staulkor

December 14, 2008

Just get ettercap. It does it all for you, lol.

December 14, 2008

Hubs take in frames from one port and broadcast it out all other ports other than the one it received the frame from. Hubs suffer from collisions and can be thought of as splitting bandwidth, ie. a 10 port 100mbps hub with all ports being used, each computer would essentially have 10mbps. Hubs are "dumb" and do not use logic. Switches do use logic! When a new client first sends one frame over the wire, the switch reads the header and then forwards it to its destination if known, otherwise it drops the frame. The client must retransmit, but this only happens once for a new client. The switch notes the MAC and the physical port it came in from on that first frame. It stores this information in its CAM table. It now knows where that computer is located, so if the switch gets a frame from another port and it is addressed to said computer, it will only forward the data through that port.

Switches are amazingly simple and rely on basic logic to work...but work they do :D

Now as for packet sniffing, you will need to use some form of software to perform a MITM (man in the middle) attack. Cain&Abel is what I use for simplicity sake. I prefer Ettercap, but its finicky on windows. This will essentially make your brother think you are the gateway, and the gateway think you are your brother. You are now virtually in the middle of his cable reading all of the data that goes between. Once you have that set up, you can use Wireshark to read the raw data.

September 26, 2008

I am having issues flashing it. I am got into redboot and formatted the fs, but when trying to flash the root fs, telnet times out.

September 26, 2008

I got my new fon(s) today and it had 0.7.2R3. Its now running openwrt and works great. You have to unplug it from the network, hold the reset button for exactly 15-20 seconds and then let go. It will load up the firmware that is kept on the rom chip. Mine happened to be 0.7.1R1. You can take it from there ;)

September 26, 2008

You probably had libpcap installed Darren. That is what those DLLs are for ;)

I got my fon and fon+ from fedex this morning and I just got this working on my fon. I am going to try it for my fon+

September 26, 2008

I wanna know how long it lasts :)

September 22, 2008

So I got my web based rainbow crack thing up and running again. I made a long time ago when I was helping out with the rainbow table generation.

I got this new fangled 45nm 2.66ghz xeon quad core :lol: and rcrack is only using one core! Since I am not 1337 enough to modify the code, who thinks they can do it? I don't have anything to offer you, but I can gladly give you virtual beer...plus you get awesome brownie points.

November 14, 2007

Duelus, my GTi will still eat up your Hodna. :-P

April 12, 2007

Whats up hak5. I'm in the process of setting up a new board. It is called DevDaemon and is a place for software and hardware developers. I thought that Hak5 would be the place to tell people about it since we all love the same topics. I hope to have a good community to help people learn how to code or do hardware mods, hacks, etc.

Hit it up at http://www.devdaemon.com and tell me what you think of it.

It is pretty naked right now, so fill it up! :D

January 17, 2007

I do this all the time at my school. To bypass any of the school crap, just open up putty, make a dynamic tunnel on any port (I use 8080) and get a nifty little program called SocksCap

Open up sockscap, tell it where your SOCKS5 proxy is, which would be 127.0.0.1:8080. connect to your SSH server, and then run WoW FROM SocksCap. Make sure you do that or it will not work.

Once you do that, have fun farming gold.

September 7, 2006

pspv.exe is blowing up on me. Im getting an "Application Error" on 0xc0000142...

August 29, 2006

How can we have an autograph when Ds hand is broken! :shock:

May 13, 2006

Well, its a bit more then 30 seconds for a reason. When I started making ringtones for phones, I would make a 3-5 second loop. The problem was that it didnt repeat the song. Some phones, it works fine as a loop. Others, it doesnt loop. So you get a 5 second ring, and nothing else. Anyways, a phone rings for only 30 seconds max.

May 13, 2006

I got bored today and wanted to play around with Adobe Audition 2. I then remembered I had downloaded the Hak5 Intro theme song from a link thrown around in the IRC room.

I made 2 versions, a high and a low. If your phone is older, you may want to use the low because it may not play the high.

Here are the specs:

Hak5_low.mp3 : 22050Hz, 32kbps, Mono

Hak5_high.mp3 : 44010Hz, 96kbps, Mono

I have a Tmobile SDAD and I can play the high verison fine.

If it will not play as an mp3, change the EXTENSION to .mid. It sounds crazy, but it usually works.

Just email it to your phone or transfer with a data cable. Have fun!

April 11, 2006

I use CGI Proxy for bypassing my schools filters and firewalls.

www.sys9five.com and click CGI Proxy on the right for a demo. Its not pretty, but it works great.

March 9, 2006

Well I sold my psp to a friend today. So no need for this post anymore :D

March 9, 2006

O yea! I forgot about my 2 lappys :D

Dell Inspiron 4100

Dell Inspiron 6000

*too lazy to get pics now :P

March 9, 2006

Lol for everything :D

Im close enough to getting admin in my school, but 2 years ago, somebody sholdered it and got expelled from school. Im just afaid to have the information if you know what I mean; too much knowledge.

Basically, I found a couple vulnerable 2000 comps that were running SP0 UNPATCHED! It was pathetic. I just made a local admin account and I can just grap the SAM file whenever I choose to and bring it home and crack it. (We do use AD for usernames, but there is a local admin account on every computer called 'sysop'; works on the domain too!)

And yes, my network is "secure". You need admin to install anything (ecept firefox; which is now on half the comps thanks to me :D). Just bring in a laptop, like I do, and do it all from there.

Also, I scanned the network to find the main switches and router. I did find them, and the hilarious thing is that they are defaulted for administration! admin:admin gets you in ssh, telnet, and the web interface. I am basically the most knowledgable person in the school, even more so then the school "admin" whic his a nitwit. The only person that knows more then me, is my CCNA teacher, but he knows different things such as networking which I am still learning but know most. (Not trying to brag, just stating the obvious...)

I should tell my CCNA teacher about it because we both know that I could do something if I really wanted to, and I could right now. If I wanted to, I could scan all the packets and get usernames and password for everything I could ever dream of.

Now all this from a "secure" network is pretty pathetic, but they are getting better. They have begun to block certain websites; myspace, daveproxy, youtube, google images, etc. But we just use ninjaproxy. When that gets banned, we will find one of the umteenbillion of them out there :D

A couple years ago when that kid got the admin password, they freaked out and redid the entire network in our school and the technicians could have done a better job with their head up there asses. They wired everything incorrectly and used HUBS! HUBS!!! NOT SWITHCES! This waws only about 2 years ago...They are however, replacing our 100mb hubs for 1000 switches; good cisco/smc ones. We have been running thousands of comps on hubs for years and it is REDICULOUS! We have a true 100mb connection to the internet because comcast let us as long as the county paid for the equipment, which they did. Because it is almost all hubs in the wire closets, I get no faster then dial-up speeds most of the time. If you are lucky, you are connected to the main switch (like our CCNA room) and get the full 100mbs about.

Anyways, that is my retarded ass school. They should just hire me to run the whole schools network.