Hacking I Internet I Windows
Wednesday, January 2
SMS Short Cuts:
1dRfl - wonderful
2 - to/too/two
2dA - today
2moro - tomorrow
2nite - tonite
3dom - freedom
4 - for
4get - forget
4N - foreign
ADN - any day now
AFAIK - as far as I know
AFAIR - as far as I recall
ASAP - as soon as possible
ATM - at the moment
B - be
B4 - before
B4N - bye for now
BB - bye-bye
Bf -boyfriend
BG - big grin
BION - believe it or not
BK - big kiss
BTDT - been there, done that
BTW - by the way
By - busy
C - see/sea
CB - call back
CUL - see you later
CWYL - chat with you later
DUZ - does
DUZNT - doesn't
F2F - free to talk?
G2G - got to go
Gf - girlfried
Gr8 - great
Grr - angry
H2 - how to
HUH - have you heard?
IC - I see
ICCL - I couldn't care less
IK - I know
ILU (or ILY) - I love you
in4ml - informal
KISS - keep it simple, stupid
KUTGW - keep up the good work
@ "At"
MSG "Message"
W "With"
ATB "All the best"
NE "Any"
W/O "Without"
B "Be, Bee"
NETHNG "Anything"
WKND "Weekend"
BCNU "I'll be seeing you"
NE1 "Anyone"
XLNT "Excellent"
BWD "Backward"
NO1 "No-one"
XOXOX "Hugs and kisses"
B4 "Before"
OIC "Oh, I see"
YR "Your"
C "See, Sea"
PCM "Please call me"
1 "One, Won"
CU "See you"
PLS "Please"
2 "Too, To, Two"
DOIN "Doing"
PPL "People"
L8 - late
L8r - later
LMK - let me know
M8 - mate
MOF - matter of fact
MT - empty
MTE - my thoughts exactly
NAGI - not a good idea
Ne - any
Ne1 - anyone
No1 - no one
nrg - energy
OIC - Oh I see
OK - okay
ONNA - oh no, not again!
OTT- over the top
PCM - please call me
Pls - please
Ppl - people
PTL - praise the Lord
R - are
Re - regarding
RUOK - are you okay?
Spk - speak
Sry - sorry
SWAK - sealed with a kiss
THX - thanks
TTYL - talk to you later
TXT - text
U - you
U@ - you at? (where are you?)
UOK - you okay?
UR - your/you're
Usu - usually
W8 - wait
W84M - wait for me
W/ - with
Wan2 - want to
wn - when
WMF - works for me
XLNT - excellent
Y - why
YM - you mean
YR - yeah, right
GONNA "Going to"
SUM1 "Someone"
3SUM "Threesome"
GR8 "Great"
STRA "Stray"
4 "For, Four"
H8 "Hate"
THNQ "Thank you"
:-) "I'm happy"
L8 "Late"
THX "Thanks"
:-o "I'm surprised"
L8R "Later"
U "You"
:-( "Sad face"
LUV "Love"
UR "You are "
d:) "Baseball cap "
MOB "Mobile"
WAN2 "Want to?"
;-/ "Confused"
2DAY "Today"
F2T "Free to talk"
RUOK "Are you okay?"
2MORO "Tomorrow"
FWD "Forward"
RGDS "Regards"
(:-... Heart-broken
%-) I'm tipsy but happy
#:-o Oh no!
:-# My lips are sealed
8-) Sender wears glasses
:+( I'm hurt by that
:*)? Are you drunk?
<:-0 Eeek!
:-e I'm disappointed
(-: Sender is left-handed
<:-) Dumb question
~o~ Bird
:@ Ouch!
:-(*) Sick comment
(:-) Bald
:// Frustrated
:3-< Dog
d:-) Hats off to your great idea
:-$ Put your money where your mouth is
:-{) Sender has moustache
|-| Going to sleep
:@) Pig
\o/ Praise the Lord
*<:o) Clown
:-{)} Sender has moustache & beard
:=8) Baboon
8^ Chicken
~#:-( Bad hair day
:'-( I am crying
:*) I' tipsy
:-o Oh
O:-) Innocent
&:-) Sender has curly hair
:) Original smiley
:-) Classic smiley
;-) Wink
:-)) Very happy
|-) Hee-hee
:-D Laugh loud
:-o Amazement
:^D" Great! I like it!
:-* Kiss
<3 I love you
:-s Confusion
{} No comment
:-C Totally unbelievable
:-X Big wet kiss
:-9 Licking lips
%-) Confused
*:* Fuzzy face
:-@ Screaming
:-7 Wry remark
:-p Sticking out tongue
:-( Frown
:> Develish grin
(:-|K- Dressed to kill
:-|| Angry
::=)) Seeing double
:-> Hey
|:-0 No explanation
#:-) Hair in a mess
>;-(' I am spitting mad
#-) Partied all night
:-| Hmmm
:-& Tongue-tied
2 - to/too/two
2dA - today
2moro - tomorrow
2nite - tonite
3dom - freedom
4 - for
4get - forget
4N - foreign
ADN - any day now
AFAIK - as far as I know
AFAIR - as far as I recall
ASAP - as soon as possible
ATM - at the moment
B - be
B4 - before
B4N - bye for now
BB - bye-bye
Bf -boyfriend
BG - big grin
BION - believe it or not
BK - big kiss
BTDT - been there, done that
BTW - by the way
By - busy
C - see/sea
CB - call back
CUL - see you later
CWYL - chat with you later
DUZ - does
DUZNT - doesn't
F2F - free to talk?
G2G - got to go
Gf - girlfried
Gr8 - great
Grr - angry
H2 - how to
HUH - have you heard?
IC - I see
ICCL - I couldn't care less
IK - I know
ILU (or ILY) - I love you
in4ml - informal
KISS - keep it simple, stupid
KUTGW - keep up the good work
@ "At"
MSG "Message"
W "With"
ATB "All the best"
NE "Any"
W/O "Without"
B "Be, Bee"
NETHNG "Anything"
WKND "Weekend"
BCNU "I'll be seeing you"
NE1 "Anyone"
XLNT "Excellent"
BWD "Backward"
NO1 "No-one"
XOXOX "Hugs and kisses"
B4 "Before"
OIC "Oh, I see"
YR "Your"
C "See, Sea"
PCM "Please call me"
1 "One, Won"
CU "See you"
PLS "Please"
2 "Too, To, Two"
DOIN "Doing"
PPL "People"
L8 - late
L8r - later
LMK - let me know
M8 - mate
MOF - matter of fact
MT - empty
MTE - my thoughts exactly
NAGI - not a good idea
Ne - any
Ne1 - anyone
No1 - no one
nrg - energy
OIC - Oh I see
OK - okay
ONNA - oh no, not again!
OTT- over the top
PCM - please call me
Pls - please
Ppl - people
PTL - praise the Lord
R - are
Re - regarding
RUOK - are you okay?
Spk - speak
Sry - sorry
SWAK - sealed with a kiss
THX - thanks
TTYL - talk to you later
TXT - text
U - you
U@ - you at? (where are you?)
UOK - you okay?
UR - your/you're
Usu - usually
W8 - wait
W84M - wait for me
W/ - with
Wan2 - want to
wn - when
WMF - works for me
XLNT - excellent
Y - why
YM - you mean
YR - yeah, right
GONNA "Going to"
SUM1 "Someone"
3SUM "Threesome"
GR8 "Great"
STRA "Stray"
4 "For, Four"
H8 "Hate"
THNQ "Thank you"
:-) "I'm happy"
L8 "Late"
THX "Thanks"
:-o "I'm surprised"
L8R "Later"
U "You"
:-( "Sad face"
LUV "Love"
UR "You are "
d:) "Baseball cap "
MOB "Mobile"
WAN2 "Want to?"
;-/ "Confused"
2DAY "Today"
F2T "Free to talk"
RUOK "Are you okay?"
2MORO "Tomorrow"
FWD "Forward"
RGDS "Regards"
(:-... Heart-broken
%-) I'm tipsy but happy
#:-o Oh no!
:-# My lips are sealed
8-) Sender wears glasses
:+( I'm hurt by that
:*)? Are you drunk?
<:-0 Eeek!
:-e I'm disappointed
(-: Sender is left-handed
<:-) Dumb question
~o~ Bird
:@ Ouch!
:-(*) Sick comment
(:-) Bald
:// Frustrated
:3-< Dog
d:-) Hats off to your great idea
:-$ Put your money where your mouth is
:-{) Sender has moustache
|-| Going to sleep
:@) Pig
\o/ Praise the Lord
*<:o) Clown
:-{)} Sender has moustache & beard
:=8) Baboon
8^ Chicken
~#:-( Bad hair day
:'-( I am crying
:*) I' tipsy
:-o Oh
O:-) Innocent
&:-) Sender has curly hair
:) Original smiley
:-) Classic smiley
;-) Wink
:-)) Very happy
|-) Hee-hee
:-D Laugh loud
:-o Amazement
:^D" Great! I like it!
:-* Kiss
<3 I love you
:-s Confusion
{} No comment
:-C Totally unbelievable
:-X Big wet kiss
:-9 Licking lips
%-) Confused
*:* Fuzzy face
:-@ Screaming
:-7 Wry remark
:-p Sticking out tongue
:-( Frown
:> Develish grin
(:-|K- Dressed to kill
:-|| Angry
::=)) Seeing double
:-> Hey
|:-0 No explanation
#:-) Hair in a mess
>;-(' I am spitting mad
#-) Partied all night
:-| Hmmm
:-& Tongue-tied
Hacking Through Webpage
Hello friends
My name is ******* probably known as .:Silent Hammer23:.
I want to tell you about the webpage threat originating around you by hackers.
In today's time you are not secured on Internet by hackers. Hackers are watching your activities and they have there eyes on you 24*7.Hackers are becoming rich in there programming knowledge and challenging the security of antivirus. Now in present time they are making fake login web pages (like yahoo, gmail etc.) and web exploits and many more so that they can steal your private information and can infect you with there “Virus or Trojan”.
Few days ago I found a link on web and as I tried to open it my “Kaspersky Internet Security 6.029” (one of the best internet securities) warned me as a Trojan-Download.VBS.Agent.p and denied to open it. I disabled the protection of my antivirus and tried to open the link again .As I clicked on the link it transferred me to some adult page and within few seconds whole setting of my computer was changed because the virus changed my registry settings. It took me approximately 1 hour to completely remove virus and get back to my original settings again (that was done by me manually you’ll need some registry knowledge to do that because illegal change in registry may cause your windows to crash). Then some how I found the same web page in my temporary internet folder (all the webpage you view are saved there) and viewed the source code of it. It was a Trojan downloader webpage and written in java. Hackers use it to infect you by virus or Trojans. It can be written in java or visual basic or may be in any other language.
How It Works?
As you click on the link you are transferred to address of the web server where the virus (exe file) is and then virus injected to the html page is executed automatically with ought user interaction and installs to some predefined location (c:\ or any other address of drive given by Hacker) and then you are transferred to some adult or any web page. This all is done with out your attention.
Then I changed some code and injected a small registry changing virus (made by me) and made that html page to work for me. I made a web server on my computer and send a new link hyper-linked with the address of virus to my friend. As he opened it his antivirus was unable to catch it and he was infected by my virus. I asked him which antivirus he uses and the reply was “AVG”. Then I tested it on many internet securities but only some were able to catch the webpage. After that I started to test it only on antivirus not internet security none of them were able to catch it because only internet security notices the web activity as well as do the work of antivirus and inbuilt firewall or anti hacker make it more protective which antivirus doesn’t have. So the hacker’s uses it as a plus point for them because due to the computer illiteracy people don’t give much importance to “ANTIVIRUS” and they only use antivirus not internet security and no firewall no anti hacker etc. and they become victim of hacker’s.
How to Remain Safe?
Now I am coming to main point. To gain more security over the web and want to remain away from the eyes of hacker’s you must follow some rules.
1. Update your windows regularly. It’s very important but due to heavy size of updates your computer may become slow so u must always make your windows drive partitioned to 25GB or more (not less than 25GB) and often people use pirated windows and in that case windows update feature is disabled. Your computer will show “installing updates” but updates are not installed and instead of that Microsoft traces your system and your system is registered in Microsoft with your I.P address. If you are not having genuine windows then use genuine XP maker to make your windows genuine use this link below. http://rapidshare.com/files/41029503/genuine_XP.rar.html
This is illegal way of making your windows XP genuine but if you are having pirated windows then you don’t have any other option. Now you are ready to update your windows.
2. You must update your internet explorer 6 to 7 (this is must) this update watch all phishing or fake or exploits sites and many more and deny them to open. May sites over the web are suspicious and many time antiviruses are unable to catch them. Internet explorer 6 was unable to detect and this is one of the positive change in internet explorer 7 for users which help them to keep an eye on every illegal webpage (method is Internet Filtering). To download internet explorer 7 directly from Microsoft use the link below.
http://www.microsoft.com/windows/downloads/ie/getitnow.mspx
3. You should not use only antivirus. You must use internet security like (kaspersky internet security or something similar). If you are using only antivirus not internet security then you must install firewall with it to capture all your computer activity over web (this is must). I recommend for you kaspersky internet security (latest version 7) as it is easy to use and all features are present and it is also known as one of the worlds best internet security software. To get full version use the link below.
http://rapidshare.com/files/46665941/KIS.2007.7.0.0.125.BY.SOFT-BEST.NET.rar
So that was a little document made by me about webpage hacking and if you follow these rules then you are secured on internet and if you deny to do then you are not away from hackers.
Written by .:Silent Hammer23:.
Document made on 02/01/2008
My name is ******* probably known as .:Silent Hammer23:.
I want to tell you about the webpage threat originating around you by hackers.
In today's time you are not secured on Internet by hackers. Hackers are watching your activities and they have there eyes on you 24*7.Hackers are becoming rich in there programming knowledge and challenging the security of antivirus. Now in present time they are making fake login web pages (like yahoo, gmail etc.) and web exploits and many more so that they can steal your private information and can infect you with there “Virus or Trojan”.
Few days ago I found a link on web and as I tried to open it my “Kaspersky Internet Security 6.029” (one of the best internet securities) warned me as a Trojan-Download.VBS.Agent.p and denied to open it. I disabled the protection of my antivirus and tried to open the link again .As I clicked on the link it transferred me to some adult page and within few seconds whole setting of my computer was changed because the virus changed my registry settings. It took me approximately 1 hour to completely remove virus and get back to my original settings again (that was done by me manually you’ll need some registry knowledge to do that because illegal change in registry may cause your windows to crash). Then some how I found the same web page in my temporary internet folder (all the webpage you view are saved there) and viewed the source code of it. It was a Trojan downloader webpage and written in java. Hackers use it to infect you by virus or Trojans. It can be written in java or visual basic or may be in any other language.
How It Works?
As you click on the link you are transferred to address of the web server where the virus (exe file) is and then virus injected to the html page is executed automatically with ought user interaction and installs to some predefined location (c:\ or any other address of drive given by Hacker) and then you are transferred to some adult or any web page. This all is done with out your attention.
Then I changed some code and injected a small registry changing virus (made by me) and made that html page to work for me. I made a web server on my computer and send a new link hyper-linked with the address of virus to my friend. As he opened it his antivirus was unable to catch it and he was infected by my virus. I asked him which antivirus he uses and the reply was “AVG”. Then I tested it on many internet securities but only some were able to catch the webpage. After that I started to test it only on antivirus not internet security none of them were able to catch it because only internet security notices the web activity as well as do the work of antivirus and inbuilt firewall or anti hacker make it more protective which antivirus doesn’t have. So the hacker’s uses it as a plus point for them because due to the computer illiteracy people don’t give much importance to “ANTIVIRUS” and they only use antivirus not internet security and no firewall no anti hacker etc. and they become victim of hacker’s.
How to Remain Safe?
Now I am coming to main point. To gain more security over the web and want to remain away from the eyes of hacker’s you must follow some rules.
1. Update your windows regularly. It’s very important but due to heavy size of updates your computer may become slow so u must always make your windows drive partitioned to 25GB or more (not less than 25GB) and often people use pirated windows and in that case windows update feature is disabled. Your computer will show “installing updates” but updates are not installed and instead of that Microsoft traces your system and your system is registered in Microsoft with your I.P address. If you are not having genuine windows then use genuine XP maker to make your windows genuine use this link below. http://rapidshare.com/files/41029503/genuine_XP.rar.html
This is illegal way of making your windows XP genuine but if you are having pirated windows then you don’t have any other option. Now you are ready to update your windows.
2. You must update your internet explorer 6 to 7 (this is must) this update watch all phishing or fake or exploits sites and many more and deny them to open. May sites over the web are suspicious and many time antiviruses are unable to catch them. Internet explorer 6 was unable to detect and this is one of the positive change in internet explorer 7 for users which help them to keep an eye on every illegal webpage (method is Internet Filtering). To download internet explorer 7 directly from Microsoft use the link below.
http://www.microsoft.com/windows/downloads/ie/getitnow.mspx
3. You should not use only antivirus. You must use internet security like (kaspersky internet security or something similar). If you are using only antivirus not internet security then you must install firewall with it to capture all your computer activity over web (this is must). I recommend for you kaspersky internet security (latest version 7) as it is easy to use and all features are present and it is also known as one of the worlds best internet security software. To get full version use the link below.
http://rapidshare.com/files/46665941/KIS.2007.7.0.0.125.BY.SOFT-BEST.NET.rar
So that was a little document made by me about webpage hacking and if you follow these rules then you are secured on internet and if you deny to do then you are not away from hackers.
Written by .:Silent Hammer23:.
Document made on 02/01/2008
Tuesday, January 1
Increasing dial up speed
First you have to go to your registery editor:
Start-->Run-->(type in)= regedit.exe-->Enter.
Find: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Servic es\(Class..if theres no folder move on to-->)\tcpip
Then in the Tcpip folder you should find another folder named "parameters" in which there should be a folder named "interfaces".
Then Scroll down that folder and u will find the adapter id
{3899B179-7BA7-4CEF-A165-9A4C092BE67B}
for modem. Select the adapter ID and in the left hand Panel make a new DWORD value and name it as MTU and set the size of the MTU to 3000 in decimal and restart ur computer.
Finally, remember to keep playing with the MaxMTU value until you feel that your internet connection has increased speed. For some people they gain huge amount of speed...while other people cant find the differece...In anycase i think its worth a shot..maybe u will get lucky and ur dialup wont go as slow as it did before....
Start-->Run-->(type in)= regedit.exe-->Enter.
Find: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Servic es\(Class..if theres no folder move on to-->)\tcpip
Then in the Tcpip folder you should find another folder named "parameters" in which there should be a folder named "interfaces".
Then Scroll down that folder and u will find the adapter id
{3899B179-7BA7-4CEF-A165-9A4C092BE67B}
for modem. Select the adapter ID and in the left hand Panel make a new DWORD value and name it as MTU and set the size of the MTU to 3000 in decimal and restart ur computer.
Finally, remember to keep playing with the MaxMTU value until you feel that your internet connection has increased speed. For some people they gain huge amount of speed...while other people cant find the differece...In anycase i think its worth a shot..maybe u will get lucky and ur dialup wont go as slow as it did before....
Google is a hacker's best friend
In the last few years a number of news articles appeared that warned of the fact that hackers (or crackers if you will) make use of the google search engine to gain access to files they shouldn't be allowed to see or have access to. This knowledge is nothing new to some people but personally I have always wondered how exactly a thing like this works. VNUnet’s James Middleton wrote an article in 2001 talking about hackers using a special search string on google to find sensitive banking data:
"One such posting on a security newsgroup claimed that searching using the string 'Index of /+banques +filetype:xls' eventually turned up sensitive Excel spreadsheets from French banks. The same technique could also be used to find password files"[1]
Another article that appeared on wired.com told us how Adrian Lamo, a hacker who made the news often the last couple of years, explained that google could be used to gain access to websites of big corporations.
“For example, typing the phrase "Select a database to view" -- a common phrase in the FileMaker Pro database interface -- into Google recently yielded about 200 links, almost all of which led to FileMaker databases accessible online.”[2]
These articles kept on coming up in the online news. U.S. Military and Government websites were vulnerable because admin scripts could be found using google, medical files, personal records, everything suddenly seemed just one google search away. But these articles seemed to show up once every half year and always talked about it as if it was something new. Another thing was, the articles never explained how one would actually go about doing this. Almost never an example of a search string was given. The last time I read one of these articles I decided it was time to find out for myself, whether google actually could do all they say it can. The following is a report of my findings and a
description of some techniques and search strings one could use.
Theory
The theory behind this is actually quite simple. Either you think of certain data you would like to acquire and try and imagine in what files this kind of data could be stored and you search for these files directly. (Search for *.xls files for example) Or you take the more interesting approach and you try to think of a certain software that allows you to perform certain tasks or to access certain things and you search for critical files of this software. An example could be a content management system. You read up on this particular content management system, check out of what files it exists and search for those. A great example is that of the databases mentioned above, where you know the string “view database” is used on pages that shouldn’t be accessible to you and you then search for pages containing that string, or you check the software and notice that the option to view a database is linked on a webpage within this software called “viewdbase.htm” and you search for “viewdbase.html
The most important thing is to have a clear goal, to know what it is you want to find. Then search for these specific files or trademarks that these files have.
Google Search Options
Specific file types: *.xls, *.doc, *.pdf *.ps *.ppt *.rtf
Google allows you to search for specific file types, so instead of getting html-files as a result (websites) you get Microsoft excel files for example. The search string you would use would be this: Filetype:xls (for excel files) or filetype:doc for word files.
But maybe more interesting would be searching for *.db files and *.mdb files. Google by the way doesn’t tell you you can search for *.db and *mdb files. I wonder what other file types one can search for. Things that come to mind are *.cfg files or *.pwd files, *.dat files, stuff like that. Try and think of something that might get you some interesting results.
Inurl
Another useful search option is the inurl: option which allows one to search for a certain word one would want to be in the url. This gives you the opportunity to search for specific directories/folders, especially in combination with the “index of” option, about which I will talk later on.
An example would be inurl:admin which would give you results of website urls that have the word “admin” in the url.
Index of
The index of option is another option that isn’t especially thought of by the creators of google, but comes in very handy. If you use the “index of” string you will find directory listings of specific folders on servers. An example could be: ‘index of” admin or index.of.admin which would get you many directory listings of admin folders. (don’t forget to use the quotes in this case since you are looking for the entire “index of” string, not just for “index” and “of”)
Site
The site option allows you to come up with results that only belong to a certain domain name extension or to a specific site. For example one could search for .com sites or .box.sk sites or .nl sites, but also for results from just one site, but more interesting might be to search for specific military or government websites. An example of a search string would be:
Site:mil or site:gov
Site:neworder.box.sk “board”
.Intitle
Intitle is another nice option. It allows you to search for html files that have a certain word or words in the title. The format would be intitle:wordhere. You could check out what words appear in the title of some online control panel or content management system and then search google for this word with the intitle option, to find these control panel pages.
Link
The Link option allows you to check which sites link to a specific site. As described in Hacking Exposed Third Edition, this could be useful: These search engines provide a handy facility that allows you to search for all sites that have links back to the target organization’s domain. This may not seem significant at first but let’s explore the
implications. Suppose someone in an organization decides to put up a rogue website at home or on the target network’s site.“”[4]
Combining search options
The above mentioned search options might or might not be known to you, but even though they can amount to some interesting results, it’s a fact that when you start combining them, that’s when google’s magic starts to show. For example, one could try this search string: inurl:nasa.gov filetype:xls "restricted" or this one: site:mil filetype:xls "password" or maybe site:mil “index of” admin
(I’m just producing these from the top of my head, I don’t know whether they’d result in anything interesting, that’s where you come in. You got to find a search string that gets the results you want.)
Examples; The Good Stuff
Specific file types: *.xls, *.doc, *.pdf *.ps *.ppt *.rtf
To start out simple, you can try and search directly for files that you believe might hold interesting information. The obvious choices for me were things like: Password, passwords, pwd, account, accounts, userid, uid, login, logins, secret, secrets, all followed by either *.doc or *.xls or *.db
This led me to quite some interesting results, especially with the *.db option but I actually also found some passwords.doc files, containing working passwords.
http://www.doc.state.ok.us/Spreadsheets/private%20prison%20survey%20for%20web.xls
http://www.bmo.com/investorrelations/current/current/suppnew/private.xls
http://www.nescaum.org/Greenhouse/Private/Participant_List.xls
http://www.dscr.dla.mil/aviationinvest/attendance_5Apr01.xls
http://web.nps.navy.mil/~drdolk/is3301/PART_IS3301.XLS
Admin.cfg
Admin.cfg is, most of the times, an admin configuration file of some sort. Many different software obviously use names like “config” or “admin” or “setup”, etc. And most of the times these files contain sensitive information and thus, shouldn’t be accessible for people browsing the web.
I tried a search for admin.cfg, using the following search string on google:
inurl:admin.cfg “index of”
This led me to many results of which many were useless. But some paid out.
I found for example: http://www.alternetwebdesign.com/cgi-bin/directimi/admin.cfg
Which contained a password. This was the admin password for a database located at
http://www.alternetwebdesign.com/cgi-bin/directimi/database.cgi?admin.cfg
This database contained sensitive client data of this particular company. I then proceeded to e-mail the company and tell them about the flaw. They replied to me in a very friendly manner and told me they appreciated my help and that they would take the necessary steps to solve the problem.
[magenta]Webadmin
A short while back, while working on this article, I ran into this website:
http://wacker-welt.de/webadmin/
The website explains that “webadmin” is a small piece of software that allows one to remotely edit parts of a website, upload files, etc. The main page for the webadmin control centre is called ‘webeditor.php”. So obviously, my next step was to visit google and use the inurl tag to find webeditor.php pages that I could reach. I used the following search string:
inurl:webeditor.php
and I found the following results:
http://orbyonline.com/php/webeditor.php
http://www-user.tu-chemnitz.de/~hkri/Neuer%20Ordner/webeditor.php
http://artematrix.org/webeditor/webeditor.php
http://www.directinfo.hu/kapu/webeditor.php
All these webeditor.php files were reachable by anyone, merely because the owners failed to (correctly) protect these pages by using .htacces. This mistake allows whomever to change the webpages on the server and thus defacing the site, uploading files and thus possible gaining full access to the server.
In browsing through these sites I noticed that the file that allows one to upload files is called “file_upload.php”, which I could then search for at google and find more examples.
http://www.hvcc.edu/~kantopet/ciss_225/examples/begphp/ch10/file_upload.php
A good example:
http://www.pelicandecals.com/admin/webeditor.php
The script allows you to change files, like in the above examples, including the index.php.
In theory one could write or download whatever malicious script one wants, paste this code into an existing file or just upload it and well, the consequences are obvious. there was also a link “Return Administration” and clicking on it took me to:
http://www.pelicandecals.com/admin/administration.html
Where there were customer addresses, where one could change pricing, etc.
Frontpage Server Extensions HTML Administration Forms
“You can remotely administer the FrontPage Server Extensions from any computer connected to the Internet by using the FrontPage Server Extensions HTML Administration Forms, a set of Web pages that allow you to administer the FrontPage Server Extensions remotely.[3]
Well, that’s what Microsoft’s manual has to say about it. This means, users with access to these forms are able to perform a number of administrative functions, remotely. And that means, these forms should be well protected from non-authorized people. Now how would one go about finding nonprotected forms over the internet? The first thing we do is try to find out what files these scripts consist of. A short visit to the Microsoft website or a peek into the frontpage manual tells us that the main page for these administration forms is a file called “fpadmin.htm”. So that’s what we need to search for. Now to find a correct search string that will get us the results we want. When a default install is performed, the files get installed in a directory called “admin”. Putting to use what we have learned about google search options and the theory behind this technique, a good search string might be:
inurl:fpadmin.htm “index of” admin or maybe inurl:admin/fpadmin.htm
Well, these were the results I got:
http://www.lehigh.edu/~ineduc/degree_programs/tbte/admin/
http://blackadder.eng.monash.edu.au/frontpage/admin/
http://www.lehigh.edu/collegeofeducation/degree_programs/tbte/admin/
http://www.vsl.gifu-u.ac.jp/freeman/frontpage4/admin/
http://www.tech-geeks.org/contrib/loveless/e-smith-fp-
2002/frontpage/version5.0/admin/1033/fpadmin.htm
http://fp.nsk.fio.ru/admin/1033/fpadmin.htm
But the frontpage manual says more:
“Because of the security implications of making remote FrontPage administration possible from Web browsers, the HTML Administration Forms are not active when they are first installed.”[3]
This means that some of these could be active and thus useful to us and some might not. There is of course, only one way to find out and that is to perform one of the possible administrative functions and see if you get results. I for one decided not to go that far, because it would mean breaking the law. But I’m not here to teach ethics, or at least not today.
---
Freesco Router
The Freesco router software for Linux as a default, installs a small web browser which allows owners to control the router through the http protocol. In other words, a website automatically gets setup that allows you to control the router. The default password and login for this control panel is “admin” and “admin”. Many people who use freesco don’t know this. You could search for these Freesco router control websites by using a string such as: intitle:”freesco control panel” or “check the connection” which are words that either are in the title of these pages or on the pages itself. That’s what it’s all about; you check out a certain software, find the part you’d want to be able to reach and figure out which search string would get you the good results.
Extra Tips
• Remember English is the most used language online, but it’s not the only one. Try and search for words or strings that are specific to your language or French or German, etc. For example
“beheer” is a Dutch word for “administration” or “privat” is German for “private”.
• You can check vulnerability scanners’ scan lists for interesting search strings you might want to use or combine with your own strings. Check http://paris2k.at.box.sk/tools/listings/ for some examples.
• Search for files like “config.inc.php” or “mysql.cfg” that could contain mySQL password and username combinations. Try to think of good search strings using words like PHP, SQL, mySQl, etc.
• Try things like: inurl:admin "index of" "database" or inurl:phpmyadmin "index of" or inurl:mysql
"index of" site:neworder.box.sk intitle:index.of or intitle:index.of.private
Conclusion
The internet is a network to which hundreds of thousands, if not millions of web servers are connected and in theory, all data can be reached, unless properly protected. Both software designers and end users should pay more attention to default installation security configuration and security policy.
In the end, there are always going to be people who make mistakes, use default installs, use poorly secured software or just don’t care or still believe there’s no danger in putting this kind of data online. And in the end there’s also always going to be curious people who love to find that interesting information they have been hoping for. Google can help you considerably, in locating this kind of information and it’s easy and fun. ^^
Sidenote
I have used in this article, “live examples” because “foobar examples” in this case wouldn’t have been very useful. I hope you choose to learn from these examples and not use them to commit malicious acts. Think of a great search string yourself and don’t abuse the ones I have shown to explain the technique a little bit. (Guess I couldn’t stay away from the ethics lesson after all) xD
Afterword
To not abandon tradition I would like to take the chance to greet some people.
People like JI954w, Greek Assassin, MELISSA, L4, Dr. Lynch and others… you all know who you are, Thanks for helping me out numerous times with numerous different things.
Bibliography
1. Google not 'hackers' best friend',James Middleton, VNUnet.com, 2001
http://www.vnunet.com/News/1127162
2. Google: Net Hacker Tool du Jour, Christopher Null, wired.com, 2003
http://www.wired.com/news/infostructure/0,1377,57897,00.html
3. Microsoft FrontPage 2000 Server Extensions Resource Kit
http://sciris.shu.edu/Manuals/FrontPage/serk/adhtm_1.htm
4. Hacking Exposed Third Edition, McClure, Scambray, Kurtz, ISBN: 0-07-219381-6
http://www.osborne.com
"One such posting on a security newsgroup claimed that searching using the string 'Index of /+banques +filetype:xls' eventually turned up sensitive Excel spreadsheets from French banks. The same technique could also be used to find password files"[1]
Another article that appeared on wired.com told us how Adrian Lamo, a hacker who made the news often the last couple of years, explained that google could be used to gain access to websites of big corporations.
“For example, typing the phrase "Select a database to view" -- a common phrase in the FileMaker Pro database interface -- into Google recently yielded about 200 links, almost all of which led to FileMaker databases accessible online.”[2]
These articles kept on coming up in the online news. U.S. Military and Government websites were vulnerable because admin scripts could be found using google, medical files, personal records, everything suddenly seemed just one google search away. But these articles seemed to show up once every half year and always talked about it as if it was something new. Another thing was, the articles never explained how one would actually go about doing this. Almost never an example of a search string was given. The last time I read one of these articles I decided it was time to find out for myself, whether google actually could do all they say it can. The following is a report of my findings and a
description of some techniques and search strings one could use.
Theory
The theory behind this is actually quite simple. Either you think of certain data you would like to acquire and try and imagine in what files this kind of data could be stored and you search for these files directly. (Search for *.xls files for example) Or you take the more interesting approach and you try to think of a certain software that allows you to perform certain tasks or to access certain things and you search for critical files of this software. An example could be a content management system. You read up on this particular content management system, check out of what files it exists and search for those. A great example is that of the databases mentioned above, where you know the string “view database” is used on pages that shouldn’t be accessible to you and you then search for pages containing that string, or you check the software and notice that the option to view a database is linked on a webpage within this software called “viewdbase.htm” and you search for “viewdbase.html
The most important thing is to have a clear goal, to know what it is you want to find. Then search for these specific files or trademarks that these files have.
Google Search Options
Specific file types: *.xls, *.doc, *.pdf *.ps *.ppt *.rtf
Google allows you to search for specific file types, so instead of getting html-files as a result (websites) you get Microsoft excel files for example. The search string you would use would be this: Filetype:xls (for excel files) or filetype:doc for word files.
But maybe more interesting would be searching for *.db files and *.mdb files. Google by the way doesn’t tell you you can search for *.db and *mdb files. I wonder what other file types one can search for. Things that come to mind are *.cfg files or *.pwd files, *.dat files, stuff like that. Try and think of something that might get you some interesting results.
Inurl
Another useful search option is the inurl: option which allows one to search for a certain word one would want to be in the url. This gives you the opportunity to search for specific directories/folders, especially in combination with the “index of” option, about which I will talk later on.
An example would be inurl:admin which would give you results of website urls that have the word “admin” in the url.
Index of
The index of option is another option that isn’t especially thought of by the creators of google, but comes in very handy. If you use the “index of” string you will find directory listings of specific folders on servers. An example could be: ‘index of” admin or index.of.admin which would get you many directory listings of admin folders. (don’t forget to use the quotes in this case since you are looking for the entire “index of” string, not just for “index” and “of”)
Site
The site option allows you to come up with results that only belong to a certain domain name extension or to a specific site. For example one could search for .com sites or .box.sk sites or .nl sites, but also for results from just one site, but more interesting might be to search for specific military or government websites. An example of a search string would be:
Site:mil or site:gov
Site:neworder.box.sk “board”
.Intitle
Intitle is another nice option. It allows you to search for html files that have a certain word or words in the title. The format would be intitle:wordhere. You could check out what words appear in the title of some online control panel or content management system and then search google for this word with the intitle option, to find these control panel pages.
Link
The Link option allows you to check which sites link to a specific site. As described in Hacking Exposed Third Edition, this could be useful: These search engines provide a handy facility that allows you to search for all sites that have links back to the target organization’s domain. This may not seem significant at first but let’s explore the
implications. Suppose someone in an organization decides to put up a rogue website at home or on the target network’s site.“”[4]
Combining search options
The above mentioned search options might or might not be known to you, but even though they can amount to some interesting results, it’s a fact that when you start combining them, that’s when google’s magic starts to show. For example, one could try this search string: inurl:nasa.gov filetype:xls "restricted" or this one: site:mil filetype:xls "password" or maybe site:mil “index of” admin
(I’m just producing these from the top of my head, I don’t know whether they’d result in anything interesting, that’s where you come in. You got to find a search string that gets the results you want.)
Examples; The Good Stuff
Specific file types: *.xls, *.doc, *.pdf *.ps *.ppt *.rtf
To start out simple, you can try and search directly for files that you believe might hold interesting information. The obvious choices for me were things like: Password, passwords, pwd, account, accounts, userid, uid, login, logins, secret, secrets, all followed by either *.doc or *.xls or *.db
This led me to quite some interesting results, especially with the *.db option but I actually also found some passwords.doc files, containing working passwords.
http://www.doc.state.ok.us/Spreadsheets/private%20prison%20survey%20for%20web.xls
http://www.bmo.com/investorrelations/current/current/suppnew/private.xls
http://www.nescaum.org/Greenhouse/Private/Participant_List.xls
http://www.dscr.dla.mil/aviationinvest/attendance_5Apr01.xls
http://web.nps.navy.mil/~drdolk/is3301/PART_IS3301.XLS
Admin.cfg
Admin.cfg is, most of the times, an admin configuration file of some sort. Many different software obviously use names like “config” or “admin” or “setup”, etc. And most of the times these files contain sensitive information and thus, shouldn’t be accessible for people browsing the web.
I tried a search for admin.cfg, using the following search string on google:
inurl:admin.cfg “index of”
This led me to many results of which many were useless. But some paid out.
I found for example: http://www.alternetwebdesign.com/cgi-bin/directimi/admin.cfg
Which contained a password. This was the admin password for a database located at
http://www.alternetwebdesign.com/cgi-bin/directimi/database.cgi?admin.cfg
This database contained sensitive client data of this particular company. I then proceeded to e-mail the company and tell them about the flaw. They replied to me in a very friendly manner and told me they appreciated my help and that they would take the necessary steps to solve the problem.
[magenta]Webadmin
A short while back, while working on this article, I ran into this website:
http://wacker-welt.de/webadmin/
The website explains that “webadmin” is a small piece of software that allows one to remotely edit parts of a website, upload files, etc. The main page for the webadmin control centre is called ‘webeditor.php”. So obviously, my next step was to visit google and use the inurl tag to find webeditor.php pages that I could reach. I used the following search string:
inurl:webeditor.php
and I found the following results:
http://orbyonline.com/php/webeditor.php
http://www-user.tu-chemnitz.de/~hkri/Neuer%20Ordner/webeditor.php
http://artematrix.org/webeditor/webeditor.php
http://www.directinfo.hu/kapu/webeditor.php
All these webeditor.php files were reachable by anyone, merely because the owners failed to (correctly) protect these pages by using .htacces. This mistake allows whomever to change the webpages on the server and thus defacing the site, uploading files and thus possible gaining full access to the server.
In browsing through these sites I noticed that the file that allows one to upload files is called “file_upload.php”, which I could then search for at google and find more examples.
http://www.hvcc.edu/~kantopet/ciss_225/examples/begphp/ch10/file_upload.php
A good example:
http://www.pelicandecals.com/admin/webeditor.php
The script allows you to change files, like in the above examples, including the index.php.
In theory one could write or download whatever malicious script one wants, paste this code into an existing file or just upload it and well, the consequences are obvious. there was also a link “Return Administration” and clicking on it took me to:
http://www.pelicandecals.com/admin/administration.html
Where there were customer addresses, where one could change pricing, etc.
Frontpage Server Extensions HTML Administration Forms
“You can remotely administer the FrontPage Server Extensions from any computer connected to the Internet by using the FrontPage Server Extensions HTML Administration Forms, a set of Web pages that allow you to administer the FrontPage Server Extensions remotely.[3]
Well, that’s what Microsoft’s manual has to say about it. This means, users with access to these forms are able to perform a number of administrative functions, remotely. And that means, these forms should be well protected from non-authorized people. Now how would one go about finding nonprotected forms over the internet? The first thing we do is try to find out what files these scripts consist of. A short visit to the Microsoft website or a peek into the frontpage manual tells us that the main page for these administration forms is a file called “fpadmin.htm”. So that’s what we need to search for. Now to find a correct search string that will get us the results we want. When a default install is performed, the files get installed in a directory called “admin”. Putting to use what we have learned about google search options and the theory behind this technique, a good search string might be:
inurl:fpadmin.htm “index of” admin or maybe inurl:admin/fpadmin.htm
Well, these were the results I got:
http://www.lehigh.edu/~ineduc/degree_programs/tbte/admin/
http://blackadder.eng.monash.edu.au/frontpage/admin/
http://www.lehigh.edu/collegeofeducation/degree_programs/tbte/admin/
http://www.vsl.gifu-u.ac.jp/freeman/frontpage4/admin/
http://www.tech-geeks.org/contrib/loveless/e-smith-fp-
2002/frontpage/version5.0/admin/1033/fpadmin.htm
http://fp.nsk.fio.ru/admin/1033/fpadmin.htm
But the frontpage manual says more:
“Because of the security implications of making remote FrontPage administration possible from Web browsers, the HTML Administration Forms are not active when they are first installed.”[3]
This means that some of these could be active and thus useful to us and some might not. There is of course, only one way to find out and that is to perform one of the possible administrative functions and see if you get results. I for one decided not to go that far, because it would mean breaking the law. But I’m not here to teach ethics, or at least not today.
---
Freesco Router
The Freesco router software for Linux as a default, installs a small web browser which allows owners to control the router through the http protocol. In other words, a website automatically gets setup that allows you to control the router. The default password and login for this control panel is “admin” and “admin”. Many people who use freesco don’t know this. You could search for these Freesco router control websites by using a string such as: intitle:”freesco control panel” or “check the connection” which are words that either are in the title of these pages or on the pages itself. That’s what it’s all about; you check out a certain software, find the part you’d want to be able to reach and figure out which search string would get you the good results.
Extra Tips
• Remember English is the most used language online, but it’s not the only one. Try and search for words or strings that are specific to your language or French or German, etc. For example
“beheer” is a Dutch word for “administration” or “privat” is German for “private”.
• You can check vulnerability scanners’ scan lists for interesting search strings you might want to use or combine with your own strings. Check http://paris2k.at.box.sk/tools/listings/ for some examples.
• Search for files like “config.inc.php” or “mysql.cfg” that could contain mySQL password and username combinations. Try to think of good search strings using words like PHP, SQL, mySQl, etc.
• Try things like: inurl:admin "index of" "database" or inurl:phpmyadmin "index of" or inurl:mysql
"index of" site:neworder.box.sk intitle:index.of or intitle:index.of.private
Conclusion
The internet is a network to which hundreds of thousands, if not millions of web servers are connected and in theory, all data can be reached, unless properly protected. Both software designers and end users should pay more attention to default installation security configuration and security policy.
In the end, there are always going to be people who make mistakes, use default installs, use poorly secured software or just don’t care or still believe there’s no danger in putting this kind of data online. And in the end there’s also always going to be curious people who love to find that interesting information they have been hoping for. Google can help you considerably, in locating this kind of information and it’s easy and fun. ^^
Sidenote
I have used in this article, “live examples” because “foobar examples” in this case wouldn’t have been very useful. I hope you choose to learn from these examples and not use them to commit malicious acts. Think of a great search string yourself and don’t abuse the ones I have shown to explain the technique a little bit. (Guess I couldn’t stay away from the ethics lesson after all) xD
Afterword
To not abandon tradition I would like to take the chance to greet some people.
People like JI954w, Greek Assassin, MELISSA, L4, Dr. Lynch and others… you all know who you are, Thanks for helping me out numerous times with numerous different things.
Bibliography
1. Google not 'hackers' best friend',James Middleton, VNUnet.com, 2001
http://www.vnunet.com/News/1127162
2. Google: Net Hacker Tool du Jour, Christopher Null, wired.com, 2003
http://www.wired.com/news/infostructure/0,1377,57897,00.html
3. Microsoft FrontPage 2000 Server Extensions Resource Kit
http://sciris.shu.edu/Manuals/FrontPage/serk/adhtm_1.htm
4. Hacking Exposed Third Edition, McClure, Scambray, Kurtz, ISBN: 0-07-219381-6
http://www.osborne.com
Sunday, November 18
$$$ Paisa Paisa Paisa Paisa Paisa $$$
Now Earn While Reading SMS!
Click Below To Join With Special Offers!!
M-earn
GAvoor
Admad
MGarlic
MGinger
Earn Through Clicking on Ads, Reading Mails, Surfing Web, Writing Blogs!!!
Click Below To Join With Special Offers!!
Clix Sense
myLot
Bank Mails
PTR Trading
Zotspot
Money Cosmos
Earn By Ads
Cash Fiesta
Click Below To Join With Special Offers!!
M-earn
GAvoor
Admad
MGarlic
MGinger
Earn Through Clicking on Ads, Reading Mails, Surfing Web, Writing Blogs!!!
Click Below To Join With Special Offers!!
Clix Sense
myLot
Bank Mails
PTR Trading
Zotspot
Money Cosmos
Earn By Ads
Cash Fiesta
Friday, November 16
Earning on internet while sitting at home becomes very easy....
Earn as much as you can, through clicking on Ads!!
Easiest Way to Become a Billionaire!!!
$$$ - Earn Money Using myLot - $$$
We want people like you to help our website explode, and to reward you we will pay you every time you use myLot! Our goal is to provide internet users a place to earn money using the web on a day to day basis. It's easy, sign up and start discussions, post responses or comments to current discussions, or refer friends! A myLot account is all you need to get started. You will be able to view your earnings on a daily basis when you sign in.
Click Here to join myLot! now before offer closes
Easiest Way to Become a Billionaire!!!
$$$ - Earn Money Using myLot - $$$
We want people like you to help our website explode, and to reward you we will pay you every time you use myLot! Our goal is to provide internet users a place to earn money using the web on a day to day basis. It's easy, sign up and start discussions, post responses or comments to current discussions, or refer friends! A myLot account is all you need to get started. You will be able to view your earnings on a daily basis when you sign in.
Click Here to join myLot! now before offer closes
Thursday, November 15
Trick to lock your private folder
Suppose you want to lock the folder movies in d: which has the path D:\movies.In the same drive create a text file and typeren movies movies.{21EC2020-3AEA-1069-A2DD-08002B30309D}Now save this text file as loc.bat
Create another text file and type in itren movies.{21EC2020-3AEA-1069-A2DD-08002B30309D} moviesNow save this text file as key.bat
Now you can see 2 batch files loc and key.
Press loc and the folder games will change to control panel and you cannot view its contents. Press key and you will get back your original folder.try it out!!!!
Create another text file and type in itren movies.{21EC2020-3AEA-1069-A2DD-08002B30309D} moviesNow save this text file as key.bat
Now you can see 2 batch files loc and key.
Press loc and the folder games will change to control panel and you cannot view its contents. Press key and you will get back your original folder.try it out!!!!