FBI's spyware

**BROKEN** · 08-01-2007, 07:38 PM

"What is CIPAV? CIPAV stands for 'Computer and Internet Protocol Address Verifier'; a lengthy term for powerful spyware the Federal Bureau of Investigation can bring to bear on web-based crime. It was used last month in a case where someone was emailing bomb threats regularly to a Washington high school. An affidavit by an FBI agent revealed some of the workings of CIPAV. 'According to the court filing, this is [some of] what the CIPAV collects from the infected computer: IP address, Media Access Control address for the network card, List of open TCP and UDP ports, List of running programs ... Last visited URL. Once that initial inventory is conducted, the CIPAV slips into the background and silently monitors all outbound communication, logging every IP address to which the computer connects, and time and date stamping each.' In a Computerworld article, the author attempts to dissect CIPAV's purpose and raises a number of questions such as: What happens to the data the CIPAV collects? Does the CIPAV capture keystrokes? Can the CIPAV spread on its own to other computers, either purposefully or by accident? Does it erase itself after its job is done?"

ohh... and ip address hide software is a bunch of crap if you think it "protects" you

**PEWN** · 08-01-2007, 08:00 PM

ip address is what give you away...

**BROKEN** · 08-01-2007, 08:12 PM

Originally Posted by pewntang

ip address is what give you away...

well there is also your MAC address

bet remember this takes alot of money to do. the whom ever is looking for you must really want you

im not so sure **olive oil supplments** are a big concern when there are lager crimes out there to use the computer tracking assets

but there is honestly no way to keep from being tracked

with out using public computers where you dont have to log in and you should keep your juice transactions limited to only that and nothing like your persomal e-mails/forums/anything that can be hacked that has your real info. so if you JUST send out a hush mail e-mail to make orders and what not on the public computer you would be ok

also, people who bleed out un encrypted wirless internet you can use there ip but remember your MAC addres (1 address that never can be changed on your computer to ID your computer over other computers on the same ip address) will still go out with every data send and come back with all data like e-mails recieved

**sonnygll** · 08-07-2007, 01:41 PM

Well, I don't think they are going to track down every IP that goes to a forum about steroids . Even if they did, they would have to catch you with it. Visiting this site is not good enough to get a warrant approved for a search.

If you want to hack you have to do it smarter. If there was a system I really needed to hack into, this is how I would do it. First you buy a wireless NIC for your laptop. Disable the laptop's wireless and use the new WNIC. Go to an open wireless network. Or if you want to go the extra mile, find a business where they use old WEP encryption rather then WPA. Use Air Snort or other program to crack it. That way when they try to find the MAC, they think it is internal to the business. Once you're on the network, you can do your hacking. Going through a proxy helps the investigation take longer too. It's recommended since, as you know, hacking takes time. Then when you did or got whatever you wanted. Just remove the WNIC from the laptop. It is the only thing that contains the MAC address. Snap it in half, burn it, and throw the remains in a body of water. That's a MAC they are NEVER going to find. So when they discover they have been hacked, they can never find the MAC, or trace it back to you.

That's the easy part though. Getting root is the hard part.

**NorseTemplar** · 09-28-2007, 12:15 PM

Long time no posting on this thread, huh? As far as a MAC address being unchangeable...Knoppix is the answer. I have *heard of* a version that can change it, but a friend of mine says it is not truly changed, but merely "spoofed". I guess I'll learn more when I take the advanced CS courses at my school. If anyone is interested in investigating this further, try googling "Kanotix".

**JBMuscle111** · 10-15-2007, 11:52 PM

To avoid the IP address issue, you should go through a proxy site, like proxify.com or proxify.eu

**inevitable** · 10-17-2007, 11:58 AM

u can hide urself easily.. connect to a few proxies and use a MAC spoofer. enough said.

**TexSavant** · 10-17-2007, 01:32 PM

NEVER UNDERESTIMATE THE MANIACAL "Drug-Warriors"
of the BUSH ADMINISTRATION...

**Raven88** · 10-19-2007, 12:54 PM

Originally Posted by inevitable

u can hide urself easily.. connect to a few proxies and use a MAC spoofer. enough said.

Yep, get behind an offshore encrypted VPN and bridge anonymous offshore proxies and you're gtg.

110% untraceable back to you.

BG · 10-22-2007, 08:28 PM

Ive had no luck with IP scramblers, always fuc up my computer some how.

**jnm** · 10-24-2007, 12:36 AM

would you ever buy your gear on a public computer?

**zartan** · 03-19-2008, 04:55 PM

Backtrack is kind of a nice Linux Distro if yer so inclined. Mac address can easily be changed in Linux

**ausmanalot** · 04-09-2008, 02:38 AM

buying gear off your computer is nothing. its how you go about the transaction

**Nstart** · 04-23-2008, 06:59 AM

Originally Posted by zartan

Backtrack is kind of a nice Linux Distro if yer so inclined. Mac address can easily be changed in Linux

You can easily change it in windows too. You can either use a program like SMAC, change it manually in the registry, and some cards even allow you to enter a new address in the properties field.

The problem with using IP spoofers is that when you send a request to a server somewhere on the internet, you need to use a valid IP address so the server knows where to send the information you requested back to you.

You can use proxy servers (such as anonymizer.com) but at the end of the day the data has to get back to your computer. So there will always be a path to your computer, and it will have to use your valid IP address.