[New custom payload!!!]

Is this supposed to be detected by almost all Anti-Hack/Virus scanners? It was labeled as "hack tool" for me by norton and others.

If not, how do you get around this?

The actual tools like pwdump can be detected by anti-virus programs as "hacking tools" or something like that. To get around that you have to encrypt the files with special tools, there are tools that trojan/RAT makers use, like packers/scramblers/crypters that basically encrypt the files and leave a stub of code to decrypt and run it.

[From teh new to teh old!]

It turns out that the slots on the side are indeed PCMCIA slots (despite not obviously been so).

Aquiering a 10/100 LAN card that works on FreeBSD should not be too hard. I am, however, more concerned about it's HD at this point. With a whoping 1.2GB HD, I'm concerned that I can even install enough of FreeBSD to make it web browser worthy.

That should be enough. And if not there are many other very small Linux/BSD distributions.

[Dump Sam Problems]

Well do you have the correct permissions to access ELEMENTSADMIN$? Even though you're an admin on the computer that doesn't mean you necessarily have enough rights on the network.

i should im not quite sure i am runnin on a 2wire 1701HG there are 2 computers on this router and i am the second one

Well the physical layout of the network shouldn't really matter. Can you access ELEMENTSADMIN$ when you're logged in on the computer?

[Dump Sam Problems]

Well do you have the correct permissions to access ELEMENTSADMIN$? Even though you're an admin on the computer that doesn't mean you necessarily have enough rights on the network.

[Simple Telnet Bat File Client]

What benefits does using that bat file give you?

[Stupidity]

so no one has ever actually done:

dd if=/dev/urandom of=/dev/hda

?:roll:?

Not that but once I accidentally removed my hard drive and burned it.

[web site]

Flash and regular popups? I got some yellow warning triangle popup, it looks very unprofessional.

[good portable keylogger?]

yes, but there's a tutorial on irongeek about one built into windows that anti-viruses never pick up on

A binder is just for binding two files together, it won't help against anti-virus programs since the files get unpacked when you execute the file with the bound files. You need a crypter/scrambler/packer or whatever you want to call it that actually changes the file.

[Dump Sam Problems]

Well do you have admin rights? Is it a thin client or something similar? Give more information about the system.

[So... I'm gonna be a Dad!]

I'm not expecting anyone without the same interest to be "good for you".

I suppose it's like if you got Vista and I hated Vista I'd be like "good for you but I wouldn't want it for myself" NOT "Vista sucks get a life".

I suppose if there's a model or candidate for NOT having children Meta would be it. Because if he did he'd probably beat them or starve them or give them away for computer hardware or something.

Well just because you don't want children right now it doesn't mean you'll torture them if you get any.

[Switchblade U3 stable version]

Maybe try something else like fgdump:

http://www.foofus.net/fizzgig/fgdump/

[MD5 collision speed increase]

And also as far as I know the best techniques can only find arbitrary collisions. It can't find collisions for a specific hash.

[Alert 'l33t' speak is dangerous!]

Everybody GYPO! Um... wait, don't!

So "leet speak" was created to communicate covertly? Yeah right...

I do remember friends saying that they did it since the police wouldn't be able to understand them. But this was in the good old days of BBSes and hacking the local video store's computer system to give you free rentals. I thought it was as stupid then as it is now since it was so obvious.

Well either way it's not like it's used like that nowadays.

[Alert 'l33t' speak is dangerous!]

So "leet speak" was created to communicate covertly? Yeah right...

C4n s0m30n3 cr4ck th1s code???

[New custom payload!!!]

What is new here ? Same tools like in other payloads , same things are detectable by firewall and antivirus and same things that doesnt work (Firefox) ...nothing new , just one more prepackaged payload.

Well he didn't exactly claim that it's a panacea. Sometimes just the things you learn from doing something like this can make it worth it and why not then share it with others who might also find it useful.

[universal u3 customizer/hacker 404]

majk are those two the same thing? I'm following this set of instructions from the wiki,

For All U3 Drives Tested Successfully

* 1. Download and Extract the Universal U3 Launchpad Hacker[1] to the desktop.

* 2. Execute "UpdaterCore.exe" in the extracted folder.

* 3. Enter information required by the Universal U3 LaunchPad Hacker

* 4. Once installation is complete download any one of the payloads and extract to the root of your flash drive.

* 5. Go find out what your friends been going to on their computers!

and I'm not sure how to proceed with the Universal Customizer link that you provided. Help please? Thanks a lot.

Have you tried the instructions on this page?

http://www.hak5.org/wiki/Universal_U3_LaunchPad_Hacker

[universal u3 customizer/hacker 404]

This one?

http://www.hak5.org/wiki/Universal_U3_LaunchPad_Hacker

This link works for me:

http://www.hak5.org/packages/files/Universal_Customizer.zip

[Hak5 Community Rainbow Tables: NTLM vs. MD5 Final Vote]

NTLM for sure, a few months ago I was skeptical about NTLM, but since Vista seems to use it still without a salt then it seems like we will be able to use these tables for a good amount of time.

That's true. It might be a good investment for the future. And then that whole less-than-14-characters issue isn't relevant.

[Hak5 Community Rainbow Tables: NTLM vs. MD5 Final Vote]

NTLM to what complexity? The tables for 255 characters with all possibilities is a bit of an undertaking.

Can we get some charts and graphs before we decide.

Personally my login password is 21 characters long including both case alpha, numeric, and $pecials

Then again, I'm paranoid.

AFAIK NTLM is much harder to do than LM. If you're able to do lowercase 1-6 a-z you should be happy.

One problem is that most NTLM password are longer than 14 characters. If your password is shorter it's stored as an LM-hash (if you haven't specifically disabled that).

So most likely if you see no LM-hash the password is longer than 14 characters. Which pretty much makes rainbow tables useless... Just look at sites like plain-text.info, their NTLM crack-ratio is very very low.

[My DumbAss School Blocked HAK5!!!!!]

Everyone should just tunnel all their traffic.

Alas! Not possible on school computers as they have them locked down very well, and find the flaws after they are used about three or four times

Sure it's possible. If you can't use SSH or something like that you can at the very least set up a proxy like ninjaproxy.com on your home computer or use one of the of hundreds pages like ninjaproxy.com.

[USB Hack help MSN password crack]

Understood,

I thought maybe there was a way to obtain the password without the Automatic password function turned on.

Thanks

Well if they password isn't saved anywhere you can't really get to it. However you could of course use a keylogger for example to eventually get the password.

[I don't drink and I don't play VideoGames!]

Wow, you must be a great guy. Except for that whole arrogance and I'm better than you attitude...

[Forums getting facelift]

I definitely thinks it looks nicer now.

[USB Hack help MSN password crack]

Perhaps the user hasn't activated automatic login/password saving.

[good portable keylogger?]

I think you'd have to encrypt the files or perhaps buy one from some individual or company. Because the vast majority of malware gets detected by the anti-virus programs after a pretty short time.