by xyr0x
This is pretty newbish, but I give insight of how widely it can be used, distributed, and abused. - xyr0x
This is pretty newbish, but I give insight of how widely it can be used, distributed, and abused. - xyr0x
--=] Owning your Local Area Network [=--
LAN Hacking, Bypassing, and Exploitation
Author xyr0x
Date: 1/20/2006
-Table Of Context-
Chapter 1 - The basic information to understand before even attempting LAN Hacking.
1A: Disclaimer
1B: Preface
1C: LAN Documentation
1D: What NOT to do.
1E: Observing
1F: Restrictions
1G: Compilation
Chapter 2 - Local Area Networks: Which are which, and what to expect about it's setup
2A: Schools
2B: Libraries
2C: Internet Cafe's
2D: Home and Office
Chapter 3 - Taking your skills to the test, routines of utilizing and manipulation
3A: Getting Started
3B: Schools
3C: Libraries
4D: Internet Cafes
5E: Home and Office
Chapter 1 - The basic information to understand before even attempting LAN Hacking.
1A:
Disclaimer: The author, I, xyr0x do not hold any express, or implied
liability or warrant for your actions. This tutorial is to give you the
privileage to understand how LAN/Local Area Networks are serverelly
flawed, and to give you a grip on how, and where they are flawed. This
tutorial does not condone, or imply in anyway, shape or form, of
myself, xyr0x, to break into anything of what you're about to read in
this documentation. This is for learning and securing purposes only. I
will not be held responsible to any and all things you enherit from
this document.
1B: Preface: Ok over the years more and more
people decided to run a business, or operate with members of the
facility(s) they needed a more logical method than running individuals
from office to office, room to room, and even, to be more infact, to
communicate with each computer terminal which would be used by more
than that of someone than one individual The reason this is, is pretty
obvious to the un-knowledgable computer and network idiots which we all
know exist. So somebodie's got to be there to atleast play a bit of man
in the middle, and have a little bit of control, but is this really
control? I object. In allowing One terminal breach of another, and
another, and so on only decieves the eyes of the individual who
actually set it up (No matter who set it up) that there's going to be a
way for the end terminal which is being integrated with the main
terminal (usually a server, or control panel) with the 3rd party user
that's being tended to, due to probable stupidity mistakes, and for
better contrast of this, Content which is viewed. pr0n, Warez, Chat,
Obcenity websites, etc. These are the reasons which made this tutorial
come to life.
1C: LAN (Local Area Networks) are derived of more
than one computer terminal hubbed to another. Most the time you'll have
numerous terminals connected to one hub on the Ethernet Hub. An
ethernet hub is hardware which allows a person to link up several
computers together to get them to to correspond with each other,
directly back to where the dedicated system which runs it from it's
connection source. The connection source is obviously the internet.
Various connections exist when using LAN. Sometimes they don't have
many people so they'll use a reasonably priced DSL or Cable connection.
However most schools, Libraries, and other large communities where a
LAN may exist, they'll most likely have a T1, or T3 line. T lines are
Fiberoptic lines which allow more data to be transmitted through, but
we're not here to discuss T-Lines. But basically this pretty much
defines what a Local area network is, and how it's utilized and setup,
and most of all it's charactorists to understand.
1D: What NOT
to do: Upon the quest of wanting to understand the basic principles of
obstructing with a LAN, you'll need to know some very important rules
to follow. if you decide to neglect these rules, you should stop
reading this now, becuase you will be caught.
Rule 1: NEVER
Install 3rd party software. Such as backdoor trojans, keyloggers,
rootkits, anything which would be concidered an obvious "hack tool" -
You don't need these to acquire network utilization/manipulation.
Rule
2: Always be on focus. If you lose focus you'll be bound to make a
mistake. Never let your knowledge that you know, take you to a place
where you don't know.
Rule 3: Never tell anybody what you've done, or are about to do. This is for several reasons, and they're all obvious ones.
Rule
4: Don't turn the power off. Turning the power off notifies the main
tower. Sometimes people think of they turn the system off, and try to
force boot it into safe mode and crap will yearn them to administative
rights, and ultimitelly, if you're good enough, other data, and
information. This maybe true in some cases but it's never a wise move
to do this on a corporate network. You will be caught. School systems
vary. They aren't as heavily administrated, except for browser
filterations, and such. Rule 4 implies on Library, Cafe's, and other
heavily adminstrated networks only.
Well, that's most of the
common rules you'll need to know NOT to do. If you feel you have a new
rule of thumb to follow, or how we term it "Laws and Ethics" then go
ahead, and use it to your discretion.
1E: Observing: Observe
means to notice what's surrounding you, like who's the person who's
waiting in line? That's never a good move. Never attempt this if you've
got people waiting to use the computer after you. Notice officials who
work there. These people are required to wear clean cut, nice clothes,
and so that's always a good point to look for. The less crowded the LAN
is, the more easily you'll have time to on your side. Note: I said,
less crowded, not empty. If it's empty and supsiciousness arises, make
it a feel like a maze for the admin to find out what system it's
comming from. This can be easily disregarded since most networks these
days (but not all) have tools which can link interactivity being done
to a direct terminal.
1F: Restrictions: notably network
restrictions are always going to be there to make everything that much
harder for you to get passed. I'll share a handful of some of the most
common restrictions.
1: Web filteration. You will be disabled to
view certain websites due to content. These are caused by applications
such as websense, net nanny, and others.
2: Disabled Functions:
Start menu, Task manager, Right click, may also be disabled. These are
usually disabled in highly publicized places. Most the time libraries
and some College campuses where network security on the chosen
terminals is stricktly a must have.
3: Others: Other
restrictions may include secondary login authorization, (and maybe even
more) Firewalls which influence a nature of which may not be accepted
on the network, and of course script and other filters to block crap if
in case the general security on the network is breached.
On this note, I'll give you some tips and actual examples of how to bypass/enable/defy these later on in this tutorial.
1G:
Compilation: After you've read, and fully understood and acknowledged
what is regarded and have full respect over what you're going to be up
againts, make some notes, what you might forget, and most of all... may
the best of luck be on your side when you take yourself into the inner
dimention of a secured network/network.
Chapter 2 - Local Area Networks: Which are which, and what to expect about it's setup
2A:
Schools: Schools are commonly misunderstood, mostly by word of mouth,
and that word sure does intimidate many of us individuals in life, but
never take it from granted, expecially when it's from somebody
underpower of the original source, or object, and nonetheless your own
abilities if you can/can't do it, all in all it's obvious nonesense.
Kids, administrators, school systems. They can be hacked. They can be
taken over from the inside. People who hack school computers have
always done it from the inside. No outside crap. Reason why, is becuase
the server's are served dedicated to their "own" mitigated LAN. and
therefor everything goes directly to the district terminal usually
NEVER located on your schools grounds. Colleges are a bit different
since it's it's a fixed facility. So everything's all just right there.
Just waiting for you to see on the other side, and who's who... What
classes is your secret crush takening, and maybe you want to join her?
Well guess what kids. Hackers: The movie atleast had something right
within it's scenerio, but Mister zero-cool aka: Dade Murphy played by;
Jonny Lee Miller, had one major role flaw. It can't be done just that
easy. Now please don't go into hollywood imagination please, becuase
that's just fake. But some of the plots can be somewhat real, if looked
at appropriatly; On with the tutorial. Most systems at the school will
be unattended by clerksmen, people, and expecially the unaware plays
big priority at a school, becuase a user is to busy with her own issues
to even care what you're upto. another flaw which I've experienced
myself when breaking into a local mental health network and even their
"BANK" (I won't disclose the actual facility, but I go there) They
don't keep tabs on who uses the computer systems. You aren't assigned
to a specific terminal, there for you can move around quickly if you
need to start over, and not be caught. Nobody will notice who was at
that terminal messing with it. (Unless you confess with courtesy like I
did, becuase I'm more of a keep secure, than keep vulnerable kind of
guy and my confidential files also exist on the network.) All in all,
there should be no less security on the LAN at a school, except perhaps
web filteration software, and maybe some weak login prompts to access
certain hubs on the network which aren't that hard to bypass.
2B:
Libraries: Ok, I've re-assembled some of the documentation included
into this with a thread I recenlty had prior to writing this tutorial.
Libraries can be some what tricky, and for all to know, should not be
disturbed. Why? simple becuase there's really no advantage for you to
acquire on a library network, unless you're wanting to parse the
"Digital Dewey Decimal" system onto a harddrive, even if there is one.
You still have no real purpose even concidering such of a task. It's
pointless. The only thing I can think of that'd even be slightly
important to utilize a library network to your advantage was to
sobotage it, or to get free internet (why free internet, when you
usually have somebody who has it for free, or even so do you?) Anyways,
if you're still concidering the task of doing this, I've left you some
details on how this maybe "theoretically" possible in the last chapter.
2C:
Internet Cafes: The cyber realm to 2nd and 3rd world countries, and
Coffee shops around the globe. Let me just say some first words before
I discuss what to expect about Cyber Cafe's. If you live in Arabic
communities, most likely hacking is a civil crime, and you might just
find yourself beheaded, or imprisoned. That's for the india, jordan,
saudi arabia, and pakistan folks. You've been warned. Internet Cafe's
play a big role on the way people who can't afford the internet, have
no computer, and definitelly can't afford the internet, or just a
simple individual wanting to check his email. Nothing else greater.
This tutorial is now becoming a hock and I'm right now starting to
think I never began writing it. Anyway, There's really no good reason
to compromise a cafe, due to the "again" obvious reasons. People are
there to get things done quickly, not lounge around and hack using the
cafe's computers. BUT If you by chance have your own. Then that's
better, preferably you'd hope to own a laptop. If they allow 3rd party
users to connect their laptop's upto their LAN -- then pretty much
everything I'll define in the last chapter will apply to Internet
Cafe's again, remember to abide by the Rules. Becuase Cafe's can be
busy, and you don't want any peepers, any questions, any suspicions.
3C:
Home and Office: Home and office networks are probably the most common,
since most of us all live in a home, except for the unfortunate ones.
(Please be nice to the homeless, since I'm giving you this bit of
information. Thanks.) Home computers are usually where you, I and
family setup restrictions, net filter, the usual security systems
blocking whatever is configurably set. Gotta boyfriend or girlfriend
you want to spy on, and have physical access to his/her computer? Then
you'll like this bit of information. Home users usually login to their
email accounts on a frequent basis, and also other items, such as
maybe, websites, chat conversations, and to include all of this,
usernames and passwords are obligated to be used. Which means you have
the opertunity to acquire their password with hardly any knowledge at
all, just how to setup, and use certain programs, or even man in the
middle situations and cypher what's being said across the LAN. Office
LAN's are also built in kind of the manner a school system and a home
system is, just with the security if you take a Home system and a
School's systems security status, and split it in half (Most the time)
what office do you work at, is really what the question is here, and
what all do you want to snoop around into, or mess with?
Chapter 3 - Taking your skills to the test, routines of utilizing and manipulation
3A:
Getting Started: Ok, first think of what task you wish to persue. What
kind of LAN do you want to attempt to*/break* into? Once you've figured
that out. I'll tell you what to take with you when you've decided. Your
decisions are given below.
1: A School: EXTERNAL TOOLS
FORBIDDEN! Only use your networking, and manipulation skills to combat
the LAN's hub and connected computer systems. If all goes well after
reading the what you need to know, in the 3B sub-chapter, you should be
all set.
2: A Library: EXTERNAL TOOLS FORBIDDEN! UNLESS you can
connect your computer directly to an already networked hub/terminal*
Use networking and manipulation skills to combat the LAN's hub, and
connect computer systems. If all goes well after reading the what you
need to know, in the 4C sub-chapter, you should be all set.
3:
Internet Cafe: EXTERNAL TOOLS ARE FORBIDDEN UNLESS you can connect your
computer directly to an already networked hub/terminal* Use networking
and manipulation skills to combat the LAN's hub, and connect computer
systems. If all goes well after reading the what you need to know, in
the 5D sub-chapter, you should be all set.
4: Home Or Office: At
home external tools. backdoors, keyloggers, spy programs, etc, is your
own decision to choose to use. You can combat web security easily with
a home system with just beginner networking knowledge. If all goes well
after reading the what you need to know, in the 5E sub-chapter, you
should be all set.
3B: Schools: Breaking into a school's network
isn't hard. What do you want to do? Let's say you want to browse the
connected computer hubs, and play with some friends heads. Notably get
your friends terminal name. Becuase it's need to be known when you
access the connected hubs on your terminal to access. Now assuming
you're on Windows XP, or NT. Goto Start | Search | Computers or People
| A Computer on The network | now... here leave the criterea field
BLANK, and in doing this it'll bring up "ALL" the networked machines on
the hub you're on, and from there, you can access them -- just like a
backdoor. From there it gets interesting Note: some terminals may
require username and password. I'll give you a small tip, but the rest
You will need to figure out, since I'm pretty much telling you the
direct way in the first place, and from that you can't learn anything,
on your own. Find which terminal is asking for the password. Once
you've found which one is asking for it, and it is accessible to you...
Do what One of the rule's define and defy it, to your power. There are
other ways, but you're not going to find them here, since I'm not
promoting the use of external tools, on school networks. You can easily
hub your laptop (if you have one) connect it to the victims computer,
and hide it away from where it's seen during the day. Connect it to the
LAN and to the computer it's being hubbed to, and then set a local
keylogger onto the machine, then after hours come back and retrieve it,
and then delete all traces of the spy utility. (This gives you Urban
Explorers some mystifying ideas, I'm sure) Oops, did I say I wasn't
going to promote external tools? I guess you got lucky. To change your
grades, forget it. If you're to stupid to learn and get good grades on
your exams, than just drop out, and forget you ever knew me. (I'm a
dropout, but the school's here, and my mental illnesses give me a right
to be hyprocritical) Changing classes, like the Hackers: Sort of the
same way as breaking into the computers. Although it varies. Sometimes
the records are set on the districts dedicated server, which as I
previously enstated, there usually never on your school's premises. But
if you get lucky, you can obtain and change this information through
Administration. You're on your own there, becuase I'm not going to be
the one feeling guilty if you mess up. Pretty much everything else now
that there is with a school network should be obviously recognised of
it's abilities to be manipulated. Also never forget to use the old
sendmail prank. Emailing administrators and sending them dumb messages
can be fun. This is available most the time becuase the school district
uses its dedicated server to host a website or blog of some sort. Goto
Start | Run | Cmd.exe (or) command.exe | Now review my example.
Type in Telnet.
NOTE:
xxx.xxx.xxx.xxx is where your school's website IP will be needed to be.
Telnet to your schools website IP on port: 25 (SMTP Protocol) Simple
Mail Transfer Protocol. with telnet. o = connect and xxx.xxx.xxx.xxx 25
and then press enter. example: o xxx.xxx.xxx.xxx 25 ... and press
enter. Once you've got a established connection, resume with the
sendmail formation... which is in its example below....
MAIL FROM: imaLANprostitute@~censored~.edu
RCPT TO: deandick@inputyourshoolhere*.edu
DATA: your message body
*
and enter... if all goes well your message would be sent to deandick@yourschool.edu
(remember that is an example, replace proper information where
required) the asterisk in the RCPT TO: school domain is required to be
changed to be actually sent. The last asterisk is required to notify
the system it's being closed and is going to be sent.
3C:
Library: as I've mentioned before, this is next to pointless in the
thought of even doing. But I'll tell you some ways of what can be done
"theoretically" speaking.
Thanks goto Darth Order for mentioning
this, to give others, and myself to think outside of the library, and
inside of the network, and not to forget my leet hacking skills. Razz
You can easily bypass this stuff with a few manuevers such as ALT+TAB -- if this doesn't work... Open the browser, and goto " http://www.whatismyip.com " copy the IP down, and then goto some security website, where it does a port scan. e.g http://www.dslreports.com/scan and if there is no "Java" enabled, you can find others, just goto http://www.google.com
and query. " Online Port scans " now when you have all the data back,
there should and, err, "will" be an open port somewhere along the
results... Use that and the IP of the system -- from there you can
utilize the browser to gain access to the system. This is basically
like taking a network, and using the browser as a backdoor terminal. It
works, but the downfall to this, is if you get caught doing it, you're
probably going to get banned from the library, and maybe even turned
into the authorities. So do it on a day when there's hardly anybody
there, and you'll probably get in, and have some fun.
NOTE: The URL must be submitted in the browser, in this form...
HTTP://theip:23 (<== telnet.)
HTTP://theip:80 (<== HTTP)
FTP://theip:21
(<== IF FTP is enable this will allow you to get into the FTP -- try
using "Anonymous login" if that doesn't work, forget it. Another FTP
method FTP://anonymous:anonymous@theip:21)
Other
ideas or even reasons to get into the library Network? I don't see any
logical reason to why a library network might be anywhere close to
getting critical, and confidential information out of, do you? Unless
that is, if you're going after free access. But if you're reading this,
you need not free access, becuase you're reading this "online" right
now.
3D: Internet Cafe's: As with the library issue, there
really is no point to even possess the idea of something great in an
internet cafe, unless you're just there to be a nuisance. Most internet
cafe's require you to pay a deposit before you can use their terminals,
before hand. If you're going to think of something creative about
manipulation a Cafe, use your head, not my ideas. I'm shit out of luck,
for you on this sub-chapter.
3E: Home and Office: With the home
system, if you want to abstruct security, in ways for bypassing
parental controls? Get yourself again, a spy application, and record
your key strokes. While doing this, (if the persons administrating the
computer use it, install it on that one, if not install it on theirs)
needless to say, for access this again, is quite simple. Since you're
on your home network, just load of the Search field again, as described
in the School method, and then locate the program's logs, and usually
these logs aren't encrypted and be be read. Another tactic to use is to
install a backdoor (preferably your own, meaning, that, you install it
yourself.) a good backdoor which will minimize security configuration
on computer is Sub7 2.2, from there, just read sub7's documentation of
how to use it to your advantage. Some other ideas, and fun tricks... (I
remember back when I was an amatuer networker, in 2001, when I
constantly looped messages to my dad, and he told me "Do you want me to
TOS your account to AOL?" I started to laugh, becuase of his pure
stupidity to unable to realize what was going on, and he to is moderate
at computers) Well, open up cmd.exe and then send a networked message,
saying "This Lan Sucks" or something, just to annoy them. Then flip on
a game, on your pc, or a movie... (this way they can't see what you
have open on your computer) then mostly likely will be dumbfounded and
very annoyed. The result is pure amusement. Same thing with Regedit.exe
You can mess with that over the LAN Aswell, and disable their taskbar,
icons, like a trojan, in a way. That's what I think of networks. a
great big huge backdoor.trojan. Isn't it great?
Offices, you'll
need to be more moderate at what you're wanting to do within the
offfice, becuase I don't want to see or even have the thought of your
ass getting fired, now, OK? But you can sneak around easily, and snoop
through users files, just don't hold any amusement arousal becuase of
it, becuase you don't want your competing business buddy to win your
boss's friendship, more than you want to.
Now, for me to wrap everything up, and tidy the understanding of it all. As murder mouse would say...
The
Conclusion: What all I've enstated, and mentioned, from tools to
techniques, of methods, and tactics, they all share the same
inquisitions to any and all network setups. Nothing won't disallow you
from being able to do anything, mind you break rules, it's your fault
if you get caught. Just take what you've read, and mess around. The
most important things to remember to use are...
1: Your head, and common sense.
2: You are the computer administrator. and LAN administrator.
3:
Spread the information from what I've left out (not on purpose) with
new articles which will ultimitelly achieve network war heroes to
become more of what they need know, to ensure quality security, safety,
and most of all privacy.
It's ok to mess with people aslong as
it's appropriate, and you know what you're doing isn't going to offend,
or jepardize your attendance.
Well, I hope you enjoyed this, yet another one of my long, and emenceful articles. So long.
xyr0x.
No comments:
Post a Comment