@forty-six spotted this guys tweets where he released his panel source code -> @King_cobra666
Most of his tweets are random attacks at other EK systems. The 'uploader' portion from BlazeEK was sitting at 188.165.62.1 for awhile, panel calls itself Neptune source from uploader calls itself blaze and guy pushing it on twitter calls it Terror. Anyway he took down the code at 188. and replaced it with a message "Fuck off white hats" and his backend appears to of gone down so he released his source code and an empty sql file from I'm assuming his test system.
Using at least 0189 from metasploit which is how I found it... another shit EK dies off?
This seems appropriate
Backend was at 141.105.69.20
Funny semi related comment from the blaze uploader code:
"// TODO: add a security check in case panel server is compromised"
Here's the db dump file from his backend before it went down
Most of his tweets are random attacks at other EK systems. The 'uploader' portion from BlazeEK was sitting at 188.165.62.1 for awhile, panel calls itself Neptune source from uploader calls itself blaze and guy pushing it on twitter calls it Terror. Anyway he took down the code at 188. and replaced it with a message "Fuck off white hats" and his backend appears to of gone down so he released his source code and an empty sql file from I'm assuming his test system.
Using at least 0189 from metasploit which is how I found it... another shit EK dies off?
This seems appropriate
Backend was at 141.105.69.20
Funny semi related comment from the blaze uploader code:
"// TODO: add a security check in case panel server is compromised"
Here's the db dump file from his backend before it went down
Attachments
pw: infected
(260.99 KiB) Downloaded 58 times
(260.99 KiB) Downloaded 58 times
