Infiltrator

He is indeed and can't agree more with that.

Yes you are correct, but if you know the local administrator account details for that particular machine you are trying to attack, you could pretty much own the machine, using the method I mentioned. What do you think?

Its really up to you or what intentions you have. If you really are good at programing, you can design a virus to do anything for you. For instance, you can design a virus to exploit vulnerabilities in a system and make them install themselves as a keylogger and record all the PC activity or as backdoor program to later connect to it remotely. You could design the virus to render the system useless or encrypt files and then ask the owner for ransom.

For the second part of the challenge, I am getting this error "Sorry, the page (or document) you have requested is not available."

that's what happens to popular applications, they become preyed by hackers.

Try performing a Null Share Attack. http://technofriends.in/2008/10/09/underst...ession-attacks/

1. Never click on links you are not 100% sure, where they are from 2. Use Avast 5 (Free Antivirus) and Comodo (Free Firewall) 3. Always update your computer software 4. Use Virtual machines, if you have to visit a website that may be infected. 5. Don't open attachments, that claims to make you computer run faster, if you have to open use VM 6. Install a good spam filter, that way it will keep unsafe content away from your inbox. 7. Use strong passwords, some virus/worms are designed to take advantages of weak passwords. 8. Use untangle firewall to stop unwanted attacks. Since it has feautures like IDPS and a built in antivirus. These features should give you some peace of mind.

That's one tool, can you name a few other.

You will need to have a VPN server set up on the outside of the school of course. Secondly you will probably have to change the current VPN port settings in case it gets blocked by the school firewall, to something like 80 or 443. These ports by default are always unblocked/open by the school's firewall. Then you will need a software like Putty to connect to the VPN server.

You can write a virus off a notepad program. But that's not how a virus is normally written. I can't remember from the top of my head, but there are specifically designed editor software for writing viruses. You might be able to find it, through Google Searches.

How about GoToAssist, Darren uses that tool all the time.

Ophcrack can crack a lot more than just 14 characters if you are using NTLM. But the only problem is the rainbow tables itself. They need to be very large in size to be able to crack passwords in great lengths. You can also generate your own rainbow table with RTgen.exe, but be advised that it will require a lot of CPU power, and storage as well. Best to use ntpassword offline if you want to reset the password or change it.

Sounds very interesting and can't wait to take on this challenge.

Very informative and concise paper. Well done.

Imagine encoding NetCat.exe in a .Mov file. Nice and quick access to a remote computer. Will check you video later when I am at home.

The only issue I have is, that its located in UAS not AU. Apart from that, its a pretty good auction website for buying cheap stuffs.

Try downloading the drivers for this wireless adapter and installing them to see if that works. Secondly, what operating system are you running?

I have a quad core CPU and 8Gigs of ram on my computer at home. I run 2 vms at the same time, with 1 gig allocated to each of them and at least 2 cores allocated as well.

I found something on the above subject, may be worth of reading http://www.surveillance-source.com/Casino_Surveillance.htm

There a lot more things to do, in order to keep a web server secured. Checklist: Securing Your Web Server http://msdn.microsoft.com/en-us/library/ff648198.aspx

If you want a single machine to control the IP addresss assignment and the DNS records, you could configure your linux server to do just that for you. Make sure the DHCP Server option on your modem is turned off, before the DHCP service is running on your linux server. Now for the network connectivity part, you want to have the following: Modem Router (Smoothwall) Switch Linux server (DNS, DHCP) Let me know if that clear things up for you. Regards, Infiltrator

I find running VMs a lot easier to manage than having to dual boot into an operating system or another. Go into VM, it will benefit you a lot more. If you want to have multiple operating systems running at the same time. Edit: For the OS part, you can have Windows Server 2008 for the host operating system, and Ubuntu server running off a VM.

This happened last year at my work, all machines got infected by Conficker which went brute forcing AD accounts and eventually locking them out. Man it was a nightmare, the helpdesk in the company where I work for got flooded with Calls.

You will need at least x2 nics, if you plan in configuring smoothwall. The first NIC for connecting the modem and the second for the lan. I would recommend installing smoothwall on a hardware platform instead of a virtual platform, for performance improvements. But its really up to you, you can also install Smoothwall on a VM, make sure you have 2 network interfaces enabled. Now for the router set up, the interface colors will be green (Red is modem/ISDN) Or you could follow this detailed documentation. http://aarnet.dl.sourceforge.net/project/s...stall-guide.pdf

I don't think you will be experiencing much problems with what you stated above. Apart from a few compatibility issues with BT4, but that can be addressed with a drive update. Apart from that, it shouldn't concern you too much.