hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
Full Version: Pqwak V2.00a
GovernmentSecurity.org > The Archives > Public Downloads
flame
Sep 25 2003, 10:53 AM
i know its old but maybe some of you dont remmember\know this one.
ppl still using 95 and 98 biggrin.gif
-------------------------------------------------------------------------------------
PQwak v2.00a October 27, 2000
© Shane Hird 2000

DISCLAIMER: By using this program, you agree that you are completely
responisble for your own actions, and I, Shane, am in no way
liable, unless its something good.

->What is PQwak?

This program exploits a flaw in the share level password authentication
of MS windows 95/98/ME in its CIFS protocol to find the password of a
given share on one of these machines.


->How does it work?

The program exploits a flaw found by nsfocus (www.nsfocus.com) in which
windows verifies passwords based on the client supplied password length
rather than the server's. The program is essentially a stripped down
NetBIOS client, which communicates at the TCP/IP level, using CIFS through
SMB over NetBios over TCP/IP tongue.gif. It first starts with a size 1 password,
iterating through a set of characters, when it finds a match, it goes up
to a size 2 password and so on.
GhostCow
Sep 25 2003, 12:25 PM
my school runs on win98, so be sure that ill check it out *evil grin*
Certox
Sep 25 2003, 04:32 PM
Is there a good scanner to find WIn98 systems?
jaune
Sep 25 2003, 05:08 PM
Thank you for the tool but win9x systems are not very interesting for us (newbies like me): psexec and ntcmd cant run sad.gif

Anyway, it works great, thanks for the upload. smile.gif
flame
Sep 25 2003, 05:57 PM
you can also use netcat
QUOTE
nc -l -p 23 -t -e commamd.com

and then connect to it
QUOTE
nc xxx.xxx.xxx.xxx 23

and then get a descent shell on win98.
net_runner
Oct 18 2003, 03:44 AM
ph34r.gif
thanks you,i hope it works
Flinston
Oct 18 2003, 10:47 AM
muhahaha my school and my girlfriend runs win98 biggrin.gif *fg*
DocBullus
Oct 22 2003, 10:03 AM
Many of my Friends swear on 98 wink.gif I'll kick their asses with their fukkin passes biggrin.gif
Scr47h3
May 28 2004, 04:09 AM
Thanks man. This is exactly what I need to convince my grandparents to get a firewall and AV. I'll just... surprise them...



Evan
Miserly
May 28 2004, 02:09 PM
sounds good smile.gif
my school also runs win98 couldn't find a good exploit for win98, want to create a dir on desktop and say hello to our teacher wink.gif

edit:
hmm you need a share...
what's if you have a accessable share but no write right, can i somehow use it there?

and can you somehow use it if you have no shares/there are no shares?
ellitio
Jun 6 2004, 09:55 PM
i only had the first version of pqwak
thank you very much smile.gif
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.