 |  |  |  |  |  |  |  |
Hacking
 |
Hey guys, I’m doing a Networks Security course and the lecture said that those that can demonstrate any form of hacking will get bonus marks. I’ve tried searching, but all I really get are explanations of how the hack works… what I’d really like are tools to do the actual hack.
Here’s the setup: There are two machines connected to our local LAN – a Linux system and a Windows system. My PC is also connected to them (since it is in the LAN) and so we really have two Windows systems. I want to be able to hack into the Windows system which doesn’t have any of the service packs installed.
I was thinking of a DoS (Denial of Service) but I really only understand how the ping flood works… and since both PCs are the same bandwidth (100Mbps) a ping attack seems hardly effective. So I was thinking about setting up a small back door (which I think is feasible since people often install cracks, etc and one might be able to sneak in a Trojan). But I have no idea how to do that…
Does anyone have any tools or sites that I could try out? Any suggestions would be kiff! Thanks
Here’s the setup: There are two machines connected to our local LAN – a Linux system and a Windows system. My PC is also connected to them (since it is in the LAN) and so we really have two Windows systems. I want to be able to hack into the Windows system which doesn’t have any of the service packs installed.
I was thinking of a DoS (Denial of Service) but I really only understand how the ping flood works… and since both PCs are the same bandwidth (100Mbps) a ping attack seems hardly effective. So I was thinking about setting up a small back door (which I think is feasible since people often install cracks, etc and one might be able to sneak in a Trojan). But I have no idea how to do that…
Does anyone have any tools or sites that I could try out? Any suggestions would be kiff! Thanks
•
•
Join Date: Jun 2005
Posts: 238
Reputation: 
Solved Threads: 6
Posting Whiz in Training
Here's my suggestion.
If you are really in a course of this sort.
And if you are really going to get bonus points for demonstration.
Maybe you should go old school and leave all the newer stuff and mainly illegal stuff alone.
Why don't you check into social engineering... You would be surprised what a search on this could unveil and besides. A paper on the methods and effectiveness on social engineering with a minor demonstration will definately impress your instructor.
Stop looking for a trojan, worm, or virus. You're not only wasting your time but you're playing with fire.
If you are really in a course of this sort.
And if you are really going to get bonus points for demonstration.
Maybe you should go old school and leave all the newer stuff and mainly illegal stuff alone.
Why don't you check into social engineering... You would be surprised what a search on this could unveil and besides. A paper on the methods and effectiveness on social engineering with a minor demonstration will definately impress your instructor.
Stop looking for a trojan, worm, or virus. You're not only wasting your time but you're playing with fire.
+_-¤ ŦĦễ £ﺄiĢĦŧňĨňĢĦǻщk ¤-_+
South Georgia Computers - Home and Office IT Solutions - Owner/Tech
Need the BEST software for Virus/Spyware Removal? Download - AVG Free -
Computer Problems? Forget the GeeK Squad use something better: DaniWeb
South Georgia Computers - Home and Office IT Solutions - Owner/Tech
Need the BEST software for Virus/Spyware Removal? Download - AVG Free -
Computer Problems? Forget the GeeK Squad use something better: DaniWeb
Sir,
Actually i'm 17 years old and have a hunger to learn PHP, network security and Visual Basic.. Can you please guide me to get tutorials online for these... Sir i'm interested in cryptanalysis and cryptography with hacking and viruses...
Actually i'm 17 years old and have a hunger to learn PHP, network security and Visual Basic.. Can you please guide me to get tutorials online for these... Sir i'm interested in cryptanalysis and cryptography with hacking and viruses...
Insane thing but try this...
2 systems r connected via lan, assume sys1, sys2. fine... get a bootable usb drive or cd and insert it into the sys1 or sys2.
after booting form the cdrom copy the file called "SAM-security accounts manager" to your pendrive.
dump the hash using some tool, if i remember it it was called somedump... bhaa i don't remember.
after that you will get a hash, then use saminsider and crack the hash to get the password. Now u have the pwd for the box.
do someshit in the sys2, install viri or torjan or whatever and start to play around.
2 systems r connected via lan, assume sys1, sys2. fine... get a bootable usb drive or cd and insert it into the sys1 or sys2.
after booting form the cdrom copy the file called "SAM-security accounts manager" to your pendrive.
dump the hash using some tool, if i remember it it was called somedump... bhaa i don't remember.
after that you will get a hash, then use saminsider and crack the hash to get the password. Now u have the pwd for the box.
do someshit in the sys2, install viri or torjan or whatever and start to play around.
ohhh...don't get into trouble...consequences.. is difficult..but if you really want..try searching the web..there's a lot out there..try doing simple things first, check on how to get an administrator account on a computer on the network, then if you have that account you gain access to it remotely... there's one thing for sure.. you can't do it in an easy way..
-------------------------
Strive harder and get tougher...
-------------------------
Strive harder and get tougher...
Last edited by cguan_77; Oct 6th, 2007 at 5:38 am. Reason: ---------------
Well our activities are restricted within the domain of our University and within this domain we are exempted from all consequences for the simple fact that we're doing a prescribed course.
Social Engineering sounds interesting. I've never really been good at that sort of thing though. Thanks for the tip!
We actually did consider the SAM attack; theoretically though. I don't think we're allowed physical access to the machines we're attacking.
An interesting tool is DSniff. You should give that a look Shank. It will allow you to view plain text passwords - the aim of the program is to demonstrate weaknesses in the network... it can also effectively allow you to scramble internet access of a node on the same network. There are also tools designed to aid in network protection by detecting weaknesses: Nessus.
Well thanks for the replies!
Social Engineering sounds interesting. I've never really been good at that sort of thing though. Thanks for the tip!
We actually did consider the SAM attack; theoretically though. I don't think we're allowed physical access to the machines we're attacking.
An interesting tool is DSniff. You should give that a look Shank. It will allow you to view plain text passwords - the aim of the program is to demonstrate weaknesses in the network... it can also effectively allow you to scramble internet access of a node on the same network. There are also tools designed to aid in network protection by detecting weaknesses: Nessus.
Well thanks for the replies!
|
Similar Threads
- Removing Hacking tools (Viruses, Spyware and other Nasties)
- URL Hacking (HTML and CSS)
- Hacking (Geeks' Lounge)
Other Threads in the Network Security Forum
- Previous Thread: Silent calls and spam targets cellphone users
- Next Thread: how to stop access to gmail,orkut if it is accessing by google translation page
| Thread Tools | Search this Thread |
You need to join our community in order to build your list of favorite forums. You can visit the forum index for a listing of all forums.
Related Forum Features
Latest Network Security Posts
- Today's Posts
- Unanswered Threads
adobe advice antivirus apple blackhat blackmail botnet browser business china crack crime cybercrime daniweb data database dataloss dataprotection development email emailretention encryption europe exploit facebook fail firefox forensic fraud gmail google government hack hacker hacking hardware identity identitytheft idtheft information internet iphone kaspersky koobface law linux malware mcafee mckinnon microsoft military mobile music nasa nationalsecurity network networks news obama password passwords paypal pentagon phishing phone php politics privacy realplayer report research satnav scam school search security skype socialnetworking software softwaredevelopment spam sqlinjection survey symantec terrorism terrorist theft trends trojan trojans twitter uk usb virus vulnerability web word worm yahoo zeroday
