ajax-lives / norussian Goto Github PK

In Chrome:

This site can’t be reached
Check if there is a typo in norussian.xyz.
DNS_PROBE_FINISHED_NXDOMAIN

dig www.norussian.xyz @1.1.1.1
;; AUTHORITY SECTION:
xyz.			3598	IN	SOA	ns0.centralnic.net. hostmaster.centralnic.net.

Meanwhile, another project works flawlessly 😄 https://github.com/erkexzcx/stoppropaganda

#35 #36 #57

      if (queue.length > CONCURRENCY_LIMIT) {
        await queue.shift()
      }

queue.shift() does not return a promise so this does not wait.

you could do something like

      while (queue.length > CONCURRENCY_LIMIT) {
        await sleep(Math.random(100))
      }

and then in the finally add
queue.pop();

This would be a non deterministic queue but it's a simple change to support CONCURRENCY_LIMIT

keepalive: true option will lock a connection on the target server, and server connection limit will be reached faster

Make this into a Github Pages website, so it can directly run, be embedded and more.

Can anyone and try to speed it up?

Testing the html file on my localhost server does not refresh the total number of requests.

Not sure what causes this.

For the attack not only the amount of requests is important, but also the size of the request, I suggest adding at least a 1 MB cookie header to all the requests.

By default Nginx accepts requests as large as 1 MB.

{
  headers: {
    Cookie: 'random generated 1 MB string'
  }
}

but this needs testing the servers, as you could see 413 error, that doesn't mean the server is down.

Possibly also tell me if they're only unlocked in Russia or other countries too. Will remove sites that are completely geoblocked.

One of these websites links to mine[.]exchange, which is a phishing website.

Who knows what they gather about you.

YOU ARE A MONKEY
YOU ARE AN APE
RUSSIA DID NOTHING WRONG

Based on the concurrency limit the first target will start off with the same amount

Not sure what happened here, but it returns an error.

Link being used is the one in the README.md and the one listed as being actively deployed. (Deployment)

You could avoid disabling CORS by using img or iframe tags instead of fetch. It's an old XSS technic. It's also possible to create an image element programmatically without inserting it into the DOM. Do the research if you're interested.

As from title, all those sites are inaccessible (error 504) from non-russian IP, when using a russian IP (VPNgate), those websites are reachable, but the stop-russian-desinformation.near.page isn't reachable (ERR_CONNECTION_RESET).

The code works locally, but the formatting is terrible. I'll try to fix it on monday.

i've found a clone of the norussian.xyz website that attacks UA websites: norussians.xyz

This seems to just call "https://ajax-lives.github.io/NoRussian/[object%20Object]" over again

Line 413:
fetchWithTimeout(target, 2000)
should be this:
fetchWithTimeout(url, 2000)

Am I missing something?

These are DDoS protection services that the IT army of Ukraine wants people to hit. Meaning a lot of sites besides the ones we are hitting are behind these services. IDK if we should add those though..

https://ddos-guard.net/ru
https://stormwall.pro/
https://qrator.net/ru/
https://solidwall.ru/

My suggestion would be making a separate html file that isnt dependent on bootstrap

Not sure if it's an issue, just wanted to create a thread for other really malicious russian sites to be added. Figured not worth creating a pull request for one but maybe we can get a bunch in.

My suggestion: https://rusvesna.su/ - really aggressive propoganda rupor. Been showing videos of Ukrainians allegedly deserting/surrendering, etc.

EDIT: I am aware the number of sites is already big but a lot of them are down already and this one is working perfectly fine and I don't see it being targeted by anyone.

XX

https://t.me/s/itarmyofukraine2022

You realize that your isp will probably just cache the responses.

Even if they don't, what make you think that Russia doesn't have separate routes for domestic vs foreign requests.

Running this from outside of Russia won't affect domestic users at all.

If the idea is for Russian citizens to run it then that's a good way for them to get arrested in the middle of the night.

https://notes.anonpaste.org/?1bb604798b2004c2#Go4Zf3mDnkv62JVfbtXAdYi4yi6B8t5NDL77uC4kFEJR

Use github pages to use it with zero knowledge

I can't tell if this is a joke, but it seems too legit. The url is https://forbiddenknowledgetv.net/