Tux Jack-O-Lantern!
Now obviously the Tux pumpkin that my girlfriend and I made wasn’t scary; however, what we witness in line at Jewel when we were buying the pumpkins was horrifying … Dun Dun Dun … The Blue Screen of Death!!

In this Underground video, Overide explains a major downfall of many Anti-Virus Software. Anti-Virus Software detects viruses by searching an executable program for specific signatures; signatures basically are a string of code that the Anti-Virus Software considers malicious. Overide describes how to locate this signature, and how to manipulate the executable’s assembly code so that the Anti-Virus Software does not flag the executable as a virus. In this video, Overide modifies the NetCat signature by changing NOP (No Operation) instructions to INT3 (software interrupt used by debuggers) instructions. For those of you that don’t know, Netcat is a networking utility which reads and writes data across network connections, using the TCP/IP protocol. Anti-Virus software flags NetCat as a virus because it can be used to open a backdoor on a computer. Full Scale Video Here
Download Here

NetCat

If you would like to submit a video to Infinity Exists Underground send an email describing your video to underground@infinityexists.com

DNS Spoofing is an attack where a person forges fake DNS Responds to trick a victim computer into accessing a different website. Whenever you visit a website such as www.infinityexists.com the domain name is translated to the IP address of the web server. To do this your computer makes a DNS request to a DNS Server, and the server returns a DNS Respond which contains the IP address of the web server. Therefore, during a DNS Spoofing attack the victim computer receives an Spoofed IP address and attempts to connect to that web server. However, often times a web server hosts multiple website by utilizing Virtual Hosting. Virtual hosting is a method that allows a web server to host more than one domain name on the same computer and the same IP address. If an Attacker wants to DNS Spoof a website which is a virtual host on a web server the IP address is not sufficient information for the web server to determine which website the victim computer wants to access. Therefore, the DNS Spoofing attack will not work correct. The way a web server determines which website a person wants to access is with the Host Header contained in the Get Request. Consequently, an Attack needs to modify the victim’s Get Request to have the correct Host Header before it reach the web server. To do this I combined an Ettercap Filter that will Log and Drop the Get Requests from the victim, and a C program which will change the Host Header. After the Host Header is modified, the Ettercap Filter submits the new Get Request to the web server. This process will allow an attacker to perform DNS Spoofing attack with a Virtual Host. [Watch the video it will make more sense =D]. Full Scale Video Here
Download Here

Download Host.filter
Download Change_Host.c

Copy and Spitfire of LCN_Crew explain how to use Evilgrade in this Infinity Exists Underground Video. Evilgrade is a modular framework that allows an attacker to take advantage of poorly implemented software upgrades. An attacker can use Evilgrade in combination with DNS spoofing or a MITM attack to spoof a software update and trick the victim computer into executing arbitrary code such as a Metasploit’s Payload. Currently, the Evilgrade framework supports the following software: Java plugin, Winzip, Winamp, MacOS, OpenOffices, iTunes, Linkedin Toolbar, Download Accelerator, notepad++, and speedbit. In this video, Copy and Spitfire illustrate how to use Evilgrade with a DNS Spoofing attack to execute a reverse shell on a target computer. Full Scale Video Here
Download Here

infobyte
Download Evilgrade

If you would like to submit a video to Infinity Exists Underground send a email describing your video to underground@infinityexists.com

In this Underground Video, Koly explains some of the fundamentals of Trojans. Trojans, also known as Trojan Horses, are a type of virus designed to give an Attacker remote access to a system. In this video Koly uses the Remote Administration Tool (RAT) Poison Ivy to demonstrate how to create and use a Trojan. Although, Trojans are frowned upon it is important to understand how Trojans work so that you can defend against them or utilize to easily open a backdoor on a compromised system. Full Scale Video Here
Download Here

Download Poison Ivy

If you would like to submit a video to Infinity Exists Underground send a email describing your video to underground@infinityexists.com

In Episode 22, Nox and I show you how to softmod your old Playstation 2 to enable you to run third party software. We demonstrate how to use CogSwapLoader and HDLoader to allow you to backup your PS2 games and play them either from a burned DVD or off your hard drive. To play a burned PS2 game, it is necessary to open your CD Tray manually; we explain how to unlock your PS2′s CD Tray without using a “Card Slide”. Other software like emulators and media players are also available; however, they do not work nearly as well as the Xbox versions.

Requirements for the Softmod:

• A Normal Playstation 2 (not Slim version)
• A Playstation 1 Game
• CodeBreaker (version 8 or higher) or Action Replay Max
• USB Thumb Drive
• PS2 Memory Card
• Software:
  • IDGET
  • Tilteman Frontend
  • PS2 Save Builder
  • Memory Card Exploit
  • HDL Dump GUI 2.1
  • HDL server 0.8.5

Live Stream Here
Download Here