Ethical Hacking Episode 1
Target : UTAR Print Server
Time : 21/03/2008
Mission : Print Free
Status : Fail !
Friday, it was a beautiful Friday! I din attend CSA class as I know if go there also wasting time.
It has 1 test and 1 assessment on that day!
Actually that day quite nervous for me...
Where can I go if not attend the class, seriously that is only 1 place can go, it is internet lab. I always spent my free time there. As a result, my internet lab time from 3000 left only 148 mins.(=.=)
In the lab, I did not use my student Id to log in but I prefer to use administrator to log in on the computer instead of log in to the UTAR domain. Why? It is simple , I expect the administrator of UTAR domain wont check out my identity while I am using administrator not student Id. :)
I decide to print out some documents at that time. Well, it is different if you using administrator privilege, you will not get the UTAR printer shortcut on your desktop. So, I need to find the printer myself...
I start to located the printer server, get it \\koa-server
second, ask my partner Calvin to help to get the ip of \\koa-server
Well, it is easy. Just using the ping in the command prompt.
After that, I try to start the Ip
--->In command Prompt
--->Start \\192.168.71.11
It pop up 1 authentication window which ask you to input username and password ?
Opps, What is this all about ?
I was decided to give up that time, but unfortunately I get the username and password on my second guess! Haha.. how lucky was I :P
It is awesome!
--->nbtstat -a 192.168.71.11
Wow, that is great ! The pc had netbios opened!
As a result, I can easily get its C drive.
--->net use z: \\192.168.71.11\c$
Ok. I had get the pc C drive on my computer. I quickly run through all the folder inside the c drive, that is 2 user which is administrator and koaserver. Then got many printer link inside, I test to open the printer task link, it is the printer that I looking for to print my documents.
While open the printer task list, I had found out something interesting, that is with the administrator privileges I can cancel the printer job which assign by other student! Wow, I am now be the GOD, I show to Calvin, but he said he can do too. Well, as a result, he cant managed to do as me.
Next step, I going to inject 2 type of Trojan to the pc. One is winvnc, another is red dragonfly server. Both Trojan provide remote control while the red dragonfly server provide file transfer.
--->at \\192.168.71.11 09:11 \interactive cmd \c "%systemroot%\ko3.exe"
--->Access Denied.
WTF? OMG...cant access ? Well.. finally I know what had happened.
--->sc \\192.168.71.11 config schedule start =auto
I start the Task Scheduler on that computer.
After that, I thought can be AT...
--->at \\192.168.71.11 09:14 \interactive cmd \c "%systemroot%\ko3.exe"
--->Added a new job with job ID = 1
Then wait for 1 minutes. 1 minutes pass, while I try to connect to the computer with the VNC client. WTF? connection lost ? It can be ..
--->at \\192.168.71.11
--->There are no entries in the list.
Haiz.. really cant get why it will fail.
Anyway, I had access the registry key on the computer to start the both Trojan when the computer start.
I still haven't check it out. Hopefully it will be sucess!
I want print free !!!
lol
By Bluefiz
The Going Be Hacker Punya Hacker
Labels
CCNA
(30)
CCNA 1 Exploration 4.0
(15)
CCNA 2 Exploration4.0
(13)
CCNA answer
(3)
CCNA Exploration 4.0 ESwitching
(7)
CCNA Exploration 4.0 EWAN
(11)
CCNA Final
(7)
Cisco
(5)
Hack Stuff
(6)
Network Fundamentals
(4)
Networking
(8)
Tutorial Answer
(5)
UTAR
(6)
search for ccna answer
Sunday, March 23, 2008
Wednesday, March 19, 2008
Chapter 1 - Winrar EXE
Hi to all :)
Today find something interesting to blog !
For those who are interested , hope that really helpful to them :P
Sometime, when you download some files from the internet
After completed, you go to click the file
But unfortunately, it did not give you any response.
Then we can conclude that : Congratulations, your computer might be infected by virus and Trojan . :)
Mostly those file which can spread Trojan or virus is exe file.
Exe file is kind of executable file , it can use many kind of method to bulid it .
One of the easiest way is using the WINRAR.
Winrar, I assume that most of the people know what it is. =.=
Let's start !
First , you must have winrar install on your computer.
Then, point to the file that you wish to compile into exe file , you can either select only one or more than one.
---->Press the mouse right button and select 'add to archive'.
After that, a window will pop up
---->Then check the 'Create SFX archive' box, you can see the .rar become .exe
---->Select 'SFX options'
---->There are three way to extract the exe file
------->Create in program files ( This one everybody should know)
------->Create in current folder ( This one means it extract the file in where your exe file locate)
------->Absolute path (This option let you can choose where you wan to extract the exe file)
----------->eg: %systemroot%, c:\windows, %userprofile%\Desktop ... etc.
---->Setup Program( Let you choose wat to run when extract the exe file)
------->Run after extraction, eg:trojan.bat
------->Run before extraction eg:girl.jpg
Please note that the file that you wish to run must be include in the archive.
#This is the part how the trojan affect your system! When you click it, nothing happen but what really happen is the trojan had inject something into your system. So, this part are important if you wanna made a trojan. :)
---->You can also delete the file after execution of the exe file.
------->eg: your file include before compile to exe :girl.jpg, start.bat, source.bat. after the extraction you wish to delete source.bat to avoid people see your source code, so this delete file option will help you
---->The temporary mode can ignore, less use
---->Slient mode
------->Hide all: this mean you run the exe file without anything pop-up just like wat i already said on above.
---->This is the coolest part.
---->You can change the icon of your exe file. That mean you can really made the file like rar file then other people will treat it as rar file, then they will go to click. Conclusion: If you really wan made a good torjan to bluff people to click accidentally, find a icon that is normally can find in windows default, such as :winrar icon, zip icon, folder icon, txt icon...etc.
---->This part I also less use, unless you really wan to create a software program if not ignore it.
---->This part not so important , ignore it.:)
So, we had done !
Do you success made your exe executable file from winrar ?
Any question dont hesitate to ask !
I am willing to help :)
Today find something interesting to blog !
For those who are interested , hope that really helpful to them :P
Sometime, when you download some files from the internet
After completed, you go to click the file
But unfortunately, it did not give you any response.
Then we can conclude that : Congratulations, your computer might be infected by virus and Trojan . :)
Mostly those file which can spread Trojan or virus is exe file.
Exe file is kind of executable file , it can use many kind of method to bulid it .
One of the easiest way is using the WINRAR.
Winrar, I assume that most of the people know what it is. =.=
Let's start !
First , you must have winrar install on your computer.
Then, point to the file that you wish to compile into exe file , you can either select only one or more than one.
---->Press the mouse right button and select 'add to archive'.
After that, a window will pop up
---->Then check the 'Create SFX archive' box, you can see the .rar become .exe
---->Select 'SFX options'
---->There are three way to extract the exe file
------->Create in program files ( This one everybody should know)
------->Create in current folder ( This one means it extract the file in where your exe file locate)
------->Absolute path (This option let you can choose where you wan to extract the exe file)
----------->eg: %systemroot%, c:\windows, %userprofile%\Desktop ... etc.
---->Setup Program( Let you choose wat to run when extract the exe file)
------->Run after extraction, eg:trojan.bat
------->Run before extraction eg:girl.jpg
Please note that the file that you wish to run must be include in the archive.
#This is the part how the trojan affect your system! When you click it, nothing happen but what really happen is the trojan had inject something into your system. So, this part are important if you wanna made a trojan. :)
---->You can also delete the file after execution of the exe file.
------->eg: your file include before compile to exe :girl.jpg, start.bat, source.bat. after the extraction you wish to delete source.bat to avoid people see your source code, so this delete file option will help you
---->The temporary mode can ignore, less use
---->Slient mode
------->Hide all: this mean you run the exe file without anything pop-up just like wat i already said on above.
---->This is the coolest part.
---->You can change the icon of your exe file. That mean you can really made the file like rar file then other people will treat it as rar file, then they will go to click. Conclusion: If you really wan made a good torjan to bluff people to click accidentally, find a icon that is normally can find in windows default, such as :winrar icon, zip icon, folder icon, txt icon...etc.
---->This part I also less use, unless you really wan to create a software program if not ignore it.
---->This part not so important , ignore it.:)
So, we had done !
Do you success made your exe executable file from winrar ?
Any question dont hesitate to ask !
I am willing to help :)
Tuesday, March 18, 2008
Hi to all CN Y1 S2 guys and gals - Database Test
Wow..
We meet again here ! :P
haha..
2morrow is our database test !
OMG ...
Me Still watching drama !!!
斗牛,要不要
erm.. not bad punya drama ...
ini...
ini...
...bodoh !
For those dude who are same as me (pretending 2morrow test is damn easy X.X)
Here is something that might be help in your database test :)
Check it out !
It is the Test Paper ..
Test Paper
Test Paper Solution
Dont doubt it , Download it, It will come out 2morrow !!!
Credits
Thx to our toudaizai :)
Email
bncteam4u@gmail.com
haha....
bohong lagi
apa macam ?
That test paper is last sem punya 2007 MAY paper...
:)
We meet again here ! :P
haha..
2morrow is our database test !
OMG ...
Me Still watching drama !!!
斗牛,要不要
erm.. not bad punya drama ...
ini...
ini...
...bodoh !
For those dude who are same as me (pretending 2morrow test is damn easy X.X)
Here is something that might be help in your database test :)
Check it out !
It is the Test Paper ..
Test Paper
Test Paper Solution
Dont doubt it , Download it, It will come out 2morrow !!!
Credits
Thx to our toudaizai :)
bncteam4u@gmail.com
haha....
bohong lagi
apa macam ?
That test paper is last sem punya 2007 MAY paper...
:)
Monday, March 17, 2008
Hi to all CN Y1 S2 guys and gals - PART 2
Haha ...
part 1 seen like really helpful to all the CN ppl
^.^
So here is the part 2 :
Prac 6-10 Solution
No Password at all
Congratulations to those who success break the password on part 1 !
Erm... I think it is too simple
iz it ? :p
Note:
For those who had get the practical solution completely from here, I do hope that everybody should keep the voice down, it is not necessary to let as many people know, no need to talk around in UTAR campus. Hmm... if this thing let's those tutor know, hehe...maybe next time no more this kind of stuff share to all the CN people already liao lo !
apa macam ?
So, just share among the CN people , cause CN IS THE BEST :)
CN is the BEST!!!
CN is the BEST!!!
CN is the BEST!!!
CN is the BEST!!!
CN is the BEST!!!
Credits
Thx to uncle calvin :)
Thx to Ms.Priya :P
HaHa... Above that is not the file
Here is the right link :P
Prac 6-10 Solution
part 1 seen like really helpful to all the CN ppl
^.^
So here is the part 2 :
Prac 6-10 Solution
No Password at all
Congratulations to those who success break the password on part 1 !
Erm... I think it is too simple
iz it ? :p
Note:
For those who had get the practical solution completely from here, I do hope that everybody should keep the voice down, it is not necessary to let as many people know, no need to talk around in UTAR campus. Hmm... if this thing let's those tutor know, hehe...maybe next time no more this kind of stuff share to all the CN people already liao lo !
apa macam ?
So, just share among the CN people , cause CN IS THE BEST :)
CN is the BEST!!!
CN is the BEST!!!
CN is the BEST!!!
CN is the BEST!!!
CN is the BEST!!!
Credits
Thx to uncle calvin :)
Thx to Ms.Priya :P
HaHa... Above that is not the file
Here is the right link :P
Prac 6-10 Solution
Sunday, March 16, 2008
Hi to all CN Y1 S2 guys and gals - PART 1
hi , hi , hi ...
=.=
erm...
actually nothing special la ~
juz wan you all to come to my blog
raise my blog traffic !
oh no ...
pls dont go ...
pls...
pls...
haha...
ok , let's talk serious
Below is the practical solution from prac1 - prac5
yoho ...
is full solution from lecturer
guess where i get it ???
shih...is a secret
Can you keep a secret ? ^.^
I hope those practical solution will help you all in the assginment ^.^
Credits
thx to uncle calvin :)
Prac 1 solution
Prac 2 solution
Prac 3 solution
Prac 4 solution
hehe...this put wrong, should be database lecturer , soli soli .. x.x
Prac 5 solution
erm...
due to some condition
prac 6 - 10 solution will upload before tuesday ^.^
If got any question, dont hesitate to let's us know
or juz leave comment here let us noe ^.^
aligato :)
=.=
erm...
actually nothing special la ~
juz wan you all to come to my blog
raise my blog traffic !
oh no ...
pls dont go ...
pls...
pls...
haha...
ok , let's talk serious
Below is the practical solution from prac1 - prac5
yoho ...
is full solution from lecturer
guess where i get it ???
shih...is a secret
Can you keep a secret ? ^.^
I hope those practical solution will help you all in the assginment ^.^
Credits
thx to uncle calvin :)
Prac 1 solution
Prac 2 solution
Prac 3 solution
Prac 4 solution
hehe...this put wrong, should be database lecturer , soli soli .. x.x
Prac 5 solution
erm...
due to some condition
prac 6 - 10 solution will upload before tuesday ^.^
If got any question, dont hesitate to let's us know
or juz leave comment here let us noe ^.^
aligato :)
Wednesday, March 5, 2008
Start Your messenger and Chat wif your friend
Bat FILE
Start Copy After The Line
----------------------------------------------------------------------------------------------
@echo off
echo This Is A Bat File That Open Messenger And Can Send Msg To Other PC
echo P/S :Other Computer Must Also Open Messenger
echo Send This File To Them If Wan to Chat Wif Them :)
echo Authuor : BNC
echo Product : startM
pause
pause
cls
@echo off
sc config messenger start= auto
net start messenger
cls
echo Now You Can Send Msg !
:main
set /p Ip= -Your Friend IP ^>
set /p Msg= -Your Msg ^>
net send %Ip% %Msg%
echo Press 1 To Contiune Send Msg
set choice2=
set /p choice2=
if '%choice2%'=='1' goto main
if '%choice2%'=='2' goto end
goto
:end
exit
----------------------------------------------------------------------------------------------
Copy End Before The line
Commentary
Copy and Save it to xxxxx.bat (xxxxx is the file name that u like)
Then Just Click it
When u run it
it will start the messenger that include in xp , not the MSN!
after that , u need to enter the ip of your friend pc (ur friend oso muz be started the messenger or else error will occur), then juz type in the message follow wat show in command prompt
Just Press Enter
If you wan to continue sending msg to other , press 1 , if not , press 2 to exit.
Hope Enjoy This Batch File :)
Start Copy After The Line
----------------------------------------------------------------------------------------------
@echo off
echo This Is A Bat File That Open Messenger And Can Send Msg To Other PC
echo P/S :Other Computer Must Also Open Messenger
echo Send This File To Them If Wan to Chat Wif Them :)
echo Authuor : BNC
echo Product : startM
pause
pause
cls
@echo off
sc config messenger start= auto
net start messenger
cls
echo Now You Can Send Msg !
:main
set /p Ip= -Your Friend IP ^>
set /p Msg= -Your Msg ^>
net send %Ip% %Msg%
echo Press 1 To Contiune Send Msg
set choice2=
set /p choice2=
if '%choice2%'=='1' goto main
if '%choice2%'=='2' goto end
goto
:end
exit
----------------------------------------------------------------------------------------------
Copy End Before The line
Commentary
Copy and Save it to xxxxx.bat (xxxxx is the file name that u like)
Then Just Click it
When u run it
it will start the messenger that include in xp , not the MSN!
after that , u need to enter the ip of your friend pc (ur friend oso muz be started the messenger or else error will occur), then juz type in the message follow wat show in command prompt
Just Press Enter
If you wan to continue sending msg to other , press 1 , if not , press 2 to exit.
Hope Enjoy This Batch File :)
Subscribe to:
Posts (Atom)