Profile picture
The_War_Economy
@The_War_Economy
, 23 tweets, 12 min read Read on Twitter
In the Equation Group dump is a module known as "m12000000", or TADAQUEOUS, which does not have a Listening Post (LP) attached to it.

"It can only be loaded and unloaded through this interface, not controlled, and it will spit an error message."

laanwj.github.io/2016/09/01/tad…
What apparently TADAQUEOUS does is cripple or disable IPsec, or Internet Protocol Security.

"Most of the symbols are not standard Linux symbols but specific to the TOS/Fortinet implementation."

laanwj.github.io/2016/09/01/tad…
"I read this to mean that the hardware or software of the system running IPsec was compromised, causing it to send valid protocol ESP packets, but creating those in such a way that these could be decrypted without knowing the ESP session keys (from IKE)".

laanwj.github.io/2016/09/01/tad…
For background on why TADAQUEOUS may be important, see the thread I did on The Shadow Brokers yesterday:

On February 16, 2015, Kaspersky Lab published "Equation Group: The Crown Creator of Cyber-Espionage" on their website, where they described the Equation Group as a "threat actor".

kaspersky.com/about/press-re…
As a side reference, Ruslan Stoyanov of the Kaspersky Lab, the head of computer incident response investigations, was later arrested back in January 2017.

Shortly after Kaspersky Lab outed the Equation Group as existing, the Central Intelligence Agency discussed this on an online forum.

wikileaks.org/ciav7p1/cms/pa…
The last files in the Equation Group dump was from June 2013.

motherboard.vice.com/en_us/article/…
Now one of the files exfiltrated from The Equation Group, eqgrp-free-file[dot]tar[dot]xz was released by the Shadow Brokers. In it, there is a text file titled "listing".

github.com/nneonneo/eqgrp…
In this text document is a series of file locations and calendar dates, where something has happened. Look, I'm good with computers but I'm no programmer, so I don't actually know what the rest of this stuff is. However...

github.com/nneonneo/eqgrp…
By searching for "m12000000", it reveals the existence of TADAQUEOUS, of which there are 20 instances. They each have specific dates assigned to them.

github.com/nneonneo/eqgrp…
What follows is theory, conjecture, et cetera.

In the sense that the events on the dates absolutely did happen, but whether TADAQUEOUS's dates have anything to do with it is the conjecture / theory part.
April 9, 2010.

This was the day after the United States and Russia signed the New Strategic Arms Reduction Treaty (START) in Prague.

geneva.usmission.gov/2010/04/08/sec…
October 26, 2009.

Hillary Clinton's birthday.

still4hill.com/2009/10/26/hap…
August 2, 2011.

On August 1, Clinton swore in Gary Locke as Ambassador to China.

On August 2, Clinton met with Syrian opposition activists.

2009-2017.state.gov/secretary/2009…

prnewswire.com/news-releases/…
May 3, 2011.

The day after the death of Osama bin Laden.

nytimes.com/2011/05/02/wor…
As noted, it affects Fortinet.

"In order to ensure her e-mails were private, Clinton's system appeared to use a commercial encryption product from Fortinet."

bloomberg.com/news/articles/…
Fortinet is also listed as a hardware partner of Platte River Networks.

platteriver.com/about/partners/
It was back in June 2013 when Hillary Clinton transferred her server.

On June 23, 2013 the Pagliano Server at the Chappaqua residence was shut down and then transported to Secaucus, NJ, where it was ran by Equinix. It stayed there until October 3, 2015.

static01.nyt.com/packages/pdf/p…
Also of reference is that Edward Snowden had already fled the United States to Hong Kong on May 20, 2013.

That's it, that's the end of the thread for now.
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to The_War_Economy
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @The_War_Economy see all

Profile picture
The_War_Economy
@The_War_Economy
I'm not 100% on this, obviously, but the whole "Trump classified Israel information" stuff from May 10, 2017 was probably the justification the FBIdiots used to investigate Trump as a Russian spy.
"FBI officials viewed their decision to move quickly as validated when a comment the president made to visiting Russian officials in the Oval Office shortly after he fired Mr. Comey was revealed days later."

nytimes.com/2019/01/11/us/…
Read 10 tweets
Profile picture
The_War_Economy
@The_War_Economy
So what is the deal with Alfa Bank?

Let's break it down.

With dates and sources, as is tradition.
To understand the true scope of the Alfa Bank story, we will also have to incorporate Daniel Jones into the mix.
On January 11, 2016, Christopher Steele met Adam Waldman, where they discussed Oleg Deripaska's attempts to gain a visa for business at the end of February 2016.

washingtonexaminer.com/news/emails-sh…
Read 72 tweets
Profile picture
The_War_Economy
@The_War_Economy
So the Carter Page FISA was being discussed in September 2016. Stu Evans was in charge of the FISA process, but the FBI did not tell Stu about Crossfire Hurricane. Toscas told Stu about the investigation in August 2016 without telling the FBI.

theepochtimes.com/transcripts-of…
Stu Evans must have had a relationship with Aveshka then.

John Carlin's September 26, 2016 FISA filing.

dni.gov/files/document…
Read 12 tweets

Related threads

Profile picture
WaterBluSky
@MsMariaT
Late 8/16:

Manafort's daughters texts hacked. Daughter's texts re Manafort and Trump:

"...they go up and down all day long hanging and plotting together...”
Sidebar tweet: a threat from unk person allegedly to Paul Manafort, date unknown:

Threatens to expose Trump's meeting with "governor of Cherkassy - Mr S. Tulub" on 6/17/12:

politico.com/f/?id=0000015a…
More on Sergii Tulub:

Read 62 tweets
Profile picture
Burn Notice
@BurnedSpy34
1. THREAD - AUSTRALIAN "Q" POST REFERENCES.

While the research and growing evidence behind the Q movement is world-wide, this THREAD looks specifically at Australia.

I have laid them out chronologically.

Post #135 notes our Reserve bank is "controlled".
2. #906 introduces the connection between the Australian Govt and the Clinton Foundation. It suggests that this relationship is bigger than what it appears.

What infrastructure (or blindness) must exist for these large transactions of tax-payer dollars?
3. #908 is one of the more obscure Q posts IMO.

It may relate to the #FISA issue alone and the @GeorgePapa19 conversation with Downer, but something larger is foreshadowed.

Blood???

It may be a while yet before this post is fully understood.
Read 19 tweets
Profile picture
MissingPicture
@PictureMissing
THREAD: "CZ is a Masterbotter" 1) Take a look at this chart: all crypto is sinking and yet BNB Binance price seems to be levitating. I will explain how CZ uses Tether to prop his coin.
2) Most major exchanges are trading against their users. MtGox had WillyBot, Bitfinex has an army of bots, Arthur Hayes is enriching himself at BitMex, and Coindesk skims 20% from their own users.
3) But all of these bots use LAZY PROGRAMMING. They run on LAN or same server, and place orders directly in the trade engine. A dead giveaway is when bot are trading without interruption even when site is under D-DoS attacks.
Read 16 tweets
Profile picture
Dr. Samantha Montano
@SamLMontano
So much disaster & emergency management research exists.

No one reads it. Let's change this.

My twitter resolution is to post one journal article a day for the whole year.

#EmergencyManagement101 #EMGTwitter #SciComm
(I’ll post open source articles when available but if you can't access an article DM and I will send you a copy.)
Let’s start at the beginning. Samuel Prince’s 1920 dissertation is credited with being the first systematic social analysis of a disaster.

books.google.com/books?hl=en&lr…
Read 127 tweets
Profile picture
BlueEyedBrain
@Blueeyes2luv
Foreign and Domestic

1. Official history is merely a veil to hide the truth of what really happened. When the veil is lifted, again and again we see that not only is the official version not true, it is often 100% wrong.

#Rothschilds
2. Take the Rothschilds, the bloodline formerly known, among other names, as the Bauers, one of the most notorious black occult bloodlines of Middle Ages Germany. It became known as Rothschild (red-shield or rotes-schild in German)
3. in the 18th century a financial dynasty was founded in Frankfurt by Mayer Amschel Rothschild working in league with the Illuminati House of Hesse and others.

They took their name from the red shield or hexagram/Star of David atop of their house in Frankfurt. #Rothschilds
Read 100 tweets
Profile picture
Marguerite Sacco
@MargueriteScc
Je découvre avec bonheur que Maman a acheté des verres de ce type, ce qui m’amène à vous faire un thread sur

LE CÉLÈBRE VERRE À FACETTES SOVIÉTIQUE
Le verre à facettes (гранёный стакан) a été créé pendant le blocus de Leningrad (1943) par Vera Moukhina, la sculptrice qui a aussi fait « Le travailleur et la kolkhozienne ». D’ailleurs, si on empile 476 verres ça fait la même hauteur !!! #coïncidence???
La valeur de ces verres à facettes soviétiques dépendait du nombre de facettes mais ils faisaient toujours la même contenance, une contenance d’ailleurs idéale pour partager une bouteille de vodka à 3 quand Khrouchtchev en eut interdit la vente par quantité libre
Read 9 tweets

Trending hashtags

#PartiotsUnited #SpecialOperationsCommand #MegynKelly #EnoughIsEnough #UnConstitutional #김용국 #Iraq #Qanon8chan #Assange #Hivites #MAGA #Hillary #Dulles #DNI #Breadcrumbs #Rcy #OsamaBinLaden #FollowingTheMoney #FollowTheWhiteRabbit #Treason #RedCross #bush43 #DeepStateCorruption #NoName #DeepState

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($3.00/month or $30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!