return to tranceaddict TranceAddict Forums Archive > Main Forums > Chill Out Room

Pages: 1 2 3 4 5 6 7 [8] 9 
computer hacking (pg. 8)
View this Thread in Original format
Slylee
quote:
Originally posted by digitalbreach
"that is universally stupid"

1. you should always change your passwords
2. passwords are not meant to be given out.

this goes against what everyone has recommended to prevent your system from being hacked. epic fail.


well we didn't demand each other's passwords, it wasn't like that. just from over time him calling me on the phone and needing me to get on the computer and go to his inbox for an address or something. or to check his bank account. and vice versa.
R.j.
quote:
Originally posted by Dj Nacht
Meh for school... I rather stay home and read books. Got my Network+ cert this way and my A+ one very soon. If people are really interested in hacking they could always go for the Security+ cert to get started.


Well, I'm already attending college, so I might as well. But I'm not interested in "actually" hacking, just being in the know; sort of a dilettante of hacking.
R.j.
quote:
Originally posted by Dj Nacht
Meh for school... I rather stay home and read books. Got my Network+ cert this way and my A+ one very soon. If people are really interested in hacking they could always go for the Security+ cert to get started.


Another question: if I wanted to read up on the fundamentals/basics of what the hacker's knowledge consists, which book would I be looking for?
trancechan
Dj Nacht
quote:
Originally posted by R.j.
Another question: if I wanted to read up on the fundamentals/basics of what the hacker's knowledge consists, which book would I be looking for?


Humm depends how much you know about networking and computers already. If you know what an IP address and all that is already, go for this book.

http://www.amazon.ca/CompTIA-Securi...51498808&sr=8-5

Once i'm done my A+ im going for the security+ and buying that book

That author is the king of making books for computers, he explains everything in detail from the beginning.
dj_alfi
quote:
Originally posted by trancechan


:haha: :haha: :haha: :haha: :stongue: :haha:
Zoso
As others have indicated, there is no shortage on ways to “hack” a computer or a network of computers. From buffer overflow exploits to social engineering, if you want into a given computer or network, there are many, many ways to get in.

Let’s say, for example, I want to get into a specific company’s network. The first thing I am going to do is research them using search engines. I’m going to look up their IP addresses (WHOIS queries, etc.) and then see what, if any, servers allow me to do a zone transfer of their DNS records, for example. I’m going to see if I can find Autonomous System Numbers (ASN) to determine routing protocols in use and routes data might take. I’m going to find out their mail servers’ IP addresses and see what ports are open and what software they are using to host their mail (POP3, SMTP, RPC over HTTPS, e.g.).

I might then use a scanning tool like nmap to conduct stealth port scans to see what ports and services the company’s public facing server(s) have open and running. Then I might use Google to search for know vulnerabilities in those services and applications. I might use the Metasploit framework to then exploit those publicly known vulnerabilities. Assuming I successfully exploit a public facing server, I will execute code to install some sort of back door that will give me root/admin access to that server. I’ll upload any additional tools I might need. Then I’ll start scanning the network’s internal IP scheme to look for additional nodes to exploit. Assuming they’re not filtering outbound traffic, I’m going to open an IRC port. I would probably also delete/modify any logs on the server and see if I can modify IDS/Syslog files as well to mask my presence.

Basically all computers communicate using the OSI model. The OSI model has seven layers which data flow through. There are vulnerabilities at each of these layers. From the seventh, or application layer, right down to the first, or physical layer, (you can snag data right off the physical copper lines if they are unshielded, as the data is just a series of electrical pulses at this point) there are vulnerabilities to exploit. It’s just a matter of how bad you want in!

A lot of people’s personal/home computers get owned like this: they are running unpatched versions of Windows directly connected to the Internet with a cable/DSL modem with no hardware based firewall. So all those handy dandy Windows ports/protocols are facing the public Internet naked (NetBIOS, etc.)! You can own a Windows XP SP1 box in mere minutes of it touching the public Internet without a firewall. Phishing is another good way to steal a person’s credentials for various sites. “Free” screensavers used to work pretty well, too. Really, there is no shortage of ways.

You get the idea...
Silky Johnson
I didn't read the whole thread. Did Ben tell us how he hacks TA accounts?
kadomony
i can mash my hands on the keyboard and get the passwords of some of the spambots :gsmile:
gehzumteufel
quote:
Originally posted by jennypie
I didn't read the whole thread. Did Ben tell us how he hacks TA accounts?

Nope, because I don't know how to hack. Plain and simple.

Joss Weatherby
lol you have no idea how much personal restraint it takes me not to demo/proof in this thread...
gehzumteufel
Me? Or the fact that TA has many vulnerabilities?
CLICK TO RETURN TO TOP OF PAGE
Pages: 1 2 3 4 5 6 7 [8] 9 
Privacy Statement