zlacker

[return to "IoT hacking and rickrolling my high school district"]
1. bfirsh+zg[view] [source] 2021-10-12 21:10:41
>>revico+(OP)
Reminds of me my school leaving prank. I rewrote the whole internet on my school's computers. Google's logo became "Leavers '08", Facebook became "Hatebook" and was red, YouTube only played videos of cats, amongst other things.

These were the days when nothing had SSL, so you could just intercept and rewrite traffic!

My only requirement was: do no actual damage

It was implemented as a Debian live CD that you could drop into any school computer. It would boot up, then Ettercap would MITM the whole network by spoofing the router. It routed all HTTP traffic via Squid and a custom ICAP server that did the actual rewriting. If you removed the live CDs, the network just went back to normal within a couple of minutes.

Routing the whole school's network through one old Pentium machine wouldn't work though, so I figured out a way of doing distributed load balancing: it would do the ARP spoofing slowly and randomly. So, as you added more machines, it would just magically balance between them.

It worked great for about an hour then whole network mysteriously stopped working for the rest of the day. I left all the live CDs in the computers as a calling card.

Sorry, school network admins.

◧◩
2. blueda+Zz[view] [source] 2021-10-12 23:24:59
>>bfirsh+zg
I don't think this happened.
◧◩◪
3. samsch+dA[view] [source] 2021-10-12 23:27:27
>>blueda+Zz
Hypothetically it could happen and even if it isn’t true, I feel it adds something to the conversation. Besides, you cited as many sources as they did.
◧◩◪◨
4. blueda+6B[view] [source] 2021-10-12 23:33:06
>>samsch+dA
Sounds way overly complex for a high schooler to pull off. At least the OP sounded legitimate, the details didn't sound over the top.
◧◩◪◨⬒
5. AnIdio+AH[view] [source] 2021-10-13 00:28:44
>>blueda+6B
Not really. Sounds like this was class of '08, and at the time BackTrack would have been readily available and popular enough for a curious highschooler with a bit of computing background to find. As I recall etercap was built in and I wouldn't be at all surprised if there were tutorials for setting up scenarios almost exactly like what is described.

Even the ARP balancing thing is the kind of too-clever-by-a-half solution a naive youngin' would come up with since it would lead all the nodes thinking each other are the gateway and crushing the network with routing loops.

◧◩◪◨⬒⬓
6. anyfoo+Q11[view] [source] 2021-10-13 03:54:15
>>AnIdio+AH
Maybe they hardcoded the real gateway's MAC Address.
[go to top]