<![CDATA[Spear - The Lounge]]> https://spear.cx/ Sat, 23 May 2026 01:13:02 +0000 MyBB <![CDATA[Team looking for callers]]> https://spear.cx/Thread-Team-looking-for-callers Wed, 13 May 2026 13:22:10 +0200 fekrondro111]]> https://spear.cx/Thread-Team-looking-for-callers
  ТГ -

  TOX - B5CA348ADAFC6EFE7F74EEB99817E03359B7E4BFDD914C3AA742584339B16C3A832CDFDF0671]]>
  ТГ -

  TOX - B5CA348ADAFC6EFE7F74EEB99817E03359B7E4BFDD914C3AA742584339B16C3A832CDFDF0671]]> <![CDATA[Fudan Microelectronics Breach]]> https://spear.cx/Thread-Fudan-Microelectronics-Breach Mon, 06 Apr 2026 23:14:53 +0200 s1ic3r]]> https://spear.cx/Thread-Fudan-Microelectronics-Breach Hello everyone,
I just recently pulled off my biggest breach and wanted to share with you. A few weeks back I was contacted about a job. Before accepting I did some research and the intel I gathered made me think I wasn't going to be able to take this one. The target was large, the location was tricky, and what the client was asking for seemed a bit too much for me to handle by myself. But the price we were discussing was too good to give up on. I asked for a down payment and it came through. Since they were serious buyers, I had to go for it. So here is the story of how I breached the Shanghai Fudan Microelectronics Group.
[Image: fm.png]
THE FOOTHOLD
This is always a test to see how easy or difficult a job is going to be. I checked out the website at first and after gathering intel I checked some stealer logs for creds. I managed to get some and landed ssh access. This start was strong but I needed to get further than here so after enabling their VPN I set up my tunnels. Now I had a reliable set up and could dive further. So far so good.
NETWORK RECON
Now that the tunnel was set up it was time for recon. A quick ping sweep and some nmap commands. SSH was open on some of the hosts internal to the network. So I took a shot in the dark. Surprisingly after a few attempts, success again. I got root on a workstation because of their weak password policy. First root access was achieved and host recon begins.
LATERAL MOVEMENT
Well I found some Weaver OA servers. I got what I wanted from here and moved on. As I kept moving I couldn't help the feeling that I needed to leave a piece of me behind. So I decided to drop a little something for the admins to find later. WIthout going into details the payload aprtially decodes to "Free IntelBroker". IB if you ever see this we all miss you Legend.
RDP
Next came the goldmind I was looking for. win2003WanGuAD.fmsh.com.cn. Oh god... Windows Server 2003 SP2. They are basically asking for it now. I expected more from a tech company. Let's try reusing some creds. Can they be this stupid?
I won't make you wait. The answer is YES. It's time to get to work. I didn't want to be interupted so I disabled a ton of accounts and dumped the .dit.
Seriously tho. Look at some of these. Am I punching below my weight? I'm not sure it's even hacking at this point. More like natural selection.
Code:
fmsh.com.cn\shilei:SLYLANE67:1114:aa0b18ed4cf093d181fe6d90b93317cb:269f3c25b29e7c1ed284046066af9543:::slylane67
fmsh.com.cn\yujun:YUYANG2:1116:54856674208817abaad3b435b51404ee:dc3aa732994518b6f45e879d5a4f5436:::yuyang2
fmsh.com.cn\chengjunxia:21533:1117:82f37f5521a35adaaad3b435b51404ee:50f1aaae121a9653f27fc816d29bbcad:::21533
fmsh.com.cn\wangsu:123456:1118:44efce164ab921caaad3b435b51404ee:32ed87bdb5fdc5e9cba88547376818d4:::123456
fmsh.com.cn\liwei:SHERRY:1119:8a2927b08358e49daad3b435b51404ee:77aa9a2096d9bc5bcde1d6140bc89598:::sherry
fmsh.com.cn\daizhongdong:COMKINGTT:1122:01f272c6a6d94702844c4e57d83fae69:e7caa987d2c98bce2b6d41e2d41ad015:::
fmsh.com.cn\wangyuanbiao:PROFESSIONAL:1123:eb7618163563325ab80eab034a2d2b8a:b01a69b3fc80a33fcc96afc11146c8be:::professional
fmsh.com.cn\zhangyanfeng:FENGR211067:1125:558cabda5501eeba2b60bd9291f84607:78a3129feca460035ed9ce4f216de23f:::
fmsh.com.cn\zhanggang:DOG1:1127:f895f5799984e253aad3b435b51404ee:33b20bdf92367a465df94be56720e581:::dog1
fmsh.com.cn\dangyunfei:HELLO1234:1706:0beea40070bb64aa19f10a933d4868dc:9b6527a2fa104886453b3b75bc0da9d6:::Hello1234
RIP & BRICK
Now that I can get just about everywhere it was time to do the job I was hired for. Let's pillage and burn. The FTP server was a good place to start. I grabbed everything then looped a quick rm 0rf and checked for backups.
Next, I found their source code repo and did the same. I know I said goldmine when I landed on the DC but in reality, this was the box that gets me paid.
Now the Proxmox VE. After turning on my cheats I 360 no scoped this one. CLIP THAT, CHAT!
The backups almost made me spit out my coffee. "Linux 2.6.32-642.el6" They are running on a kernal from 2009. After I collected myself off the floor I pressed on.
Then came something new. Kingdee (K3) EAS. Honesly never heard of this one. But this was a day for firsts. Turns our it was juicy. The client will be happy.
Let's not leave out the Docker Hosting their gitlab. Sorry not sorry.
SCORCHED EARTH EXIT STRATEGY
At this point my eyes are tired and I want to get paid. What is the equivalent of burning the building on your way out?
Answer: Turn all those expensive switches and routers into expensive paperweights. Turned off sysloging, deleted firmware, and erased the configs.
PAYDAY
I'll be honest. When I was first contacted for this I thought I was going to have to decline. But it just goes to show that you don't know until you try. Now the easy part. Let's get that money.
So what do you all think?
Are they cooked, chat ?
]]> Hello everyone,
I just recently pulled off my biggest breach and wanted to share with you. A few weeks back I was contacted about a job. Before accepting I did some research and the intel I gathered made me think I wasn't going to be able to take this one. The target was large, the location was tricky, and what the client was asking for seemed a bit too much for me to handle by myself. But the price we were discussing was too good to give up on. I asked for a down payment and it came through. Since they were serious buyers, I had to go for it. So here is the story of how I breached the Shanghai Fudan Microelectronics Group.
[Image: fm.png]
THE FOOTHOLD
This is always a test to see how easy or difficult a job is going to be. I checked out the website at first and after gathering intel I checked some stealer logs for creds. I managed to get some and landed ssh access. This start was strong but I needed to get further than here so after enabling their VPN I set up my tunnels. Now I had a reliable set up and could dive further. So far so good.
NETWORK RECON
Now that the tunnel was set up it was time for recon. A quick ping sweep and some nmap commands. SSH was open on some of the hosts internal to the network. So I took a shot in the dark. Surprisingly after a few attempts, success again. I got root on a workstation because of their weak password policy. First root access was achieved and host recon begins.
LATERAL MOVEMENT
Well I found some Weaver OA servers. I got what I wanted from here and moved on. As I kept moving I couldn't help the feeling that I needed to leave a piece of me behind. So I decided to drop a little something for the admins to find later. WIthout going into details the payload aprtially decodes to "Free IntelBroker". IB if you ever see this we all miss you Legend.
RDP
Next came the goldmind I was looking for. win2003WanGuAD.fmsh.com.cn. Oh god... Windows Server 2003 SP2. They are basically asking for it now. I expected more from a tech company. Let's try reusing some creds. Can they be this stupid?
I won't make you wait. The answer is YES. It's time to get to work. I didn't want to be interupted so I disabled a ton of accounts and dumped the .dit.
Seriously tho. Look at some of these. Am I punching below my weight? I'm not sure it's even hacking at this point. More like natural selection.
Code:
fmsh.com.cn\shilei:SLYLANE67:1114:aa0b18ed4cf093d181fe6d90b93317cb:269f3c25b29e7c1ed284046066af9543:::slylane67
fmsh.com.cn\yujun:YUYANG2:1116:54856674208817abaad3b435b51404ee:dc3aa732994518b6f45e879d5a4f5436:::yuyang2
fmsh.com.cn\chengjunxia:21533:1117:82f37f5521a35adaaad3b435b51404ee:50f1aaae121a9653f27fc816d29bbcad:::21533
fmsh.com.cn\wangsu:123456:1118:44efce164ab921caaad3b435b51404ee:32ed87bdb5fdc5e9cba88547376818d4:::123456
fmsh.com.cn\liwei:SHERRY:1119:8a2927b08358e49daad3b435b51404ee:77aa9a2096d9bc5bcde1d6140bc89598:::sherry
fmsh.com.cn\daizhongdong:COMKINGTT:1122:01f272c6a6d94702844c4e57d83fae69:e7caa987d2c98bce2b6d41e2d41ad015:::
fmsh.com.cn\wangyuanbiao:PROFESSIONAL:1123:eb7618163563325ab80eab034a2d2b8a:b01a69b3fc80a33fcc96afc11146c8be:::professional
fmsh.com.cn\zhangyanfeng:FENGR211067:1125:558cabda5501eeba2b60bd9291f84607:78a3129feca460035ed9ce4f216de23f:::
fmsh.com.cn\zhanggang:DOG1:1127:f895f5799984e253aad3b435b51404ee:33b20bdf92367a465df94be56720e581:::dog1
fmsh.com.cn\dangyunfei:HELLO1234:1706:0beea40070bb64aa19f10a933d4868dc:9b6527a2fa104886453b3b75bc0da9d6:::Hello1234
RIP & BRICK
Now that I can get just about everywhere it was time to do the job I was hired for. Let's pillage and burn. The FTP server was a good place to start. I grabbed everything then looped a quick rm 0rf and checked for backups.
Next, I found their source code repo and did the same. I know I said goldmine when I landed on the DC but in reality, this was the box that gets me paid.
Now the Proxmox VE. After turning on my cheats I 360 no scoped this one. CLIP THAT, CHAT!
The backups almost made me spit out my coffee. "Linux 2.6.32-642.el6" They are running on a kernal from 2009. After I collected myself off the floor I pressed on.
Then came something new. Kingdee (K3) EAS. Honesly never heard of this one. But this was a day for firsts. Turns our it was juicy. The client will be happy.
Let's not leave out the Docker Hosting their gitlab. Sorry not sorry.
SCORCHED EARTH EXIT STRATEGY
At this point my eyes are tired and I want to get paid. What is the equivalent of burning the building on your way out?
Answer: Turn all those expensive switches and routers into expensive paperweights. Turned off sysloging, deleted firmware, and erased the configs.
PAYDAY
I'll be honest. When I was first contacted for this I thought I was going to have to decline. But it just goes to show that you don't know until you try. Now the easy part. Let's get that money.
So what do you all think?
Are they cooked, chat ?
]]> <![CDATA[How to get rich quick:]]> https://spear.cx/Thread-How-to-get-rich-quick Fri, 03 Apr 2026 22:08:42 +0200 Aaron]]> https://spear.cx/Thread-How-to-get-rich-quick ]]> ]]> <![CDATA[recruitment of saboteurs in the modern day]]> https://spear.cx/Thread-recruitment-of-saboteurs-in-the-modern-day Thu, 02 Apr 2026 03:31:27 +0200 Ankinon]]> https://spear.cx/Thread-recruitment-of-saboteurs-in-the-modern-day
I went on a small search, i did managed to find some interesting stuff

Most notably, a small channel on telegram that was sharing "partisan activity" in Russia, I saw a video of someone doing this activity with a flammable liquid (sabotaging delivery of fuel)
[Image: ss.png]

The people involved are referred to by generic names like "Dimitri" and "Andrey.", there is basic information about where the attack happened and other details. Anyways, so the recruitment itself was being done using a telegram bot.... LOL

The new "agent" is first given a "test task" (some kind of reconnaissance) which is usually useless, it's just done to see if the person is capable or not, if they complete it, they are paid for it and can now get a real mission. If explosives are involved, they are usually dropped off by another agent, it seems some are recruited for the sole reason of preparing & dropping off explosives. So the agent picks up the explosives stash and plants it at a target. No info on what kind of explosives they use, sometimes they say stupid big amounts, so i assume low explosives, but they also (probably) use tnt with some kind of primary (easy to find in all of eastern Europe).
Some do simpler missions, like placing gps trackers in targets, there were several cases where the TK905-Mini GPS was used, including one where the "agent" was a 16 year old girl.]]>
I went on a small search, i did managed to find some interesting stuff

Most notably, a small channel on telegram that was sharing "partisan activity" in Russia, I saw a video of someone doing this activity with a flammable liquid (sabotaging delivery of fuel)
[Image: ss.png]

The people involved are referred to by generic names like "Dimitri" and "Andrey.", there is basic information about where the attack happened and other details. Anyways, so the recruitment itself was being done using a telegram bot.... LOL

The new "agent" is first given a "test task" (some kind of reconnaissance) which is usually useless, it's just done to see if the person is capable or not, if they complete it, they are paid for it and can now get a real mission. If explosives are involved, they are usually dropped off by another agent, it seems some are recruited for the sole reason of preparing & dropping off explosives. So the agent picks up the explosives stash and plants it at a target. No info on what kind of explosives they use, sometimes they say stupid big amounts, so i assume low explosives, but they also (probably) use tnt with some kind of primary (easy to find in all of eastern Europe).
Some do simpler missions, like placing gps trackers in targets, there were several cases where the TK905-Mini GPS was used, including one where the "agent" was a 16 year old girl.]]> <![CDATA[Opinions on Kloak?]]> https://spear.cx/Thread-Opinions-on-Kloak Wed, 01 Apr 2026 07:54:32 +0200 rich]]> https://spear.cx/Thread-Opinions-on-Kloak ]]> ]]> <![CDATA[THe B0ts by pow]]> https://spear.cx/Thread-THe-B0ts-by-pow Sat, 28 Mar 2026 10:46:22 +0100 pow]]> https://spear.cx/Thread-THe-B0ts-by-pow
one such company that is doing this right now is falconfeeds.io


They are actually taking screenshots of the entire forum, can we do something about banning those bots? If the forum admin can't take action against these bots, then there's really no point in having this forum.]]>
one such company that is doing this right now is falconfeeds.io


They are actually taking screenshots of the entire forum, can we do something about banning those bots? If the forum admin can't take action against these bots, then there's really no point in having this forum.]]> <![CDATA[if you want another goat guess you gotta clone me]]> https://spear.cx/Thread-if-you-want-another-goat-guess-you-gotta-clone-me Sat, 28 Mar 2026 01:24:26 +0100 dump]]> https://spear.cx/Thread-if-you-want-another-goat-guess-you-gotta-clone-me <![CDATA[gofiles and other DDL sites onion proxy list]]> https://spear.cx/Thread-gofiles-and-other-DDL-sites-onion-proxy-list Wed, 25 Mar 2026 23:40:41 +0100 reroute]]> https://spear.cx/Thread-gofiles-and-other-DDL-sites-onion-proxy-list
Can someone upload this list on here?]]>
Can someone upload this list on here?]]> <![CDATA[fuk a nigga bitch]]> https://spear.cx/Thread-fuk-a-nigga-bitch Tue, 24 Mar 2026 00:17:58 +0100 dump]]> https://spear.cx/Thread-fuk-a-nigga-bitch <![CDATA[BreachMarket]]> https://spear.cx/Thread-BreachMarket Mon, 23 Mar 2026 18:47:18 +0100 Wuantitly]]> https://spear.cx/Thread-BreachMarket
Any feedback on BreachMarket services ?

https://breachmarket.net/

Angel]]>
Any feedback on BreachMarket services ?

https://breachmarket.net/

Angel]]> <![CDATA[update on our bmw post (and many more companies)]]> https://spear.cx/Thread-Com-Boss-update-on-our-bmw-post-and-many-more-companies Mon, 23 Mar 2026 01:43:17 +0100 xpl0itrs]]> https://spear.cx/Thread-Com-Boss-update-on-our-bmw-post-and-many-more-companies some of you may have seen our BMW idor / docs posts, we have partnered with other groups, and due to this our access has greatly expanded, much more data, much more leads
soon a new post will be put up once we believe we have everything we can get, the lucky buyer will be getting much more in money, and much much more information to ingest[/quote]just to hint a little
  • [NEW] k8s leads
  • [NEW] pii leaks for employees AND customers all around the world (tens of thousands with standard PII, ie full names, addresses, cars, vins, etc)
  • IDOR exploit still for sale
  • a bunch of configuration data
  • [NEW] a bunch of api data
  • [NEW] almost every subsidiary owned by bmw has been mapped
  • [NEW] new car companies include Mazda, Toyota, Audi, Ford, plus 32 more
  • [NEW] hundreds of other brands PIIs (Brand, connections, email, links, phone preferred brand, provider, data provider, telefax, website, city country, address, title, etc)
  • [NEW] gas station data
  • [NEW] order data
  • [NEW] vin lookups
  • [NEW] order pii
  • the group we are collaborating with is DarkRomance

on top of this, we still have much more information still yet to be went through, along with we are still actively collecting more data.
it's expected people will say "no samples?" in the comments, the reasoning for this is that we aren't even done exfiltrating yet, as we find more stuff, we have to spend even more time exfiltrating the new data, and we'd prefer to just put the best of the samples in the post
while they caught on to our data exfiltration and took their database offline, not before we managed to exfiltrate 20 thousand categories. pii includes Brand, Connections, Email, Links, Phone prefered brand, Prodiver, Data provider, Telefax, Website, City, Country, Address, Title
among the large quantity of data, this will be of interest to those looking for initial access too. we have a file upload, as well as other portals and idor, among other things. the customer would be able to get initial access
while we cant go into further detail about a lot of specific team workspaces and chats, we have data for every countrys BMW group, along with 26 other car company's chats.
we are also collaborating with teampcp and another group which won't be named yet, but is already quite big. we also gained access to PetScreening, but we do not believe they deserved to be breached, as such we have emailed them from a compromised protonmail to notify them of the breach, so it won't happen again
?the worms are out

[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
]]> some of you may have seen our BMW idor / docs posts, we have partnered with other groups, and due to this our access has greatly expanded, much more data, much more leads
soon a new post will be put up once we believe we have everything we can get, the lucky buyer will be getting much more in money, and much much more information to ingest[/quote]just to hint a little
  • [NEW] k8s leads
  • [NEW] pii leaks for employees AND customers all around the world (tens of thousands with standard PII, ie full names, addresses, cars, vins, etc)
  • IDOR exploit still for sale
  • a bunch of configuration data
  • [NEW] a bunch of api data
  • [NEW] almost every subsidiary owned by bmw has been mapped
  • [NEW] new car companies include Mazda, Toyota, Audi, Ford, plus 32 more
  • [NEW] hundreds of other brands PIIs (Brand, connections, email, links, phone preferred brand, provider, data provider, telefax, website, city country, address, title, etc)
  • [NEW] gas station data
  • [NEW] order data
  • [NEW] vin lookups
  • [NEW] order pii
  • the group we are collaborating with is DarkRomance

on top of this, we still have much more information still yet to be went through, along with we are still actively collecting more data.
it's expected people will say "no samples?" in the comments, the reasoning for this is that we aren't even done exfiltrating yet, as we find more stuff, we have to spend even more time exfiltrating the new data, and we'd prefer to just put the best of the samples in the post
while they caught on to our data exfiltration and took their database offline, not before we managed to exfiltrate 20 thousand categories. pii includes Brand, Connections, Email, Links, Phone prefered brand, Prodiver, Data provider, Telefax, Website, City, Country, Address, Title
among the large quantity of data, this will be of interest to those looking for initial access too. we have a file upload, as well as other portals and idor, among other things. the customer would be able to get initial access
while we cant go into further detail about a lot of specific team workspaces and chats, we have data for every countrys BMW group, along with 26 other car company's chats.
we are also collaborating with teampcp and another group which won't be named yet, but is already quite big. we also gained access to PetScreening, but we do not believe they deserved to be breached, as such we have emailed them from a compromised protonmail to notify them of the breach, so it won't happen again
?the worms are out

[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
[Image: image.png]
]]> <![CDATA[shellltercode feature remake interest]]> https://spear.cx/Thread-shellltercode-feature-remake-interest Wed, 18 Mar 2026 00:37:10 +0100 108021]]> https://spear.cx/Thread-shellltercode-feature-remake-interest if interested t.me/Glyphes or t.me/t1080s]]> if interested t.me/Glyphes or t.me/t1080s]]> <![CDATA[[PARTNERS] Earn 3% Passive Income Promoting a Solana Dice Betting Discord]]> https://spear.cx/Thread-PARTNERS-Earn-3-Passive-Income-Promoting-a-Solana-Dice-Betting-Discord Sat, 14 Mar 2026 18:25:53 +0100 rip]]> https://spear.cx/Thread-PARTNERS-Earn-3-Passive-Income-Promoting-a-Solana-Dice-Betting-Discord
I run a Solana-based dice betting server called DiceParty.

Affiliate program:
? Earn 3% lifetime commission from every bet made by users you invite.

How it works:
? Share your invite link
? Your users play dice using SOL
? You automatically earn 3% from their bets

Why it converts:
? Simple dice game (fast betting)
? Solana transactions = cheap + instant
? Competitive leaderboard


Looking for:
? Solana communities
? Meme coin traders
? Discord server owners
? Crypto promoters

DM if interested in partnership.]]>
I run a Solana-based dice betting server called DiceParty.

Affiliate program:
? Earn 3% lifetime commission from every bet made by users you invite.

How it works:
? Share your invite link
? Your users play dice using SOL
? You automatically earn 3% from their bets

Why it converts:
? Simple dice game (fast betting)
? Solana transactions = cheap + instant
? Competitive leaderboard


Looking for:
? Solana communities
? Meme coin traders
? Discord server owners
? Crypto promoters

DM if interested in partnership.]]> <![CDATA[What kind of music do you guys like when coding?]]> https://spear.cx/Thread-What-kind-of-music-do-you-guys-like-when-coding Mon, 23 Feb 2026 06:15:47 +0100 Neo]]> https://spear.cx/Thread-What-kind-of-music-do-you-guys-like-when-coding