Jar2 The NSA Tools

 

THIS HUGE RELEASE IS DEDICATED TO VITALY CHURKIN AND ALL THE GOOD PEOPLE KILLED BY THE NSA/CIA/MOSSAD AND THEIR AGENTS

UNENCRYPTED ZIPPED FILE: DOWNLOAD AT YOUR OWN RISK

http://www.jar2.biz/Files/NSA_TOOLS/EQGRP-master.zip

SOURCE of FILES: The Shadow Brokers, Analysis by GITHUB, HOSTING by JAR2 BIZ

MESSAGE FROM SHADOW BROKERS:

https://github.com/x0rz/EQGRP/blob/master/README.md

http://www.zerohedge.com/news/2017-04-08/hacker-group-releases-password-nsas-top-secret-arsenal-protest-trump-betrayal

Unknown

COTTONAXE

EBBISLAND related rce

STOICSURGEON

INCISION

ITIME

JACKLADDER

DAMPCROWD

ELDESTMYdLE

SUAVEEYEFUL

WATCHER

YELLOWSPIRIT

Misc

DITTLELIGHT (HIDELIGHT) unhide NOPEN window to run unix oracle db scripts

DUL shellcode packer

egg_timer execution delayer (equivalent to at)

ewok snmpwalk-like?

gr Web crontab manager? wtf. NSA are webscale dude

jackladderhelper simple port binder

magicjack DES implementation in Perl

PORKSERVER inetd-based server for the PORK implant

ri equivalent to rpcinfo

uX_local Micro X server, likely for remote management

Remote Code Execution

Solaris

CATFLAP Solaris 7/8/9 (SPARC and Intel) RCE (for a LOT of versions)

EASYSTREET/CMSEX and cmsd Solaris rpc.cmsd remote root

EBBISLAND/ELVISCICADA/snmpXdmid and frown: CVE-2001-0236, Solaris 2.6-2.9 - snmpXdmid Buffer Overflow

sneer: mibissa (Sun snmpd) RCE, with DWARF symbols :D

dtspcdx_sparc dtspcd RCE for SunOS 5. -5.8. what a useless exploit

TOOLTALK DEC, IRIX, or Sol2.6 or earlier Tooltalk buffer overflow RCE

VIOLENTSPIRIT RCE for ttsession daemon in CDE on Solaris 2.6-2.9 on SPARC and x86

Netscape Server

xp_ns-httpd NetScape Server RCE

nsent RCE for NetScape Enterprise server 4.1 for Solaris

eggbasket another NetScape Enterprise RCE, this time version 3.5, likely SPARC only

FTP servers

EE proftpd 1.2.8 RCE, for RHEL 7.3+/Linux, CVE-2011-4130? another reason not to use proftpd

wuftpd likely CVE-2001-0550

Web

ESMARKCONANT exploits phpBB vulnerability (<2.0.11)

ELIDESKEW Public known vulnerablity in SquirrelMail versions 1.4.0 - 1.4.7

ELITEHAMMER Runs against RedFlag Webmail 4, yields user nobody

ENVISIONCOLLISION RCE for phpBB (derivative)

EPICHERO RCE for Avaya Media Server

Misc

calserver spooler RPC based RCE

EARLYSHOVEL RCE RHL7 using sendmail

ECHOWRECKER/sambal: samba 2.2 and 3.0.2a - 3.0.12-5 RCE (with DWARF symbols), for FreeBSD, OpenBSD 3.1, OpenBSD 3.2 (with a non-executable stack, zomg), and Linux. Likely CVE-2003-0201. There is also a Solaris version

ELECTRICSLIDE RCE (heap-overflow) in Squid, with a chinese-looking vector

EMBERSNOUT a remote exploit against Red Hat 9.0's httpd-2.0.40-21

ENGAGENAUGHTY/apache-ssl-linux Apache2 mod-ssl RCE (2008), SSLv2

ENTERSEED Postfix RCE, for 2.0.8-2.1.5

ERRGENTLE/xp-exim-3-remote-linux Exim remote root, likely CVE-2001-0690, Exim 3.22-3.35

EXPOSITTRAG exploit pcnfsd version 2.x

extinctspinash: Chili!Soft ASP stuff RCE? and Cobalt RaQ too?

KWIKEMART (km binary) RCE for SSH1 padding crc32 thingy (https://packetstormsecurity.com/files/24347/ssh1.crc32.txt.html)

prout (ab)use of pcnfs RPC program (version 2 only) (1999)

slugger: various printers RCE, looks like CVE-1999-0078looks

statdx Redhat Linux 6.0/6.1/6.2 rpc.statd remote root exploit (IA32)

telex Telnetd RCE for RHEL ? CVE-1999-0192?

toffeehammer RCE for cgiecho part of cgimail, exploits fprintf

VS-VIOLET Solaris 2.6 - 2.9, something related to XDMCP

SKIMCOUNTRY Steal mobile phone log data

SLYHERETIC_CHECKS Check if a target is ready for SLYHERETIC (not included)

EMPTYBOWL RCE for MailCenter Gateway (mcgate) - an application that comes with Asia Info Message Center mailserver; buffer overflow allows a string passed to popen() call to be controlled by an attacker; arbitraty cmd execute known to work only for AIMC Version 2.9.5.1

Anti-forensic

toast: wtmps editor/manipulator/querier

pcleans: pacctl manipulator/cleaner

DIZZYTACHOMETER: Alters RPM database when system file is changed so that RPM (>4.1) verify doesn't complain

DUBMOAT Manipulate utmp

scrubhands post-op cleanup tool?

Auditcleaner cleans up audit.log

Control

Iting HP-UX, Linux, SunOS

FUNNELOUT: database-based web-backdoor for vbulletin

hi UNIX bind shell

jackpop bind shell for SPARC

NOPEN Backdoor? A RAT or post-exploitation shell consisting of a client and a server that encrypts data using RC6 source

ORLEANSTRIDE

SAMPLEMAN / ROUTER TOUCH Clearly hits Cisco via some sort of redirection via a tool on port 2323... (thanks to @cynicalsecurity)

SECONDDATE Implant for Linux/FreeBSD/Solaris/JunOS

SHENTYSDELIGHT Linux keylogger

SIDETRACK implant used for PITCHIMPAIR

SIFT Implant for Solaris/Linux/FreeBSD

SLYHERETIC SLYHERETIC is a light-weight implant for AIX 5.1-5.2 Uses Hide-in-Plain-Sight techniques to provide stealth.

STRIFEWORLD: Network-monitoring for UNIX, needs to be launched as root. Strifeworld is a program that captures data transmitted as part of TCP connections and stores the data in a memory for analysis. Strifeworld reconstructs the actual data streams and stores each session in a file for later analysis.

SUCTIONCHAR: 32 or 64 bit OS, solaris sparc 8,9, Kernel level implant - transparent, sustained, or realtime interception of processes input/output vnode traffic, able to intercept ssh, telnet, rlogin, rsh, password, login, csh, su, …

CnC

Seconddate_CnC: CnC for SECONDDATE

ELECTRICSIDE likely a big-fat-ass CnC

NOCLIENT Seems to be the CnC for NOPEN*

DEWDROP

Privesc

Linux

h: linux kernel privesc, old-day compiled hatorihanzo.c, do-brk() in 2.4.22

CVE-2003-0961

gsh: setreuid(0,0);execl("bash","/bin/bash")

PTRACE/FORKPTY/km3: linux kernel lpe, kmod+ptrace, CVE-2003-0127, (https://mjt.nysv.org/scratch/ptrace_exploit/km3.c)

EXACTCHANGE: NULL-deref based local-root, based on various sockets protocols, compiled in 2004, made public in 2005

ghost:statmon/tooltalk privesc?

elgingamble:

ESTOPFORBADE local root gds_inet_server for, Cobalt Linux release 6.0, to be used with complexpuzzle

ENVOYTOMATO LPE through bluetooth stack(?)

ESTOPMOONLIT Linux LPE

EPOXYRESIN Linux LPE

AIX

EXCEEDSALON-AIX privesc

Others

procsuid: setuid perl (yes, it's a real thing) privesc through unsanitized environnement variables. wtf dude

elatedmonkey: cpanel privesc (0day) using /usr/local/cpanel/3rdparty/mailman/. Creates mailman mailing list: mailman config_list

estesfox: logwatch privesc, old-day

evolvingstrategy: privesc, likely for Kaspersky Anti-virus (/sbin/keepup2date is kaspersky's stuff) (what is ey_vrupdate?)

eh OpenWebMail privesc

escrowupgrade cachefsd for solaris 2.6 2.7 sparc

ENGLANDBOGY local exploit against Xorg X11R7 1.0.1, X11R7 1.0, X11R6 6.9, Includes the following distributions: MandrakeSoft Linux 10.2, Ubuntu 5.0.4, SuSE Linux 10.0, RedHat Fedora Core5, MandrakeSoft Linux 2006.0. requires a setuid Xorg

endlessdonut: Apache fastcgi privesc

Interesting stuff

default passwords list (courtesy of x0rz)

gov.ru (stoicsurgeon_ctrl__v__1.5.13.5_x86-freebsd-5.3-sassyninja-mail.aprf.gov.ru) (wow

NSA: no terrorists caught, yet entangled in everything - By John Robles

31 January, 12:29

There is so much missing or purposefully obfuscated in the debate about NSA/Five Eyes spying, US Government illegality, CIA collusion with al-Qaeda, Guantanamo, 9/11, torture, drones, Afghanistan, Iraq and everything that millions of people have been outraged about for over a decade, but the most striking is that almost no one is proposing closing these organizations down and few are talking about prosecuting those responsible.

The glaring problem that everyone seems to be missing or purposefully avoiding, the elephant in the room if you will, is that everything that has been revealed by Edward Snowden and debated about endlessly is completely illegal and for a government and a "secret agency" indefensible, but due America's self promoted "exceptionalism" everyone finds it more comfortable to avoid such talk. In reality the NSA must be shut down but everyone in the West and in the western controlled corporate media do not dare to even debate this issue.

The NSA, as a secret organization whose initials stood for "No Such Agency" 20 years ago, has failed to maintain its secrecy and has gone from being the most secret agency of the US Government to a common household word. This is unacceptable in the world of espionage and the fact that a large quantity of its dirty laundry is available on-line and debated on a daily basis should be reason enough for the whole agency to be shut down. From a security standpoint in allowing leak after leak culminating in the mania that has become Edward Snowden the agency has proven that it is porous, prone to leakage and unable to maintain its secrets. These words are words that should be said by someone on the US Senate Intelligence Committee in serious hearings not by a Russian journalist but we have seen that US politicians, the US President and the US mass-media are completely impotent when it comes to oversight or dealing with real threats to security and even worse than impotent but complicit when it comes to illegality committed by any government body or their security structures.

NSA/CIA etc Illegality, Ineffectiveness

In an article for Global Research by James Corbett  dealing with the choreographed media operations that the NSA is engaged in continuing its illegality and escaping oversight. In the article Mr. Corbett writes that prior to 9-11 the NSA was already spying on all Americans, was tracking Bin Laden and Al-Qaeda (the CIA's Data-Base) and then withholding that information from the CIA's Bin Laden unit. In other words the NSA could have prevented 9-11 if it was in fact carried out by Al-Qaeda but did not and then used the event, according to Mr. Corbett to say it needed more powers and to justify its illegal surveillance of Americans.

This usage of 9-11 as a blanket reason to justify all form of US Government CIA/NSA etc. illegality has grown truly tired and unbelievable. From the crimes against humanity that were the invasions of Afghanistan and Iraq, to the illegal torture prison at Guantanamo, to the illegal extra-judicial execution by drone program and finally to the blanket surveillance of all Americans 9-11 has been the justification. 9-11: events which have not even been properly explained or investigated and will never be because they were the basis for all of the other illegality.

Recently ex MI5 officer David Shayler put it this way in a VoR interview: "… if we stop funding government, it stops funding this nonsense, it stops funding things like the NSA and MI5 and MI6. And it is not like we are going to be attacked if these organizations disappear, because as I say they are causing most of the conflict on the planet in the first place."

Mr. Shayler is not alone in having the bravery to say what has to be said and the public record bears his words out that these agencies are truly the root of all evil and are not engaged in defense or protection but rather in hiding illegality and assuring their own continued funding and illegal conduct and operations.

In an article for wired dot com David Kravets recently wrote  about how the NSA's spying was illegal, ineffective and should be stopped: "Based on information provided to the Board, we have not identified a single instance involving a threat to the United States in which the telephone records program made a concrete difference in the outcome of a counterterrorism investigation," the report found. "Moreover, we are aware of no instance in which the program directly contributed to the discovery of a previously unknown terrorist plot or the disruption of a terrorist attack."

Even though one judge did find it illegal, the NSA just found another judge who it owned to say it wasn't. As for not preventing a single terrorist attack, well let the record speak for itself. If the NSA with its billion dollar budget and the supposed ability to monitor, intercept and store everything anyone says or does through any sort of electronic communication and has been doing so since before 9-11 then why are they unable to show even 1 single terrorist attack that they have prevented? And why were they not able to prevent 9-11 itself, since they could have as the record shows. Could it be that 9-11 was really an inside job?

I dare say if any such organization existed in Russia heads would roll and the whole operation would be shut down. What are they really doing in the billion dollar Puzzle Palace? Playing video games?

They answer to that is undoubtedly no. They are spying on the world and every single citizen of this planet that they can collect data on to guarantee the continuity of the illegal security state, the profits of the paper bankers and the continued existence of the US military industrial complex. Oh and according to Mr. Corbett collecting data on foreign leaders with which to blackmail them with. That used to be the domain of the CIA and the FBI but that is the subject of another discussion.

Oversight

If you are reading this think about this for a minute: why is this appearing on Russian media being written about by a Russian journalist? Is it because Russia is somehow involved or cares about the NSA? No Russia has enough of its own headaches to deal with but last summer the entire illegal US security paradigm was unwontedly dumped in Russia's lap in the form of American Patriot Edward Snowden who was not a Russian agent, had no connection to Russia nor had even ever been on the territory of the Russian Federation. Even worse for Russia is that Snowden is an unapologetic and outspoken American patriot and an agent of both the CIA and the NSA. Not the normal type of person Russia should or does protect.

Think about this as well if the US mass media was performing its function and if the US president and the government he is supposed to be leading were doing their jobs and serving the interests of the American people by holding those committing illegality accountable, most of the illegality that has been debated in the world media about the US since 9-11 would not have even come to light and all of the matters that I have written about over the years would not have been necessary. But the US is not capable of conducting proper oversight nor of hiding its own illegality, it is out there for the world to see debate and apparently to accept.

That is the key problem in the US. There is no oversight and the last instance of oversight, the president himself, is also a party to the illegality. Terror Tuesdays and Guantanamo prove this. Although it is not entirely his fault, he is afraid of being assassinated no doubt if he does not follow the instructions of the military industrial complex as the Kennedy assassination proved. It is the CIA and the military industrial complex that has the real power in the US and the people are merely an abstraction for them that must serve the state and not the other way around.

Useless US Fourth Estate

As Mr. Corbett writes the mass media in the US is completely useless in performing the function of the Fourth Estate. This has been said hundreds of times before, he is not the only one saying this, and the case of Julian Assange and WikiLeaks bears this out. The US corporate mass media is bought and paid for and is merely a propaganda tool for the US military industrial complex, bankers and the US Government which they now own.

Medea Benjamin recently put it this way in a VoR interview: "… there is not a lot of information through the mainstream channels that can educate the American people and just to circle back to the issue of Guantanamo I would think that if there would be a poll done that most Americans wouldn't even know that we still have people in Guantanamo. They probably think everybody there was let go, it has been shut down or if they thought that anybody was left it is because they have been tried and convicted and happened to be the worst of the worst which is not true at all. So, unfortunately I think that a lot of the reasons that the Administration can get away with policies like this is because the US mainstream media has not been doing its job."

Ex NSA analyst Wayne Madsen recently told me that even Ted Turner, the founder of CNN admitted that the entire mass media is "messed up" in the US. Mr. Madsen stated: "Ted Turner told me himself, at the United Nations a few years ago that if it had to do it all over again, he wouldn't have gotten into that deal with Time Warner and AOL, that destroyed the network but it is too late. So, CNN can attack me all day long. Its founder told me that 'they are screwed up', so I will take his word over Wolf Blitzer or any of those clowns at CNN, I will take Ted Turner's word over anything they have to say."This was predicted by John F Kennedy in one of his most famous speeches to the US media. The military industrial complex has taken over.

Recently Jessica Raddack, none other than a legal advisor for Edward Snowden, recently told me in an interview that Snowden did not take 1.7 million files as the world media are reporting, yet not one single media outlet picked up on that fact because it runs counter to the official US Government lie. Nor has any media taken issue with the fact that all of the Snowden revelations are approved by the US Government first. Ms. Raddack, perhaps unintentionally also let it be known that all of the journalists who are publishing Snowden's "revelations" are running them by the US Government first: "Well, in terms of 1.7 million number, I've seen that a couple of times and it is coming from the government. And as far as I know Mr. Snowden, according to the journalists who received the documents, the number is really 55,000. I'm not sure if that refers to 55,000 pages or files, but the number is far less than 1.7 million. And this is a first time I have heard that 1.7 million pertain to military documents, ongoing military operations, JSOC (Joint Special Operations Command) and things of that nature. I am not aware of the content of the remaining files and I'm not worried about any damage resulting because the documents were all given to respectable journalists here in the US who have been carefully writing these articles and running them by the government for approval before they are released."

So there you go. Even the NSA leaks are controlled.

Whistleblowers

The NSA and the US Government, rather than protecting their public from terrorists and upholding the law and the rights of its citizens (I won't even mention abiding by international law) are instead engaged in, as I have already mentioned, operations to hide and obfuscate their own illegality. This is something no doubt the American taxpayer would not agree to. This is why they have waged a war on journalists and whistleblowers.

Regardless of Mr. Snowden's real "mission" as he keeps saying he has "accomplished his mission" yet nothing much has changed, other than the entire world now thinking the NSA is capable of spying on everyone and has complete control of the internet (perhaps that was his mission?) he is seen as a whistleblower and is apparently hunted by the US Government, just the latest in a long list of enemies of the US. There has to be a point when the world and the US public wake up and say enough is enough, and that is what the NSA and FEMA and the rest of the US apparatus are truly afraid about.

How many years is poor Mr. Julian Assange going to live in an embassy room? How many years is Edward Snowden not going to be allowed to return to his beloved America? How many years is the illegal detention of the human beings at Guantanamo going to continue? How long are they going to continue to hold Bradley Manning, Jeremy Hammond and the rest? How long is the world going to have to ignore the illegal Guantanamo torture prison and the illegal wars and crimes against humanity? Forever? Unfortunately that is what they want and once the complete control of the world media is obtained (including an end to this journalist who has struggled to give a platform to whistleblowers and truth seekers) and the entire planet is within range of NATO nuclear warheads, that is what they will have. Complete impunity until the end of time and a populace plugged into their devices ogling Britney Spears and Lady Gaga.

Damage Control

The media is completely complicit and there is almost no way to fight them then they control everything

Media operations Raddack

Note from the author:

As this article deals with the NSA and the US Government and the US corporate controlled mass media with reference to globalists and big banking and monied interests it is very unlikely that it will go viral or even obtain a normal place in Google so I kindly ask: Dear reader if you are reading this you probably look for alternative sources of information because you know everything the mass media feeds you is tainted and much of it is untrue, please share with anyone you think needs to hear the truth, no matter how ugly it might be.

Thanks,

John

 

Last Update: 07/16/2017 18:50 +0300

 

Site 1JAR2 Blog Button

 

JAR2 Biz

 

 

 Please help keep us going and make a donation Thanks to all supporters!

PayPal, Yandex, Qiwi, Сбербанк Sberbank Visa 4276 3800 4543 8756

Copyright JAR2 2003-2017 All Rights Reserved

Publishing Banned Truth Since June 06, 2003