1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How are IPs and proxies made?

Discussion in 'BlackHat Lounge' started by canonkanon, Aug 10, 2016.

  1. canonkanon

    canonkanon Registered Member

    Joined:
    Aug 4, 2016
    Messages:
    77
    Likes Received:
    6
    1. I understand that the ISP is distributing (normally) one IP per customer, but from where are the ISPs getting the IPs to distribute?
    2. Are ISPs rotating their IPs through all customers, if so why and how often?
    3. Who is controlling and how is IP geolocation controlled (specific subnets for specific countries).
    4. How is a proxy made other than me as a normal user running a proxy program on my PC and leaving it on forever, all proxies can't be made this way? Botnets?
     
  2. kahuna74

    kahuna74 Regular Member

    Joined:
    Aug 19, 2014
    Messages:
    270
    Likes Received:
    102
    Gender:
    Male
    Occupation:
    Software Developer
    Location:
    Grand Rapids, MI
    1) IANA (Internet Assigned Numbers Authority)

    2) No way to know this unless you work at an ISP. If they use DHCP, you're more likely to get the same IP.

    3) IANA.

    4) Proxies can be useful (SOCKS proxies to traverse corporate firewalls, for instance). They can also be misconfigured, letting in others who are not supposed to use them. Also, web servers such as apache can be misconfigured to allow CONNECT requests from places that shouldn't be allowed, so there are many people unwittingly proxying HTTP requests.

    One personal example of this was when I installed letsencrypt, the certbot put an apache rewrite rule in my vhost config that turned my machine into a HTTP proxy. I only noticed this because I was watching my logs and noticed proxy traffic when there should have been none. I'm guessing that tens of thousands of other people using the lets encrypt certbot with ubuntu also have the same issue and are unwittingly running a HTTP proxy due to a bad apache rewrite rule.
     
    • Thanks Thanks x 4
  3. Vic Sage

    Vic Sage Jr. VIP Jr. VIP

    Joined:
    Sep 5, 2010
    Messages:
    1,787
    Likes Received:
    2,170
    Gender:
    Male
    Occupation:
    Franklin Hattchet Method
    Location:
    Franklin Hattchet Method
    Home Page:
    [​IMG]


    [​IMG]
     
    • Thanks Thanks x 4
  4. Capo Dei Capi

    Capo Dei Capi BANNED BANNED

    Joined:
    Oct 23, 2014
    Messages:
    754
    Likes Received:
    1,732
    What would happen if someone created a rival to the IANA and issued numbers independent from them?
     
    • Thanks Thanks x 3
  5. asap1

    asap1 BANNED BANNED Jr. VIP

    Joined:
    Mar 25, 2013
    Messages:
    4,961
    Likes Received:
    3,179
    My IP stays the same but why ask here when you have google?
     
  6. Vic Sage

    Vic Sage Jr. VIP Jr. VIP

    Joined:
    Sep 5, 2010
    Messages:
    1,787
    Likes Received:
    2,170
    Gender:
    Male
    Occupation:
    Franklin Hattchet Method
    Location:
    Franklin Hattchet Method
    Home Page:
    [​IMG]


    You won't find such info on Google mate, these are pretty much underground secrets op is asking for which shouldn't be shared on an open forum. It's like killing the entire "Proxies for sale" section of BHW.
     
    • Thanks Thanks x 1
  7. canonkanon

    canonkanon Registered Member

    Joined:
    Aug 4, 2016
    Messages:
    77
    Likes Received:
    6
    1. HOW are IANA giving IP addresses to the ISPs? How is the authentication working in practice?
    2. Wouldn't DHCP mean that I would get a new IP each time I restart my router?
    3. How are IP subnets distributed to certain countries, is it based on number of inhabitants or how does it work?
    4. How are people getting access to hundreds of thousands of STABLE private proxies?

    Fuck both of you.
     
    • Thanks Thanks x 1
  8. MuayThai

    MuayThai Jr. VIP Jr. VIP

    Joined:
    Aug 25, 2015
    Messages:
    573
    Likes Received:
    175
    It will be a LAN then :)

    1. Most probably one will deal with LIR, not with IANA.
    2. DHCP means "ip is defined by server, not by client".
    3. How are moneys/resourses distributed to certain countries, is it based on number of inhabitants? ;)
    4. You need to own or to rent hundreds of thousands of IPs.
     
  9. canonkanon

    canonkanon Registered Member

    Joined:
    Aug 4, 2016
    Messages:
    77
    Likes Received:
    6
    1. What stops me from creating my own ISP company and then I request 100k IPs from IANA and resells them as proxies?
    3. Hehe, I still don't understand how it works in practice when IANA gives a block of IPs to a LIR. Is it possible for IANA to shut down the whole internet?
    4. Where do they rent IPs from? ISPs and web hotels?
    5. Is IPv6 going to become mainstream in the near future? If so, with the 57 billion IP addresses available, proxies should drop drastically in price?
    6. IPv6 is great for spam, yes?
     
  10. Vic Sage

    Vic Sage Jr. VIP Jr. VIP

    Joined:
    Sep 5, 2010
    Messages:
    1,787
    Likes Received:
    2,170
    Gender:
    Male
    Occupation:
    Franklin Hattchet Method
    Location:
    Franklin Hattchet Method
    Home Page:
    [​IMG]
     
  11. MuayThai

    MuayThai Jr. VIP Jr. VIP

    Joined:
    Aug 25, 2015
    Messages:
    573
    Likes Received:
    175
    1. Nothing
    3. It is complicated for now
    4. They... Who?
    5. Probably no. There will be no drop, coz proxy price is caused by several factors, like hardware, support, maintenance, etc
    6. The same as v4
     
  12. canonkanon

    canonkanon Registered Member

    Joined:
    Aug 4, 2016
    Messages:
    77
    Likes Received:
    6
    1. How is IANA verifying that the LIR is actually a legit company? I probably cannot just send an email to IANA saying that I am starting up a ISP company and I need 100k IPs...
    3. Try to explain please
    4. They = Proxy providers
    5. Isn't the proxy price currently "high" (especially virgin proxies) since all IPv4 addresses has been used / is in use.
    6. IPv6 will have billions of virgin IPs available, why would this not reduce the price of virgin proxies?
     
  13. Fragmaster

    Fragmaster Jr. VIP Jr. VIP

    Joined:
    Apr 3, 2016
    Messages:
    683
    Likes Received:
    997
    Gender:
    Male
    Regarding to your v4 and v6 comparison , i will give you some insight.
    Its like when you compare 32 bit and 64 bit systems. 64 bit system have bigger adress space, and allows you to have much more RAM . Is it enough? You still need to buy RAM and install it , you cant use imaginary number possibilities.
    You can ask for 100k IP adresses but you won't get them :) .

    Google terms "Tier1 ISP" to figure out more.

    Proxies isn't just owning a bunch of IPs . When you use a proxy , you communicate with distant computer on some server farm or special rack configuration, which then sends your L3 requests further. So when you buy a proxy you don't just "spoof" your IP from your machine, all your internet traffic goes through servers , and paying for proxies is paying those servers and guys who run them.
     
    • Thanks Thanks x 1
    Last edited: Aug 12, 2016
  14. canonkanon

    canonkanon Registered Member

    Joined:
    Aug 4, 2016
    Messages:
    77
    Likes Received:
    6
    Yes, I get this. Either way, since the demand on virgin proxies is higher than the amount of virgin proxies that exist then shouldn't it mean that IPv6 is supplying billions of virgin proxies and therefore the price of private proxies should drop?
     
  15. WhereIsMyMoney

    WhereIsMyMoney Newbie

    Joined:
    Apr 7, 2016
    Messages:
    28
    Likes Received:
    11
    I suggest you to watch https://www.udacity.com/course/networking-for-web-developers--ud256 this course. It's a short one but an interesting one. If you only want to know about IPs then watch only "Addressing and Networking" section.
     
  16. macdonjo3

    macdonjo3 Jr. VIP Jr. VIP

    Joined:
    Nov 8, 2009
    Messages:
    5,614
    Likes Received:
    4,363
    Location:
    Toronto
    Home Page:
    Sounds like you need a 3rd year university networking class. Kick through the slides here: http://www.cs.toronto.edu/~ahchinaei/teaching/2016jan/csc358/

    For the part about IPv4 vs IPv6...

    2^8 * 2^8 * 2^8 * 2^8 is how many IPv4 address there are. We are running out, so now we have IPv6.

    2^8 * 2^8 * 2^8 * 2^8 * 2^8 * 2^8
     
    • Thanks Thanks x 1
  17. Malcolm Max

    Malcolm Max Regular Member

    Joined:
    Aug 12, 2016
    Messages:
    265
    Likes Received:
    82
    Gender:
    Male
    Occupation:
    Web Development, IM
    As much as I understand, top tier ISPs gets IP address range to distribute from a central control. DHCP makes new ips inside a local network, they wont work on internet.
     
  18. davids355

    davids355 Jr. VIP Jr. VIP

    Joined:
    Apr 25, 2011
    Messages:
    9,846
    Likes Received:
    7,468
    Home Page:
    IP addresses are given out by (I think) several central bodies - for example Arin (https://www.arin.net/) provides IP addresses for Central America, Canada etc.

    These are given out in large blocks mostly to ISPs, hosting providers and other big organisations. They could be like /4 and /8 sub nets and so on that have lots of networks and IPs within them.

    These would then be split up in to smaller networks and assigned out as required.

    An ISP for example with have a big subnet to assign out to its customers.

    Then you get private IP addresses of course that can be used internally - like on your home network, and your router would provide NAT services to translate your private IP to a public IP so you can communicate over the Internet, and vice versa.

    There is a very short supply of IPv4 addresses now so it's quite hard to get them in large numbers without a legitimate reason.

    Proxies are based on the same thing - it's just a server using these IP addresses and routing traffic through them.

    If you want more detail just ask.
     
  19. redarrow

    redarrow Elite Member

    Joined:
    Apr 1, 2013
    Messages:
    4,359
    Likes Received:
    994
    In my dad data center ripe own his ip address you have to rent the ips in a amount and that amount is what they give you

    256
    512
    1024
    2064
    4028

    The price is dependent on the hardwere and what your worth as a business ,ripe dont allow any business under a 250.000 income even get a batch of ip's , and you have to be a registred internet business , you also need to prove your income , and a business plan for each ip address , and also have 1 years in front payment , Ip address are not cheap and are provided of proof of use.....

    The same as the line that connects to the ip address you have to also rent and that also done in bandwidth and is also rented to my dad via the data center and you get it in per giga bit.

    My dad got a 64 giga bit line and very exspensive hanging of 4028 ip addresss .

    All in a data center level 3 in the city of london

    My dad provides dsl lines for private penthouse homes all wireless via satalite communication ,

    he use to do it via telephone lines , and setup the wires thu lifts , but that old hat it all wireless know and satalite dish thank f*****

    The datacenter provides the space for his servers and also they provide the bandwidth and a secure lockup they also provide fridge coldness 24/7 it cost more then 4 thousand per month , that the whole setup not including server hardwere and ip address .

    Like i say you have to have real money to be in the internet world.

    My dad only a little business in level 3 my father only got 42 severs at present but others have hundreds in cages .

    A mcse engineer or a cisco engineer get around £250 per day working at level 3 but only if your good at bash commands and you no your stuff for real.

    I have seen for my own eyes, mcse wanna be faint when they just fucked a 300.000 business up , just doing sonethink stupid in the data center ,

    so if you think a learn your self in 24 hr book really get you a heigh paid job , think agin lol lol
    Or using cram books or programs really help you think agin...

    I have piggi backed of dads line all 64giga bites and download a 2 hour film in 6 sec lol lol

    My father 73 years old and can still run a under million pound business and still install and make servers and instal services for the rich
    Not a lot of people can say that , good old dad
     
    • Thanks Thanks x 2
    Last edited: Aug 12, 2016
  20. Fragmaster

    Fragmaster Jr. VIP Jr. VIP

    Joined:
    Apr 3, 2016
    Messages:
    683
    Likes Received:
    997
    Gender:
    Male
    Virgin proxy is a salesman term. It has nothing to do with any technical stuff. It's merchants way to persuade layman that virgin IP > used IP, to avoid talking about server bandwidth, uptime, response, support . All that matter is if proxy is elite / anonymous or not, is it shared or dedicated, how many people you share with , and if they are abusing them or if IP is blacklisted. Instead of thinking about virgin or not , you should think blacklisted or not .