Reinventing the weel
Category Archives: The Basics
Although it is long, it gives some fascinating insistent in to Pen-Testing.
Set up a Backtrack system that is accessible over the internet from the phone in my pocket. What can I say? I like to practice my metasploit syntax while waiting in the doctor’s office. Oh, and I’d also like to do it as cheaply as possible and in some relatively secure fashion.
So many of my friends have been asking lately “I forgot my password on my PC how do I find it” Or “Dude how do I get the password to my boyfriends / girlfriends PC” or my favorite “how did you get admin access on the University system”, well the fact of the matter is that there are many methods of breaking into a computer system.
Like most hacking some are really freaking stupidly simple and others would take me an age to explain. As I have been really busy on some other things this week I’m going to demonstrate the simple method, I mean the really simple method to all you beginner hackers out there.
I will focus on windows for now, I have Linux and Mac tutorials but they can get a little more complicated, also you need access to the pc not just remote access for this method to work.
Ophcrack is a free Windows password cracker based on rainbow tables. It is a very efficient implementation of rainbow tables done by the inventors of the method. It comes with a Graphical User Interface and runs on multiple platforms.
Step one: Go and get ophcrack:
Step three: Ophcrack runs from boot so press the boot order list during post usually F8 or F10, and select the DVD drive to boot from.
Step four: waste some time for a while and let the magic happen, it usually takes between 5 – 15 minutes to find and crack all the local passwords.
And there you go.
Thanks to the administrators at dark hoods we now have our own IRC chat room
Port: 6667 or 6697 for SSL
In this tutorial I hope to get new users on to IRC
What is IRC?
Internet Relay Chat (IRC) is a form of real-time Internet text messaging (chat) or synchronous conferencing. It is mainly designed for group communication in discussion forums, called channels, but also allows one-to-one communication via private message, as well as chat and data transfers via Direct Client-to-Client.
The first thing you will need is a client the client will allow you to join IRC Channels (chat rooms) kind of like a web browser.
Here are A few,
Konversation ( Linux)
X-chat ( Linux/ Windows) more help for Xchat
and many more, go have a look around the net for a while there is no rush. Now you need to know the address, for this example we will join irc.grayhoods.org using ChatZilla.
(commands can be different in client and servers please see the appropriate documentation)
The command is usually /attach(address goes hear ) (port number) or with /SERVER in most IRC clients so go a head and type it in.
As it is a default port we don’t need to specify the port, if you do however then it would look like this.
/attach irc.grayhoods.org 6667 or /SERVER irc.grayhoods.org 6667
6667 is the default port in most IRC servers.
In some IRC client you specify the address in a dialogue box in that case the address is irc.grayhoods.org and the port would be 6667
Now you have joined the server its now time to register you nick name.
To create or change a nickname just type.
No quotes and remember no spaces either.
OK on the Gray Hoods server we have NickServ to protect nick names so once you have a nick name that is not already registered type this command.
/msg NickServ register “Password” “email@example.com”
No quotes and put your password and email in there OK!
To re-identify yourself on return visits just type.
/msg NickServ IDENTIFY password
OK now we have registered the crazy_nickname lets join a channel.
Type /list for a list off all the channels when you find one you like type /join #chan_name, the main Hack o Blog channel is #HackoBlog so go ahead and type
OK and that’s it, Important notes don’t annoy people, harass people, steal nicknames, spam, or be annoying at all you will get slapped or banned. AND DON’T FEED THE BEARS!
I might add a Mibit widget at some point.
So you have a Virus / Malware / Spy-bot / RAT
To get rid of all of them download all of these
- Install and reboot.
- Press f8 and boot in to safe mode.
- Run them all.
- Turn off the router for about 10 minutes ( do this wile in safe mode).
- Update Windows.
- Create a new non-privileged user from the control panel in windows, you will use this for day to day use.
- Change all your passwords make a strong password by using this.
Steps to build a strong password
The strongest passwords look like a random string of characters to attackers. But random strings of characters are hard to remember.
Make a random string of characters based on a sentence that is memorable to you but is difficult for others to guess.
- Think of a sentence that you will remember
Example: “My son Aiden is three years old.”
- Turn your sentence into a password
Use the first letter of each word of your memorable sentence to create a string, in this case: “msaityo”.
- Add complexity to your password or pass phrase,Mix uppercase and lowercase letters and numbers. Introduce intentional misspellings.
For example, in the sentence above, you might substitute the number 3 for the word “three”, so a password might be “MsAi3yo”.
- Substitute some special characters
Use symbols that look like letters, combine words, or replace letters with numbers to make the password complex.
Using these strategies, you might end up with the password “M$8ni3y0.”
- Test your new password with Password Checker
Password Checker evaluates your password’s strength as you type.
- Keep your password a secret
Treat your passwords with as much care as the information that they protect.
This is a made simple post for the non IT people I know it’s just a reference so I can tell them what to do. It’s not for all you pro hackers out there.
Also I don’t know where I found the pass word tips if the original writer could contact me I will give you credit.
We all hate it but you know what they say “spam happens”. so here is the scenario you have got a spam filter, it’s all set up and you think you have done a good job, but wait how do you test it, sign up to some shady site? No that’s a bad idea you don’t know what could happen.
Log in to your email (it’s best to use another email)
Paste this in to the body of the email
Then email it to your self
Your spam filter should pick it up as spam and block it / send it to a spam folder.
Here is how it works spam filters give an email a anti-spam score, the higher the spam score the more likely its spam, this code has an anti-spam score of 1000, which would be sufficient to trigger a warning.