trustme

Try searching... http://forums.hak5.org/index.php/topic,8055.0.html 'chainsaw'

I'm sure there's a built in function for it, I have done it in Java, but not C++, sorry. string str1( "Alpha Beta Gamma Delta" ); unsigned int loc = str1.find( "Omega", 0 ); if( loc != string::npos ) cout << "Found Omega at " << loc << endl; else cout << "Didn't find Omega" << endl; That does what you want on the side... just change the "Omega" to the character, and use the character position that is returned to substring(Java) whatever you want out. Read under the "find" command here: http://www-control.eng.cam.ac.uk/~pcr20/ww...ng_details.html

Your connection has got to be almost dead... it should be far faster to download the tables rather than generate them yourself. Ophcrack has its own tables included in the live cdl IIRC, but they're fairly small. My recommendation would be to find a free online cracker (plain-text.info works well) and use that while you download the tables. Don't know how strong the Hak 5 rainbow table torrent is, but that might be a good place to look. Otherwise you can download from shmoo group among other places.

Does this extend to all other threads posted in the future that are of similar content? *Crosses Fingers* You'd get rid of a lot of crap (both people and threads) if you just locked those immediately....

I speak for the trees! (The trees think its lame too by the way)

Merry Christmas Everyone! :-P Make sure you look at the site in firefox... Internet explorer sucks.

See my above comment... mod feel free to remove.

That's a good idea, might want to start a new thread, I would recommend a bat to exe program if you want to use a packer and it requires an exe.

Package not payload. People really need to learn the difference.

If you say so, i would have said it a little nicer though.

You might want to reread the posts, none of them said that a usb could boot on any pc. Did you not read? Its even specifically mentioned in the first post.... There isn't really anything that prevents most Linux distros with a live cd being put on the cd partition, it stretches nicely :-P

Gmail: "Over 5782.718985 megabytes (and counting) of free storage so you'll never need to delete another message." Thats 5.6 gigs if I don't totally suck at math. http://yodel.yahoo.com/2007/03/27/yahoo-ma...ity-and-beyond/ Yahoo has unlimited email storage, let me know when you can find an ftp that offers more that unlimited... Just on the side, you really need to pay more attention to the Internet. Less secure = htacsess - how do you get the files there in the first place? I haven't done things through ftp in a while, but last I checked, to upload a file someone needs to have the login info. Which means you have to leave that info somewhere on the pc. For email, all you need is a 'to' address, you can send through a throwaway account.

I could have sworn someone told me it was that one, "Syncron Eyes". I'll find out today. I'd really hate to end up having to block the port or try to manipulate the data being sent somehow.

Suprise suprise, my school implemented a monitoring program to look at the screen of the current user :-P. I don't want to know how to shut it down (task manager - you can tell we pay for quality stuff at our school), nor do I want to block the port (breaking the rules/stupid) but I do think it would be neat to make a program that can look at the port and pop up a message saying your pc is currently being viewed based on traffic out. I would like to write the program myself (I'm sure I could find something online if I wanted to), but what would it be best to attempt to write it in? Note: I'm assuming a couple of things here: 1) The program won't be sending info unless its being accessed, to send info all the time would be stupid. 2) I can look at the port without disrupting the flow of info, I don't want to break the monitoring program. 3) I can continually watch it without using up more than 5-6 megs, part of which would be the images to notify the user. What language would be best to write it in? I don't know C++, I could do it in Java I think using sockets, but that'd be awkward. Am I looking at learning some VB? EDIT: I meant to post this in Hacks/Mods/Coding, can a mod move it if he feels its appropriate? If you think I'll get more help, especially with the VB here, by all means, leave it here.

Do I need to install a different launchpad for this purpose? Is it possible to get back my old launchpad after testing the switchblade launchpad? Old Launchpad in terms of what? Most of the u3 payloads do not modify the launchpad itself, the software is usually left alone, though you may be missing programs.

In order per question mark: The u3 launchpad is the software that lets you run programs from the u3 start menu. Its important to have if you log onto domain account frequently, sometimes the computer will not create both partitions of the drive and by double clicking the cd shaped U3 launchpad, you can spawn the flash (writable) partition of the drive. All the crappy software. No, probably not. To the best of my knowledge uninstalling launchpad removes the cd partition. You can't :P. And honestly, theres no reason to uninstall it, its only a couple megs out of 2-4 gigs. You can uninstall all of the programs that come with it (through the launchpad menu) and tell it not to load automatically though. If you merely insert the drive and have the launchpad off, no, besides the fact that windows configures drivers for every flash drive you ever plug in. N/A Sandisks are nice, the 4 gig cruzer mini looks really good right now. You could if you wanted to, hypothetically speaking of course, install full apps like Photoshop and Office, assuming of course that you own them and the license permits it. Flash them to the u3 partition and you're all set. I actually just bought a new 4 gig cruzer mini for that purpose, Office 2007 and Photoshop/dreamweaver :-P.

Finally, more details! My original draft of my post was a little worse because I was hoping to incite someone to say, no you're wrong, it exists and x, y, and z are being done with it. I've seen people ask before and no one ever says anything about it or reveals more details.

Just curious what the percentage of u3 to non-u3 users there is.

The chainsaw is a community joke if you will. Do you all realize that the current episode is 3x05? Thats a whole season after 2x04, about a year. If it was going to be released/was real it would have shown up by now. It was a concept, nothing was ever done with it...

But then I'll miss bugs and complaints... And what would I do with all my free time?

Yes, i'd reccomend using Ophcrack with 733mb tables Or use plain-text info, bigger tables

You just had to resurrect the thread? Do you know how many times I've waited for the 11 page monster thread to fall off the page??? :-P

Yeah, plain text info or rainbowtables.

We've (several others as well as myself) have done evil thought 2 already, but we won't release it to the community because then whoever first plugged it in has a guaranteed ticket to jail. Its nice that you were hired to test a network but you can't guarantee that no one will bring it home and spread it around. Basically if you can handle using it correctly you don't need someone to write it for you, you can write it yourself. Evil idea one isn't that evil, we're working on it :D/

The real question is, what do you want to do with it? You can crack the admin password by going to plain-text info and entering the line after administrator. If you ran the password stealer (the other ones) you may have some passwords to look through. What were you trying to achieve by running the payload? (By the way, I know that it is possible to set pwdump/fgdump to run against the domain admin from the admin account, but don't try it. Two reasons, first as beakmyn said it won't return anything because the program needs the current user to be domain admin, second because it'll set off alarm bells in whatever organization you are performing a penetration and securities test on behalf of) If you wish to attempt to get some of the local users passwords the next step is to run a man in the middle attack. To do this you would have to crack the admin password, log on as admin locally (remember that the domain doesn't have an admin account going by that password, in windows you'll have to change the login to local computer by clicking options in the old login mode, google on how to get there). Then you can install a tool like ettercap or cain and abel and set it up to sniff the network.(I know there's other ways but this is the next progression given what he has gotten already.) If you need more help you can email or im or pm me or post here. (If this post looks too much like instructions on hacking your school, mods feel free to delete offending parts and just leave a line saying he's welcome to ask)