set up the two boxes (I found a few hard drives laying around) so net get your box set up and I will get mine. we will set it up with Dyn or another dynamic IP Hider and only give the site to the people participating.

Now are we going to do a King of the Hill type or are we doing something different?

My plan was have these two go at it and then after we gain a winner that person will get challenges from people/groups. The winner can then choose who they would like to compete against in the next round.

(The reason I said groups is because the winner will obviously be a wicked hacker and that being said sometimes it will take more than one to take them down.)

Anyways back to the point…I will hopefully have my site up for this weekend it will be a *NIX based system and I will be custom compiling the daemons so as to make it harder ;). That being said, I may not have it finished in time. If netfish wants to have his set up for "Hack Attack Phase 1" please do. We can hold it this weekend.

So Phase 1…Bouncer vs. Mr Cheese…Who Will Win? Who Will be "staying alive" so to speak…Who will root that box? Find out….when we return…(cliff hangers…don't ya love them?)

@ aldar and cheese…. thoughts on my idea?

your thoughts are totally taking out the idea of this…no offence but what you are saying is to create a site that can be hacked…why not just make it a realistic challenge then? We are looking for a server that is live and set up like the real world. not something like a server that has to meet these strict guidelines.

That is just my thought though.

AldarHawk wrote: your thoughts are totally taking out the idea of this…no offence but what you are saying is to create a site that can be hacked…why not just make it a realistic challenge then? We are looking for a server that is live and set up like the real world. not something like a server that has to meet these strict guidelines.

That is just my thought though.

Exactly.

i will donate a site if you want. its not finishes as of now, but i could stick some php fusion up or something.

Okay, here are some of my thoughts:

There are a lot of newbies on this board who would really like to learn something about scripting and stuff (including myself) And as Hellbound is meant for learning purposes it would be really cool if we could set up a team of newbies (not total newbies of course, basic html+php required) to set up this website. This way, newbies will be able to learn something and when we say were done you take out ur 1337 hacker toolkit and burn it down to the ground :D

It might take a bit longer to set it up like this and I don't know if that's a problem for you but I think it's a good idea..

S-H

Rofl, i actually think soulhunter's idea is pretty good!

yeah because then it wouldnt be made by professional PHP programmers e.t.c. who would make it 100% secure :)

Meh, I don't think n00bs can make a CMS. I mean real n00bs, why not capture the action and publish the videos on HBH?

god my post really turned this topic into something serious =)

bouncer wrote: but i will cut out some stuff that i dont want to reveal.

Like asking bonzi buddy for help?

spyware: do not reveal the uber 1337 h4x0rs best tool man! Bonzai Buddy is the ultimate h4x0r tool man…now everyone knows!

I think the idea about n00bs coding a CMS is good but you know what…I know about 1 or 2 who would be able to do anything…ohh and the comment about professional programmers making code hack proof…all I can say to that is "HAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHA"

okay…..i dont see how my idea defeated the purpose. it's the same fucking idea that sh gave, but with points involved. there was no simulation or purposeful holes put in there. if you read it carefully you will noticeis says NOT to have those

Well, the restrictions you want to bring into the game make a lot of people feel like it's just another "Gee-let's-spend-hours-searching-for-the-solution-the-coder-had-in-mind" kinda challenge. I guess most people want this as least simulated as possible.

Which is why I say, let's involve the less skilled scripters out here, they will learn from it and at the same time create a site with some bugs just because they don't have much experience.

from what i've read quickly it seems liek an excellent idea.

hbh community can come together and produce a really good open-source CMS. a cms made my hackers sounds interesting so hopeuflly there shoudlnt be any exploits etc.

then when its made me and bouncer can have out little compeittion. show everyone the exploits we found, so people can learn and secure the cms even more.

could also turn into a permant penetration testing challenge on the cms.

sounds good, so yeah developers get together and make HBH-CMS.

:ninja:

i must dash now, might be on later to read replies etc. if not i shall catch you guys on hbh tommorow.

peace.

I'd rather see a rooting competition.

Mr_Cheese wrote: …could also turn into a permant penetration testing challenge on the cms. sounds good, so yeah developers get together and make HBH-CMS. :ninja: …

Sounds great to me! I just hope the less skilled folks will get a chance to be part of this too..that's all..

Sigh, won't it be too easy then. Web-hacking has been covered enough, can't we set up a real rooting challenge for once. It would teach everyone (videos/articles afterwards) and face it: rooting is nicer to watch then another web hack.

Sigh, won't it be too easy then. Web-hacking has been covered enough, can't we set up a real rooting challenge for once. It would teach everyone (videos/articles afterwards) and face it: rooting is nicer to watch then another web hack.

Then let's split this whole thing up, whom ever wants to do the Rooting does the rooting and whomever wants to build a CMS builds the cms..

That shouldn't be a problem..should it?

bouncer wrote: WE, THE DUTCH, WILL ALWAYS WIN! drops a tear

ehm.. i think it is better to make some weird system, which we would have to exploit, gain some sort of access, root the fuckng server, burn the server down :love: and… burn it down again

While drinking a coke(/beer) :). WE WANT ROOT, WE WANT ROOT!

bouncer wrote: WE, THE DUTCH, WILL ALWAYS WIN! drops a tear

ehm.. i think it is better to make some weird system, which we would have to exploit, gain some sort of access, root the fuckng server, burn the server down :love: and… burn it down again

I'm not sure about burning down servers but the Dutch are Winners indeed! neuriet Wilhelmus Sorry, Just needed to get that off my mind :P

spyware wrote: Sigh, won't it be too easy then. Web-hacking has been covered enough, can't we set up a real rooting challenge for once. It would teach everyone (videos/articles afterwards) and face it: rooting is nicer to watch then another web hack.

hes right there is alot of stuff about webhackinh out there not enough about rooting. we should create a good rooting challenge. and make videos :)

Okay well we DO have TWO servers available…I know netfish likes rooting as well so…I will set up the root box and he can set up the CMS box.

If anyone has problems with this let me know.

hes right there is alot of stuff about webhackinh out there not enough about rooting. we should create a good rooting challenge. and make videos :)

Agreed, there should be more Rooting done around here. But I will stick to the CMS project (if there is going to be one) because rooting is way to hard for me, I'd love seeing some videos though..

I will help with the html but I don't know php :( so any one fell free to PM me.

the only thing HTML is going to do with a CMS is set up layout and that is truthfully CSS developers job so HTML coders are not really that needed IMHO.

I hopefully will have time to finish the box this weekend. It will be a total surprise as to what I put on it but remember…I have my eye on the unhackable server :-D :evil: :matey: :whoa:

i'll help work on the cms for the competition. i'm good with php/mysql and i know css.

i havent really been following the whole thing, but is this still against cheese and bouncer? or does it now include other members?

at first its me and bouncer, then it will be opened up for the public.

Mr_Cheese wrote: at first its me and bouncer, then it will be opened up for the public.

If I were you do it invite only, otherwise it will get TOO crowded. Trust me, you don't want 500 crazy hbh members hacking at something at the same time.

spyware wrote: If I were you do it invite only, otherwise it will get TOO crowded. Trust me, you don't want 500 crazy hbh members hacking at something at the same time.

Its happened before :P

mozzer wrote: Its happened before :P

I breached system's site, that was the result. I'm just saying that 500 people will bring chaos and possibly destruction to this comp.

I doubt it. Not that many people

1. Have experience rooting
2. Exist on HBH (regular members etc)

mozzer wrote: I doubt it. Not that many people

1. Have experience rooting
2. Exist on HBH (regular members etc)

And I may quote your words:

Its happened before

I meant the chaos, not the destruction… your breach was as deep as mine

mozzer wrote: I meant the chaos, not the number of people

It's the chaos im "scared" about.

Ah kk… I wonder what the chaos will be though in rooting… Probably people being locked out rather than XSS spammed

sotty, i only read the firest page and this one.

I have a server here doing fuck all. I'm happy to host the web page/rootable server although i'm kinda busy, if someone wants to put everything they want together and i'll just whack it on that'd be great. ATM it's running mandrake 9 but i can put just about any flavour of linux on it. or windows 98 (XP is NOT gunna run ont this)

Okay. The plan is we will have two boxes (Mine and Netfish's). Bouncer and Cheese will root my box. Once this part of the competition is over then Netfish's side will be open. Users will be able to join the dev team to build the CMS. Once the CMS is completed then it will get opened to a small group to get hacked. Once this is done the hackers will share all their findings with the community (possibly get points?) and then the dev team will fix all the problems found. Then another round of hacks will occur and so on.

While this is goin on the King of the Hill type game will be running on my box. Rooting it to stay on top.

After each round of rooting I will change the systems domain name (I am dynamic baby). This way the systems location stays secret some what. Only members who are involved in the current Hack Attack will be given the servers information. Again the winner of the hack will get to accept challenges (I will make a Forum Board or something where this can all take place.) from the other members.

I have hit another snag though. My HDD toasted again. I think I have a few more laying around but Donations would still be great. I will keep you all up to date on the status of my system.

Hope to hear a lot more out of this thread!

Another Vote for rooting :P I would LOVE to see some good rooting videos and tutorials etc would be awsome! :P

Nice one!

Relentless.

Thank you for all the interest in this guys…keep the input coming.

can we also do a web based competition as the main focus?

i've only ever rooted just 3 servers and 1 box :-/ , and i think me and bouncer are far better at web based explotiing that rooting.

but either way im happy to do the rooting competition, be nice to have the web based on too though.

or perhaps root aldarhawks box and his box also has a website running on it. so then we got the oppurunity to remotely root it, or epxloit website and locally root it.

anyways either way im happy, let me know what the verdict is.

Personally I'd vote Rooting, although it is up to Aldarhawk to decide

Well I need time to work on the server (this is a long weekend this weekend so I may be able to grab a few minutes between buckets of golf balls at the range.)

I hopefully will have a rooting box up by this weekend.

as for web hack that will be netfish's box ;)

What Cheese is saying, is that it wouldn't be a fair contest in skill if he were to do rooting because his skills lay in WebHacking.

NetFish has proven to be a good rooter.

The Flash wrote: because his skills lay in WebHacking.

as do bouncers mainly.

but doesnt matter.. im game for rooting too.

that is what I am getting at. the entire point of HBH is for it to be a learning ground. You must continually learn to further yourself. I do not want this competition to be set up so it is easy on the contest entrants. I want it to be a challenge.

As you have stated Cheese you HAVE rooted 3 boxes and 1 PC (could be a little off on these numbers) so you CAN. Now it is time to learn and further yourself. What I am attempting is not your every day this is this and that is that competition. I am attempting to set up something REAL, NEW and fun to learn from. You learn nothing if all you di is things you have already done.

I want this to end up being a competition for the players for learn a lot and perhaps even teach others how to fix the exploits and what not they have found.

and an update on my server…I am getting a fucked up message right now from my mainboard about Slave Failure(I do not have a bloody slave drive at all in the box) so I will see what I can do to fix this. I found a working 40Gig drive to so I have the HDD covered but still could use anything people would like to contribute. perhaps we make an account that will be the central repository for users contributions the the Hack Attack cause and it can be distributed from there to the members involved in managing this competition to ease some financial burdons where they lay from running a box 24/7. Because I know for a fact I pay my own electricity bills :P.

Anyways…Look forward to another 100+ posts on this thread guys. Keep it up and throw all your suggestions this way no matter how hair brained it may seem…Please do not flame on this thread. Leave that to your own postings!

AldarHawk wrote: bla bla

So you mean, 1) it would be good/fun to root because we learn from it, 2) that you kinda need money, 'cause a server isn't cheap and 3) we must post more ideas and suggestions in this thread for the comp.

[/summary]

spyware wrote: So you mean, 1) it would be good/fun to root because we learn from it, 2) that you kinda need money, 'cause a server isn't cheap and 3) we must post more ideas and suggestions in this thread for the comp. [/summary]

Okay lets get this straight for you guys out there.

**1) **it would be good/fun to root for the people who do not know about rooting so they can better their knowledge and how to secure said items and it would be good/fun for people to web exploit to learn from that as well. The reason I am pushing Cheese and Bouncer to rooting is because we all know they can web-sploit.

**2) **Yes Money is a problem sometimes. Not just building a server because I have a few spares laying around the basement that I can build when I have the time but the electricity it takes to run the machine is not free (at least in my house it aint ;) ). So yes financially this costs me money to do to give a fun competition to you guys. All I am asking is that people who can afford a few dollars here and there to contribute to helping out all who want this competition to last a long time.

**3) **Ideas are the fuel of change. If you post an idea of what YOU would like to learn about then we can perhaps incorperate it into the competition. I do not care if you want to learn how to program a rootkit or just learn how to do SQL injection in the real world. Post what you want to see in this competition and we will see what can be done with it.

Dude, my summary was freaking **hot ** and you made it winter once more.. (think about that..) It's freezing in here.

All I will say is:

O……k………..:S

sounds like a real good plan :angry:

maybe when the server is up, and u have a king, make challengers pay $10 or something to participate and the king gets $1 for each round?

AldarHawk, if you were to reply to your IMs/PMs/IRC scream my fucking lungs out messages, I could get you some money!

Genome wrote: sounds like a real good plan :angry:

maybe when the server is up, and u have a king, make challengers pay $10 or something to participate and the king gets $1 for each round?

I like the idea…perhaps make it a little smaller of an entry fee? $5.00 or $2.50 and have the "King" take 20% of the fee?

That would be cool because the Challenger if good could stand to easily make their money back if they win 5 rounds :D

If you advertise that on other hacking sites too you would get loads of feedback. Many people would $5 for a poke at a box that might make them money. You just need to find some hacking communities that think they're something and actually aren't.

man, it's been ages Cubeman!

Anyways, the idea for my box beeing up for rooting is still up as a suggestion. I'll let Cheese and Bouncer pick the time that's suitable for them.

You heard the man…Send out the Message over the world! Hackers of the world…Unite!

Sorry had to say it :P

If anyone wants to pass this on please feel free to do so and give them my contact info.

Okay, so first of all I think getting money involved is a good Idea. It might give the community bank a boost and that's what it needs I guess. On the other hand, involving money would probably ruin the concept. I mean, this whole thing was about competing against each other but even more about learning new stuff. And how the hell would anybody learn anything when nobody want's to tell how they did it because there is money involved. I think that's a problem…

No the user MUST release all the information on the hack to the people running the server. That is how you become the king. it is not just keep the server. it is keep the server and SHOW how. thus the podcasts and such of your hacks.

The servers are re-built after each hack and patched or altered or even placing a totally different OS on there to spin all for a loop ;)

hm..yeah..that would solve it.. good idea ;)

Sounds like a great idea :)

Good to see the responses. any other ideas on the games?

How about one which involves Twitter? :P

cubeman372 wrote: If you advertise that on other hacking sites too you would get loads of feedback. Many people would $5 for a poke at a box that might make them money. You just need to find some hacking communities that think they're something and actually aren't.

[on topic] I agree, a lot of people like money, me included, hah! [/on topic]

[off topic] Hey dude!! Hope you're here to stay this time :p [/off topic]

mozzer wrote: How about one which involves Twitter? :P

Stfu about Twitter already.

I hopefully will have this server fixed up this weekend (long weekend yay!) so that would mean since you and cheese are busy during the week…next weekend is my aim

mozzer wrote: How about one which involves Twitter? :P The Flash wrote: Stfu about Twitter already.

Somebody just made a really good point :p

Okay I have built the machine. I will be running over it until next weekend now to perfect it :D If I have not made it "perfect" then it will be even more realistic. I was thinking after this one to do just a base install of a few OS's. So I think I will have a few Drives for quick swap out with a backup system running for installations :P

Next weekend will be the start of this game.

I will start a new post once Cheese and Bouncer have fried the box :P

Little impatient Aldar? :happy:

Nope I have Image one Made already. I am making another 2 Hard drives(this way we get 3 competitions and all I have to do is swap hard drives out.) then I will re-image all the drives again then we will have another 3 competitions quick.

I'd rly love to see that. Cant the tape it while their doing it? :)

See their Tactics and stuff :D

Plz PM me if they rly gonna do it :D please :D

And I dunno who would win, Dont know any of them.

I have the box for Bouncer Vs Cheese Set up. They will both be doing a podcast of it. I am aiming for next weekend for this to happen.

I am in the midst of setting up Round 1 of Hack Attack: Rooters among us.

It will be a linux dristro and that is all I will tell. The entry will be $5.00 US and I am looking to get at least 10 members involved in this one. The winner will be rewarded 20% of the pot. 20% will go to HBH and the rest will go to me setting this up and helping me to pay bills.

hey, just wondering how the progress is going? :)

Sorry Cheese, Bouncer would win. I'd bet my supra which is worth $26,000…

What ever happened with this challenge? Are the boxes still up? I have a couple boxes I can use for this as well. How did I miss this thread…..

inzel wrote: What ever happened with this challenge? Are the boxes still up? I have a couple boxes I can use for this as well. How did I miss this thread…..

How did you miss this challenge? Maybe because it was created before you even made an account. Talk about resurrecting the dead.

What is this, colossal bump week? :angry: If the thread is long dead, leave it that way unless you have something MEANINGFUL to add.

For example, betting who would win in a contest that was mentioned in a thread MONTHS AND MONTHS AGO… is stupid. What would make you think that the contest is even still going?

OK first off, this thread wasnt re-opened by me. You can look at the post before mine. And second, I was interested. I just wanted to know the outcome thats all. Plus, if there was something to come out of this.. then I would be willing to put some computers online for some rooting challenges. If not, then thats all good too man. Not a big deal. Flame on I guess.

inzel wrote: OK first off, this thread wasnt re-opened by me. You can look at the post before mine.

I was REFERRING to the post above yours. Maybe if you had read this part of my post…

Zephyr_Pure wrote: For example, betting who would win in a contest that was mentioned in a thread MONTHS AND MONTHS AGO… is stupid.

… you would've realized that. Did you make any bet? No? Then, why on earth would you think my post was directed at you?

blah, blah, blah

Flame on I guess.

Thanks for your permission for me to flame someone else; I don't know how I could've continued without your patronage. :|

The target of my comments was that dumb twit above you that keeps bumping dead posts. :happy:

I realized that right before you posted again but didn't feel like editing. I apologize. I am interested to know what happened tho. ;)