Jump to content


Active Members
  • Posts

  • Joined

  • Last visited

Posts posted by USBHacker

  1. I'm not sure of what you are asking for. Do you want a list of all links which are on a page, ie. hak5.org, or a list of pages which links to a specific page?

    I think the second question is what I want. Not just links from a certain domain, but all the URLs (if it is possible to get that!)

    to find al the links on different websites to a site you can use google like :


    if you need to find al the links on a website you will need to search the source to href=site.com

    and to find things like wiki.hak5.org you need to write a script that tries to open different subdomains

    like this python script:

    import urllib2
    subs = ["w","wi","wik","wiki"]
    for sub in subs:
        site ="http://"+sub+".hak5.org"
              print site

    is this what you was asking for ?

    Yes, thanks. I'm pretty sure that's what I'm looking for. Sorry if I sound stupid (I've only ever written python as backend for a website) but how do I use it?

    Please reply, and thanks for what you have already coded,


    EDIT: Is that a default library?

    You could try an nslookup for internal site pages/subdomains, but most likely it will be blocked. Also, try wget and spider the site, but it won't find pages that aren't linked to directly from each page. There are other methods, but you need to start doing the research yourself.

    Thanks, I'll do as much research as I can. But you said that spidering the site won't find pages that aren't directly linked to the domain? Can you please give me a method (name) for what I can use to make this work? (or will the above python code do it for me?)

    Thanks in advance,


  2. Hello!

    Is there a way (with an online utility, command line or a program) to find and make a list of all URLs and links that come from any specific domain?

    I don't know if this is possible, which is why I am asking here!

    Thanks in advance for any suggestions,


  3. Hello!

    Is it possible to enable a disabled admin account if you only have local admin rights?

    And if that isn't possible, will it be possible to remotely 'dump' hashes from the DC (Domain Controller) save it to a file (on a USB or CD or Hard-Drive etc.) so that I will be able to use Rainbow tables to decrypt the passwords?

    Tell me if it's possible!

    Thanks in advance,


  4. Now i'm not trying to be mean, but you really should do a little searching before asking everyone else to do it for you...

    But i guess i'll throw the noobs a bone;


    Download (Win) - Aircrack-ng 9.3.0

    SHA1: 590d3e8fd09a21b93908d84057959cb13e73d378

    MD5: cbcb23c55ed6933a48b8af5665104fb6


    Note that link above is FROM THE AIRCRACK-NG WEBSITE, .exe's are in the /bin/ (shocking i know) and before you start crying because you don't know how to use it read the damn website!

    Hope this helps, have fun testing your AP ;)

    Thanks, sorry but I forgot to post on this forum that I had found it! Since I have just gone away for the last 24 hours!

    But thanks anyway!


  5. The passwords are ones that I sniffed using wireshark.

    All I know is what the little blue firefox favicon feature told me: AES-256 256-bit

    Might as well try decrypting it with rainbow tables... so can you please tell me how I can go about decrypting it?

    And what to look for in wireshark so that I know which is the hash to decrypt?

    Please reply

    Thanks in advance,


  6. Hello

    Used wireshark to sniff some passwords, and have been told that I'll need to decrypt them, and the best way to do that will be by using Rainbow Tables.

    Do I use the same rainbow tables I use for cracking windows passwords? (eg ones that I generated using Winrtgen)

    Please reply, as I've never done this before!

    Thanks in advance,


  7. Might want to be careful doing this on your work computer. Your admin(s), if they are worth anything, will know youve been mucking around which would be grounds for termination and or criminal charges. I would suggest you either ask to have the programs installed or try to make friends with the admins, they may give you local power user rights.

    You might want to ask yourself "is my job worth it". Unfortunately for many people in my company im the anal retentive asshole called the “security and compliance officer”. I spend my days looking for employees like you, building a case and pursuing criminal charges. I’m not trying to sound like a dick, just trying to give you fair warning. It's far better to get the rights in a legit manner.

    Hmm, you bring up an interesting point.

    Though I could always use the 'more than guest' account. Everyone knows the username, and everyone knows the password! And at first glance it looks exactly the same as a normal account. I think you can even access the same shares as the average user! :lol:

    So if I was going to be doing any account escalation, I would use the 'more than guest' account.

    Now, if you please, I am interested in how this could be done (and of course, how to do it!). As by learning to do it myself, I'll have more knowledge of what people use on there computers to escalate permissions, and I'll have more of an idea how to stop it happening. Or even if I can't stop it, it will still be very useful knowledge to have.

    I am training to be a network administrator... but I don't think I will continue in that job... I hope to become a White Hat Hacker with a CCNA.

    So please help me work out how to escalate my permissions.

    Thanks in advance,


  8. you can get aircrack-ng to work in windows

    here is the link on installing aircrack-ng in windows

    DO NOT USE WEP-PSK!!! (some people mix these up)

    On the other hand WPA-PSK (for those who do not know "PSK" stands for "Pre-Shared Key") is very good protection, and as long as you use a good password its practically unbreakable, i'd recommend using a "Perfect Password" from GRC, click here to get a unique password of your own (you may want to save it in an encrypted text file). Now it is possible to bruteforce/dictionary attack against WPA-PSK (as seen in a hak.5 episode so be sure if you don't use a password from GRC yours is good). If your the tin foiled hat type be sure to change the SSID to something unique to prevent use of Rainbow Tables.

    If all the above is done it is almost impossible with today's technology to break the wireless encryption key. For even more protection look into WPA2, however it is not as widely supported as WPA and is much more system intensive.

    More Documentation on WPA-PSK (and other forms of WPA)

    Security Now! - WPA

    Documentation on WEP (and why NOT to use it):

    Security Now! - WEP/Bad Wifi Security


    Couldn't seem to work out the installation and compilation of aircrack-ng. (on Windows)

    I have tried using command prompt (said ./configure wasn't found) I have tried using Cygwin (got heaps further, but then it didn't recognise the move command).

    How should I go about doing this?

    Should I just use linux or mac? (both of which I have installed on my computer as well as XP 64-bit)

    If at all possible, I'd rather not, just because :blink: well I find it easier to navigate around windows... and it is also better to use for various other reasons (for this kind of thing).

    Please recommend to me what I should do next.

    Thanks in advance,


  9. Thanks

    I'll use MYSQL, since all computers on the network have it installed.

    Quite a bit of coding involved I guess :unsure:


    It should all be written in C++, right? (I gathered this from your avatar)

    Sorry, just real confused :rolleyes:

    Thanks for the help so far,

    Please reply!


  10. Hmm, okay, thanks.

    My purpose is to show the insecurites of Symantec. (corporate edition or whatever)

    Now that you know the AV, can you recommend me a keylogger that won't be detected by Symantec?

    Thanks in advance,


  11. hello everyone, now most of all the movies listed above i have seen and love but i have one problem, i had rented a movie a long time ago and loved it but i totally forgot the name of it and i just cant remember it. So here it goes i do remember what it was mainly about so if anyone could help me just reply if u think u know the name of it. i believe the movie was about a kid around 16 or 17 who uncovered a way to crack a local company's satellites. the main purpose of the satellites were to broadcast anything media wise to anywhere in the world. also the company killed one of his friends b/c i believe his friend told the wrong people that he had crack the satellites codes. this was all done in their garage and the 16/17 yr old caught it on tape of the company killing his friend. now i know this is a little messy but its all i can remember and your help would be much appreciated , thanks a bunch

    UPDATE:after searching some of the movies above i believe the movie is Anti-trust any1 confirm...if so renting this baby ASAP

    Yeah, that's right. Anti-Trust

  12. Hello

    I am wondering if there is a good way to remote keylog on and over my network?

    And how to protect my network against it?

    I am using Windows Server 2003 with XP Pro Workstations.

    I am interested in the tools used to remote keylog on a network (locally).

    Please tell me which ones to use, and how to protect the network against them!

    Thanks in advance,


  13. Hello!

    I have an old laptop, with linux (ubuntu) installed, but I can't find the driver that will make my wireless work!

    But I did (finally) find drivers for XP.

    So what I would like to find is wireless hacking utilities for XP.

    As I would like to test the security on my wireless networks (one is WPA one is WEP)

    Please suggest some!

    Thanks in advance,


    PS: On another note, I hear the Open-PSK offers the best wireless encryption, is this true?

  • Create New...