+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
THE BEGINNERS GUIDE FOR HACKING (vol:1)
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
(AUTHOR:RATTLESNAKE)
written 0n:jan,01,2003
_INTRODUCTION:__
iam a student from osmania university and member of hacking resourse group(london)studing computer software under ravirishi college i am interested inhacking from when i was from 16yr old i have struggled for correct guidence at last thanks to hrvg university(london)for making me write this article.This guide is useful to all the newbies&beginerrs of hacking this material looks stupid to all the proff.This articles dedicates to my friend (robin g albert )&all my friends who helped me a lotfor this article.any mistakes,modification or any spell out in this article plz write to:rattlesnake_xxx@yahoo.com, rattlesnake_shiver@yahoo.com fell free to write.Your mails will encourage me to write more advanced and more better articles soon i will relese my own web site where you can find many articles and softwares.
_DISCLAIMER___
I created this tutorial for informational purposes only!Much of the information in this document can be used to perform illegal activities!Don't attempt to do anything stated in this document!If you do attempt to do anything, you are solely and fully responsible for what you do!If you get caught and get in any kind of trouble, it's your own fault!
If you don't agree to this, do not read any more!HACKING IS A CRIME.. CRIME.. CRIME..
_INDEX___
1. HACKING
A. What is hacking?
B. Why hack?
C. Hacking rules
D. Getting started
E. Where and how to start hacking
F. Telenet commands
G. Telenet dialups
H. Telenet DNIC's
i.scanners,modem jammers,c script
j. Basic UNIX hacking
k.password decrypter
l.vax/vms hacking
o. Viruses, Trojans, and Worms
I. HACKING
A. What is hacking?
_________________
Hacking is the act of penetrating computer systems to gain knowledge about the system and how it works. Hacking is illegal because they demand free access to ALL data, and they get it. , and in order to stay out of prison, they keep their status of being a hacker/phreaker a secret. they can't discuss findings with anyone but other members of the hacking/phreaking community for fear of being punished.govt spending huge amounts of time and money to arrest hackers .
B. Why hack?
_____________
As said above, they hack to gain knowledge about systems and the
way they work. If you do damage a system, you WILL get caught. But, if you don't damage
anything, it is very unlikely that you will be noticed,you will be fined a huge amount. Beginners should read all the files that they can get their hands on about anything even remotely related to hacking BEFORE they start hacking. I know it sounds stupid and boring but it will definetly pay off in the future. The more you read about hacking
and cracking the more unlikely it is that you will get caught. Some
of the most useless pieces of information that you read could turn out
to be the most helpful. That is why you need to read everything
possible.
C. Hacking rules
_________________
1. Never damage any system. This will only get you into trouble.
2. Never alter any of the systems files, except for those needed to
insure that you are not detected, and those to insure that you have
access into that computer in the future.
3. Do not share any information about your hacking projects with
anyone but those you'd trust with your life.
4. Never use anyone's real name or real phone number when posting
on a BBS.
6. Never leave your handle on any systems that you hack in to.
7. DO NOT hack government computers.
8. Never speak about hacking projects over your home telephone line.
9. Be paranoid. Keep all of your hacking materials in a safe place.
10. To become a real hacker, you have to hack. You can't just sit
around reading text files and hanging out on BBS's. This is not what
hacking is all about.
11.encrypet your hard disk so tthat ant one can hardly find you out.
D. Getting started
______________
The very first thing you need to do is get a copy of WINZIP
or some other file unzipping utility. Nearly everything that you download from the Internet or from a BBS will be zipped. A zipped file is a file that has been compressed. Zipped files end with the extension ".zip".
Then you need to get yourself a good prefix scanner.(also known
as a War Dialer or war demon) This is a program that automatically dials phone
numbers beginning with the three numbers (prefix) that you specify. It checks to see if the number dialed has a carrier.(series of beeps that tells you that you have dialed a computer) Try and find a large business area prefix to scan. It is these businesses that have interesting computers. There are many good scanners out there, but I
would recommend Autoscan or brute force These are very easy to use and get the job done quickly and efficiently.
E. Where and how to start hacking
_____________________________
After you get yourself a good scanner, scan some prefixes and find some cool dialups, then do the following: From your terminal,dial the number you found. Then you should hear a series of beeps(carrier) which tells you that you are connecting to a remote computer.It should then say something like "CONNECT 9600" and then identify the system that you are on. If nothing happens after it says "CONNECT 9600" try hitting enter a few times. If you get a bunch of garbage adjust your parity, data bits, stop bits, baud rate, etc., until it becomes clear.That is one way of connecting to a remote computer. Another way is through Telenet or some other large network.
Telenet is a very large network that has many other networks and remote computers connected to it. Ok, here is how you would connect to a remote computer through
Telenet:
First, you get your local dialup(phone number) from the list that
I have provided in Section G. Then you dial the number from your
terminal and connect.(If you get a bunch of garbage try changing your
parity to odd and your data bits to 7, this should clear it up.) If
it just sits there hit enter and wait a few seconds, then hit enter
again. Then it will say "TERMINAL=" and you type in your terminal
emulation. If you don't know what it is just hit enter. Then it will
give you a prompt that looks like "@". From there you type "c" and then
the NUA (Network User Address) that you want to connect to. After you
connect to the NUA, the first thing you need to do is find out what type
of system you are on.(i.e. UNIX, VAX/VMS, PRIME, etc.)
There are other things that you can do on Telenet besides
connecting to an NUA. Some of these commands and functions are listed in
the next section.
You can only connect to computers which accept reverse charging.
The only way you can connect to computers that don't accept reverse charging is if you have a Telenet account. You can try hacking these. To do this, at the "@" prompt type "access". It will then ask you for your Telenet ID and password.
Telenet is probably the safest place to start hacking because of
the large numbers of calls that they get. Make sure you call during
business hours (late morning or early afternoon) so there are many
other people on-line.
F. Telenet commands
Here is a list of some Telenet commands and their functions. This
is only a partial list. Beginners probably won't use these commands,
but I put them here for reference anyway.
COMMAND FUNCTION
c Connect to a host.
stat Shows network port.
full Network echo.
half Terminal echo.
mail Mail.(need ID and password)
cont Continue.
d Disconnect.
hangup Hangs up.
access Telenet account.(ID and password)
and also there are many telnet &commands, if you use windows you can get the shell account from shell.og,
nether.net,linuxberg,red hat.com. it is quite enough if you use unix system.
G. Telenet dialups
_______________
Here is the list of all the Telenet dialups that I know of in
the U.S.A., including the city, state, and area code:provded by hrvg(london).
STATE,CITY: AREA CODE: NUMBER:
AL, Anniston 205 236-9711
AL, Birmingham 205 328-2310
AL, Decatur 205 355-0206
AL, Dothan 205 793-5034
AL, Florence 205 767-7960
AL, Huntsville 205 539-2281
AL, Mobile 205 432-1680
H.scanners
_____________
scanners are the software tools mostly used by the hackers to scan the open ports mostly the servers use many kind of operating sys ex:unix etc these scanner have an ip address colom where we have to enter the pacticular ip address of the site then the scanner scans for the information of the server & reply with its os system, username,password,anonymes state garbage etc. by retreving the user name & pass word we can enter the server by ftp mode,telnet,msdos mode,etc.
modem jammers
_____________
these are the command used in a software which disables the firewalls &antivirus these jammers are the torjan horse which are send with attach of scanners by which it disbles the firewall& antivirus and u can easilly penetrate into the server.
c script
_________
these are the scriping language written in c++ which erase the log file of ur attempt while exiting it is very use ful
tool for every hacker without these c script(or)modem jammers you can easilly track down.
J. Basic UNIX hacking
___________________
UNIX is probably the most commonly used operating system on Telenet, and is the easiest to hack since it doesn't record bad login attempts. You know you've found a UNIX system when it gives you a "Login" prompt, and then a "Password" prompt. To get in you should first try the default logins.(Listed below.) If these don't work try to find backdoors. These are passwords that may have been put in to allow the programmer (or someone else who could be in a position to make a backdoor) to get access into the system. These are usually not known about by anyone but the individual who made it. Try doing some research on the programmer and other people who helped to make the system. And, if these don't work, just try guessing them. The Login (usually the account holders name) has 1-8 characters and the Password is 6-8 characters. Both can be either letters or numbers, or a combination of the two.
Once you get in, you should get a "$" prompt, or some other special character like it. You should only use lower case letters when hacking UNIX, this seems to be standard format. prompt, it should list all of the Anyway, here are the default Logins and Passwords:
Login: Password:
root root
root system
sys sys
sys system
daemon daemon
uucp uucp
tty tty
test test
unix unix
unix test
bin bin
adm adm
adm admin
admin adm
admin admin
Once you are in, the first thing that you need to do is save the password file to your hard drive or to a disk. The password file contains the Logins and Passwords. The passwords are encoded. To get the UNIX password file, depending on what type of UNIX you are in, you can type one of the following things:
/etc/passwd
or
cat /etc/passwd
The first one is the standard command, but there are other commands as well, like the second one. Once you get the password file, it should look like this:
john:234abc56:9999:13:John Johnson:/home/dir/john:/bin/john
Broken down, this is what the above password file states:
Username: john
Encrypted Password: 234abc56
User Number: 9999
Group Number: 13
Other Information: John Johnson
Home Directory: /home/dir/john
Shell: /bin/john
If the password file does not show up under one of the above two commands, then it is probably shadowed
def:-
"Password shadowing is a security system where the encrypted password field is replaced with a special token and the encrypted password is stored in a seperate file which is not readable by normal system users."
If the password file is shadowed, you can find it in one of the following places, depending on the type of UNIX you are using:
Linux 1.1 /etc/shadow
System V 4.0 /etc/shadow
System V 4.2 /etc/security/* database
ConvexOS 10 /etc/shadpw *
Convex0S 11 /etc/shadow *
DG/UX /etc/tcb/aa/user *
k.password dedrypter
_________________
if it is shadowded password it can be decrypted by the world famous decrypter "john the ripper","passdecoder"
etc.load the password file archived from the system and make the tool to start after a few seconds it will decode the password and you could see te acutall format.
Now, explore the system freely, be careful, and have fun!
l. Basic VAX/VMS hacking
_________________________
The VAX system runs the VMS (Virtual Memory System) operating system. You know that you have a VAX system when you get a "username" prompt. Type in capital letters, this seems to be standard on VAX's. Type "HELP" and it gives you all of the help that you could possibly want. Here are the default usernames and passwords for VAX's:
Here are some of the VAX/VMS commands:
Command: Function:
HELP (H) Gives help and list of commands.
TYPE (T) View contents of a file.
RENAME (REN) Change name of a file.
PURGE (PU) Deletes old versions of a file.
PRINT (PR) Prints a file.
DIRECTORY (DIR) Shows list of files.
DIFFERENCES (DIF) Shows differences between files.
CREATE (CR) Creates a file.
DELETE (DEL) Deletes a file.
COPY (COP) Copy a file to another.
CONTINUE (C) Continues session.
these are some of the default password of the vax system.
Username: Password:
SYSTEM OPERATOR
SYSTEM MANAGER
SYSTEM SYSTEM
SYSTEM SYSLIB
OPERATOR OPERATOR
SYSTEST UETP
SYSTEST SYSTEST
SYSTEST TEST
SYSMAINT SYSMAINT
o.Viruses, Trojans, and Worms
_________________________
Just in case some of you are interested, here are the definitions for Viruses, Trojans, and Worms. These definitions were taken from rattlesnake(hrg.london)
Trojan:
_______
Remember the Trojan Horse?
("we all remember a story of torjan horse made up of wood presented by greek to their enemy to hide all the solders inside it ,The other king accepted the gift .As mentioned he ordered all the solders to hide in it .By taking this advantage the greek attack the entire city without knowing the knowledge of the king & solders")
the same thing happens in our computer system. It is a program which does an unauthorized function, hidden inside an authorized program. It does something other than it claims to do, usually something malicious (although not necessarily!), and it is intended by the author to do whatever it does. If it is not intentional, it is called a bug or, in some cases, a feature :) Some Virus scanning programs detect some Trojans. Some scanning programs don't detect any Trojans. No Virus scanners detect all Trojans."
Virus:
"A Virus is an independent program which reproduces itself. It may attach itself to other programs, it may create copies of itself (as in companion Viruses). It may damage or corrupt data, change data, or degrade the performance of your system by utilizing resources such as memory or disk space. Some Viruse scanners detect some Viruses. No Virus scanners detect all Viruses. No Virus scanner can protect against any and all Viruses, known and unknown, now and forevermore."
Worm:
"Made famous by Robert Morris, Jr., Worms are programs which reproduce by copying themselves over and over, system to system, using up resources and sometimes slowing down the system. They are self contained and use the networks to spread, in much the same way that Viruses use files to spread. Some people say the solution to Viruses and worms is to just not have any files or networks. They are probably correct. We could include computers."
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
I WILL WRITE ARTICLES ON MORE ISSUES IF YOU LIKE THIS ARTICLE PLZ WRITE TO:rattlesnake_xxx@yahoo.com YOUR LETTERS ENCOURAGE ME TO WRITE MORE ARTICLE AND IN MUCH BETTER FORMAT.
ready to release:
1.hacking with ms.dos(netbios nbtstat)
2.hacking with ftp(totally anonym)
3.cracking software
4.sniffer(disconnecting remote modems)
5.virus builders.(coding virus in a simple tools)
6.hacking yahoo user accounts
7.hacking msn server
8.infecting pc with worm&torjans
FELL FREE TO DISTRUBUTE THE ARTICLE TO YOUR FRIENDS BUT WITHOUT RECHANGING OR
DELETING ANY WORDS IF YOU FIND ANY MISTAKES PLZ WRITE TO:rattlesanke_xxx@yahoo.com
IN NEXT EDITION I WILL RECTIFY THOSE MISTAKES AND YOUR NAME WILL BE MENTIONED IN THE ARTICLE.
HAVE FUN!!!
