*

Account

Welcome, Guest. Please login or register.
Did you miss your activation email?
November 14, 2024, 03:07:17 pm

Login with username, password and session length

Resources

Recent posts

[Yesterday at 09:05:54 pm]

[November 01, 2024, 12:46:37 pm]

[October 05, 2024, 07:29:20 am]

[September 05, 2024, 01:54:13 pm]

[July 16, 2024, 11:30:34 pm]

[June 22, 2024, 06:49:40 am]

[March 08, 2024, 12:13:38 am]

[March 08, 2024, 12:12:54 am]

[December 30, 2023, 08:00:58 pm]

[February 04, 2023, 11:46:41 am]
Pages: [1]   Go Down
  Print  
Author Topic: Hacking info  (Read 3793 times)
0 Members and 1 Guest are viewing this topic.
Poppi Offline
EIR Veteran
Posts: 1080


« on: October 10, 2011, 01:41:09 am »

Im in a security class in college, and we are doing projects. Mine is on packet sniffing with wire shark.

Basically im in love with the stuff.

I was wondering if someone can point me to a safe legit hackers page.

Im trying to do a whole presentation on using multiple hacking software but i cant find a legit site Sad

Im interested in using a brute force password hacking program as well. My database management professor sent us an open invite to hack his account.
Any tips for a website and programs to use for brute force?
« Last Edit: October 10, 2011, 02:12:34 am by Poppi » Logged
CommieKiller Offline
EIR Veteran
Posts: 144


« Reply #1 on: October 10, 2011, 02:06:26 am »

try omgmod.org
Logged
spinn72 Offline
EIR Veteran
Posts: 1802



« Reply #2 on: October 10, 2011, 02:26:23 am »

try omgmod.org

CommieKiller = winning
Logged
DarkSoldierX Offline
EIR Veteran
Posts: 3015



« Reply #3 on: October 10, 2011, 05:20:01 am »

Legit safe hackers page?

I lol'd. Well there are probably some, but you can't always tell whether is secretly download shit or not can you?

I don't think any of us know any programs, all the commercial types I assume should have been available to your class.

One thing you can do to look for test subjects is ask friends if they have any websites.
Logged

two words
atgs and fireflies
Looks who's butthurt
*waiting* 4 DarkSoldierNoobiX pops up to prove how much shit the T17 is penetrating KTs back and Jagd front and how much better the ac/puma is penetrating m10 rear  Cool Cool Cool
StrangePants Offline
EIR Regular
Posts: 25


« Reply #4 on: October 10, 2011, 05:34:45 am »

Try bank of America's website they will give you free money once your in.
Logged
Poppi Offline
EIR Veteran
Posts: 1080


« Reply #5 on: October 10, 2011, 11:22:33 am »

no there was one legit forum i was told. But couldnt get through in class b/c it was blocked by the school.
forgot.

shoot packet sniffing software is easy and very legit to find. Password software not so much
« Last Edit: October 10, 2011, 11:34:57 am by Poppi » Logged
EIRRMod Offline
Administrator / Lead Developer
*
Posts: 11009



« Reply #6 on: October 10, 2011, 04:13:52 pm »

Any tips for a website and programs to use for brute force?
Dont use brute force.

Try a keyword/brute force hybrid otherwise you wait for years.
It splices together keywords and numbers, trying for a lucky strike.
Its especially more effective the more info you know on your lecturer (last name, children, street address, pets names, favourite colour etc, etc) as you add them to the search, you reduce the number of attempts needed to break the password by a large margin (that is assuming he doesnt use a completely random string of alpha-numerals, then youre pretty much fucked).

The other way to hack his account would be subversion - in otherwords, finding an exploit or getting some sort of trojan onto his personal equipment.  This is usually the route most hackers take, as brute force is exactly that - highly detectable, and easily stoppable with a delay between password entries.

If hes using XP, or even better Vista on his machine, and he ISNT 100% up to date with his service packs, smile with glee as you are in - search for 'Win XP/Vista buffer overrun issue' or memory overrun errors.  Another exploit is with a window service that I cant put my damn finger on - but its a messaging service that allows a bit of leeway.

This is all high-end hacker stuff mind you, and if youre 'just-learning' I wouldnt expect you to pull it off with just a google search - but you can at least get some info on it - as Im not gonna share my *actual* knowledge with you =)  You get your respect from finding this stuff out solo my friend.

Delve, Disassemble and Destroy my friend *wink*
Logged

Quote from: brn4meplz
Shit I'm pretty sure you could offer the guy a cup of coffee and he'd try to kill you with the mug if you forgot sugar.
Quote from: tank130
That's like offering Beer to fuck the fat chick. It will work for a while, but it's not gonna last. Not only that, but there is zero motivation for the Fat chick to loose weight.
Quote from: tank130
Why don't you collect up your love beads and potpourri and find something constructive to do.
Killer344 Offline
The Inquisitor
*
Posts: 6904



« Reply #7 on: October 10, 2011, 04:54:45 pm »

Brute forcing takes years on regular CPUs.... but if you use for example several VGAs on parallel it gets reduced from years to seconds, a friend of mine made a tutorial about how to make the software work on linux, but it's on spanish and I honestly cba to translate all that lol.



With 4x 5850s it takes him a couple of minutes to break 10 digit MD5 hashes.
Logged

If I get shot and it's a gay medic fixing me up, he's not gonna be fondling my balls while he does it. You can't patch a chest wound and suck a cock at the same time.
EIRRMod Offline
Administrator / Lead Developer
*
Posts: 11009



« Reply #8 on: October 10, 2011, 07:55:53 pm »

Brute forcing takes years on regular CPUs.... but if you use for example several VGAs on parallel it gets reduced from years to seconds, a friend of mine made a tutorial about how to make the software work on linux, but it's on spanish and I honestly cba to translate all that lol.



With 4x 5850s it takes him a couple of minutes to break 10 digit MD5 hashes.
This, of course, is assuming you have access to the MD5 hash (not unusual).

However, if this isnt the case, which I would assume with any Private/Public key relationship, brute force would only work if you could execute the password checks as fast as your processor can check/waits for a response.  Which wouldnt happen.
Logged
smurfORnot Offline
EIR Veteran
Posts: 4715



« Reply #9 on: October 10, 2011, 11:05:20 pm »

time to turn eirr forum into 'Hacking for dummies' one :p
Logged
Poppi Offline
EIR Veteran
Posts: 1080


« Reply #10 on: October 10, 2011, 11:49:09 pm »

Dont use brute force.

Try a keyword/brute force hybrid otherwise you wait for years.
It splices together keywords and numbers, trying for a lucky strike.
Its especially more effective the more info you know on your lecturer (last name, children, street address, pets names, favourite colour etc, etc) as you add them to the search, you reduce the number of attempts needed to break the password by a large margin (that is assuming he doesnt use a completely random string of alpha-numerals, then youre pretty much fucked).

The other way to hack his account would be subversion - in otherwords, finding an exploit or getting some sort of trojan onto his personal equipment.  This is usually the route most hackers take, as brute force is exactly that - highly detectable, and easily stoppable with a delay between password entries.

If hes using XP, or even better Vista on his machine, and he ISNT 100% up to date with his service packs, smile with glee as you are in - search for 'Win XP/Vista buffer overrun issue' or memory overrun errors.  Another exploit is with a window service that I cant put my damn finger on - but its a messaging service that allows a bit of leeway.

This is all high-end hacker stuff mind you, and if youre 'just-learning' I wouldnt expect you to pull it off with just a google search - but you can at least get some info on it - as Im not gonna share my *actual* knowledge with you =)  You get your respect from finding this stuff out solo my friend.

Delve, Disassemble and Destroy my friend *wink*

Well i dont want to destroy at all. Im just up for the challenge of learning. His password is only 6 digits, all lower case. So possibilities arent too high.

Could you point me to a legit clean way to download a keyword/brute hybrid? I dont want to end up d/ling some trojan myself.
Logged
Sachaztan Offline
EIR Veteran
Posts: 2667



« Reply #11 on: October 11, 2011, 05:52:32 am »

If you can get physical access to his computer you should install a keylogger.

When I was in boarding school i set one up on a computer. It wasnt the admins computer tho so I sabotaget it to lure the admin there to type her password. Sadly I quit before I could see my scheme come to fruitition, but I'm certain it would have worked.

You might have to flash the motherboard tho to be able to install a keylogger.
Logged

Demon posession is real and it's not funny, it's the creepiest thing you will ever experience.

I would also like to add I watch fox news everyday all day and will continue to watch it while being proud of that fact. I'm sure you enjoy your communist news network just as much.
Phil Offline
ARRRRRRRRRRRRRRRRR
*
Posts: 2886

Phil's fkin batman!
Phil also owns the moon.

« Reply #12 on: October 11, 2011, 12:38:57 pm »

no there was one legit forum i was told. But couldnt get through in class b/c it was blocked by the school.
forgot.

shoot packet sniffing software is easy and very legit to find. Password software not so much


Actually, it's pretty easy too:
http://en.wikipedia.org/wiki/John_the_Ripper

These days you want to use software written to take advantage of graphics processors though, just like killer says. You won't find many of those, mostly just experiments or quick hacks that people show off for fun. However, for a 6 character password even John would be enough, if it supports the hashing method used.

What kind of account are you guys hacking?
« Last Edit: October 11, 2011, 12:41:20 pm by Phil » Logged
smurfORnot Offline
EIR Veteran
Posts: 4715



« Reply #13 on: October 11, 2011, 12:48:20 pm »

install program that tracks what user writes to control what your girl is doing in her free time Tongue
Logged
EIRRMod Offline
Administrator / Lead Developer
*
Posts: 11009



« Reply #14 on: October 11, 2011, 01:43:56 pm »

try omgmod.org
Been there, done that.

/jokes
Logged
Poppi Offline
EIR Veteran
Posts: 1080


« Reply #15 on: October 11, 2011, 07:57:40 pm »

If you can get physical access to his computer you should install a keylogger.

When I was in boarding school i set one up on a computer. It wasnt the admins computer tho so I sabotaget it to lure the admin there to type her password. Sadly I quit before I could see my scheme come to fruitition, but I'm certain it would have worked.

You might have to flash the motherboard tho to be able to install a keylogger.

well he logs into a school computer to teach the class on the board, so most likely its a virtual system. Everything is deleted on log off. I have doubts about a keylogger.

going to try jacktherpipper.
Logged
Pages: [1]   Go Up
  Print  
 
Jump to:  

TinyPortal v1.0 beta 4 © Bloc
Powered by MySQL Powered by PHP Powered by SMF 1.1.9 | SMF © 2006-2009, Simple Machines LLC
Valid XHTML 1.0! Valid CSS!
Page created in 0.09 seconds with 36 queries.