Page 3 of 10

PostPosted: Sat Jan 13, 2007 8:32 am
by v
YOU are close, my lad.
An open 139 port is the Achilles' toe of all computers.

PostPosted: Sat Jan 13, 2007 12:19 pm
by Cool_Fire
YOU are close, my lad.
An open 139 port is the Achilles' toe of all computers.
Only on windows based systems plzkthx.

PostPosted: Sat Jan 13, 2007 4:18 pm
by visari
Hello again
I have scanned the ip 192.168.10.9 with gfi lan guard and the scaner said me that is a high security vulnerability on the pc "A connection could be opened using account Administrator without password

How can i connect to this compiuter?I try to use remote desktop connection but it doesnt working.How can i login to this compiuter in other ways?

Thank You

PostPosted: Sat Jan 13, 2007 5:54 pm
by Cool_Fire
How can i connect to this compiuter?
Do a portscan, that should give you a pretty good idea of what services are running on the PC.

Some you might expect to find are:
21 (=ftp)
23 (=telnet)
80 (=http) this is of no use to you tho
139 (=NetBIOS)

PostPosted: Sat Jan 13, 2007 6:02 pm
by visari
The port 139 is open.I want to install real vnc to this compiuter.How can i do?

Thank You

PostPosted: Sat Jan 13, 2007 6:09 pm
by Cool_Fire
With just 139 open, that's gonne be tough.
You should read a quick netbios guide tho (I think we have one in our tutorials)
There's a good deal of things you can do as an Administrator there already.
I recommend you start with that, and maybe you can place the VNC installer in a directory where it will be automatically executed the next time the machine is booted.
(depending on the windows version, autorun.bat might be a sensible choice if you want to have something ran.

(Read up on what autorun.bat does, if it's not an XP machine that is. XP doesn't use that file anymore.)

PostPosted: Sun Jan 14, 2007 9:22 am
by v
Eh...some more stuff for you to read, visari:
137-139
How to Break into Windows NT
And clickety, click.

Goodluck. ;-)

PostPosted: Mon Jan 15, 2007 12:53 pm
by nub001
I have a question but it won't let me start a new thread, so I'm posting here:
I read a couple of tutorials on this forum about NetBIOS hacking, but no matter what I try I get this every time:

C:\WINDOWS>nbtstat -a <TARGET IP>

Local Area Connection:
Node IpAddress: [MY IP] Scope Id: []

Host not found.

------------------------------------------------------
It only works properly when I try it on my own IP, but not on any other. I have tried at least 20 different IPs and the same thing happens every time. I have noticed that when I do a scan it says that port139 is "filtered". Could that be the cause? I have also tried googling the problem to no avail. Thank you in advance.

PostPosted: Mon Jan 15, 2007 5:00 pm
by nub001
Hallo is anyone here?

PostPosted: Mon Jan 15, 2007 5:40 pm
by Cool_Fire
Hallo is anyone here?
Obviously not.
Not now, not ever.

PostPosted: Mon Jan 15, 2007 6:04 pm
by nub001
I am looking for help. I thought this would be the place to ask for it ... I guess I was wrong.

PostPosted: Mon Jan 15, 2007 6:09 pm
by Cool_Fire
Depends on what you wanted help with.

"Is anyone here" Is hardly a request for help tho.

PostPosted: Mon Jan 15, 2007 6:42 pm
by nub001
I have a question but it won't let me start a new thread, so I'm posting here:
I read a couple of tutorials on this forum about NetBIOS hacking, but no matter what I try I get this every time:

C:\WINDOWS>nbtstat -a <TARGET IP>

Local Area Connection:
Node IpAddress: [MY IP] Scope Id: []

Host not found.

------------------------------------------------------
It only works properly when I try it on my own IP, but not on any other. I have tried at least 20 different IPs and the same thing happens every time. I have noticed that when I do a scan it says that port139 is "filtered". Could that be the cause? I have also tried googling the problem to no avail. Thank you in advance.

PostPosted: Mon Jan 15, 2007 6:50 pm
by Cool_Fire
For whatever reason the IP can't be routed back to it source. It's an internal network issue, as far as I can tell.

PostPosted: Mon Jan 15, 2007 7:02 pm
by nub001
Does that mean it's something with my computer or the target computer?

PostPosted: Mon Jan 15, 2007 7:08 pm
by Cool_Fire
It means it might be either network the target computer is on, or the network your computer is on.

PostPosted: Wed Jan 17, 2007 1:21 pm
by Krystal
Hmm are there any tuts to show u how to hack a forum and change some usernames? (Mind u I only plan it on another forum I am in as an April Fool's joke not here :P).

PostPosted: Wed Jan 17, 2007 1:27 pm
by Aiden
Hmm are there any tuts to show u how to hack a forum and change some usernames? (Mind u I only plan it on another forum I am in as an April Fool's joke not here :P).
If you plan on doing something like this, you will need much more than a tutorial. There are so many possibilities, a tut would be too big to read. I recommend finding out what type of forums they have (IPB, phpBB, etc.) and looking for exploits on that type of forum.

If that doesn't work, there are plenty of other options. Find out what version of Apache they're running, and look for exploits. Or you could do a little social engineering to get an admin password maybe. Anything is possible, use your imagination.

One last thing, however, changing usernames may be funny at first, but it gets kind of annoying when someone has to sort them out again. That board will most likely lose a lot of members due to frustration. I recommend instead to change everyone's user titles, then restrict them from changing them back. That's more fun, and people can still log in to their accounts.

PostPosted: Fri Jan 19, 2007 3:16 pm
by ramtin
Lol T.T dam that sucks

PostPosted: Fri Jan 19, 2007 3:46 pm
by v
ramtin, stop posting like A Complete And Utter Retard ™ kthnxbi

And read these (MANDATORY):
http://www.catb.org/~esr/faqs/smart-questions.html
http://www.catb.org/~esr/faqs/hacker-howto.html