digip Posted October 5, 2012 Share Posted October 5, 2012 (edited) You're going to want to drive to your friends house, because you're going to need physical access for this prank. Just ask to spend the weekend to or say you will bring over your new gaming system or whatever. Then, wait till your friend is out of the room and open the machine while off, and look for the CPU. Its a chip on the mother board, usually has the letters D0-ri70 on it, and pull that puppy out, then put it all back together with out the chip, and wait till he tries to turn it on. When it doesn't boot just tell him must be one of those ID-10T errors or a PEBKAC problem. o.O All kidding aside, you want to get his IP, send him an email and wait for his replay. Just look at the headers when it comes back,it will have his IP address in the email headers. Also, i can think of a number of ways to get his IP, ie: forums?? Does he have an account on any forums anywhere? if so, send him a PM with a transparent png file from your own site(you need your own web server) with a file name specific to the PM you send him. Then wait for him to read the PM. Once he does, the image will only be seen by him and you then have his IP address on your server logs. IRC networks, fine one that doesn't use automatic vHosts, invite him to join you in a chat, do a whois on his nick, get his IP address. Instant messages with some clients(other than say skype which now runs through microsoft servers) you can just run wireshark while chatting. I think AIM still sends back user IP's in the clear, but in general, you need to get him to join some network you own or are both on at the same time, and have wireshark going so you can see his IP pop on, or craft special links on your own domain to get him to click it, no need for payloads, although if you did have one waiting for him, still requires him to click a link in an email to go there to get the IP if thats all you want. Once you HAVE the IP, you still have to get to his machine, and if he has a router, you're pretty much shit out of luck unless he has 1, port forwarding for something he uses on the machine that is weak and hackable, or 2, has remote administration open to the internet facing side and default credentials to get in. There is also some routers that in and of themselves are hackable and can be re-flashed to let you in by tftp'ing custom backdoored bin files onto them. All of the things you are asking to do though, are pretty much illegal though. Not saying its not a cool topic of discussion, but ou go breaking into his machine because you think you have his IP, and it ends up being someone elses or another system, they'll come lock you up pretty quick. But if we're on the topic of hacks like this, send him a PDF with a sploit for returning a connection back to you via metasploit or such and use your best social engineering to ensure he opens the pdf, like, "Holy shit, someone hacked 'insert famous actresses name here' webcam, and its LIVE, on right now, and she walks around her house naked!" or some shit like that, and hope he opens the file. Edited October 5, 2012 by digip Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.