The War of Whistleblowers: WikiLeaks vs Jester

It's official ...someone named "Jester" (@th3J35t3r) has taken down whistleblower site "WikiLeaks" as he/she claims on their Twitter page:

 

"www.wikileaks.org - TANGO DOWN - for attempting to endanger the lives of our troops, 'other assets' & foreign relations #wikileaks #fail"

 

I can confirm that as of 4:45pm Central Time, Nov 28th that www.wikileaks.org is not responding properly - and when the site does respond (seemingly at random) the reply isn't the online whistleblower website - but rather what appears to be the default page of a brand new installed web server:

 

"

 

It works!

This is the default web page for this server.

The web server software is running but no content has been added, yet.

"

 

So ... the war of words continues... and hacktivism lives on.

 

Monday, Nov. 29th, 2010 Update...

One interesting speculation ...Tom Brennan demonstrated an interesting attack at OWASP AppSec DC earlier this year against web servers - a Layer 7 attack that's essentially unstoppable and absolutely deadly.  Could the Jester be utilizing that attack vector which is Slowloris-like?  It would sure be interesting to see some packet captures, wouldn't it?

 

Link to the OWASP tool: http://www.owasp.org/index.php/OWASP_HTTP_Post_Tool

Labels: Hacktivism
Comments
(anon) | ‎12-01-2010 04:28 PM

Interviews with The Jester and Videos of XerXes DoS Attack in Action

Several interviews with The Jester, along with two videos he made for Infosec Island that demonstrate the XerXeS Dos attack in action, can all be found HERE:

https://infosecisland.com/blogtag/427/Jester.html

Leave a Comment

We encourage you to share your comments on this post. Comments are moderated and will be reviewed
and posted as promptly as possible during regular business hours

To ensure your comment is published, be sure to follow the Community Guidelines.

Be sure to enter a unique name. You can't reuse a name that's already in use.
Be sure to enter a unique email address. You can't reuse an email address that's already in use.
Type the characters you see in the picture above.Type the words you hear.
Search
About the Author


Follow Us
Community Announcements
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation