sc0rpi0
-
Posts
138 -
Joined
-
Last visited
Posts posted by sc0rpi0
-
-
Hi Guys,
this, no doubt, has been asked before, but i wanted to learn a little programming. my thought was to go for C++.
then some folks, i know, had at least 2 others, PHP and visual basic.
i just wanted to learn enough to maybe do some small programs to automate some jobs.
what do you guys think? would i have to learn everything there is to know or just enough to get by?
thanks.
Although I've heard C# and C++ are very powerful, I've also heard they are fairly difficult to learn.
Just hearsay, but supposedly Perl is much easier and just as powerful.
Sorry I can't be more helpful. I haven't learned one yet :-?
It's one of my "yet-to-be-completed-goals."
Good Luck
-
I would like to think a 3rd party firewall would pick it up (if it doesnt thats one shitty firewall), however even if it does the inventive mind can find ways around that as well.
FTP slurped files? Call me crazy but coping to USB is a little faster the UL'in to a FTP server (and leaving you FTP's info isnt a good idea either be sure is securly deletes itself), although it would allow more of a hit-and-run type of attack. However this should also get picked up by the firewall (if it doesnt thats one shitty firewall), and the firewall is powerless to stop a xfer to USB.
the "net stop "security center" will do just that.
Thanks for the help.
Frankly, I don't care about leaving my ftp information around because it isn't my server. It's an angelfire account.
That isn't dangerous, is it?
Thanks again.
-
Ok, so id like to know what executables are detectable as viruses. pwdump is... I plan to fix that right now. PM me on irc if you have a better idea. nick == Brainkill
=====================
pwdump and its dependencies can be encrypted. Ill post links below to the programs. Standard Disclaimers Apply!
http://www.brainkill.net/hack/pwdump.exe
http://www.brainkill.net/hack/pwservice.exe
http://www.brainkill.net/hack/LsaExt.dll
=======================
How in the world did you encrypt them?
I know how to make executables undetectable...that is...until I run them
-
Yep K1u said it, just disables the firewall and security center (those annoying pop-ups), you may also want to use the regkey in my payload to remove it from the Control Panel (i think you may alrdy have a copy of the payload). But a lot of ppl have 3rd party apps for firewalls (ie Zone Alarm, ect) and this wont effect those at all.
So will zonealarm or other 3rd party firewalls stop netcat from attaching a shell to a port?
I am assuming yes, but just checking.
Will most 3rd party firewalls stop ftp?
I've made a payload which installs on the computer [temp] andslurps files out of "my documents" and ftp's them.
This approach is better than the typical batch file slurp because one doesn't have to sit around for a billion years while the
files are copying [high possibility of being caught].
After explaining what each part of the batch file did, my friend allowed me to test it on his computer.
He has zonealarm. I have mcafee. Neither detected the ftp file transfer [this was about a year ago, so zonealarm may have changed since then]
However, his very annoying security center stopped it. This is what I want to disable until next reboot.
Thanks very much.
-
Another reason why i want to use NSIS for my payload: http://nsis.sourceforge.net/NsisFirewall_plug-in Muahahahaha!!!
These unfortunately only deal with the builtin windows firewall. But the concept is there and modifications can be made to possibly bypass other firewalls.
That's cool! I am so going to incorporate this in my payload.
So, from my understanding, one will have to learn the NSIS scripting language to use this?
Thanks for sharing.
-
Could there be another way of avoiding AV [other than disabling it?]
Much appreciated.
-
Is is possible to poke a hole in a firewall without completely disabling it so that netcat isn't stopped or
so that logs can be ftped up to a server without disruption?
different topic:
I have found two commands--which one will disable the firewall? Do these accomplish different things?
net stop "security center"
net stop "Windows Firewall/Internet Connection Sharing (ICS)"
netsh firewall set opmode disable
-
Thanks for the explanation.
Still a little odd it's up there.
And yes, I did notice that the current episode is an entire season ahead of the predicted one.
Thanks again.
-
Is it possible to encrypt the executables in the switchblade [i.e. pwdump, etc]?
My annoying AV is continuously picking them up and deleting them. I'm not too keen on disabling my AV.
If so, what program(s) would I need?
Thanks very much.
-
Here is the link. It's located in community projects next to hacksaw and switchblade.
http://wiki.hak5.org/wiki/Community_Projects
Here's the descriptions of it:
Set to release on November 5 on HAK.5 Episode 2x04 -- The USB Chainsaw is described as an all purpose physical access hacking device able to take advantage of many x86 based operating systems, including Windows and Linux. No other details are available at time of writing. Dev5 Project
Still in early development, the USB Chainsaw is described as a all purpose physical access hacking device able to take advantage of many x86 based operating systems, including Windows and Linux.
I haven't seen any late notifications. Any ideas?
Much appreciated
-
When is USB Chainsaw Going to be Released?
Was it not due in November? [it's December now]
Has it been delayed?
Thanks very much.
-
I suppose what you are referring to is podslurping.
This technique I am posting is really good because. . .
1. you can adjust what it takes from the computer
2. No AV detection
3. You can see all the code occuring. . . its a batch file!
Good luck!
Here's the link
http://www.usbhacks.com/2006/10/29/how-to-...sb-flash-drive/
U3 Launchpad Questions
in USB Hacks
Posted
Question 1:
I know this may seem like a very stupid question, but what is the U3 launchpad?
Is this all the crappy software, or is it the u3 capability?
In other words: can I uninstall the launchpad and still have the u3 capability to run programs upon insert?
How else would I go about removing the junkware while keeping the u3?
Question 2:
When a u3 drive is inserted, does it install anything on the computer [drivers, or anything else]
If so, is the change noticeable: meaning does anything show up in either the start menu or control panel or anywhere else people usually visit?
Question 3:
I recently misplaced my non-u3 drive.
I am debating whether I should buy a newer u3 drive[sandisk cruzer mini] or another non-u3.
Any suggestions/recommendations?
Thanks very much.