Viss
so i dunno if you knew you could do this, but its helpful in a lot of hilarious/dumb scenarios
Jun 6 at 12:24amWeb
Show threadVissJun 6

if the network goes down, the parrot stops dancing.

if the parrot doenst appear, there is a connectivity issue, or it'll throw an error

if you want to know WHEN the network goes down, you curl parrot.live and wait for the parrot to stop dancing, now you know the network has gone down.

Show threadVissJun 6

also, if you want to host your own dancing command line party parrot, whoever wrote it put it on github, so you can just clone it

https://github.com/hugomd/parrot.live

GitHub - hugomd/parrot.live: 🐦 Bringing animated parrots to terminals everywhere

🐦 Bringing animated parrots to terminals everywhere - hugomd/parrot.live

GitHub
Show threadPoloniousmonkJun 6

@Viss

So the parrot is like a miner's canary?

Show threadVissJun 6
@Uair a nework miners canary, yeah :D
Show threadda_667Jun 6
@Viss what's even more fun is that if you have root on a device, you can pipe it out to local tty terminals and remote pts terminals and effectively DOS the box.
Show threadVissJun 6

@da_667 hahahaha dude for a talk i did at securityfest last year, i think i even pointed out that you can change the shell of a user to a bash script instead of /bin/bash or whatever..

you can like
echo "curl parrot.live" > /tmp/fucktardia.sh
chmod +x /tmp/fucktardia.sh
chsh loser
(aim it at /tmp/fucktardia.sh)
user loser now sshes into a box and gets party parrot.

control c? connection drops.
i am currently unaware of a way to bypass that, but if we find one, we should tell @bagder

Show threadda_667Jun 6

@Viss @bagder command execution on ssh login

ssh [username]@box /bin/sh

[auth to box]

get a a shell with no pty, that doesn't show up in w or who output.

Show threadda_667Jun 6
@Viss @bagder this is also an effective way to bypass appliances that use restricted shells if they are too stupid to leave sh, bash, etc. reachable and don't disable the ssh config option that allows command exec on SSH auth.
Show threadda_667Jun 6
@Viss @bagder fun fact: I used this to solve an over the wire challenge some time ago. I'm not sure it was the right way, but yolo.
Show threadEd "☃️" Marczak “‘;%:.$}])\n\tJun 7

@da_667 @Viss There’s an effective way to combat that if you’re using keys for auth:

https://dan.langille.org/2025/04/17/using-ssh-authorized-keys-to-decide-what-the-incoming-connection-can-do/

Show threadVissJun 7
@marczak @da_667 is this example setup using a shellscript as the users shell?
Show threadEd "☃️" Marczak “‘;%:.$}])\n\tJun 9
@Viss I will test that during this week. (But my best guess is yes, it will still work in that case.)
Show threadEd "☃️" Marczak “‘;%:.$}])\n\tJun 9
@Viss tested, and the specified shell still runs first. So, your method is useful for keeping people out/screwing around. The authorized_keys command is useful if you’re actually trying to restrict a valid user. @da_667
Show thread  Jun 7

@Viss this sent me down a rabbit hole:

https://cultofthepartyparrot.com/

Cult of the Party Parrot

THE PARROT INSISTS

Show threadVissJun 7
@pft oh ive seen this on before! someone spent a lot of time on these, hahaha
Show thread  Jun 7
@Viss if I was that dedicated to anything in my life, i would've been way happier/more successful.