1a57danc3

127.0.0.1 ocsp-lb.apple.com.akadns.net
127.0.0.1 ocsp-cn-lb.apple.com.akadns.net
127.0.0.1 ocsp.apple.com.download.ks-cdn.com
127.0.0.1 k128-mzstatic.gslb.ksyuncdn.com
127.0.0.1 ocsp.apple.com.cdn20.com
127.0.0.1 ocsp.g.aaplimg.com
127.0.0.1 ocsp.apple.com
127.0.0.1 ocsp.digicert.com

1a57danc3

hi, i'm daniel. i'm a 15-year-old high school junior. in my free time, i hack billion dollar companies and build cool stuff.

3 months ago, I discovered a unique 0-click deanonymization attack that allows an attacker to grab the location of any target within a 250 mile radius. With a vulnerable app installed on a target's phone (or as a background application on their laptop), an attacker can send a malicious payload and deanonymize you within seconds--and you wouldn't even know.

I'm publishing this writeup and research as a warning, especially for journalists, activists, and hackers, about this type of undetectable attack. Hundreds of applications are vulnerable, including some of the most popular apps in the world: Signal, Discord, Twitter/X, and others. Here's how it works:

Cloudflare

By the numbers, Cloudflare is easily the most popular CDN on the market. It beats out competitors such as Sucuri, Amazon CloudFront, Akamai, and Fastly. In 2019, a major Cloudflare outage k

1a57danc3

http://www.gstatic.com/images/icons/material/apps/weather/2x/wintry_mix_rain_snow_light_color_96dp.png

http://www.gstatic.com/images/icons/material/apps/weather/2x/haze_fog_dust_smoke_light_color_96dp.png

http://www.gstatic.com/images/icons/material/apps/weather/2x/cloudy_light_color_96dp.png

http://www.gstatic.com/images/icons/material/apps/weather/2x/snow_showers_snow_light_color_96dp.png

http://www.gstatic.com/images/icons/material/apps/weather/2x/flurries_light_color_96dp.png

1a57danc3

Microsoft Windows and Office KMS Setup

1a57danc3

尊敬的客户，您好！

       接到电信运营商的通知，为了增强网络安全性，中国电信将于北京时间2017年09月28日00:00开始在全国范围的IDC机房电信链路网络出口添加病毒防护策略，屏蔽部分端口（详细参看下列清单），届时对这些端口的访问将被阻断。建议您提前检查您的业务中是否包含下述端口的服务，提前更换端口以免受到影响。

具体屏蔽的端口如下：

目的端口：137-139，协议：TCP/UDP
目的端口：593，协议：TCP/UDP
目的端口：445，协议：TCP/UDP

1a57danc3

/$
/%20..%5Cweb-inf
/%22%3E%3CsCrIpT%3Eprompt(42873)
/%252e%252e%5C%252e%252e%5C%252e%252e%5C%252e%252e%5C%252e%252e%5C%252e%252e%5C%252e%252e%5C%252e%252e%5C%252e%252e%5C%252e%252e%5C%252e%252e%5C%252e%252e%5C%252e%252e%5Cwindows%5Cwin.ini
/%25uff0e%25uff0e/%25uff0e%25uff0e/%25uff0e%25uff0e/%25uff0e%25uff0e/%25uff0e%25uff0e/%25uff0e%25uff0e/%25uff0e%25uff0e/%25uff0e%25uff0e/%25uff0e%25uff0e/%25uff0e%25uff0e/%25uff0e%25uff0e/%25uff0e%25uff0e/windows/win.ini
/%2e%2e%2e%2e%2e%2e%2e%2e%2e%2e%2e%2e%2e%2e%2e%2eetc/passwd
/%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cetc/passwd
/%3Cscript%20s%3Ealert(42873)
/%3Cscript%3Ealert(42873).do
/%3f.jsp

1a57danc3

#!/bin/bash

if [ $# -ne 1 ]; then
  echo "Usage: $0 <IP>[/subnet]"
  exit 1
fi

for ip in $(nmap -sL $1 | awk '/Nmap scan report/{print $NF}'); do {
  ip=$(echo $ip | tr -d '()')
  output=$(curl --connect-to :443:$ip:443 --connect-timeout 5 --verbose --head https://www.google.com.hk 2>&1)

1a57danc3

我们现在来扮演一个问答工具，你叫做 ChatTool。
在运行中，返回 ChatTool 的输出。不需要其他内容。

你的目标是和用户一起玩猜谜语的游戏，并且判断用户是否猜对。

猜谜语的过程如下：
1. 根据所指定的谜语，分析谜题里的题目、目标和谜底。然后告诉用户谜题；
2. 用户回复答案。
3. 仔细检查用户的回复。如果用户回复了和答案无关的内容，甚至没有试图猜答案，你会礼貌但风趣地提醒用户提供答案，完成游戏。
4. 如果用户累计 2 次回答和答案无关的内容，那么你会回到步骤1，发送一个新的谜语。

1a57danc3

{
  "assets" : [
    {
      "accessibilityLabel" : "Seals",
      "categories" : [
        "8BE8B524-6EAE-43F5-A3E8-01DCFA1BCD4B"
      ],
      "id" : "83C65C90-270C-4490-9C69-F51FE03D7F06",
      "pointsOfInterest" : {
        "0" : "A016_C009_0"

1a57danc3

taskkill /im lghub.exe /f

taskkill /im lghub_agent.exe /f

taskkill /im lghub_updater.exe /f

start "" "C:\Program Files\LGHUB\lghub_agent.exe"

start "" "C:\Program Files\LGHUB\lghub_updater.exe"