polybius.fyi/PHZine00_it.html

<!DOCTYPE html>
<html lang="en">
  <head>
    <meta charset="utf-8">
    <title>Polybius Hacklab</title>
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <meta name="description" content="open source, hacklab, linux, libertarian, free, open, gpl">
    <meta name="author" content="">
            
    <!-- Le styles -->
    <link href="css/bootstrap.css" rel="stylesheet">
    <style type="text/css">
      body {
        padding-top: 60px;
        padding-bottom: 40px;
      }
    </style>
    <link href="css/bootstrap-responsive.css" rel="stylesheet">

    <!-- HTML5 shim, for IE6-8 support of HTML5 elements -->
    <!--[if lt IE 9]>
      <script src="js/html5shiv.js"></script>
    <![endif]-->

    <!-- Fav and touch icons -->
    <link rel="apple-touch-icon-precomposed" sizes="144x144" href="ico/apple-touch-icon-144-precomposed.png">
    <link rel="apple-touch-icon-precomposed" sizes="114x114" href="ico/apple-touch-icon-114-precomposed.png">
      <link rel="apple-touch-icon-precomposed" sizes="72x72" href="ico/apple-touch-icon-72-precomposed.png">
                    <link rel="apple-touch-icon-precomposed" href="ico/apple-touch-icon-57-precomposed.png">
                                   <link rel="shortcut icon" href="ico/favicon.png">
  </head>

  <body>
    <div class="navbar navbar-inverse navbar-fixed-top">
      <div class="navbar-inner">
        <div class="container">
          <button type="button" class="btn btn-navbar" data-toggle="collapse" data-target=".nav-collapse">
            <span class="icon-bar"></span>
            <span class="icon-bar"></span>
            <span class="icon-bar"></span>
          </button>
          <a class="brand" href="#">Polybius</a>
          <div class="nav-collapse collapse">
            <ul class="nav">
              <li><a href="index.html">Home</a></li>
              <li><a href="about.html">About</a></li>
              <li><a href="materiali.html">Help Us</a></li>
              <!--li><a href="#about">About</a></li>
              <li><a href="#contact">Contact</a></li-->
              <li class="dropdown">
                <a href="#" class="dropdown-toggle" data-toggle="dropdown">Docos<b class="caret"></b></a>
                <ul class="dropdown-menu">
                        <li><a href="ht_exploitation_en.html">{en}Phineas Fisher - Pi$$ing on HT</a></li>
                        <li class="active"><a href="#">{it}PHZine00</a></li>
                  <!--li class="divider"></li>
                  <li class="nav-header">Nav header</li>
                  <li><a href="#">Separated link</a></li>
                  <li><a href="#">One more separated link</a></li-->
                </ul>
              </li>
            </ul>
            <!--form class="navbar-form pull-right">
              <input class="span2" type="text" placeholder="Email">
              <input class="span2" type="password" placeholder="Password">
              <button type="submit" class="btn">Sign in</button>
            </form-->
          </div><!--/.nav-collapse -->
        </div>
      </div>
    </div>

    <div class="container">

      <!-- Example row of columns -->
      <div class="row">
        <div class="span11">
                <h1>{it}  PHZIne 00</h1>
Versione 00 di PHZine: ezine di hacking pre-hackmeeting di contenuti tecnici, asciiart, howto, codice, links, recensioni, sripts, eccetera.
                <p><pre><code>

&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;
  _______           _______
 (  ____ )|\     /|/ ___   )
 | (    )|| )   ( |\/   )  |
 | (____)|| (___) |    /   )
 |  _____)|  ___  |   /   /    
 | (      | (   ) |  /   /     
 | )      | )   ( | /   (_/\   numero: 00 - dOqpio0z3r0 h4cKm33tln6
 |/       |/     \|(_______/   fUcK c()qYr1gh7 MMXVII

                       ____
                    _.' :  `._
                .-.'`.  ;   .'`.-.                  ::::::::::::::
       __      / : ___\ ;  /___ ; \      __       
     ,'_ ""--.:__;".-.";: :".-.":__;.--"" _`,  
     :' `.t""--.. '&lt;@.`;_  ',@&gt;` ..--""j.' `;    ezine sperimentale 
          `:-.._J '-.-'L__ `-- ' L_..-;'      
            "-.__ ;  .-"  "-.  : __.-"        a scadenza pseudocasuale
                L ' /.------.\ ' J                  
                 "-.   "--"   .-"                
                __.l"-:_JL_;-";.__                 ::::::::::::::
             .-j/'.;  ;""""  / .'\"-.          
           .' /:`. "-.:     .-" .';  `.
        .-"  / ;  "-. "-..-" .-"  :    "-.    :: hackmeeting warm up ::
     .+"-.  : :      "-.__.-"      ;-._   \
     ; \  `.; ;                    : : "+. ;    whonix, signal, password,
     :  ;   ; ;                    : ;  : \:
     ;  :   ; :                    ;:   ;  :     tor, ed2219, facebook,
    : \  ;  :  ;                  : ;  /  ::
    ;  ; :   ; :                  ;   :   ;:  twitter, thegrugq, activism,
    :  :  ;  :  ;                : :  ;  : ;
    ;\    :   ; :                ; ;     ; ;      poisontap, hack back!
    : `."-;   :  ;              :  ;    /  ;
     ;    -:   ; :              ;  : .-"   :   phineas fisher, osint
     :\     \  :  ;            : \.-"      :
      ;`.    \  ; :            ;.'_..--  / ;       :::::::::::::::::
      :  "-.  "-:  ;          :/."      .'  :
       \         \ :          ;/  __        :    
        \       .-`.\        /t-""  ":-+.   :
         `.  .-"    `l    __/ /`. :  ; ; \  ;   fUcK c()qYr1gh7 MMXVII    
           \   .-" .-"-.-"  .' .'j \  /   ;/
            \ / .-"   /.     .'.' ;_:'    ;       
             :-""-.`./-.'     /    `.___.'
                   \ `t  ._  /                        
                    "-.t-._:'


             .:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:.


-## INTRO

  
       "Noi creeremo una civilta' della Mente nel Ciberspazio" 
                                       (John Perry Barlow)


    "Non c'e' giustizia nel seguire leggi ingiuste." 
                                 (Aaron Swartz)


                 "Socializzare saperi senza fondare poteri" 
                                         (Primo Moroni)


                                                                  INTRO ##-


             .:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:.


-## ASCOLTA LA MUCCA


         (__)
         (oo)  * Se vuoi navigare con un sistema in cui il DNS leaking e'
  /-------\/     impossibile e in cui persino un malware con privilegi di
 / |     ||      root non saprebbe trovare il tuo vero IP: prova WHONIX
*  ||----||      https://whonix.org
   ^^    ^^      Ma ricordati sempre che nessuno e' perfetto:
               https://www.whonix.org/blog/advanced-deanonymization-attacks


 * Se usi Signal attiva sempre la funzione &lt;Disappearing Messages&gt;  (__)
   configurando il timer per la cancellazione dei messaggi letti.   (--)
   https://medium.com/@mshelton/signal-for-beginners-c6b44f76a1f0  /-\/-\
                                                                  /|    |\
                                                                 ~ |    | ~
               (__)                                                |    |
               (DD)                                                /----\
        /-------\/      * Non riusare le password.                /    \ \
       / |     ||_\_/     Usa un password manager.               ~      * ~
      *  ||----|          E cerca di scegliere password difficili.
         ^^    ^          https://www.keepassx.org



   * Sai che puoi usare Tor per accedere al tuo computer      (__)
     in ssh, sempre, ovunque, anche quando e' dietro NAT?     (DD)
     Basta attivare un hidden service sulla porta 22           \/-------\
     Per extraparanoia configura il servizio in stealth     \_/_||     | \
     in /etc/tor/torrc:                                          |----||  *
          HiddenServiceDIr /var/lib/tor/ssh_hidden               ^    ^^
          HiddenServicePort 22 127.0.0.1:22
          HiddenServiceAuthorizeClient stealth username

        cat /var/lib/tor/ssh_hidden
          xxx.onion token # client: username

        ora metti nel torrc del torbrowser del client 

          HidServAuth xxx.onion token
                                                          (__)
        nel ~/.ssh/config del client                      (oo)
          Host *.onion                                     \/------\
                proxyCommand nc -x 127.0.0.1:9150 %h %p      ||____|\
                                                             ^^    ^

        ora, con il torbrowser attivo, usa ssh da shell per raggiungere
        in modo super discreto l'hidden service, che essendo in modalita'
        stealh risulta not discoverable da estranei, nemmeno conoscendo
        l'indirizzo xxx.onion.

          ssh username@xxx.onion
                                           (__)
                                           (oo)
                                         ~~~~~~~~~~~~~~~~~~~~

  * ssh-keygen -t ed25519
    Le curve ellittiche sono sexy. Usa sempre le chiavi ssh
    e disabilita &lt;PasswordAuthentication&gt; nel /etc/ssh/sshd_config.


                                                       ASCOLTA LA MUCCA ##-


             .:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:.


-## SOCIAL


                                                                 __
     * Usi Facebook?                                          __/o \_
       Ci sono cose che devi assolutamente sapere.           \____  \
       https://veekaybee.github.io/facebbok-is-collectin-this     /   \
                                                            __   //\   \
                                                         __/o \-//--\   \_/
                                                         \___  ____  \  |
  * Hacktivismo con Twitter?                                ||    \ |\ |
    the grugq "The Twitter Activist Security"              _||    _||_||
    https://medium.com/@thegrugq/twitter-activist-security-7c806bae9cb0



                                                                 SOCIAL ##-


             .:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:.



-## HACKING


     * PoisonTap, tempo di sigillare le porte usb?
       https://samy.pl/poisontap
       siphons cookies, exposes internal router & installs web backdoor
       on locked computers. 

   (___)
   .o"o.          * HackBack! a DYI guide
   `-0-'            di Phineas Fisher. Ti ricordi di Hacking Team?
  / | | \           https://pastebin.com/0SNSvyjJ
  \ \ / /
   (/o\)
   /   \      * Awesome OSINT
  _|   |_       Una lista di link di open source intelligence.
                https://github.com/jivoi/awesome-osint



                                                                HACKING ##-


             .:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:.


-## CALL


       PHZ cerca contributi, esperimenti, codice, progetti, resistenze,
   ispirazioni acare per il prosssimo numero a scadenza pseudocasuale.

    forwarda questa email alla mailing list del tuo hacklab! 

                           dillo ai tuoi amici h4k3rZ.


                        ~~~~~~~~~~~~~~~~~~~~~~~~~~~


  fai robe? scrivi codice che fa qualcosa o che non fa niente in un modo
  meraviglioso? come ti piacciono i computer? sei un'hacker? un cypherpunk?
   usi tor? sei paranoico? ti piace condividere? pentesti? arpspooffi?
     
       scrivici! aiutaci a preparare il prossimo numero! 
           
          benvenuti contributi anonimi e criptati!
    
                  NO razzisti, sessisti e fasci!

            PIU' H4k3rZ PER HACKMEETING! NO PERDITEMPO! 

        e per i contenuti migliori RICCHI PREMI dal cyberspazio


      ~~~~&gt;&gt; Solo ASCII massimo 100 righe (:set textwidth=75) &lt;&lt;~~~~


                                                                   CALL ##-

             .:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:.


-## CONTATTI
 

   per scriverci o mandare contributi:

   email: phzine&gt;AT&lt;cryptolab&gt;DOT&lt;net

-----BEGIN PGP PUBLIC KEY BLOCK-----

mQENBFiyJxYBCADFQCJZtjHTbYSjiKmsty3V9FSV63DRlliy5abq8j1coINX50d6
vEkeaupMVq0vsV6qxSpcgvu375KYVIguXE5jjdR18lCAeBzyXXMsZq4MFokHym15
3luag8+u7z/WFalJGSn8gsAyF6jzDS1so5Qd/AXV1GS28Z73mUJOhFeA0sePeOiU
qYAZ2Z4LMAT3Ps8zBSNgiEIPZEe9jjROJN5zS/Oso6HwAYRJjj0oAC7GeJs0El0c
dt22u29oI2+kxD0tVrTr7W12A99WKB7Qty4CbhLJ2hTg2jZDty+d877R9q9RNgei
Etz6bvRy2PByBkZCcCzq9isgFtqdzqqAsgYZABEBAAG0GXVuY2xldCA8dW5jbGV0
QGdycmx6Lm5ldD6JAT0EEwEKACcFAliyJxYCGwMFCQHhM4AFCwkIBwMFFQoJCAsF
FgIDAQACHgECF4AACgkQFjpsxuv3NOFjIQf8C1xONcIrRSY1YGrbWWMGCmCs7uUN
Wno7P11osM24b5WuP3k5FdKgVOUEmaqA1v3d6JPyEDZvVnAkc2I5RHoY72gumqMH
Leg7po15d4KnHULJACXF4O+dXM2gbE69w4XkSPLDEXxjxAFn/JAPomR6AWbVo1zp
Sw3gdTvAhYHhMHXhfRqX5tn6obhsa0BDSKvgCsqzRv4nmIYIwy0duQFSsQJyvlWF
gz/g50uOORvpc8qPCtjaK2ftDdHDasM9Y0jownajFsfx04Ubvf4N7v4ke77hVlJc
CYCFpBLUzguiWcMZ1p2AK60dJps7VkTo3GAkFojUAPeFMw9JKcJ/4FdPcbkBDQRY
sicWAQgA04c0n3J3qGK11d0QaF60UMkS6wFGIUOt0S01eUlkBLgIjAMYViLgvdLw
t7NZCOAV5jHNcMbIAtRmJdLlX2n9CaKNpmz5W+izeJq4ys+RAW87zM5MyCJcHkwQ
xHQVKuwOtXDy98cBapBU+qDcSvBwFAXK5PoQOB+CxU0SCyoeswiEicN8XkbpvADu
HeVrJExmqJez5J2/yTwPR2gFmN1hGrKn4ZdzSgUPNlFM1s2jNQaSsePT6ok7pBJ+
P57Myxeezc94froz1nu4Cvp1zlDbXCRlCxHDLeC9zVk/dtmT7dBb+IOy5DKbMOwj
gzTkqu7fKyvE6gxN1o05Uu1Z8odd2wARAQABiQElBBgBCgAPBQJYsicWAhsMBQkB
4TOAAAoJEBY6bMbr9zTh84wIALlujwsatNf3SyBVXV775D8F/et6aLjUobW4g5b5
Qe53Yxn54eK2OJ+Q44bY+00UxPQTW7mea0l1oS9gVuwGGBaWx5XF70h2KyEbNj/7
PuYaMo+BjFOPjYT6ZxxPMWMOl8AHIQp63S87hBopdydf5T+PPTIOSslyJt3QKWIr
lTSsdoePOOEGYdIG/BOILNaaQvpdYcXbMr4VW9i0aq4Lo+hP2wvxJE6qpx+q26Zb
8cMnJJdYBxfOj4PfQJZlXFs6Mcu0VXEKh0aksgMiIZWkBvLHBwCqURthMqvlxu73
mjzFeqSvgDDA9oE3Ua3GonaK3o06Y5JbLtvvG1OUC6gtSv0=
=lZCj
-----END PGP PUBLIC KEY BLOCK-----


sempre grazie a: 

              hackmeeting, freaknet, autistici, ccc, riseup, decoder,
              torazine, museo informatica funzionante, indivia, moca,
              metro olografix, ecn, phrack, dyne, satana.


                                                               CONTATTI ##-


             .:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:._.:*~*:.


&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;&lt;
               </code> </pre>
         </p>



        </div>
      </div>
      <hr>

      <footer>
        <p>CC BY-NC</p>
      </footer>

    </div> <!-- /container -->

    <!-- Le javascript
    ================================================== -->
    <!-- Placed at the end of the document so the pages load faster -->
    <script src="js/jquery.js"></script>
    <script src="js/bootstrap-386.js"></script>
    <script src="js/bootstrap-transition.js"></script>
    <script src="js/bootstrap-alert.js"></script>
    <script src="js/bootstrap-modal.js"></script>
    <script src="js/bootstrap-dropdown.js"></script>
    <script src="js/bootstrap-scrollspy.js"></script>
    <script src="js/bootstrap-tab.js"></script>
    <script src="js/bootstrap-tooltip.js"></script>
    <script src="js/bootstrap-popover.js"></script>
    <script src="js/bootstrap-button.js"></script>
    <script src="js/bootstrap-collapse.js"></script>
    <script src="js/bootstrap-carousel.js"></script>
    <script src="js/bootstrap-typeahead.js"></script>
    <script src="js/bootstrap-affix.js"></script>
    <script>
        _386 = { onePass: true, speedFactor: 0.825 };
    </script>
  </body>
</html>