mOrc icon indicating copy to clipboard operation
mOrc copied to clipboard

Published 20 hours ago verified publisher icon 0xmachos

Implement getip

Open 0xmachos opened this issue 6 years ago • 3 comments

Get external IP address

https://github.com/zMarch/Orc/wiki/getip

0xmachos avatar Apr 09 '19 09:04 0xmachos

That should be directly portable from o.rc, maybe remove the wget and rely only on curl though (OSX doesn't ship with wget by default, much to my abject confusion)

0x27 avatar Apr 10 '19 05:04 0x27

I've copied the curl flags from Orc's orc_loadURL function:

curl --silent --location --insecure

The Akami URL https://whatismyip.akamai.com throws a cert error when using HTTPS. Would it be stealthier to use HTTP, so there isn't an invalid certificate for the SOC to detect?

@0x27 @zMarch

0xmachos avatar Apr 10 '19 14:04 0xmachos

it's hard to say - on the one hand, we're using akamai, so you'd figure we'll slip past SOCs based on that, but an invalid cert might be problematic, you're right. i went with it because genuinely, i figured an invalid cert makes more sense than using ipgrabber.malware or whatever.

zMarch avatar Apr 11 '19 07:04 zMarch