Basic Windows Hacking - By: Th3 C0der -------------------------------------------------------- Disclamer: This information is provided as is. I take no responsibility for the information provided in this text or what you do with that information in this text. I do not support illegal activites but think people have the right to know.You can use this information how you please. -------------------------------------------------------- Some people think hacking is extremly hard ,but it is not. This guide will teach you the basics of hacking with no special tools need except programs that come with the basic Windows Box. The first and easiest thing to do is open Dos on top of windows.(To do so go Start, Find, Files or Folders, Type in MS-DOS PROMPT, Click search, Copy to desktop.) -------------------------------------------------------------------------------------------------------------------------- Note: Make sure it runs in a window not the full screen. To do so right click on the icon, then click properties. You should see many tabs at the top, click screen. Then click on the button that says Window. -------------------------------------------------------------------------------------------------------------------------- Use your default browser to connect to the internet. Then in Dos type telnet. It should run in a small window also. Go back to Dos and type Tracert then your target host name, or random numbers if you are lazy and don't care who you break in to.(An example of the second would be 128.50.75.6). This will give you alot of info about the computer, like how many computers are between you and your target!( If you would like to know more read a tutorial on tracert)I just use this to make sure there is no firewall. If you get a message that says Destination Host Unreachable there is a good chance our friend hit one. Now the good stuff. Open the telenet window again. Click Connect, Then remote System. Type the host name or number in the box that says Host name. On the port make sure it says telnet for now and term type to be VT100. Then click connect. Now the part that I Can only give you some tips about. A message should pop up and say: Username: For this type Root. Now the hard part: Password: For this you must take an educated Guess. My advice is learn as much as you can about the Admin. and the Computer he runs. Try his name, Birthday and all his other personal inforamtion. If you are succesful you will have entered his computer. The last Question on your mind is: What do I do next? I reply, that is for you to decide:) The last topics for me to cover are Whois,Ping and Port Scaning. Port scannning is scaning a sever to see what sevices are running on each port. How can this help me you are asking. Certian sevices have flaws that allow Hackers to acess the system some of these services are Ftp, Stmp(Email),http,pop3, and many more. My favorite port scanner is NetDemon(www.netdemon.com).It is not just a port scanner it is everything I mention in this guide and more including a: Text Editor - no frills, no nonsense text editor MDI Interface - multiple documents allows for multiple tools running concurrently Multitasking - non-blocking sockets means you never hang while waiting on a task Context sensitive help - for everything Finger - get information about a user from a system Whois - find information about a server in the internic database Traceroute - trace the route an IP packet takes from your computer to a remote one DNS Lookup - look up records in the domain name system Ping - ping a host to see if it's alive IP Resolve - perform forward and reverse lookup on an address Address Scan - scan a range of IP addresses Identd Server - provide IDENT services for other systems URL Reader - read the raw HTML data for a web page Time Sync - query time from a remote server, or set your clock to it Verify E-mail - contact a mailserver to see if an e-mail address is valid System Info - displays your winsock info as well as IP address and host name ROT13 - encode and decode text using this popular code system Protocols - list protocols known by your winsock Port services - list port services known by your winsock Netstat - get the network status from a remote server Systat - get the system status from a remote server Quote - retrieve quote of the day Port watcher - detect attempted connections to your computer Keepalive - generate internet traffic to keep your ISP from dumping you Terminal - connect to any TCP port Port Scan - scan all ports at an address To use the NetDemon port scanner, run NetDemon, then click on Scan in the bar. A window will pop down in that window (somewhere) there will be Port Scan, Click on it. Type the address then Click Ok. It will tell you all the services on the ports you have selected! If you find Special ports like Pop3,http,smtp,login you can search for tools and exploits that help you gain access. Find the port you want to telnet to and type the host and then the port in dos: Telnet www.Whatever.com 25 - (for the telnet port) Now for Whois. Whois is another command like tracert, But will help you find information about the administrator. To use Whois in dos type: Whois www.happyhacker.com -(any url will do) The computer will reply: Happy Hacker (HAPPYHACKER3-DOM) PO Box 1520 Cedar Crest, NM 87008-1520 US Domain Name: HAPPYHACKER.ORG Administrative Contact, Technical Contact, Zone Contact, Billing Contact: Meinel, Carolyn (CM1773) cmeinel@TECHBROKER.COM M/B Research 4 Fawn Rd. Cedar Crest, NM 87008 (505) 281-9675 (FAX) (505) 281-9675 Record last updated on 10-May-2000. Record expires on 30-Oct-2000. Record created on 29-Oct-1997. Database last updated on 7-Jul-2000 16:34:07 EDT. Domain servers in listed order: DNS1.WURLD.NET 206.61.52.11 DNS2.WURLD.NET 206.61.52.12 If you wanted a password to this computer you could try to social engineer a password from the phone number (505)-281-9675. Or you could use this to search for personal info about the admin. to use as a password. Next and last is ping. Ping is also a command that tells you about the sever. It tells you how long in Milliseconds your commands take to get to the sever. Type this in Dos also: ping www.prodigy.net The sever replys: reply from [207.115.62.176] 147 ms reply from [207.115.62.176] 144 ms reply from [207.115.62.176] 157 ms reply from [207.115.62.176] 157 ms reply from [207.115.62.176] 158 ms This is how long it took for ping to hit the sever. There is also an evil ping command that is basicly a dos attack that crashes the sever, even the most Admins. have fixed it it might still work on some systems. I won't tell you about it here though. To find out how to use Ftp and other services to gain acess, read a tutorial on ftp,pop3,http,stmp,and login. To learn more about Netdemon goto www.netdemon.com/index.html. (C0VERTl adds: You can type 'HELP' on the DOS commandline to list all of the available commands, ex. C:\FTP>HELP You can also type 'HELP ' to find out what a command does. This is a great way to learn the system too.) To get my tutorials and many other peoples tutorials Subscribe to Suscribe-Madhackers@Egroups.com.