Useful info: Ctrl+C beaks from a command.
Hundreds of people seem to ask me how to "hack".
Answer, sod off, i cant! But there are plenty of ways to gain information about a computer using some tools, and information that im going to share.
Firstly we need an IP for most of this, so to get an IP go to command prompt (start->run->cmd) and type
such as tracert google.com; However the lack of security im going to focus on is on your local LAN, as once you get into a WAN (internet) there are routers, firewalls, packet filtering etc. and your chances are delimeted!
Firstly, we need to find out whos on our network, so we use a Network Scanner (easy huh). Get one from here, it doesnt need installing, so i reccommend you do file..save as and save it somewhere before you go any further.
Now we've found whos on our network lets see what we can.
Why don't we see what accounts are open for us to access, and what they have shared; to do this we use a command called nbtstat
The syntax for nbtstat is
nbtstat -a [ip]
Again, open command prompt (start->run->cmd) and type nbtstat -a [ip] e.g. nbtstat -a 192.168.0.2
This will show you something like follows
Wireless Network Connection:
Node IpAddress: [192.168.0.2] Scope Id: 
NetBIOS Remote Machine Name Table
Name Type Status
TOM <00> UNIQUE Registered
MSHOME <00> GROUP Registered
TOM <20> UNIQUE Registered
TOM <03> UNIQUE Registered
TOM$ <03> UNIQUE Registered
ADMINISTRATOR <03> UNIQUE Registered
MAC Address = 00-09-5B-94-7A-A5
The next command for viewing shared information is net view
net view [ip]
In my example, the computer is secured so it returns
There are no entries in the list.
Your may yield some results
Now we've seen whats shared, lets use it.
\\[ip]\ such as \\192.168.0.2\
and you should see the shared files.
If we want to access C drive we need to set our computer up to allow use of it.
The default administrative share in Windows, is that the local drives are shared as [drive name]$ to hide them for network browsing. Unless they are forcibly removed these shares always excist such as C$. Pretty nifty huh!
open command prompt and type net use \\[ip]\c$
now in our explorer window we can go to \\[ip]\c$ and we should be in!
I hope you learn something from this, there may be typos but i've written it in a few minutes so their expected!
Another tool you may want to use is GetAdmin, this upgrades your account to an administrator.
On that site are instructions for how to get it, you dont download a file because some places stop you downloading, but instead put the machine code into a new file and rename it. works a treat.
Another trick is for remote hacking we need to find open shares.
To do this i find the most effective technique as follows
1) go to www.whatismyip.com to get your own ip
2) in net scanner set the range to your ip, but the last block 0-255 e.g. 18.104.22.168 to 22.214.171.124
3) look for any computers that have shared folders
4) open that folder in windows
5) with that ip go to \\[ip]\c$ and there is a high chance you will have access to their C drive and all data.
Cracking passwords to http/ftp:
This involves using a program to either brute force, dictionary or list attack a form.
A program that does this is Brutus, however im not providing links.
There are many ways to hack/crack/gain access to a resource, just work out the flaw.
If a website uses SQL then you may be able to use SQL Injection, its a prevelant technique for stealing data such as emails, passwords etc.
If a website uses a forum, (such as IPB) then there are known exploits for it that utilises cross site scripting to allow illegitimate access.
The answer to most questions is google, but someone who knows security in and out is also a useful asset. Dont ask me, im only 16!
Edited by dabombtom, 02 January 2005 - 07:21 AM.