This is a complimation of computer tricks, mainly security and privacy related.
Getting Ip’s:–
To see the ip all computers you are connected to (web servers, people attempting to **** into your computer). Go to dos (start>run>type command) and run the netstat command. Type netstat /? for details.Type netstat -r at the command prompt to see the ip of all computers you are connected to
In MSN (and other programs) when you are chatting to someone everything you type goes through the MSN servers first (they act as a proxy) so you see their ip rather than who you are chatting to. You can get round this by sending them a file as MSN doesn’t send file through its proxy.When you type the netstat -r (or -a for a different view) the ip’s are under the foreign address table. The ports are seperated by a : . Different programs use different ports, so you can work out which ip’s are from which program.Connecting to other computers and what ports are:–
Servers send information. Clients retrieve. Simple. Windows comes with a built in program to connect to other computers called telnet. To start Windows telnet Start menu> Run> type Telnet. Click connect> remote system Ports are doors into computers. Hosts are computer names (ip number or a name that is translated into the ip automatically) Different programs open different ports, but they always open the same ports so other computers know which port to connect to. You can get a port list listing all the different ports, but a basic one is: 11 :- Sends info on the computer 21 :- FTP (File transfer program) 23 :- Telnet (Login to the computers command line) 25 :- Smtp (Sends mail) 80 :- Http (Web pages) There are thousands of different programs using different ports. You can get programs called portscanners which check a computer for all ports up to a certain number, looking for ways in. You can portscan a computer looking for ways-in. Anyway, back to telnet. Type www.yahoo.com as the host and port as 80 the click connect. If nothing happens, you’re in. Wow. You are connected to Yahoo’s server. You can now type http commands (you are connected to an http server, so it supports http commands). Ie. on an ftp server you can type open and it will do something. On an http server it will just wonder what the hell you are on about. Type get / http/1.0 then press enter twice to get the file on the server at / (try /index.html) etc.)Making undeletable, unreadable folders
Tested on Windows 95/98 By holding down alt, then typing numbers on the number pad (right of the keyboard) you can create special characters. If you hold down alt, then press 1, then let go, you got the ascii character 1. You try some randomn numbers. This goes all the way up to 255. Open a dos prompt, and type md (alt+1+9+4)someword. md is the dos command to make a directoy, now try and open the directory in Windows, you can’t. To open it, type ren (alt+1+9+4)someword someword (ren is the dos command to rename)Proxies
Proxies are computers that you connect through, hiding your computer. Most aren’t anonymous, they give away your ip. Some are. Good anonymous proxies: mail.uraltelecom.ru:8080 and 194.247.87.4:8080.Different programs require different ways of using proxies. To do it in internet explorer 5 go to tools, internet options, connections, settings. In the above proxies they are in the format host:portPassword files
If you lock yourself out of Windows stuff, all passwords are stored in files called *.pwl in C:windows. In Unix, passwords are normally stored at etc/passwd. This can be viewed using the cat command (prints a file to screen): cat etc/passwd. Make sure you’re passwords are shadowed (not actually in etc/passwd). Also make sure they aren’t in a file called shadow, especically not in a file called etc/shadow.Unix passwords are encrypted far better than Windows one’s (to be fair, Windows 95 isn’t designed for users), but can still be cracked through a program called jon.
Wednesday, June 10, 2009
10 amazing things to do with a USB pendrive
Any ordinary USB memory device can do a lot more than you probably thought it could. It can carry programs, encryption and even a full installation of Windows XP! Here is our tenlist for the coolest things you can do with a USB thumb drive:
Take your programs with you
We all know how frustrating it is when we take your files to another computer just to discover that the software required to read the files is not installed.
Here’s the simplest solution - take your programs with you - on your USB thumb drive. Here’s how to do it with Portable Apps:
1. Go to the Portable Apps website and download the installer, choosing the software you want to carry along.
2. Run the installer and install the software to the root of your USB thumb drive.
And you’re done! As soon as you connect your thumb drive into a computer, Portable Apps will open up automatically.
Surf anonymously
With Portable Apps and Firefox, you can surf the web without leaving any trace on the computer you are using. If you want extra security, install a Firefox security plugin such as FoxyProxy. To iput Firefox onto the drive, just copy-paste the Firefox folder from you computer, or install Firefox onto the thumb drive.
Set a program to run automatically (autorun)
Using autorun, you can set a program to start up automatically when you connect the drive to a computer. You can also use the same script for a data CD-ROM. Note that some computers have autorun disabled for security purposes. [Here's how to disable autorun.]
Open up notepad and paste the following script:
Replace description with a short description of the program, for example, My Jukebox or Mozilla Firefox.
Save the file as autorun.inf, making sure you select “All Programs” from the save menu, not “Text document”!
Help! I’m lost!
Ever lost a USB drive? Even if you haven’t, there’s a pretty good chance you’ll lose a few during your life. And with all the important information on it, it could be a disaster to have it fall into someone’s hands.
A good idea is to encrypt all the information on the drive, but you would still want it back, wouldn’t you? Luckily, the folks at the Daily Cup Of Tech have come up with a solution.
Save a program called “Help! I’m Lost!” on the drive, that a finder just can’t get around opening. The program opens a message box with your personal “I’m lost” message. It’s a good idea to offer the finder a bigger reward than the drive itself, so that they’ll be interested in contacting you.
Hide the drive inside something
Why not surprise your friends and co-workers by sticking something that looks like a broken USB cable into the computer’s USB drive?
You’ll be sure to get a few shocked faces when you start to play a movie from it.
The guys from Technobuzz.net show us how to do it. (You are gonna need an unbelievably small thumb drive for this…)
Secure your PC
Just like with an RFID badge, you can use a USB drive to lock and unlock a PC. Insert it to begin working and pull it out when you’ve finished, locking the computer. There are several programs for this . Rohos, a commercial program and WiKID, a semi-open source one.
If you really need to secure your computer with a USB drive, I suggest you give Rohos a try, as WiKID is rather complicated.
Portable jukebox
Don’t just carry the music with you, also carry the player! You can install audio programs such as WinAmp and CoolPlayer+ on your thumb drive. Just unextract the ZIP folders to the USB drive.
If you want the jukebox to start up automatically when you connect the memory stick to the computer, use the autorun feature shown tip 3 and point it to the exe of your audio player.
Encrypt your data
If you carry any sensitive indormation on your USB memory stick, a good idea is to encrypt it. Hardware-level encryption will help, but it will cost extra. You can get a free program to encrypt your data just as securely. For this I recommend TrueCrypt, but most others will also do.
You will need admin access on the computer you want to use your encrypted thumb drive on, so this it’s usability a little.
Run a standalone OS for dedicated tasks
The easiest OS to boot from a USB drive is probably Linux. There are many small capacity Linux versions out there that will fit on your drive. The best 3 are Puppy Linux, Damn Small Linux and Webconverger.
Make sure you select a version that needs less space than your USB drive’s maximum, so you have room for files and software.
And this leads us nicely to the final tip…
Run Windows itself from a USB thumb drive
Modifying Windows to work on a USB drive is quite difficult, but luckily there are some tools that will do it for us. Note that you will need a separate Windows license for this, as Microsoft only lets you use one for each single computer, and a USB drive is treated by them like a computer…
What you’ll need:
Take your programs with youWe all know how frustrating it is when we take your files to another computer just to discover that the software required to read the files is not installed.
Here’s the simplest solution - take your programs with you - on your USB thumb drive. Here’s how to do it with Portable Apps:
1. Go to the Portable Apps website and download the installer, choosing the software you want to carry along.
2. Run the installer and install the software to the root of your USB thumb drive.
And you’re done! As soon as you connect your thumb drive into a computer, Portable Apps will open up automatically.
Surf anonymously
With Portable Apps and Firefox, you can surf the web without leaving any trace on the computer you are using. If you want extra security, install a Firefox security plugin such as FoxyProxy. To iput Firefox onto the drive, just copy-paste the Firefox folder from you computer, or install Firefox onto the thumb drive.
Set a program to run automatically (autorun)
Using autorun, you can set a program to start up automatically when you connect the drive to a computer. You can also use the same script for a data CD-ROM. Note that some computers have autorun disabled for security purposes. [Here's how to disable autorun.]
Open up notepad and paste the following script:
[autorun]Make sure you replace filename with the full path to the file. For example, a file called program.exe in a folder called “programs” on the thumb drive would be /programs/program.exe
ShellExecute=filename
Label=description
UseAutoPlay=1
Replace description with a short description of the program, for example, My Jukebox or Mozilla Firefox.
Save the file as autorun.inf, making sure you select “All Programs” from the save menu, not “Text document”!
Help! I’m lost!
Ever lost a USB drive? Even if you haven’t, there’s a pretty good chance you’ll lose a few during your life. And with all the important information on it, it could be a disaster to have it fall into someone’s hands.
A good idea is to encrypt all the information on the drive, but you would still want it back, wouldn’t you? Luckily, the folks at the Daily Cup Of Tech have come up with a solution.
Save a program called “Help! I’m Lost!” on the drive, that a finder just can’t get around opening. The program opens a message box with your personal “I’m lost” message. It’s a good idea to offer the finder a bigger reward than the drive itself, so that they’ll be interested in contacting you.
Hide the drive inside something
Why not surprise your friends and co-workers by sticking something that looks like a broken USB cable into the computer’s USB drive?You’ll be sure to get a few shocked faces when you start to play a movie from it.
The guys from Technobuzz.net show us how to do it. (You are gonna need an unbelievably small thumb drive for this…)
Secure your PCJust like with an RFID badge, you can use a USB drive to lock and unlock a PC. Insert it to begin working and pull it out when you’ve finished, locking the computer. There are several programs for this . Rohos, a commercial program and WiKID, a semi-open source one.
If you really need to secure your computer with a USB drive, I suggest you give Rohos a try, as WiKID is rather complicated.
Portable jukeboxDon’t just carry the music with you, also carry the player! You can install audio programs such as WinAmp and CoolPlayer+ on your thumb drive. Just unextract the ZIP folders to the USB drive.
If you want the jukebox to start up automatically when you connect the memory stick to the computer, use the autorun feature shown tip 3 and point it to the exe of your audio player.
Encrypt your dataIf you carry any sensitive indormation on your USB memory stick, a good idea is to encrypt it. Hardware-level encryption will help, but it will cost extra. You can get a free program to encrypt your data just as securely. For this I recommend TrueCrypt, but most others will also do.
You will need admin access on the computer you want to use your encrypted thumb drive on, so this it’s usability a little.
Run a standalone OS for dedicated tasksThe easiest OS to boot from a USB drive is probably Linux. There are many small capacity Linux versions out there that will fit on your drive. The best 3 are Puppy Linux, Damn Small Linux and Webconverger.
Make sure you select a version that needs less space than your USB drive’s maximum, so you have room for files and software.
And this leads us nicely to the final tip…
Run Windows itself from a USB thumb driveModifying Windows to work on a USB drive is quite difficult, but luckily there are some tools that will do it for us. Note that you will need a separate Windows license for this, as Microsoft only lets you use one for each single computer, and a USB drive is treated by them like a computer…
What you’ll need:
- A licensed copy of Windows
- A USB device, min. 1GB (We recommend a USB hard disk, as a flash memory stick will become unusable after 100000 writing processes. Assuming that only 2 processes are used per second, the drive will last only 60 days with 8 hours of work each day… A hard disk doesn’t have this problem.)
Custom Orkut Toolbar Generator From Orkutpus.net
Orkutplus.net makes an awesome application for Orkut users. They call it the Orkut Toolbar Generator.
Custom Orkut Toolbar Generator is their second orkut app which will allow any orkut user to set their favorite links in the orkut navigation bar or orkut linkbar or orkut toolbar..or whatever you want to call that linky bar in a couple of clicks.
The app is amazing as it will not only serve orkut geeks and orkut hackers with immense customization but also the masses on orkut who are not familiar with complicated orkut customizations.
Custom Orkut Toolbar Generator is their second orkut app which will allow any orkut user to set their favorite links in the orkut navigation bar or orkut linkbar or orkut toolbar..or whatever you want to call that linky bar in a couple of clicks.
The app is amazing as it will not only serve orkut geeks and orkut hackers with immense customization but also the masses on orkut who are not familiar with complicated orkut customizations.
Custom Orkut Toolbar Generator - The App
- Install the App
- Just folow the instruction on the application page.
- If you need any help, refer to this guide
- Please do rate this application and leave your comments in the application info page
Tuesday, June 9, 2009
Errors on Hack It Easy
Sorry for errors........
We are soon going to move on some private host and abandon blogger for ever...
We have been facing problems with blogger for many days now, and when my blog's background turned black , i was just too much, so very soon we will move on to some hosting company...
And also we will move the blog to wordpress.org
During this porcess the domain hackiteasy.com may be closed for some days.. But you can still access the blogspot blog from hackiteasy.blogspot.com
We are soon going to move on some private host and abandon blogger for ever...
We have been facing problems with blogger for many days now, and when my blog's background turned black , i was just too much, so very soon we will move on to some hosting company...
And also we will move the blog to wordpress.org
During this porcess the domain hackiteasy.com may be closed for some days.. But you can still access the blogspot blog from hackiteasy.blogspot.com
How to Unlock a mobile phone
There are many websites which simply list codes for your phone without charge. Many people believe the practice of locking phones is anti-competitive and thus there's a lot of information to help consumers fight back against this.
Who is this for?
The free method works best for older Nokia phones and some other older handsets. Yet its worth everyone quickly trying to see if you can find a code for your phone, though after trying that, go to Method 2.
Step 1. Get your facts right.
To find a working unlocking code for your handset, you need three pieces of info; its brand/model number, the network, and the IMEI code. Here's how to find them.
There are a raft of websites dedicated to phone unlocking. Which you should head for first depends on your handset brand.
Step 3. Use it!
The sites above will generate a code based on the info you provided, so double check it's right first. The code will look something like this. #pw+2746763089+1# (Nokia phones), or *2767*637# (Other makes).
To unlock, take the Sim card out of the phone and put in a different network's Sim. Now you can put the code in... How to enter the code.
Rather than using the regular text keys you need to use the * key if you want to produce letters as opposed to numbers. To produce a ‘p', press the * button three times within two seconds; to produce a ‘w', press the * button four times within two seconds; to produce a ‘+', press the * button twice within two seconds.
You should now get a message saying ‘phone restriction off' (or words to that effect). You only have five attempts to enter the correct code so be extremely careful. If none are successful, the phone will still work, but you'll have to go to the network or a retailer to get it unlocked instead.
Also you may use this site as well for nokia unlocking-
http://unlock.nokiafree.org/
Who is this for?
The free method works best for older Nokia phones and some other older handsets. Yet its worth everyone quickly trying to see if you can find a code for your phone, though after trying that, go to Method 2.
Step 1. Get your facts right.
To find a working unlocking code for your handset, you need three pieces of info; its brand/model number, the network, and the IMEI code. Here's how to find them.
- Brand and model number. Chances are you already know this, as it's likely to be written on the handset, it's box, and any documentation you got when you bought it, so I'll move on.
- The network. This is simply the network the phone's currently locked to, not the one you want to get on.
- The IMEI. The International Mobile Equipment Identity is a unique number given to all mobile phones, which gets marked as invalid when phones are reported lost or stolen. To find your IMEI, simply type *#06# into your handset, and note down the number that appears.
There are a raft of websites dedicated to phone unlocking. Which you should head for first depends on your handset brand.
- Nokia phones. The easiest way to unlock older Nokias is via codes found on sites like Trycktill, Unlock Nokiafree or Unlockitfree.
- Other brands. Both Trycktill and Unlockitfree do list a few codes for other brands, though no where near as many as for Nokias. Some handsets by other manufacturers are not unlockable by freely-available codes, but it's still worth running a quick Google search to see if yours is one of the few that is (though do check it's a legitimate source). Also you'll find a full discussion of other phone in the Unlocking non-Nokia phones discussion in the Mobile Phone Forum.
If it transpires that you can't unlock your phone with a free code go to Method 2.
Step 3. Use it!
The sites above will generate a code based on the info you provided, so double check it's right first. The code will look something like this. #pw+2746763089+1# (Nokia phones), or *2767*637# (Other makes).
To unlock, take the Sim card out of the phone and put in a different network's Sim. Now you can put the code in... How to enter the code.
Rather than using the regular text keys you need to use the * key if you want to produce letters as opposed to numbers. To produce a ‘p', press the * button three times within two seconds; to produce a ‘w', press the * button four times within two seconds; to produce a ‘+', press the * button twice within two seconds.
You should now get a message saying ‘phone restriction off' (or words to that effect). You only have five attempts to enter the correct code so be extremely careful. If none are successful, the phone will still work, but you'll have to go to the network or a retailer to get it unlocked instead.
Also you may use this site as well for nokia unlocking-
http://unlock.nokiafree.org/
Hacking someone by knowing his IP (many tricks packed in one)
Hi guys. First of all, I want to say that I didn't make this tutorial myself, I found it on Hacking Library This is really a long tutorial. Initially i didn't wanted to post this, but on a lot of requests i finally decided to post this. If it's not authorized to post this kinda tutorials here, or if it has already been post, then I'm sorry to say useless things : )
the tutorial looks like that :
Introduction
1. Welcome to the basic NETBIOS document created by aCId_rAIn. This document will teach you some simple things about NETBIOS, what it does, how to use it, how to hack with it, and some other simple DOS commands that will be useful to you in the future. THIS DOCUMENT IS FOR NEWBIEZ ONLY!!! If you are NOT a newbie then don't go any farther reading this because if you're smart enough you probably already know it all. So don't waste yourt time reading something that you already know.
1. Hardware and Firmware
1a. The BIOS
The BIOS, short for Basic Input/Output Services, is the control program of the PC. It is responsible for starting up your computer, transferring control of the system to your operating system, and for handling other low-level functions, such as disk access.
NOTE that the BIOS is not a software program, insofar as it is not purged from memory when you turn off the computer. It's
firmware, which is basically software on a chip.
A convenient little feature that most BIOS manufacturers include is a startup password. This prevents access to the system until you enter the correct password.
If you can get access to the system after the password has been entered, then there are numerous software-based BIOS password extractors available from your local H/P/A/V site.
NETBIOS/NBTSTAT - What does it do?
2. NETBIOS, also known as NBTSTAT is a program run on the Windows system and is used for identifying a remote network or computer for file sharing enabled. We can expoit systems using this method. It may be old but on home pc's sometimes it still works great. You can use it on your friend at home or something. I don't care what you do, but remember, that you are reading this document because you want to learn. So I am going to teach you. Ok. So, you ask, "How do i get to NBTSTAT?" Well, there are two ways, but one's faster.
Method 1:Start>Programs>MSDOS PROMPT>Type NBTSTAT
Method 2:Start>Run>Type Command>Type NBTSTAT
(Note: Please, help your poor soul if that isn't like feeding you with a baby spoon.)
Ok! Now since you're in the DOS command under NBTSTAT, you're probably wondering what all that crap is that's on your screen. These are the commands you may use. I'm only going to give you what you need to know since you are striving to be l33t. Your screen should look like the following:
NBTSTAT [ [-a RemoteName] [-A IP address] [-c] [-n]
[-r] [-R] [-RR] [-s] [-S] [interval] ]
-a (adapter status) Lists the remote machine's name table given its name
-A (Adapter status) Lists the remote machine's name table given its IP address.
-c (cache) Lists NBT's cache of remote [machine] names and their IP addresses
-n (names) Lists local NetBIOS names.
-r (resolved) Lists names resolved by broadcast and via WINS
-R (Reload) Purges and reloads the remote cache name table
-S (Sessions) Lists sessions table with the destination IP addresses
-s (sessions) Lists sessions table converting destination IP addresses to computer NETBIOS names.
-RR (ReleaseRefresh) Sends Name Release packets to WINS and then, starts Refresh
RemoteName Remote host machine name.
IP address Dotted decimal representation of the IP address.
interval Redisplays selected statistics, pausing interval seconds between each display. Press Ctrl+C to stop redisplaying
statistics.
C:\WINDOWS\DESKTOP>
The only two commands that are going to be used and here they are:
-a (adapter status) Lists the remote machine's name table given its name
-A (Adapter status) Lists the remote machine's name table given its IP address.
Host Names
3. Now, the -a means that you will type in the HOST NAME of the person's computer that you are trying to access. Just in case you don't have any idea what a Host Name looks like here's an example.
123-fgh-ppp.internet.com
there are many variations of these adresses. For each different address you see there is a new ISP assigned to that computer. look at the difference.
abc-123.internet.com
ghj-789.newnet.com
these are differnet host names as you can see, and, by identifying the last couple words you will be able to tell that these are two computers on two different ISPs. Now, here are two host names on the same ISP but a different located server.
123-fgh-ppp.internet.com
567-cde-ppp.internet.com
IP Addresses
4. You can resolce these host names if you want to the IP address (Internet Protocol)
IP addresses range in different numbers. An IP looks like this:
201.123.101.123
Most times you can tell if a computer is running on a cable connection because of the IP address's numbers. On faster connections, usually the first two numbers are low. here's a cable connection IP.
24.18.18.10
on dialup connections IP's are higher, like this:
208.148.255.255
notice the 208 is higher than the 24 which is the cable connection.
REMEMBER THOUGH, NOT ALL IP ADDRESSES WILL BE LIKE THIS.
Some companies make IP addresses like this to fool the hacker into believing it's a dialup, as a hacker would expect something big, like a T3 or an OC-18. Anyway This gives you an idea on IP addresses which you will be using on the nbtstat command.
Getting The IP Through DC (Direct Connection)
5. First. You're going to need to find his IP or host name. Either will work. If you are on mIRC You can get it by typing /whois (nick) ...where (nick) is the persons nickname without parenthesis. you will either get a host name or an IP. copy it down. If you do not get it or you are not using mIRC then you must direct connect to their computer or you may use a sniffer to figure out his IP or host name. It's actually better to do it without the sniffer because most sniffers do not work now-a-days. So you want to establish a direct connection to their computer. OK, what is a direct connection? When you are:
Sending a file to their computer you are directly connected.
AOL INSTANT MESSENGER allows a Direct Connection to the user if accepted.
ICQ when sending a file or a chat request acception allows a direct connection.
Any time you are sending a file. You are directly connected. (Assuming you know the user is not using a proxy server.)
Voice Chatting on Yahoo establishes a direct connection.
If you have none of these programs, either i suggest you get one, get a sniffer, or read this next statement.
If you have any way of sending thema link to your site that enables site traffic statistics, and you can log in, send a link to your site, then check the stats and get the IP of the last visitor. It's a simple and easy method i use. It even fool some smarter hackers, because it catches them off guard. Anyway, once you are directly
connected use either of the two methods i showed you earlier and get into DOS. Type NETSTAT -n. NETSTAT is a program that's name is short for NET STATISTICS. It will show you all computers connected to yours. (This is also helpful if you think you are being hacked by a trojan horse and is on a port that you know such as Sub Seven: 27374.) Your screen should look like this showing the connections to your computer:
------------------------------------------------------------------------------------------------
C:\WINDOWS\DESKTOP>netstat -n
Active Connections
Proto Local Address Foreign Address State
TCP 172.255.255.82:1027 205.188.68.46:13784 ESTABLISHED
TCP 172.255.255.82:1036 205.188.44.3:5190 ESTABLISHED
TCP 172.255.255.82:1621 24.131.30.75:66 CLOSE_WAIT
TCP 172.255.255.82:1413 205.188.8.7:26778 ESTABLISHED
TCP 172.255.255.82:1483 64.4.13.209:1863 ESTABLISHED
C:\WINDOWS\DESKTOP>
------------------------------------------------------------------------------------------------
The first line indicated the Protocol (language) that is being used by the two computers.
TCP (Transfer Control Protocol) is being used in this and is most widely used.
Local address shows your IP address, or the IP address of the system you on.
Foreign address shows the address of the computer connected to yours.
State tells you what kind of connection is being made ESTABLISHED - means it will stay connected to you as long as you are on the program or as long as the computer is allowing or is needing the other computers connection to it. CLOSE_WAIT means the connection closes at times and waits until it is needed or you resume connection to be made again. One that isn't on the list is TIME_WAIT which means it is timed. Most Ads that run on AOL are using TIME_WAIT states.
the way you know the person is directly connected to your computer is because of this:
------------------------------------------------------------------------------------------------
C:\WINDOWS\DESKTOP>netstat -n
Active Connections
Proto Local Address Foreign Address State
TCP 172.255.255.82:1027 205.188.68.46:13784 ESTABLISHED
TCP 172.255.255.82:1036 205.188.44.3:5190 ESTABLISHED
TCP 172.255.255.82:1621 24.131.30.75:66 CLOSE_WAIT
TCP 172.255.255.82:1413 abc-123-ppp.webnet.com ESTABLISHED
TCP 172.255.255.82:1483 64.4.13.209:1863 ESTABLISHED
C:\WINDOWS\DESKTOP>
------------------------------------------------------------------------------------------------
Notice the host name is included in the fourth line instead of the IP address on all. This is almost ALWAYS, the other computer that is connected to you. So here, now, you have the host name:
abc-123-ppp.webnet.com
If the host name is not listed and the IP is then it NO PROBLEM because either one works exactly the same. I am using abc-123-ppp.webnet.com host name as an example. Ok so now you have the IP and/or host name of the remote system you want to connect to. Time to hack!
Open up your DOS command. Open up NBTSTAT by typing NBTSTAT. Ok, there's the crap again. Well, now time to try out what you have leanred from this document by testing it on the IP and/or host name of the remote system. Here's the only thing you'll need to know.
IMPORTANT, READ NOW!!!
-a (adapter status) Lists the remote machine's name table given its name
-A (Adapter status) Lists the remote machine's name table given its IP address.
Remember this?
Time to use it.
-a will be the host name
-A will be the IP
How do i know this?
Read the Statements following the -a -A commands. It tells you there what each command takes.
So have you found which one you have to use?
GOOD!
Time to start.
Using it to your advantage
6. Type this if you have the host name only.
NBTSTAT -a (In here put in hostname without parenthesis)
Type this is you have the IP address only.
NBTSTAT -A (In here put in IP address without parenthesis)
Now, hit enter and wait. Now Either one of two things came up
1. Host not found
2. Something that looks like this:
--------------------------------------------
NetBIOS Local Name Table
Name Type Status
---------------------------------------------
GMVPS01 <00> UNIQUE Registered
WORKGROUP <00> GROUP Registered
GMVPS01 <03> UNIQUE Registered
GMVPS01 <20> UNIQUE Registered
WORKGROUP <1e> GROUP Registered
---------------------------------------------
If the computer responded "Host not found" Then either one of two things are the case:
1. You screwed up the host name.
2. The host is not hackable.
If number one is the case you're in great luck. If two, This system isn't hackable using the NBTSTAT command. So try another system.
If you got the table as above to come up, look at it carefully as i describe to you each part and its purpose.
Name - states the share name of that certain part of the computer
<00>, <03>, <20>, <1e> - Are the Hexidecimal codes giving you the services available on that share name.
Type - Is self-explanatory. It's either turned on, or activated by you, or always on.
Status - Simply states that the share name is working and is activated.
Look above and look for the following line:
GMVPS01 <20> UNIQUE Registered
See it?
GOOD! Now this is important so listen up. The Hexidecimanl code of <20> means that file sharing is enabled on the share name that is on that line with the hex number. So that means GMVPS01 has file sharing enabled. So now you want to hack this. Here's How to do it. (This is the hard part)
LMHOST File
7. There is a file in all Windows systems called LMHOST.sam. We need to simply add the IP into the LMHOST file because LMHOST basically acts as a network, automatically logging you on to it. So go to Start, Find, FIles or Folders. Type in LMHOST and hit enter. when it comes up open it using a text program such as wordpad, but make sure you do not leave the checkmark to "always open files with this extension" on that. Simply go through the LMHOST file until you see the part:
# This file is compatible with Microsoft LAN Manager 2.x TCP/IP lmhosts
# files and offers the following extensions:
#
# #PRE
# #DOM:
# #INCLUDE
# #BEGIN_ALTERNATE
# #END_ALTERNATE
# \0xnn (non-printing character support)
#
# Following any entry in the file with the characters "#PRE" will cause
# the entry to be preloaded into the name cache. By default, entries are
# not preloaded, but are parsed only after dynamic name resolution fails.
#
# Following an entry with the "#DOM:" tag will associate the
# entry with the domain specified by . This affects how the
# browser and logon services behave in TCP/IP environments. To preload
# the host name associated with #DOM entry, it is necessary to also add a
# #PRE to the line. The is always preloaded although it will not
# be shown when the name cache is viewed.
#
# Specifying "#INCLUDE " will force the RFC NetBIOS (NBT)
# software to seek the specified and parse it as if it were
# local. is generally a UNC-based name, allowing a
# centralized lmhosts file to be maintained on a server.
# It is ALWAYS necessary to provide a mapping for the IP address of the
# server prior to the #INCLUDE. This mapping must use the #PRE directive.
# In addtion the share "public" in the example below must be in the
# LanManServer list of "NullSessionShares" in order for client machines to
# be able to read the lmhosts file successfully. This key is under
# \machine\system\currentcontrolset\services\lanmans erver\parameters\nullsessionshares
# in the registry. Simply add "public" to the list found there.
#
# The #BEGIN_ and #END_ALTERNATE keywords allow multiple #INCLUDE
# statements to be grouped together. Any single successful include
# will cause the group to succeed.
#
# Finally, non-printing characters can be embedded in mappings by
# first surrounding the NetBIOS name in quotations, then using the
# \0xnn notation to specify a hex value for a non-printing character.
Read this over and over until you understand the way you want your connection to be set. Here's an example of how to add an IP the way I would do it:
#PRE #DOM:255.102.255.102 #INCLUDE
Pre will preload the connection as soon as you log on to the net. DOM is the domain or IP address of the host you are connecting to. INCLUDE will automaticall set you to that file path. In this case as soon as I log on to the net I will get access to 255.102.255.102 on the C:/ drive. The only problem with this is that by doin the NETSTAT command while you are connected, and get the IP of your machine. That's why it only works on simple PC machines. Because people in these days are computer illiterate and have no idea of what these commands can do. They have no idea what NETSTAT is, so you can use that to your advantage. Most PC systems are kind of hard to hack using this method now because they are more secure and can tell when another system is trying to gain access. Also, besure that you (somehow) know whether they are running a firewall or not because it will block the connection to their computer. Most home systems aren't running a firewall, and to make it better, they don't know how operate the firewall, therefore, leaving the hole in the system. To help you out some, it would be a great idea to pick up on some programming languages to show you how the computer reads information and learn some things on TCP/IP (Transfer Control Protocol/Internet Protocol) If you want to find out whether they are running a firewall, simply hop on a Proxy and do a port scan on their IP. You will notice if they are running a firewall because most ports are closed. Either way, you still have a better chance of hacking a home system than hacking Microsoft.
Gaining Access
7. Once you have added this to you LMHOST file. You are basically done. All you need to do is go to:
Start
Find
Computer
Once you get there you simply type the IP address or the host name of the system. When it comes up, simply double click it, and boom! There's a GUI for you so you don't have to use DOS anymore. You can use DOS to do it, but it's more simple and fun this way, so that's the only way i put it. When you open the system you can edit, delete, rename, do anything to any file you wish. I would also delete the command file in C:/ because they may use it if they think someone is in their computer. Or simply delete the shortcut to it. Then here's when the programming comes in handy. Instead of using the NBTSTAT method all the time, you can then program you own trojan on your OWN port number and upload it to the system. Then you will have easier access and you will also have a better GUI, with more features. DO NOT allow more than one connection to the system unless they are on a faster connection. If you are downloading something from their computer and they don't know it and their connection is being slow, they may check their NETSTAT to see what is connected, which will show your IP and make them suspicious. Thats it. All there is to it. Now go out and scan a network or something and find a computer with port 21 or something open.
the tutorial looks like that :
Introduction
1. Welcome to the basic NETBIOS document created by aCId_rAIn. This document will teach you some simple things about NETBIOS, what it does, how to use it, how to hack with it, and some other simple DOS commands that will be useful to you in the future. THIS DOCUMENT IS FOR NEWBIEZ ONLY!!! If you are NOT a newbie then don't go any farther reading this because if you're smart enough you probably already know it all. So don't waste yourt time reading something that you already know.
1. Hardware and Firmware
1a. The BIOS
The BIOS, short for Basic Input/Output Services, is the control program of the PC. It is responsible for starting up your computer, transferring control of the system to your operating system, and for handling other low-level functions, such as disk access.
NOTE that the BIOS is not a software program, insofar as it is not purged from memory when you turn off the computer. It's
firmware, which is basically software on a chip.
A convenient little feature that most BIOS manufacturers include is a startup password. This prevents access to the system until you enter the correct password.
If you can get access to the system after the password has been entered, then there are numerous software-based BIOS password extractors available from your local H/P/A/V site.
NETBIOS/NBTSTAT - What does it do?
2. NETBIOS, also known as NBTSTAT is a program run on the Windows system and is used for identifying a remote network or computer for file sharing enabled. We can expoit systems using this method. It may be old but on home pc's sometimes it still works great. You can use it on your friend at home or something. I don't care what you do, but remember, that you are reading this document because you want to learn. So I am going to teach you. Ok. So, you ask, "How do i get to NBTSTAT?" Well, there are two ways, but one's faster.
Method 1:Start>Programs>MSDOS PROMPT>Type NBTSTAT
Method 2:Start>Run>Type Command>Type NBTSTAT
(Note: Please, help your poor soul if that isn't like feeding you with a baby spoon.)
Ok! Now since you're in the DOS command under NBTSTAT, you're probably wondering what all that crap is that's on your screen. These are the commands you may use. I'm only going to give you what you need to know since you are striving to be l33t. Your screen should look like the following:
NBTSTAT [ [-a RemoteName] [-A IP address] [-c] [-n]
[-r] [-R] [-RR] [-s] [-S] [interval] ]
-a (adapter status) Lists the remote machine's name table given its name
-A (Adapter status) Lists the remote machine's name table given its IP address.
-c (cache) Lists NBT's cache of remote [machine] names and their IP addresses
-n (names) Lists local NetBIOS names.
-r (resolved) Lists names resolved by broadcast and via WINS
-R (Reload) Purges and reloads the remote cache name table
-S (Sessions) Lists sessions table with the destination IP addresses
-s (sessions) Lists sessions table converting destination IP addresses to computer NETBIOS names.
-RR (ReleaseRefresh) Sends Name Release packets to WINS and then, starts Refresh
RemoteName Remote host machine name.
IP address Dotted decimal representation of the IP address.
interval Redisplays selected statistics, pausing interval seconds between each display. Press Ctrl+C to stop redisplaying
statistics.
C:\WINDOWS\DESKTOP>
The only two commands that are going to be used and here they are:
-a (adapter status) Lists the remote machine's name table given its name
-A (Adapter status) Lists the remote machine's name table given its IP address.
Host Names
3. Now, the -a means that you will type in the HOST NAME of the person's computer that you are trying to access. Just in case you don't have any idea what a Host Name looks like here's an example.
123-fgh-ppp.internet.com
there are many variations of these adresses. For each different address you see there is a new ISP assigned to that computer. look at the difference.
abc-123.internet.com
ghj-789.newnet.com
these are differnet host names as you can see, and, by identifying the last couple words you will be able to tell that these are two computers on two different ISPs. Now, here are two host names on the same ISP but a different located server.
123-fgh-ppp.internet.com
567-cde-ppp.internet.com
IP Addresses
4. You can resolce these host names if you want to the IP address (Internet Protocol)
IP addresses range in different numbers. An IP looks like this:
201.123.101.123
Most times you can tell if a computer is running on a cable connection because of the IP address's numbers. On faster connections, usually the first two numbers are low. here's a cable connection IP.
24.18.18.10
on dialup connections IP's are higher, like this:
208.148.255.255
notice the 208 is higher than the 24 which is the cable connection.
REMEMBER THOUGH, NOT ALL IP ADDRESSES WILL BE LIKE THIS.
Some companies make IP addresses like this to fool the hacker into believing it's a dialup, as a hacker would expect something big, like a T3 or an OC-18. Anyway This gives you an idea on IP addresses which you will be using on the nbtstat command.
Getting The IP Through DC (Direct Connection)
5. First. You're going to need to find his IP or host name. Either will work. If you are on mIRC You can get it by typing /whois (nick) ...where (nick) is the persons nickname without parenthesis. you will either get a host name or an IP. copy it down. If you do not get it or you are not using mIRC then you must direct connect to their computer or you may use a sniffer to figure out his IP or host name. It's actually better to do it without the sniffer because most sniffers do not work now-a-days. So you want to establish a direct connection to their computer. OK, what is a direct connection? When you are:
Sending a file to their computer you are directly connected.
AOL INSTANT MESSENGER allows a Direct Connection to the user if accepted.
ICQ when sending a file or a chat request acception allows a direct connection.
Any time you are sending a file. You are directly connected. (Assuming you know the user is not using a proxy server.)
Voice Chatting on Yahoo establishes a direct connection.
If you have none of these programs, either i suggest you get one, get a sniffer, or read this next statement.
If you have any way of sending thema link to your site that enables site traffic statistics, and you can log in, send a link to your site, then check the stats and get the IP of the last visitor. It's a simple and easy method i use. It even fool some smarter hackers, because it catches them off guard. Anyway, once you are directly
connected use either of the two methods i showed you earlier and get into DOS. Type NETSTAT -n. NETSTAT is a program that's name is short for NET STATISTICS. It will show you all computers connected to yours. (This is also helpful if you think you are being hacked by a trojan horse and is on a port that you know such as Sub Seven: 27374.) Your screen should look like this showing the connections to your computer:
------------------------------------------------------------------------------------------------
C:\WINDOWS\DESKTOP>netstat -n
Active Connections
Proto Local Address Foreign Address State
TCP 172.255.255.82:1027 205.188.68.46:13784 ESTABLISHED
TCP 172.255.255.82:1036 205.188.44.3:5190 ESTABLISHED
TCP 172.255.255.82:1621 24.131.30.75:66 CLOSE_WAIT
TCP 172.255.255.82:1413 205.188.8.7:26778 ESTABLISHED
TCP 172.255.255.82:1483 64.4.13.209:1863 ESTABLISHED
C:\WINDOWS\DESKTOP>
------------------------------------------------------------------------------------------------
The first line indicated the Protocol (language) that is being used by the two computers.
TCP (Transfer Control Protocol) is being used in this and is most widely used.
Local address shows your IP address, or the IP address of the system you on.
Foreign address shows the address of the computer connected to yours.
State tells you what kind of connection is being made ESTABLISHED - means it will stay connected to you as long as you are on the program or as long as the computer is allowing or is needing the other computers connection to it. CLOSE_WAIT means the connection closes at times and waits until it is needed or you resume connection to be made again. One that isn't on the list is TIME_WAIT which means it is timed. Most Ads that run on AOL are using TIME_WAIT states.
the way you know the person is directly connected to your computer is because of this:
------------------------------------------------------------------------------------------------
C:\WINDOWS\DESKTOP>netstat -n
Active Connections
Proto Local Address Foreign Address State
TCP 172.255.255.82:1027 205.188.68.46:13784 ESTABLISHED
TCP 172.255.255.82:1036 205.188.44.3:5190 ESTABLISHED
TCP 172.255.255.82:1621 24.131.30.75:66 CLOSE_WAIT
TCP 172.255.255.82:1413 abc-123-ppp.webnet.com ESTABLISHED
TCP 172.255.255.82:1483 64.4.13.209:1863 ESTABLISHED
C:\WINDOWS\DESKTOP>
------------------------------------------------------------------------------------------------
Notice the host name is included in the fourth line instead of the IP address on all. This is almost ALWAYS, the other computer that is connected to you. So here, now, you have the host name:
abc-123-ppp.webnet.com
If the host name is not listed and the IP is then it NO PROBLEM because either one works exactly the same. I am using abc-123-ppp.webnet.com host name as an example. Ok so now you have the IP and/or host name of the remote system you want to connect to. Time to hack!
Open up your DOS command. Open up NBTSTAT by typing NBTSTAT. Ok, there's the crap again. Well, now time to try out what you have leanred from this document by testing it on the IP and/or host name of the remote system. Here's the only thing you'll need to know.
IMPORTANT, READ NOW!!!
-a (adapter status) Lists the remote machine's name table given its name
-A (Adapter status) Lists the remote machine's name table given its IP address.
Remember this?
Time to use it.
-a will be the host name
-A will be the IP
How do i know this?
Read the Statements following the -a -A commands. It tells you there what each command takes.
So have you found which one you have to use?
GOOD!
Time to start.
Using it to your advantage
6. Type this if you have the host name only.
NBTSTAT -a (In here put in hostname without parenthesis)
Type this is you have the IP address only.
NBTSTAT -A (In here put in IP address without parenthesis)
Now, hit enter and wait. Now Either one of two things came up
1. Host not found
2. Something that looks like this:
--------------------------------------------
NetBIOS Local Name Table
Name Type Status
---------------------------------------------
GMVPS01 <00> UNIQUE Registered
WORKGROUP <00> GROUP Registered
GMVPS01 <03> UNIQUE Registered
GMVPS01 <20> UNIQUE Registered
WORKGROUP <1e> GROUP Registered
---------------------------------------------
If the computer responded "Host not found" Then either one of two things are the case:
1. You screwed up the host name.
2. The host is not hackable.
If number one is the case you're in great luck. If two, This system isn't hackable using the NBTSTAT command. So try another system.
If you got the table as above to come up, look at it carefully as i describe to you each part and its purpose.
Name - states the share name of that certain part of the computer
<00>, <03>, <20>, <1e> - Are the Hexidecimal codes giving you the services available on that share name.
Type - Is self-explanatory. It's either turned on, or activated by you, or always on.
Status - Simply states that the share name is working and is activated.
Look above and look for the following line:
GMVPS01 <20> UNIQUE Registered
See it?
GOOD! Now this is important so listen up. The Hexidecimanl code of <20> means that file sharing is enabled on the share name that is on that line with the hex number. So that means GMVPS01 has file sharing enabled. So now you want to hack this. Here's How to do it. (This is the hard part)
LMHOST File
7. There is a file in all Windows systems called LMHOST.sam. We need to simply add the IP into the LMHOST file because LMHOST basically acts as a network, automatically logging you on to it. So go to Start, Find, FIles or Folders. Type in LMHOST and hit enter. when it comes up open it using a text program such as wordpad, but make sure you do not leave the checkmark to "always open files with this extension" on that. Simply go through the LMHOST file until you see the part:
# This file is compatible with Microsoft LAN Manager 2.x TCP/IP lmhosts
# files and offers the following extensions:
#
# #PRE
# #DOM:
# #INCLUDE
# #BEGIN_ALTERNATE
# #END_ALTERNATE
# \0xnn (non-printing character support)
#
# Following any entry in the file with the characters "#PRE" will cause
# the entry to be preloaded into the name cache. By default, entries are
# not preloaded, but are parsed only after dynamic name resolution fails.
#
# Following an entry with the "#DOM:" tag will associate the
# entry with the domain specified by . This affects how the
# browser and logon services behave in TCP/IP environments. To preload
# the host name associated with #DOM entry, it is necessary to also add a
# #PRE to the line. The is always preloaded although it will not
# be shown when the name cache is viewed.
#
# Specifying "#INCLUDE " will force the RFC NetBIOS (NBT)
# software to seek the specified and parse it as if it were
# local. is generally a UNC-based name, allowing a
# centralized lmhosts file to be maintained on a server.
# It is ALWAYS necessary to provide a mapping for the IP address of the
# server prior to the #INCLUDE. This mapping must use the #PRE directive.
# In addtion the share "public" in the example below must be in the
# LanManServer list of "NullSessionShares" in order for client machines to
# be able to read the lmhosts file successfully. This key is under
# \machine\system\currentcontrolset\services\lanmans erver\parameters\nullsessionshares
# in the registry. Simply add "public" to the list found there.
#
# The #BEGIN_ and #END_ALTERNATE keywords allow multiple #INCLUDE
# statements to be grouped together. Any single successful include
# will cause the group to succeed.
#
# Finally, non-printing characters can be embedded in mappings by
# first surrounding the NetBIOS name in quotations, then using the
# \0xnn notation to specify a hex value for a non-printing character.
Read this over and over until you understand the way you want your connection to be set. Here's an example of how to add an IP the way I would do it:
#PRE #DOM:255.102.255.102 #INCLUDE
Pre will preload the connection as soon as you log on to the net. DOM is the domain or IP address of the host you are connecting to. INCLUDE will automaticall set you to that file path. In this case as soon as I log on to the net I will get access to 255.102.255.102 on the C:/ drive. The only problem with this is that by doin the NETSTAT command while you are connected, and get the IP of your machine. That's why it only works on simple PC machines. Because people in these days are computer illiterate and have no idea of what these commands can do. They have no idea what NETSTAT is, so you can use that to your advantage. Most PC systems are kind of hard to hack using this method now because they are more secure and can tell when another system is trying to gain access. Also, besure that you (somehow) know whether they are running a firewall or not because it will block the connection to their computer. Most home systems aren't running a firewall, and to make it better, they don't know how operate the firewall, therefore, leaving the hole in the system. To help you out some, it would be a great idea to pick up on some programming languages to show you how the computer reads information and learn some things on TCP/IP (Transfer Control Protocol/Internet Protocol) If you want to find out whether they are running a firewall, simply hop on a Proxy and do a port scan on their IP. You will notice if they are running a firewall because most ports are closed. Either way, you still have a better chance of hacking a home system than hacking Microsoft.
Gaining Access
7. Once you have added this to you LMHOST file. You are basically done. All you need to do is go to:
Start
Find
Computer
Once you get there you simply type the IP address or the host name of the system. When it comes up, simply double click it, and boom! There's a GUI for you so you don't have to use DOS anymore. You can use DOS to do it, but it's more simple and fun this way, so that's the only way i put it. When you open the system you can edit, delete, rename, do anything to any file you wish. I would also delete the command file in C:/ because they may use it if they think someone is in their computer. Or simply delete the shortcut to it. Then here's when the programming comes in handy. Instead of using the NBTSTAT method all the time, you can then program you own trojan on your OWN port number and upload it to the system. Then you will have easier access and you will also have a better GUI, with more features. DO NOT allow more than one connection to the system unless they are on a faster connection. If you are downloading something from their computer and they don't know it and their connection is being slow, they may check their NETSTAT to see what is connected, which will show your IP and make them suspicious. Thats it. All there is to it. Now go out and scan a network or something and find a computer with port 21 or something open.
hacking yahoo ID with IP address hack
This is only for education purpose.So who ever try this is at his risk.
I am not sure that this will work 100 %.But yes will work almost 70 percent of the times.But before that you need to know some few things of yahoo chat protocol
leave a comment here after u see the post lemme know if it does works or not or u havin a problem post here
Following are the features : -
1) When we chat on yahoo every thing goes through the server.Only when we chat thats messages.
2) When we send files yahoo has 2 options
a) Either it uplo— the file and then the other client has to down load it.
b) Either it connects to the client directly and gets the files
3) When we use video or audio:-
a) It either goes thru the server
b) Or it has client to client connection
And when we have client to client connection the opponents IP is revealed.On the 5051 port.So how do we exploit the Chat user when he gets a direct connection. And how do we go about it.Remeber i am here to hack a system with out using a TOOL only by simple net commands and yahoo chat techniques.Thats what makes a difference between a real hacker and new bies.
So lets —-yse
1) Its impossible to get a Attackers IP address when you only chat.
2) There are 50 % chances of getting a IP address when you send files
3) Again 50 % chances of getting IP when you use video or audio.
So why to wait lets exploit those 50 % chances.I will explain only for files here which lies same for Video or audio
1) Go to dos
type ->
netstat -n 3
You will get the following output.Just do not care and be cool
Active Connections
Proto Local Address Foreign Address State
TCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHED
TCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHED
TCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHED
TCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED
Active Connections
Proto Local Address Foreign Address State
TCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHED
TCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHED
TCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHED
TCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED
Just i will explain what the out put is in general.In left hand side is your IP address.And in right hand side is the IP address of the foreign machine.And the port to which is connected.Ok now so what next ->
2) Try sending a file to the Target .
if the files comes from server.Thats the file is uploaded leave itYou will not get the ip.But if a direct connection is established
HMMMM then the first attacker first phase is over
This is the output in your netstat.The 5101 number port is where the Attacker is connected.
Active Connections
Proto Local Address Foreign Address State
TCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHED
TCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHED
TCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHED
TCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED
TCP 194.30.209.15:5101 194.30.209.14:3290 ESTABLISHED
Thats what is highlighted in RED. So what next
3) Hmmm Ok so make a DOS attack now
Go to dos prompt and
Just do
nbtstat -A Attackers IPaddress.Can happen that if system is not protected then you can see the whole network.
C:\>nbtstat -A 194.30.209.14
Local Area Connection:
Node IpAddress: [194.30.209.15] Scope Id: []
NetBIOS Remote Machine Name Table
Name Type Status
———————————————
EDP12 <00> UNIQUE Registered
SHIV <00> GROUP Registered
SHIV <20> UNIQUE Registered
SHIVCOMP1 <1e> GROUP Registered
MAC Address = 00-C0-W0-D5-EF-9A
Ok so you will ask now what next.No you find what you can do with this network than me explaining everything.
So the conclusion is never exchange files , video or audio till you know that the user with whom you are chatting is not going to harm you.
I am not sure that this will work 100 %.But yes will work almost 70 percent of the times.But before that you need to know some few things of yahoo chat protocol
leave a comment here after u see the post lemme know if it does works or not or u havin a problem post here
Following are the features : -
1) When we chat on yahoo every thing goes through the server.Only when we chat thats messages.
2) When we send files yahoo has 2 options
a) Either it uplo— the file and then the other client has to down load it.
b) Either it connects to the client directly and gets the files
3) When we use video or audio:-
a) It either goes thru the server
b) Or it has client to client connection
And when we have client to client connection the opponents IP is revealed.On the 5051 port.So how do we exploit the Chat user when he gets a direct connection. And how do we go about it.Remeber i am here to hack a system with out using a TOOL only by simple net commands and yahoo chat techniques.Thats what makes a difference between a real hacker and new bies.
So lets —-yse
1) Its impossible to get a Attackers IP address when you only chat.
2) There are 50 % chances of getting a IP address when you send files
3) Again 50 % chances of getting IP when you use video or audio.
So why to wait lets exploit those 50 % chances.I will explain only for files here which lies same for Video or audio
1) Go to dos
type ->
netstat -n 3
You will get the following output.Just do not care and be cool
Active Connections
Proto Local Address Foreign Address State
TCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHED
TCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHED
TCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHED
TCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED
Active Connections
Proto Local Address Foreign Address State
TCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHED
TCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHED
TCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHED
TCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED
Just i will explain what the out put is in general.In left hand side is your IP address.And in right hand side is the IP address of the foreign machine.And the port to which is connected.Ok now so what next ->
2) Try sending a file to the Target .
if the files comes from server.Thats the file is uploaded leave itYou will not get the ip.But if a direct connection is established
HMMMM then the first attacker first phase is over
This is the output in your netstat.The 5101 number port is where the Attacker is connected.
Active Connections
Proto Local Address Foreign Address State
TCP 194.30.209.15:1631 194.30.209.20:5900 ESTABLISHED
TCP 194.30.209.15:2736 216.136.224.214:5050 ESTABLISHED
TCP 194.30.209.15:2750 64.4.13.85:1863 ESTABLISHED
TCP 194.30.209.15:2864 64.4.12.200:1863 ESTABLISHED
TCP 194.30.209.15:5101 194.30.209.14:3290 ESTABLISHED
Thats what is highlighted in RED. So what next
3) Hmmm Ok so make a DOS attack now
Go to dos prompt and
Just do
nbtstat -A Attackers IPaddress.Can happen that if system is not protected then you can see the whole network.
C:\>nbtstat -A 194.30.209.14
Local Area Connection:
Node IpAddress: [194.30.209.15] Scope Id: []
NetBIOS Remote Machine Name Table
Name Type Status
———————————————
EDP12 <00> UNIQUE Registered
SHIV <00> GROUP Registered
SHIV <20> UNIQUE Registered
SHIVCOMP1 <1e> GROUP Registered
MAC Address = 00-C0-W0-D5-EF-9A
Ok so you will ask now what next.No you find what you can do with this network than me explaining everything.
So the conclusion is never exchange files , video or audio till you know that the user with whom you are chatting is not going to harm you.
Is you Orkut account hacked or problem signing in
Have you forgotten your password, is your account hacked... Don't worry Hackiteasy comes to the rescue.
First always choose a strong password, see our guide to making a good password.
Firstly, a few things you should NOT do if you don’t want your account to be hacked into:-
Now, some things you should do to keep your account safe:-
* Don’t run any scripts (javascript codes etc) that are forwarded to you on your Orkut account or GMail.
* Don’t ever paste any link or code in your browser’s address bar if you aren’t completely sure about it.
* Don’t choose passwords which are too easy and similar to the username. For example, if your username is xyz@gmail.com, your password shouldn’t contain similar letters or sequences such as “xyz1”. These are easy to guess and hence easier to hack into.
* Don’t save your passwords anywhere on your hard drive or browser’s history in case you’re on a public computer.
* If you are planning to get Windows reinstalled from a professional, make sure you delete all cookies and history because you never know what the computer guy would wanna do.
* Don’t add people you don’t know because you can never be sure which hot looking girl can turn out to be a coke drinking chip munching hacker.
* If you do think you got hacked, DON’T PANIC immediately.
* Use difficult passwords which contain alphanumeric as well as numeric fields and characters such as “_” and “.” if they are permitted. I know you’ve heard it millions of times but it helps, trust me it does.
* Always sign out when you’re done checking e-mails and using your account. Closing your browser when you’re still signed in is the worst thing you can do.
* Another neat trick would be to use a separate Google ID for Orkut so that even if that does get hacked into, you don’t lose much important stuff. You will only need to inform the people that the account has been hacked and hence they shouldn’t open or send any e-mails to the concerned ID. However, if you’re using the same ID that is used for Blogging, other purposes, then you’ll be stuck badly. This is because if some service sends you a notification message and the hacker opens that, it’s probable that he would be able to enter the other account without having to know the username or password for that because the services assume that the person using your e-mail ID is actually you.
* Don’t share e-mail ID’s. Your girlfriend wants to know the password for your e-mail ID and you tell her. The other day, you break up and your girlfriend finds a new guy and they hack your account as revenge. You’re dead dude. If you’re a girl, be even more careful. Guys are crazier, over possessive and revenge prone so don’t give him the password to the account which contains vital information. If though you have shared, make sure you change the password the day you have a break up.
* Read the instructions of the website on which you are making an account. Orkut clearly states that you should NOT paste any scripts in your browser’s address bar. I hadn’t read that and so I pasted one. That’s why I’ve been thinking my account will be hacked for the past couple of days. All the people who clicked on that link had their accounts hacked, well except me. Orkut’s help is here.
* Backups are helpful. You can download your contacts and your Google Reader items from your Google account in different formats and these can be used in the new account.
Now, what to do when you know your account has been hacked? I’ll tell ya. But first step is, DON’T PANIC!
There can be two possibilities if your account gets hacked into. They are:-
* You still have access to the account.
* You don’t have access to the account.
If you still have access to the account, consider yourself lucky and immediately do the following things:-
* Go to your account settings page and change your password. Set it to something difficult and make sure it’s different from the one you had earlier. It should not be guessable incase somebody knows your old password.
* Change your security question and set it to something only you know. For example, don’t use questions like “What’s my pets name?” because anybody who knows you might know your pet’s name too and hence can hack into your account.
* Change your alternate e-mail address to another account.
* Check the “Sent Items” folder. If the hacker is careless enough, you’ll get to know what they’ve been doing to your account from here. Read all the sent e-mails and try to manually reverse the things that have been done. First step would be to e-mail all the people and tell them to not open the previous e-mail incase they haven’t already.
* Log into your account regularly and keep an eye around to make sure it isn’t being compromised still. If it is, it would be logical to give this account up and slowly shift to a new one. But you’ll have to do this in a way the hacker doesn’t notice. For example, make sure the account looks exactly the same as it used to when you’ve shifted. You can always outsmart a foolish hacker and you should know that.
If you don’t have access to your account, there are still chances you’ll get it back without much damage. So firstly, DON’T PANIC!
* When you are trying to log in, click on the “Forgot Password” option. You will be asked the secret question, answer that and the new password will be sent to your alternate e-mail account.
* GMail has the “I cannot access my account” option. In case some clever hacker used Javascript to disable that option, you can reach the password recovery page indirectly. For example, if I try to click that link in my Firefox, it automatically shuts Firefox down. You can go to their main help page by clicking here.
* There are chances that the hacker captured your account, changed your password, security question and alternate e-mail ID. In this case, you would think the account is gone but there are still ways to get it back. This can be done by asking GMail to conduct an inquiry into your account. Instructions and links are in the following points.
* You might remember that when you created your GMail ID, you got a code verifying the creation. If you still have that code saved in your alternate e-mail account somewhere, you can use this link to ask the Google people to conduct an inquiry based on the information you provide to them. In case you don’t have the verification code, you don’t need to worry because that isn’t necessary. If you do have it, it’s good because that will help them make sure you’re the real owner. Enter all the information and tell them all about how you’ve been using the account and which websites are associated with it in the “additional information”. The more information you give them, the more are the chances of you getting your account back safe and sound.
If you’re an advanced user and need to know how exactly your account was hacked, I can tell you as much as I know. There are two basic ways in which your account can be hacked:-
If your account is still hacked, well then you can safely PANIC!!
* Someone managed to get your password. In this case, changing the password will solve your problem.
* Somebody used advanced techniques to hack into your account. This is dangerous because even if you change your password, you are still at risk. This is done by using Javascript. There are chances you got tempted into pasting some javascript code into your browsers address bar and your account got hacked. In this case, immediately open your browser, clear all private data including history, cache and cookies. This way, the browser will forget the code and the hacker *might* not able to hack into your account anymore. However, you can never be sure so it’s better to be secure.
Monday, June 8, 2009
Crack the BIOS password
This is the most simple and most useful hack that you must know. It lets you hack the BIOS and gain entry into any system that stores passwords in the BIOS.
Just Do the following :
1. Open the CPU
2. Now, observe the motherboard.
3. You notice a coin like silver Battery(3V).
----------------------------------------- NOTE --------------------------------------------------------
This battery is 24 x 7 power supply for the BIOS, which is used to run the system clock will the main power is off. It also initiates the booting process when power is switched on.
-----------------------------------------------------------------------------------------------------------
4. Remove the battery from the motherboard.
(It is safe to remove the Battery)
5. Wait 30 seconds and place the battery back on the motherboard.
6. Now, when you start your system you won't be prompted for the BIOS password.
Enjoy !!!------------------------------------ CAUTION -----------------------------------------------
1. Perform on your own risk !2. You have to set the time of your computer when you start again.
---------------------------------------------------------------------------------------------------
Just Do the following :
1. Open the CPU
2. Now, observe the motherboard.
3. You notice a coin like silver Battery(3V).
----------------------------------------- NOTE --------------------------------------------------------
This battery is 24 x 7 power supply for the BIOS, which is used to run the system clock will the main power is off. It also initiates the booting process when power is switched on.
-----------------------------------------------------------------------------------------------------------
4. Remove the battery from the motherboard.
(It is safe to remove the Battery)
5. Wait 30 seconds and place the battery back on the motherboard.
6. Now, when you start your system you won't be prompted for the BIOS password.
Enjoy !!!------------------------------------ CAUTION -----------------------------------------------
1. Perform on your own risk !2. You have to set the time of your computer when you start again.
---------------------------------------------------------------------------------------------------
Programs for fun does no harm just to entertain.
While surfing the net just came across this cool programs, made just for fun. These are completely made for fun and does not harm your computer at all.
I also found a fake virus program - "Haunt.exe" that does not harm your computer and acts like a virus. No danger is using it
Download the file and have fun !
I also found a fake virus program - "Haunt.exe" that does not harm your computer and acts like a virus. No danger is using it
Download the file and have fun !
|
No comments:
Post a Comment