as you know boys i have been pretty busy lately. I had a job at a local chinese company and...and...well todays post is going to be slightly technical and different.

For the context i am working for a local chinese company which runs a gambling business and has armenian/russian team as their other department so their business will look legit. Gambling is strictly forbidden in china therefore they move out to spots like this and rent an office and make millions of dollars per month. Obviously for an autistic blackpilled weird fuck like me this was literally an invite to dig into this shit. The retarded faggots i used to work with didnt do shit, playing league of legends for 9 hours or watching fucking dorama or sexting their online discord gf and they fucking made somewhat good money for this region(moneymaxxing post coming). Therefore after a month i just decided that i am going to analyze the network and the devices that are connected to.

So what is the first thing we do ??? obviously RECON

after identifying my network device(en1) i just ran arp-scan on it which gave me the list of all the devices that are connected to my network/wifi. ARP-SCAN is a program for scanning the network you are connected to, finding devices interfaces etc. It comes builtin in kali linux, but since they force me to use this CIA nigger goy Mac, i had to fuck around for fucking 4 hours to get it working.

Ubiquiti ??? what the fuck is that

from a quick google search we find out that its a company that sells people cia surveillance equipment and software. BINGO BITCH THATS WHAT WE FUCKING NEED. This cia niggers have CCTVs in every fucking corner so i just realized immediately that this is the device that i need to target.

192.168.0.8 ac:1f:6b:6e:0f:8d Super Micro Computer, Inc.

Okay boys so what is the first program that you fucking use to scan a device in your local network ??? EXACTLY

NMAP

for computercels and iqcels, NMAP is a program that allows you to scan networks for open ports. Ports are like numbered doors on a device, where each door may lead to a different service such as SSH, web, or mail.

after running a simple scan on 192.168.0.8 we find out that...

as you can see boys i found several open ports on this machine. After doing some googling we find out that

the port 7443 is the default port for running the Unifi Video gui, lets try to just fucking open that page with our browser at https://192.168.0.8:7443

BOOM BITCH WE GOT THE WEB UI FOR THE CCTVS AND LIVE STREAMS AND USERS AND EVERYTHING BITCH

well...its just the ui boys, this doesnt give us much does it ???

Well after a simple google search we find out that Unifi Video IS FUCKING DEAD SOFTWARE HAHAH

They dont ship new updates or anything for this bloated bullshit therefore what do we do ???

WE GOOGLE FOR VULNERABILITIES

LOG4SHELL BITCHHH

log4shell is a vulnerability that was found in software written in java cuck programming language, it lets the attacker to construct a specific query after which you end up with RCE(remote code execution). This gives you full fucking access over the victim machine. After i got home the first thing i did, i set up the exact conditions our target machine has. I downloaded ubuntu16.04 and unifi video on a virtual machine. After some googling i found this https://github.com/zzwlpx/JNDIExploit

This is the exact fucking exploit taht we needed, i obviously fucking successfuly hacked my virtual machine which has the exact same setup with our target machine. I hope you realize how excited i was to get to my cuckery the next day, i got an hour earlier to the cuckery before everyone and started my HUNT. I tried what i did at home with my own lab AND IT DIDNT FUCKING WORK FUCK. I was extremely fucking frustrated because i thought they patched the vulnerabilty BUT FUCKING NO. It took me a day or two to realise that the issue is not the exploit but the way the network works in this office.

The network forbids internetwork access, meaning the ip address my computer had was 192.168.3.14 but the target machine is at 192.168.0.8. This means that my subnet is 192.168.3.x and the target subnet is 192.168.0.x. This forbids all the http/s requests between the subnet so i had to fuck around more and write my own exploit for this vulnerability that used tcp packets instead of http. Long story short fucks all of this took me around 2 weeks, there are lots of details i missed and i cant be bothered to write everything here but eventually i was just able to get a reverse shell on the target machine, after that i just dumped my SSH keys and i could easly connect with ssh unifi-video@192.168.0.8 without password or anything. The unifi video is running an old MongoDB session, after exploiting the mongodb server aswell i was able to create a new admin for unifi video named "imsosmart". I disabled all the alerts and security features for other faggots but as you know from my "FORGOT TO PAY" post, all the security faggots are absolute fucking degenerate faggots who dont give a fucking shit what happens in cctvs or network or fucking whatever.

right now i have full access to the cctvs ui and i removed all the access from the other faggots, well they still are able to view shit but they can never detect that there is another superadmin hehehe

This is not all tho, from the infected unifi video machine i was able to find the credentials for all the other Software they are running. Unifi Network, Unifi Gateway etc...You know what this means boys....

THIS MEANS I AM THE FUCKING GOD OF THIS FUCKING NETWORK, I AM ABLE TO FUCKING INTERCEPT EVERY SINGLE FUCKING REQUEST THIS FAGGOTS MAKE. I AM ABLE TO STEAL EVERY SINGLE FUCKING COOKIE OR PAYLOAD OR LOGIN CREDENTIALS FUCKINT EVERYTHING IN A FUCKING OFFICE WITH 300 FUCKING WORKERS. FUCKING EVERYTHIGN BITCH

i hope it was interesting for you cunts, let me know if you need any proofs or interesting clips or anything. Oh yeah forgot to mention that cctvs dont fucking record JFL.

The 10tb disk is full for fucking 9 terabytes lol, so the cctv software soft the recordings as a security measure i guess to not run out of space. The last recording was fucking 2 years ago.

I am making this post from the same computer i hacked this fuckass shithole, I will upload more screenshots i made from live view in the comments from my phone. There is a chink that hits on me so...i am doing some joe goldberg activities here boys.